Hello,
I'm recovering from a corrupted boot volume (replacing USB stick with SSD). I find myself in a bit of a pickle as I'm struggling to access my encrypted volume.
Here's what I did:
1. Reinstalled FreeNAS to USB stick
2. Decrypted disks using import volume with my key and passphrase
3. Restored my config from a copy on the decrypted pool
4. Shut down, removed USB stick, installed SSD
4. Reinstalled FreeNAS to newly installed SSD
5. Imported config, reboot
6. The unlock volume step does not take my passphrase ("Error: Volume could not be imported: 8 devices failed to decrypt")
7. Rebooted back from USB stick - cannot decrypt the pool with passphrase there either.
The log has a few interesting messages:
8. The import volume/decrypt disk step shows an empty list of drives to decrypt.
I was thinking to detach the drives and attempt import/decrypt again, but before that I wanted to have a second pair of eyes on this please?
I have a geli key, a geli recovery key, the volume passphrase and a passphrase for the geli key.
Thank you,
Achim
I'm recovering from a corrupted boot volume (replacing USB stick with SSD). I find myself in a bit of a pickle as I'm struggling to access my encrypted volume.
Here's what I did:
1. Reinstalled FreeNAS to USB stick
2. Decrypted disks using import volume with my key and passphrase
3. Restored my config from a copy on the decrypted pool
4. Shut down, removed USB stick, installed SSD
4. Reinstalled FreeNAS to newly installed SSD
5. Imported config, reboot
6. The unlock volume step does not take my passphrase ("Error: Volume could not be imported: 8 devices failed to decrypt")
7. Rebooted back from USB stick - cannot decrypt the pool with passphrase there either.
The log has a few interesting messages:
Code:
May 22 15:16:29 nas manage.py: [middleware.exceptions:37] [MiddlewareError: Unable to geli attach gptid/ccb0b7fd-d7b8-11e9-9dd3-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:29 nas manage.py: [middleware.notifier:1340] [MiddlewareError: Unable to geli attach gptid/ccb0b7fd-d7b8-11e9-9dd3-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:29 nas manage.py: [middleware.exceptions:37] [MiddlewareError: Unable to geli attach gptid/926b7cdd-d9f8-11e9-9dd3-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:29 nas manage.py: [middleware.notifier:1340] [MiddlewareError: Unable to geli attach gptid/926b7cdd-d9f8-11e9-9dd3-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:29 nas manage.py: [middleware.exceptions:37] [MiddlewareError: Unable to geli attach gptid/69ac090b-9a47-11e9-98a7-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:29 nas manage.py: [middleware.notifier:1340] [MiddlewareError: Unable to geli attach gptid/69ac090b-9a47-11e9-98a7-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:29 nas manage.py: [middleware.exceptions:37] [MiddlewareError: Unable to geli attach gptid/498db3e4-98f5-11e9-98a7-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:29 nas manage.py: [middleware.notifier:1340] [MiddlewareError: Unable to geli attach gptid/498db3e4-98f5-11e9-98a7-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:29 nas manage.py: [middleware.exceptions:37] [MiddlewareError: Unable to geli attach gptid/a6d234d0-9de2-11e9-bf30-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:29 nas manage.py: [middleware.notifier:1340] [MiddlewareError: Unable to geli attach gptid/a6d234d0-9de2-11e9-bf30-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:29 nas manage.py: [middleware.exceptions:37] [MiddlewareError: Unable to geli attach gptid/66ff29af-dd81-11e9-9dd3-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:29 nas manage.py: [middleware.notifier:1340] [MiddlewareError: Unable to geli attach gptid/66ff29af-dd81-11e9-9dd3-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:30 nas manage.py: [middleware.exceptions:37] [MiddlewareError: Unable to geli attach gptid/3f78a642-dbbc-11e9-9dd3-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:30 nas manage.py: [middleware.notifier:1340] [MiddlewareError: Unable to geli attach gptid/3f78a642-dbbc-11e9-9dd3-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:30 nas manage.py: [middleware.exceptions:37] [MiddlewareError: Unable to geli attach gptid/83d40d4d-9f0e-11e9-bf30-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:30 nas manage.py: [middleware.notifier:1340] [MiddlewareError: Unable to geli attach gptid/83d40d4d-9f0e-11e9-bf30-0cc47a82d3e8: geli: Cannot open keyfile /data/geli/662c4bf5-09cd-42cd-b9ad-71c8dac5dbbf.key: No such file or directory. ] May 22 15:16:30 nas manage.py: [middleware.notifier:3518] Importing tank [16833427744088962482] failed with: cannot import '16833427744088962482': no such pool available May 22 15:16:30 nas manage.py: [middleware.exceptions:37] [MiddlewareError: Volume could not be imported: 8 devices failed to decrypt] May 22 15:16:30 nas manage.py: [rollbar:1265] Got unexpected status code from Rollbar api: 403 Response: { "err": 1, "message": "access token not found: caf06383cba14d5893c4f4d0a40c33a9" } May 22 15:16:30 nas manage.py: [rollbar:1097] Exception while posting item ApiError(u'access token not found: caf06383cba14d5893c4f4d0a40c33a9',) Traceback (most recent call last): File "/usr/local/lib/python2.7/site-packages/rollbar/__init__.py", line 1095, in _send_payload _post_api('item/', payload, access_token=access_token) File "/usr/local/lib/python2.7/site-packages/rollbar/__init__.py", line 1138, in _post_api return _parse_response(path, SETTINGS['access_token'], payload, resp) File "/usr/local/lib/python2.7/site-packages/rollbar/__init__.py", line 1274, in _parse_response raise ApiError(json_data.get('message') or 'Unknown error') ApiError: access token not found: caf06383cba14d5893c4f4d0a40c33a9
8. The import volume/decrypt disk step shows an empty list of drives to decrypt.
I was thinking to detach the drives and attempt import/decrypt again, but before that I wanted to have a second pair of eyes on this please?
I have a geli key, a geli recovery key, the volume passphrase and a passphrase for the geli key.
Thank you,
Achim