October 19, 20241 yr I'm trying to get out of an awkward situation I've gotten myself into. Background: I recently encrypted the drives in my array, and for the passphrase I used the identification string of the parity disk doubled up, since I only needed a basic level of data protection. When I set the passphrase, I simply copied the text from the Unraid UI (disk settings page) and pasted it twice into the passphrase field. It worked, so I didn't think anything else of it. Turns out when you do that (at least on Windows/Firefox) it copies a couple of linebreaks and spaces - to add to this, because these are Windows linebreaks I'm not sure what the UI does with them. When I restarted my server last night I couldn't get the array back up, though after some brute force attempts I managed to do it. As an aside I'm going to raise this as a bug/feature request, because I really think this input should be validated. Anyway... Problem: I have an unlocked array, but despite some developer posts from 2020 saying it would be added, I can't find a way to change the passphrase in the UI. Trying to do it via the terminal (sudo cryptsetup luksAddKey /dev/sdb1) doesn't work because of the linebreaks in the password. FWIW this is what I think the passphrase looks like: So what I need to do is save the data while I have the array unlocked. My array isn't massive, but it's bigger than any spare hard drives I have lying around. However, I have enough space to move stuff around to free up one drive at a time. Is there a way to change/add anew passphrase via a UI tool / some alternate method, that would accept linebreaks? Can I format disks in the array to standard xfs (unencrypted) so that I can transfer data to them, without shutting down the array and re-locking everything? I'm worried if I do this via the terminal Unraid will detect something's gone wrong and shut the array down.
October 19, 20241 yr Community Expert https://docs.unraid.net/unraid-os/manual/storage-management/#changing-a-file-system-type
October 19, 20241 yr Author Solution The first instruction there is to stop the array, which is what I can't do. Unless I'm mistaken, stopping the array would re-encrypt the disks, and I am not 100% sure I can enter the correct passphrase again. Edit: In case anyone else finds themselves in this situation and unsure what to do, the passphrase is requested on start-up but stopping and starting the array afterwards does not require it to be entered again. Stopping the array will show the drives as 'encrypted' rather than 'encrypted and unlocked', but they will unlock. So you can reformat each drive and shift data around (e.g. using the unbalanced plugin) to recover it. The lack of documentation about encryption is a bit frustrating when it carries this much risk. Edited October 19, 20241 yr by DaveFace
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.