我尝试使用/dev/nvme0n1p2cryptsetup 打开 bitlocker 加密分区 ( ),但它总是返回以下错误:
# cryptsetup -v open --type bitlk /dev/nvme0n1p2 crypt0
Enter passphrase for /dev/nvme0n1p2:
Command failed with code -1 (wrong or missing parameters).
该分区使用明确的加密密钥,并且与 Dislocker 配合使用
# dislocker -v /dev/nvme0n1p2 /mnt
# ls -lh /mnt
total 0
-rw-rw-rw- 1 root root 94G Jan 1 1970 dislocker-file
# cryptsetup -v bitlkDump /dev/nvme0n1p2
Info for BITLK device /dev/nvme0n1p2.
Version: 2
GUID: xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
Sector size: 512 [bytes]
Created: Sun Jan 19 17:59:34 2020
Description: (null)
Cipher name: aes
Cipher mode: xts-plain64
Cipher key: 128 bits
Keyslots:
0: VMK
GUID: xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
Protection: VMK protected with clear key
Salt: 00000000000000000000000000000000
Key data size: 44 [bytes]
1: FVEK
Key data size: 44 [bytes]
Metadata segments:
0: FVE metadata area
Offset: 49283072 [bytes]
Size: 65536 [bytes]
1: FVE metadata area
Offset: 1635188736 [bytes]
Size: 65536 [bytes]
2: FVE metadata area
Offset: 3319005184 [bytes]
Size: 65536 [bytes]
3: Volume header
Offset: 111169536 [bytes]
Size: 8192 [bytes]
Cipher: aes-xts-plain64
Command successful.
(我删除了 GUID)
版本:
# cryptsetup -v --version
cryptsetup 2.3.4
# dislocker -vh
dislocker by Romain Coltel, v0.7.1 (compiled for Linux/x86_64)
Compiled version: master:dcc08b5
答案1
cryptsetup 目前不支持使用明文密钥解锁 BitLocker 设备。因此,您需要在此设备上使用 dislocker。不幸的是,我们在 cryptsetup 中仍然不支持许多 BitLocker 功能。
请随时报告 RFE 问题密码设置 GitLab。
(顺便说一句。这很奇怪,它没有显示正确的错误消息,它应该说:Activation of partially decrypted BITLK device is not supported.我应该花更少的时间在这里,花更多的时间修复错误:-)