From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from list by lists.gnu.org with archive (Exim 4.71) id 1XgzSw-0000lg-5m for mharc-grub-devel@gnu.org; Wed, 22 Oct 2014 13:12:54 -0400 Received: from eggs.gnu.org ([2001:4830:134:3::10]:38028) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XgzSo-0000iv-MI for grub-devel@gnu.org; Wed, 22 Oct 2014 13:12:52 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1XgzSg-0007HW-E8 for grub-devel@gnu.org; Wed, 22 Oct 2014 13:12:46 -0400 Received: from mail.ixsystems.com ([12.229.62.4]:57349) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XgzSg-0007F7-5x for grub-devel@gnu.org; Wed, 22 Oct 2014 13:12:38 -0400 Received: from localhost (mail.ixsystems.com [10.2.55.1]) by mail.iXsystems.com (Postfix) with ESMTP id 600FF88539 for ; Wed, 22 Oct 2014 10:12:34 -0700 (PDT) Received: from mail.iXsystems.com ([10.2.55.1]) by localhost (mail.ixsystems.com [10.2.55.1]) (maiad, port 10024) with ESMTP id 13708-06-4 for ; Wed, 22 Oct 2014 10:12:34 -0700 (PDT) Received: from [192.168.0.51] (75-130-56-30.static.kgpt.tn.charter.com [75.130.56.30]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by mail.iXsystems.com (Postfix) with ESMTPSA id D7F5388530 for ; Wed, 22 Oct 2014 10:12:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=ixsystems.com; s=newknight0; t=1413997954; bh=3dJIjDOBJil7aB/piweSwLNTv4hbm23fhHitiHNNEyY=; h=Date:From:To:Subject; b=g3KPN6Dinua4Uzedg2Tm4AUsN4dhZsUIL7nAIyvFKJnDXZoUR1GQrHYYoJXJgCTFq YpfFQKUMzD6hwaA+GpnIWMtQBmiw9rL+PYYeic/LcQHq5KN8tV8nf3cAx2tuAfZQ8Q uNIpbqplyNBSnolMyitt+o1B8qRl7Jdf6N+f/n14= Message-ID: <5447E580.1010409@pcbsd.org> Date: Wed, 22 Oct 2014 13:12:32 -0400 From: Kris Moore User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:31.0) Gecko/20100101 Thunderbird/31.1.2 MIME-Version: 1.0 To: grub-devel@gnu.org Subject: Patch to support GELI passphrase passthrough Content-Type: multipart/mixed; boundary="------------020908070109030206030903" X-detected-operating-system: by eggs.gnu.org: FreeBSD 9.x X-Received-From: 12.229.62.4 X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list Reply-To: The development of GNU GRUB List-Id: The development of GNU GRUB List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 22 Oct 2014 17:12:53 -0000 This is a multi-part message in MIME format. --------------020908070109030206030903 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Hey, just a small patch to submit today. If you rather I send this to the bug tracker then I can do that also. This patch allows exporting the FreeBSD GELI passphrase to the kernel environment, which we will be doing in PC-BSD to avoid prompting for the passphrase a second time at bootup. Let me know if you have any suggestions or need any changes. I'm currently hacking on support for EFI framebuffer settings to be passed to FreeBSD kernel as well, will send patches once I get things working there. --=20 Kris Moore PC-BSD Software iXsystems --------------020908070109030206030903 Content-Type: text/x-csrc; name="patch-grub-core_disk_geli.c" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="patch-grub-core_disk_geli.c" --- grub-core/disk/geli.c.orig 2014-05-15 14:00:10.000000000 -0400 +++ grub-core/disk/geli.c 2014-09-26 10:18:53.325111693 -0400 @@ -430,6 +430,9 @@ if (!grub_password_get (passphrase, MAX_PASSPHRASE)) return grub_error (GRUB_ERR_BAD_ARGUMENT, "Passphrase not supplied")= ; =20 + /* Set the GELI passphrase to GRUB env, for passing to FreeBSD kernel = */ + grub_env_set ("gelipassphrase", passphrase); + /* Calculate the PBKDF2 of the user supplied passphrase. */ if (grub_le_to_cpu32 (header.niter) !=3D 0) { --------------020908070109030206030903--