Pestaninha
Dabbler
- Joined
- Nov 15, 2016
- Messages
- 18
Hi,
This will most likely result in total data loss, but I wanted to confirm this before I destroy my data for good.
I have two geli encrypted drives on a raid 1 setup. These drives where working fine until I had a major base system issue, which I cannot pinpoint the cause to. The issue was that / had suddenly gained ownership by a regular user and group, as well as a different set of permissions (770 instead of 755[if I recall correctly]). This happened on other base directories and files, such as /entropy and .profile, .cshrc. Now the nightmare begins...
I managed to setup the correct permissions and rebooted the system, which seemed to have been working fine. I checked the pool and the data was decrypted and accounted for. I then proceeded to do something MASSIVELY stupid. I rekey'ed the encryption on this pool. Before and after rekeying, I downloaded the respective encryption keys for later usage. I rebooted the system once more and when it came back up, the pool was not mountable. I tried the GUI approach, as well as via the CLI with geli key attach -k .key /dev/ada2p2 without success.
I tried to destroy the pool and then rebuilding it again, same issue. I fresh installed 11.2-U8 (the issue happened on a 11.2-U7) and I'm still not able to mount the drives using the downloaded key or any other key that I still have within my system.
Now, since I do have the encryption key downloaded after rekeying, I cannot foresee any other course of action that something in the middleware caused me to download an incorrect key or that the key got corrupted somehow during rekeying.
As anything like this been reported before?
Now, on to the more practical aspects of this. Is there still a chance I might get my data back? Any commands that can help troubleshooting this?
Thanks!
PS:I still have access to the old 11.2-U7 system, so we can check stuff on the old install to troubleshoot/find a root cause
This will most likely result in total data loss, but I wanted to confirm this before I destroy my data for good.
I have two geli encrypted drives on a raid 1 setup. These drives where working fine until I had a major base system issue, which I cannot pinpoint the cause to. The issue was that / had suddenly gained ownership by a regular user and group, as well as a different set of permissions (770 instead of 755[if I recall correctly]). This happened on other base directories and files, such as /entropy and .profile, .cshrc. Now the nightmare begins...
I managed to setup the correct permissions and rebooted the system, which seemed to have been working fine. I checked the pool and the data was decrypted and accounted for. I then proceeded to do something MASSIVELY stupid. I rekey'ed the encryption on this pool. Before and after rekeying, I downloaded the respective encryption keys for later usage. I rebooted the system once more and when it came back up, the pool was not mountable. I tried the GUI approach, as well as via the CLI with geli key attach -k .key /dev/ada2p2 without success.
I tried to destroy the pool and then rebuilding it again, same issue. I fresh installed 11.2-U8 (the issue happened on a 11.2-U7) and I'm still not able to mount the drives using the downloaded key or any other key that I still have within my system.
Now, since I do have the encryption key downloaded after rekeying, I cannot foresee any other course of action that something in the middleware caused me to download an incorrect key or that the key got corrupted somehow during rekeying.
As anything like this been reported before?
Now, on to the more practical aspects of this. Is there still a chance I might get my data back? Any commands that can help troubleshooting this?
Thanks!
PS:I still have access to the old 11.2-U7 system, so we can check stuff on the old install to troubleshoot/find a root cause
