________________________________________
发件人: owner-m...@openbsd.org <owner-m...@openbsd.org> 代表 Shadrock Uhuru
<niyal...@gmail.com>
发送时间: 2023年11月28日 09:23
收件人: openbsd
主题: Re: a couple question about my fde setup
>>From: Nick Holland <n...@holland-consulting.net>
>>To: misc@openbsd.org
>>Date: Mon, 20 Nov 2023 07:47:40 -0500
>>Subject: Re: a couple question about my fde setup
>>On 11/19/23 18:09, Shadrock Uhuru wrote:
>>> hi all
>>> a couple question about my fde
>>> first, i have fde setup using a keydisk on my laptop, encryption and
>>> decryption works fine
>>> when i reboot with the key inserted it doesn't find the key,
>>> i have to shut the machine down and restart it then the key is detected,
>>> is this normally how a reboot works with fde and keydisk ?
>>
>i've noticed a few things during the booting with and without the keydisk.
>
>without keydisk with keyfisk
>
>disk hd0 cd0 sr0* disk hd0 hd1 sr0*
>>> openbsd/amd64 BootX64 3.63 >> openbsd/amd64 Bootx64 3.62
>failed (1) will try bsd failed (22) will try bsd
>
>also i have no idea why i have hd devices showing up at boot time
>and i have sd devices in dmesg.
>
>shadrock
I’m no expert, but it looks to me like your computer is booting from your key
disk (why: different errors, different EFI versions between booting with and
without key disk). Does your key disk have an EFI boot partition for some
reason? Can you make sure your computer is set to not boot from USB?
Re hd in boot menu, sd in dmesg: as far as I know, this is just due to
different naming conventions in the boot loader and the kernel. ‘sr’ in the
boot loader is your softraid encrypted disk.
Nathan