CGD - unable to open after closing, using '-V gpt', argon2id and adiantum

To: netbsd-users%netbsd.org@localhost
Subject: CGD - unable to open after closing, using '-V gpt', argon2id and adiantum
From: Luis Mendes <luisvmendes%yandex.com@localhost>
Date: Sat, 18 Nov 2023 18:57:19 +0000

Hi,


I'd like to setup a zfs pool at the last partition of a nvme disk.
There are already three partitions for efi, swap and /.


== Create the GPT partition:
gpt add -a 4m -l nvme-crypt -t cgd ld0
gpt show -i 4 ld0, shows type: cgd, label: nvme-crypt

dkctl ld0 listwedges, shows dk3: nvme-crypt ... type: cgd

== Create the CGD:
cgdconfig -g -k argon2id -o /etc/cgd/nvme-crypt -V gpt adiantum 256,
done.

== Setup the password
cgdconfig -V re-enter cgd0 NAME=nvme-crypt /etc/cgd/nvme-crypt, done.
Create with password '0000'.

cgdconfig -l, show cgd0: dk3

== Closing the encrypted container
cgdconfig -u cgd0, to close the container
cgdconfig -l, shows cgd0: not in use

== Now, trying to open the container again:
cgdconfig -V gpt cgd0 NAME=nvme-crypt /etc/cgd/nvme-crypt
After entering the four zeroes password, there's the message:
"cgdconfig: verification failed, please reenter passphrase".


What is wrong with this setup?


Luis

Follow-Ups:
- Re: CGD - unable to open after closing, using '-V gpt', argon2id and adiantum
  - From: Michael van Elst

Prev by Date: Re: NetBSD as an NTP stratum 1 server
Next by Date: Re: CGD - unable to open after closing, using '-V gpt', argon2id and adiantum
Previous by Thread: Trouble with re driver
Next by Thread: Re: CGD - unable to open after closing, using '-V gpt', argon2id and adiantum
Indexes:

Home | Main Index | Thread Index | Old Index