[dm-crypt] Incidentaly partitioned LUKS device - header lost?

Bernd Brägelmann bernd at braegelmann.net
Sat Jul 2 20:11:44 CEST 2016


Hi Arno,

here the requested dump. Looks like the Master Boot Record with "55 aa"
boot signature. The byterange of the luks mastersalt is basically empty.

So all fucked up - I guess.

BTW: What is your guess: Will my grandchildren be able to crack a
256-aes-xts file system. What is your guess? Should I long-term store
the hard discs?

Cheers,

Bernd


braegel1 ~ # head -c 1k /dev/md2 | hd
00000000  fa b8 00 10 8e d0 bc 00  b0 b8 00 00 8e d8 8e c0
|................|
00000010  fb be 00 7c bf 00 06 b9  00 02 f3 a4 ea 21 06 00
|...|.........!..|
00000020  00 be be 07 38 04 75 0b  83 c6 10 81 fe fe 07 75
|....8.u........u|
00000030  f3 eb 16 b4 02 b0 01 bb  00 7c b2 80 8a 74 01 8b
|.........|...t..|
00000040  4c 02 cd 13 ea 00 7c 00  00 eb fe 00 00 00 00 00
|L.....|.........|
00000050  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00
|................|
*
000001b0  00 00 00 00 00 00 00 00  70 57 07 00 00 00 00 00
|........pW......|
000001c0  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00
|................|
*
000001f0  00 00 00 00 00 00 00 00  00 00 00 00 00 00 55 aa
|..............U.|
00000200  00 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00
|................|
*
00000400


-- 
Bernd Brägelmann FA für Radiologie
Robert-Koch-Str. 42 - 28277 Bremen
fon: +49 15141457796 PGP: BCA853F8


On 07/02/2016 06:14 PM, Arno Wagner wrote:
> Hi Bernd,
> 
> On Sat, Jul 02, 2016 at 12:42:27 CEST, Bernd Brägelmann wrote:
>> Hi Arno,
>>
>> thanks for answering. I created the partition table within /dev/md2 and
>> the raid is still working.
> 
> Ok, so we ignore the RAID.
>  
>> My current last hope is that the salt might be in a redundant part of
>> the raid array. 
> 
> Those will have gotten synced immediately, RAID inconsistencies
> live only for as long as they are in the write queue. No hope 
> there.
> 
> Ok, the LUKS superblock (or what is left of it) will be at
> the start of /dev/md2. Can you post the following (will
> not compromise your datta, that is protected by the 
> passphrase(s)):
> 
>   head -c 1k /dev/md2 | hd
> 
> This allows a manual look of what is left of the LUKS header.
> 
> Regards,
> Arno
> 


More information about the dm-crypt mailing list