Summary: | Geli restore from backuped geli-metadata is not possible | ||
---|---|---|---|
Product: | Base System | Reporter: | Bachmarc <marc.arnold.bach> |
Component: | kern | Assignee: | freebsd-geom (Nobody) <geom> |
Status: | New --- | ||
Severity: | Affects Some People | CC: | fk |
Priority: | --- | ||
Version: | 10.2-STABLE | ||
Hardware: | amd64 | ||
OS: | Any |
Description
Bachmarc
2016-01-25 11:08:26 UTC
Are you trying to restore the meta data while the provider is attached? By default this is not allowed. If you absolutely want to do it, you can set the "allow foot shooting" bit. For details see geom(4). fk@r500 ~ $sudo geli attach /dev/md0 Enter passphrase: fk@r500 ~ $sudo geli restore /var/backups/md0.eli /dev/md0 geli: Cannot write metadata to /dev/md0: Operation not permitted. fk@r500 ~ $sudo sysctl kern.geom.debugflags=16 kern.geom.debugflags: 0 -> 16 fk@r500 ~ $sudo geli restore /var/backups/md0.eli /dev/md0 fk@r500 ~ $sudo sysctl kern.geom.debugflags=0 kern.geom.debugflags: 16 -> 0 Yes and this I would regard as default because standing in an open door while changing the lock is what people do... nobody would close the door to install a new lock to get this thrill while not beeing sure if he will sees other side again. Its a data block at the end of a device no on the fly transcrypting... Even if not possible I would welcome a more meaningful error message: "Cannot perform action, cryptoprovider is still attached. Detach provider or set "ffot shoot bit" ;o)" |