On Fri, Dec 27, 2013 at 03:25:58 CET, Mihail Dumitrescu wrote: > Hello all, > > I saved some important files to an encrypted partition on an external hard > drive. I had it set up, verified that it mounted properly, copied the > files, closed it, verified again, then left the external hard drive sitting > unused on some shelf. > Months later, I cannot unlock it (though I'm only 95% certain that I > remember the password correctly). I have some backups but they're not > complete so I really really want to be able to recover/decrypt it. > I'm reaching out to this mailing list due to this thread that contained > valuable info ( > http://www.saout.de/pipermail/dm-crypt/2012-September/002724.html). > > Here's what I ran: > $ sudo cryptsetup luksOpen /dev/sdb3 encrypted > No key available with this passphrase. > For all the possible passwords I could think of. The passwords used is in > printable ascii (so there should be no encoding issues). If the passphrase > is wrong, would the same message be shown? That is the standard message for a wrong passphrase. The info below is looks entirely fine, the number of iterations just means you have a fast CPU. One thing you can still check it whether you upgraded your system and have an encoding problem (see FAQ Item 1.2, last paragraph). Appart from that, only the correct passphrase will get you access to your data, as intended. Arno > $ sudo cryptsetup luksDump /dev/sdb3 > LUKS header information for /dev/sdb3 > > Version: 1 > Cipher name: aes > Cipher mode: cbc-essiv:sha256 > Hash spec: sha1 > Payload offset: 4096 > MK bits: 256 > MK digest: 69 af 92 8c 80 1d 21 5e 05 6a ba 47 36 0e 74 a4 15 aa 19 10 > MK salt: 18 3e 56 ee bf 34 83 f6 4e e9 1f 81 ec 84 e9 e0 > ed 0a ba 0c 96 c2 a7 de 87 ff c0 3a c2 ca 1e 58 > MK iterations: 38500 > UUID: 83db3c83-0cef-4c12-895c-0901b608b8dd > > Key Slot 0: ENABLED > Iterations: 154303 > Salt: be af 88 dc 3c 0d 39 98 a2 84 10 c0 ed 05 3f 4b > e5 66 a0 bc 0a 95 61 08 d3 d9 72 ff 88 71 a3 4b > Key material offset: 8 > AF stripes: 4000 > Key Slot 1: DISABLED > Key Slot 2: DISABLED > Key Slot 3: DISABLED > Key Slot 4: DISABLED > Key Slot 5: DISABLED > Key Slot 6: DISABLED > Key Slot 7: DISABLED > Here, I'm worried about the high number of iterations, 154303. > > hd /dev/sdb3 | less > 00000000 4c 55 4b 53 ba be 00 01 61 65 73 00 00 00 00 00 > |LUKS....aes.....| > 00000010 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000020 00 00 00 00 00 00 00 00 63 62 63 2d 65 73 73 69 > |........cbc-essi| > 00000030 76 3a 73 68 61 32 35 36 00 00 00 00 00 00 00 00 > |v:sha256........| > 00000040 00 00 00 00 00 00 00 00 73 68 61 31 00 00 00 00 > |........sha1....| > 00000050 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000060 00 00 00 00 00 00 00 00 00 00 10 00 00 00 00 20 > |............... | > 00000070 69 af 92 8c 80 1d 21 5e 05 6a ba 47 36 0e 74 a4 > |i.....!^.j.G6.t.| > 00000080 15 aa 19 10 18 3e 56 ee bf 34 83 f6 4e e9 1f 81 > |.....>V..4..N...| > 00000090 ec 84 e9 e0 ed 0a ba 0c 96 c2 a7 de 87 ff c0 3a > |...............:| > 000000a0 c2 ca 1e 58 00 00 96 64 38 33 64 62 33 63 38 33 > |...X...d83db3c83| > 000000b0 2d 30 63 65 66 2d 34 63 31 32 2d 38 39 35 63 2d > |-0cef-4c12-895c-| > 000000c0 30 39 30 31 62 36 30 38 62 38 64 64 00 00 00 00 > |0901b608b8dd....| > 000000d0 00 ac 71 f3 00 02 5a bf be af 88 dc 3c 0d 39 98 > |..q...Z.....<.9.| > 000000e0 a2 84 10 c0 ed 05 3f 4b e5 66 a0 bc 0a 95 61 08 > |......?K.f....a.| > 000000f0 d3 d9 72 ff 88 71 a3 4b 00 00 00 08 00 00 0f a0 > |..r..q.K........| > 00000100 00 00 de ad 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000110 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000120 00 00 00 00 00 00 00 00 00 00 01 08 00 00 0f a0 > |................| > 00000130 00 00 de ad 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000140 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000150 00 00 00 00 00 00 00 00 00 00 02 08 00 00 0f a0 > |................| > 00000160 00 00 de ad 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000170 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000180 00 00 00 00 00 00 00 00 00 00 03 08 00 00 0f a0 > |................| > 00000190 00 00 de ad 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 000001a0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 000001b0 00 00 00 00 00 00 00 00 00 00 04 08 00 00 0f a0 > |................| > 000001c0 00 00 de ad 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 000001d0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 000001e0 00 00 00 00 00 00 00 00 00 00 05 08 00 00 0f a0 > |................| > 000001f0 00 00 de ad 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000200 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000210 00 00 00 00 00 00 00 00 00 00 06 08 00 00 0f a0 > |................| > 00000220 00 00 de ad 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000230 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > 00000240 00 00 00 00 00 00 00 00 00 00 07 08 00 00 0f a0 > |................| > 00000250 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > * > 00001000 32 77 17 f2 72 6b 6d d8 1e fd de 6c 8a 96 50 e9 > |2w..rkm....l..P.| > 00001010 65 19 cc bb 50 6a 4c 38 ff 0b d0 4d 0d c3 bb 3d > |e...PjL8...M...=| > 00001020 15 30 f0 71 fe 79 56 89 93 22 51 ef 0d 1c 5a 92 > |.0.q.yV.."Q...Z.| > 00001030 27 0a 63 9a 0e db e4 28 85 45 e3 49 6a 61 66 b4 > |'.c....(.E.Ijaf.| > 00001040 dd 36 2a 5d dc 13 e5 30 8c 74 ce 45 6b 8b 8e 83 > |.6*]...0.t.Ek...| > 00001050 18 6c 9a 77 ef 51 46 ea 74 ee b9 10 85 68 4d c6 > |.l.w.QF.t....hM.| > 00001060 47 01 13 95 1e 29 58 45 3a 08 a2 c6 4c 5d 65 b4 > |G....)XE:...L]e.| > > ... lots of seemingly random data ... > > 00020390 50 2b 41 4e 97 6b bc ad 22 6c 7c 1b 76 0a e4 53 > |P+AN.k.."l|.v..S| > 000203a0 c9 09 68 1c 76 7a 8e 09 e1 d8 10 a7 4d cc a9 9b > |..h.vz......M...| > 000203b0 f5 81 66 2c bb 5a 03 c5 f2 37 8e 6b 4e d4 07 99 > |..f,.Z...7.kN...| > 000203c0 0a c9 19 3c 46 d4 a1 21 5f fe 66 6f 64 54 c2 4a > |...<F..!_.fodT.J| > 000203d0 c3 f3 69 be da 38 c4 d9 5f ad b3 9b b3 37 eb dd > |..i..8.._....7..| > 000203e0 85 37 5d 48 02 08 87 ac 3a 3c 3a 6e 8b f3 03 bb > |.7]H....:<:n....| > 000203f0 16 a0 d7 ae 8a 4b b4 c3 54 42 55 8f d3 21 6a 39 > |.....K..TBU..!j9| > 00020400 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > * > 00021000 21 80 00 00 21 80 01 00 21 80 02 00 21 80 03 00 > |!...!...!...!...| > 00021010 21 80 04 00 21 80 0c 00 21 80 0d 00 21 80 18 00 > |!...!...!...!...| > 00021020 21 80 28 00 00 00 00 00 00 00 00 00 00 00 00 00 > |!.(.............| > 00021030 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > |................| > * > 00022000 22 80 00 00 22 80 01 00 22 80 02 00 22 80 03 00 > |"..."..."..."...| > 00022010 22 80 04 00 22 80 0c 00 22 80 0d 00 22 80 18 00 > |"..."..."..."...| > This looks like the master key seems to be intact, so I guess there's hope? > > Thank you, > Mihail Dumitrescu > _______________________________________________ > dm-crypt mailing list > dm-crypt@xxxxxxxx > http://www.saout.de/mailman/listinfo/dm-crypt -- Arno Wagner, Dr. sc. techn., Dipl. Inform., Email: arno@xxxxxxxxxxx GnuPG: ID: CB5D9718 FP: 12D6 C03B 1B30 33BB 13CF B774 E35C 5FA1 CB5D 9718 ---- There are two ways of constructing a software design: One way is to make it so simple that there are obviously no deficiencies, and the other way is to make it so complicated that there are no obvious deficiencies. The first method is far more difficult. --Tony Hoare _______________________________________________ dm-crypt mailing list dm-crypt@xxxxxxxx http://www.saout.de/mailman/listinfo/dm-crypt
