From owner-freebsd-questions@FreeBSD.ORG Sun Jul 10 14:05:16 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D1A931065672; Sun, 10 Jul 2011 14:05:16 +0000 (UTC) (envelope-from cjr@cruwe.de) Received: from cruwe.de (cruwe.de [188.40.164.98]) by mx1.freebsd.org (Postfix) with ESMTP id 5AFBA8FC42; Sun, 10 Jul 2011 14:05:16 +0000 (UTC) Received: from cruwe.de (unknown [127.0.0.4]) by cruwe.de (Postfix) with ESMTP id 30E351CE76; Sun, 10 Jul 2011 16:05:15 +0200 (CEST) Received: by cruwe.de (Postfix, from userid 65534) id 0D2B31CE70; Sun, 10 Jul 2011 16:05:15 +0200 (CEST) X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on mail.cruwe.de X-Spam-Level: X-Spam-Status: No, score=-1.0 required=4.0 tests=ALL_TRUSTED autolearn=unavailable version=3.3.1 Received: from dijkstra (p5B37B008.dip.t-dialin.net [91.55.176.8]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by cruwe.de (Postfix) with ESMTPSA id 97DE21CE5E; Sun, 10 Jul 2011 16:05:12 +0200 (CEST) Date: Sun, 10 Jul 2011 16:05:04 +0200 From: "Christopher J. Ruwe" To: Pan Tsu Message-ID: <20110710160504.0d4bf4c0@dijkstra> In-Reply-To: <86mxgmjooc.fsf@gmail.com> References: <20110710142617.1d80289b@dijkstra> <86mxgmjooc.fsf@gmail.com> X-Mailer: Claws Mail 3.7.9 (GTK+ 2.22.1; amd64-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: multipart/signed; micalg=PGP-SHA1; boundary="Sig_/g_=5Uw8m_5L.Z.3xp0eX_.p"; protocol="application/pgp-signature" X-Virus-Scanned: ClamAV on mail.cruwe.de using ClamSMTP Cc: freebsd-fs@freebsd.org, freebsd-questions@freebsd.org Subject: Re: zpool-zfs'es on a GELI-encrypted volume are not mounted at boot [patch included] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 10 Jul 2011 14:05:17 -0000 --Sig_/g_=5Uw8m_5L.Z.3xp0eX_.p Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable On Sun, 10 Jul 2011 16:38:43 +0400 Pan Tsu wrote: > "Christopher J. Ruwe" writes: >=20 > > Nearly a week ago I posted this question to freebsd-fs, but > > probalby my question is a) worded too complicatedly, b) not really a > > filesystem-issue or c) both. > > > > To rephrase: In setups requiring one or more ZFS-dataset to be > > mounted before another service is activated (GELI in my case) and > > the rest of the ZFS-datasets after that service is activated > > (because they require GELI), it seems to be necessary to add a `zfs > > mount -a` to mountcritlocal. Is this considered correct behaviour > > and wouldn't it make sense to add such a line to mountcritlocal in > > the standard setup? > [...] >=20 > Have you tried to set zfs_enable=3DYES in rc.conf? Based on rcorder(8) > output rc.d/zfs should come just after rc.d/mountcritlocal. zfs_enable=3D"YES" is set. rcorder gives curious output, so maybe my etcs a= re wrong? $> rcorder /etc/rc.d/zfs rcorder: file `/etc/rc.d/zfs' is before unknown provision `mountlate' /etc/rc.d/zfs $> rcorder /etc/rc.d/mountcritlocal rcorder: requirement `root' in file `/etc/rc.d/mountcritlocal' has no provi= ders. /etc/rc.d/mountcritlocal However, I fear I have not made my intent clear. My boot-sequence should be= as follows (intermittent steps left out): 1) mount zfs root-fs, which is on plain standard zpool A 2) unlock another, GELI-encrypted zpool B 3) mount all other fs (/usr,...), which reside on zpool B What my system does is first to mount the fs on zpool A, then GELI-unlock a= nd then halt because the contents of /usr are not accessible (yet) What I want my system to do is to first mount root, then unlock GELI and t= hen mount all other remaining fs on zpool B. I could either mount all remaining zfs'es in mountcritlocal, which requires another line there, which I have added locally as put in my patch. I cannot shift the order so that GELI-unlock comes first, because my keys for GELI reside on /boot, which resides on zpool A. So, is my setup anything from unfortunate to plain stupid or is mountcritlocal missing a statement catering for such cases as I described? Thank you for your help, cheers, --=20 Christopher J. Ruwe TZ GMT + 2 --Sig_/g_=5Uw8m_5L.Z.3xp0eX_.p Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (FreeBSD) iQIcBAEBAgAGBQJOGbGVAAoJEJTIKW/o3iwUPjQQANILgykncBQ0VL85din/a3HY veGlmpfVWM2I+lebeOwLEU3EJx93+T8mMbEQp0btz7J1Jd8Guf+2BeBJ1IZMkIYC qR/foBnBH5LQYUP8BLjozXB9Y2KgmekTDqQqTImUuDMXOlfi0HGQatGviUYRB3fy zjohMsK42VIQtG1x9UAkDpCe8K5NkFB2OrQ6zGVYiIoT68O89C/skKCa2g4KL4bi +QeaG5ShqeRNiiowPUsaTW0PVXuscg2r0GTKD6Y0ZWzwEAhm0pSojR9W6IshwTws 59hlHYjv0TeiYRDhuTP8nhSpkmVWAO4qqyPh0cSsvd3Ot8M7drIwIzeivAA81x98 J88K70rP/QWBCbpwsZcPFAIIQdURBvgn6T7OiTm0nDzWr2+JX+RjNVj3FPehxCNA xAEvREkEFb61jPkTue6Bb4HC47aAkhpowgegWFUdRGskRhmpFjZ+hnht6oL9a1xp nEf+mxnieL3eCa5U/4RtuX2ZtciBOuL9/Se/1Zk+nwsKGAnZsu7we8pNYrqysBER eUpX6yqERUWW2yLHPYbvQYFw4GeJwId7jf9bm+xx7dR5nFGJ5/lgsLCLKAEP4zVQ vQnAI3dHYawrz1+Dshh5XLWnk9dYnbJOr2jZuuXc7KkKydG8I/oNmLj5yLP+79g0 iNuDBw6DepWIDELEKVUL =bSSb -----END PGP SIGNATURE----- --Sig_/g_=5Uw8m_5L.Z.3xp0eX_.p--