View Single Post
  #2   (View Single Post)  
Old 28th March 2013
Carpetsmoker's Avatar
Carpetsmoker Carpetsmoker is offline
Real Name: Martin
Tcpdump Spy
Join Date: Apr 2008
Location: Indonesia
Posts: 2,218

There's no problem when I issue the command:
geli attach -k /root/da2.key /dev/da2 (from the handbook example).


geli_da2_flags="-p -k /root/da2.key"
In geli_da2_flags you are passing the -p flag, which you're not using in your command. The geli manpage says:

-p Do not use passphrase as the key component.
So, remove the -p flag and it will (probably) work.

I really don't understand the following paragraph, as it's referring to '-P' option, but it's '-p' that is shown in the `geli_da2_flags`.
You're confusing two flags. The flags in geli_da2_flags are passed to geli attach, the -P flag refers to geli init (quoting from the handbook):

geli will not use a passphrase when attaching to the provider if -P was given during the geli init phase.
UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things.
Reply With Quote