Full Disk Encryption in existing Linux system without erasing any content from the drives

linux hard-drive partitioning encryption disk-encryption
7,661

First, you need to shrink your partition by 1028 KB (slightly more than 1 MB). I would recommend to shrink it by 4 MB. Unmount your partition before the operation.

For ext4:

sudo dumpe2fs /dev/sdd1|grep 'Block count'

substract 1024 from this value (assuming you have 4KB blocks), then do:

sudo resize2fs /dev/sdd1 new_value

Then encrypt it:

sudo cryptsetup-reencrypt -N --reduce-device-size 4M /dev/sdd1
Share:
7,661

Related videos on Youtube

Govind Karmakar
Author by

Govind Karmakar

Updated on September 18, 2022

Comments

  • Govind Karmakar
    Govind Karmakar almost 2 years

    I am trying to achieve "Full Disk Encryption" in a already installed Linux system. I have come across with LUKS with dm-crypt, it can encrypt a drive/entire disk, but before encrypting it is formatting the drive first and all data is getting removed permanently.

    As I need to do "Full Disk Encryption" for an existing & mature Linux machine(e.g Ubuntu, centOS), I cannot possibly afford the formatting of the drives/partitions. Is there any possible method by which I can do the "Full Disk Encryption" without loosing the existing contents in the system.

    I am very new to these concepts so any proper guidance will be of great help. Thanks!!

  • user1330734
    user1330734 over 4 years
    This should be marked as an answer! I verify these steps work for encrypting an existing ext4 file system (not root). Note that the ETA was only available after cryptsetup-reencrypt was executed, almost 8 hours in my case. Make sure you can leave your system undisturbed for a while on large partitions: Finished, time 468:50.978, 953864 MiB written, speed 33.9 MiB/s See here for mounting instructions.
  • Craig McQueen
    Craig McQueen almost 3 years
    "assuming you have 4KB blocks" — don't assume that. Look at the value for "Block size" in the dumpe2fs output.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to give permission to user after mounting a hard disk on Centos 7?
GPT disk partition recovery
How do I install 18.04 using full disk encryption with two drives (SSD/HDD)
How to create an encrypted partition?
How to encrypt external devices using a cross-platform solution?
How to encrypt external devices?
How to Format External 3TB Hard Drive as ext4 via Command Line (CLI)?
Formatting drives to NTFS ubuntu
Delete or move OEM partition on ASUS laptop
Can't enable BitLocker auto-unlock on drive ("invalid function")