Editing Mounting HDD on PC
Jump to navigation
Jump to search
The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then publish the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 1: | Line 1: | ||
=Introduction= | =Introduction= | ||
Line 7: | Line 6: | ||
=ATA and ENCDEC Keys= | =ATA and ENCDEC Keys= | ||
See http://www.ps3devwiki.com/wiki/HDD_Encryption | |||
=Device Mapper= | =Device Mapper= | ||
Line 28: | Line 27: | ||
modprobe loop | modprobe loop | ||
modprobe dm_mod | modprobe dm_mod | ||
modprobe dm-bswap16 | modprobe dm-bswap16.ko | ||
dd if=/dev/zero of=test.bin bs=1K count=100 | dd if=/dev/zero of=test.bin bs=1K count=100 | ||
Line 112: | Line 111: | ||
</pre> | </pre> | ||
==dm- | ==dm-crypto== | ||
* We don't need xts_aes application anymore. | * We don't need xts_aes application anymore. | ||
Line 119: | Line 118: | ||
* VFLASH is encrypted twice. So we have to create a second DM crypto target based on the DM crypto target for HDD. | * VFLASH is encrypted twice. So we have to create a second DM crypto target based on the DM crypto target for HDD. | ||
=== | ===Test=== | ||
* Tested on PS3 | * Tested on PS3 istelf with Debian LiveCD and Linux kernel version 3.4.10 but you can use the same technique on a Linux PC. I was just lazy and it is easier to test on PS3. | ||
<pre> | <pre> | ||
Line 149: | Line 148: | ||
# create DM crypto target | # create DM crypto target | ||
# key size is 256bit because PS3 uses XTS-AES-128 and the key is just the | # key size is 256bit because PS3 uses XTS-AES-128 and the key is just the conctentation of the data and tweak keys. | ||
cryptsetup create -c aes-xts-plain64 -d ./hdd_key.bin -s 256 test_crypt /dev/mapper/test | cryptsetup create -c aes-xts-plain64 -d ./hdd_key.bin -s 256 test_crypt /dev/mapper/test | ||
Line 185: | Line 184: | ||
00000400 | 00000400 | ||
# and we don't need xts_aes | # and we don't need xts_aes too anymore :) | ||
# Linux does encryption/decryption for us transparently now | # Linux does encryption/decryption for us transparently now | ||
</pre> | </pre> | ||
Line 295: | Line 194: | ||
* The Linux kernel with this feature will create all partition devices automatically in this case and we could mount and modify any HDD regions easily. | * The Linux kernel with this feature will create all partition devices automatically in this case and we could mount and modify any HDD regions easily. | ||
* A new Linux kernel patch is necessary. | * A new Linux kernel patch is necessary. | ||
=Links= | =Links= | ||
Line 592: | Line 201: | ||
* http://www.freeotfe.org/docs/Main/mobile_site/Linux_examples__dm-crypt.htm | * http://www.freeotfe.org/docs/Main/mobile_site/Linux_examples__dm-crypt.htm | ||
* http://www.hopelesscase.com/linuxnotes/encrypted_filesystems/dmsetup_losetup_and_mount | * http://www.hopelesscase.com/linuxnotes/encrypted_filesystems/dmsetup_losetup_and_mount | ||