What progress does the moving line show during system shut down process?

Qubie · March 22, 2024, 8:33am

Disk encryption process or system shut down process? I always wondered: if some day I perform emergency shut-off procedure (by long-pressing power button), will be Luks disk encrypted properly or not?

DVM · March 22, 2024, 10:24am

The moving line is just a representation of the progress of starting/stopping all services. You can see them all by pressing ESC (escape) on your keyboard while it’s happening.

The disk will always be in an encrypted state when using luks. What could be a problem is the fact that the key to access the data could still be intact in memory.

Qubie · March 23, 2024, 4:31am

Is that in case of an emergency shutdown?

apparatus · March 23, 2024, 6:37am

Ideally OS should wipe the encryption key on shutdown but unfortunately right now Qubes OS is not doing it so it doesn’t matter whatever you shutdown normally or not.

github.com/dracutdevs/dracut

Wipe LUKS Disk Encryption Key for Root Disk from RAM during Shutdown to defeat Cold Boot Attacks

opened 05:18PM - 29 Dec 20 UTC

adrelanos

enhancement crypt shutdown

**Is your feature request related to a problem? Please describe.** Defeat Col…d Boot Attacks by wiping LUKS disk encryption during shutdown. What is a Cold Boot Attacks? See: * https://www.youtube.com/watch?v=JDaicPIgn9U * https://en.wikipedia.org/wiki/Cold_boot_attack * https://blog.f-secure.com/cold-boot-attacks/ * https://www.usenix.org/legacy/event/sec08/tech/full_papers/halderman/halderman.pdf **Describe the solution you'd like** Run `cryptsetup close` at end of shutdown procedure. Quote `cryptsetup close` (previously `cryptsetup lukseClose`) man page (bold added): > close > Removes the existing mapping <name> and **wipes the key from kernel memory**. Maybe `cryptsetup close` could be done during `dracut-shutdown`? This would not wipe all secrets from RAM to defeat a cold boot attack but at least remove one of the most important secrets, the root disk LUKS encryption key. **Describe alternatives you've considered** Linux kernel feature: This issue can probably not be redirected at the Linux kernel. While a generic solution `Wipe RAM to defeat Cold Boot Attacks` (https://github.com/systemd/systemd/issues/17242) probably belongs into the kernel, this does not. For the kernel to be able to wipe the memory, encrypted LUKS devices need to be properly closed first. `cryptsetup close` does that. systemd feature: systemd does not wipe the LUKS disk encryption key for root disk from RAM during shutdown. And as I understand systemd developer @poettering Lennart Poettering, this isn't up to systemd either. It's up to the initrd / initramfs. (https://github.com/systemd/systemd/issues/17887) Quote myself (https://github.com/systemd/systemd/issues/17887#issuecomment-750340608): > Avoiding all sidelines, keeping this simple, for my understanding and for the record and please correct me if I am wrong... Summary: > > `"cryptsetup close" of root device during shutdown` is already implemented. Quote systemd developer @poettering Lennart Poettering (https://github.com/systemd/systemd/issues/17887#issuecomment-751252894): > > `"cryptsetup close" of root device during shutdown` is already implemented. > > iff your initrd/distro of choice do so. For the root disk it doesn't matter what systemd does, it matters what the initrd/distro do. hence ping the maintainers of those.

renehoj · March 23, 2024, 7:08am

No, if you trigger any uncontrolled reset or shutdown of the system, then keys will linger in memory for a short amount of time.

It’s a relative short amount of time, normally it would only be seconds, unless you are storing the memory in a super cooled state, using liquid nitrogen or something similar.

If you allow Xen to terminate the guest VM, you can try and use the Xen option scrub-domheap=true, it should force Xen to clear the memory as soon as it’s released by the VM. I tried running it just as a test, and it doesn’t seem like it adds a little extra time to shut down of VMs, but it was only a minor time increase.

Qubie · March 23, 2024, 7:41am

So these keys will be there forever or they will be gone after some time? In articles about Cold Boot Attack is written that these keys live not longer than seconds after shut down.

apparatus · March 23, 2024, 7:47am

@renehoj answered your question in the previous post.

gonzalo-bulnes · March 23, 2024, 8:00am

My undetstanding (I might be wrong):

If you wipe the keys, you’ve got some control over the process, and you know when it is happening (during the shutdown procedure).

If you don’t wipe the keys, you’re letting physics drive the decay of that information in RAM. RAM is volatile by design, so the information stored in RAM is naturally lost after the power is cut. Usually that process happens in the order of seconds, but you don’t control that, so might be more or less seconds.

Now, if you understand the physics involved, you can slow down that loss of information (e.g. lowering the temperature). If you’re really determined and prepared, you might slow down that process enough to copy some of the information before it is lost.

Of course, that requires some effort, so the typical example involves small pieces of information of relatively high value: like valuable LUKS keys. Threat modelling hint: not all LUKS keys are valuable to folks capable of copying them from RAM.

Edit: On reflection, if you’re cooling down some RAM to get sone LUKS keys, or whatever, it seems unlikely you know where in the RAM they’re located. So I guess the process likely involves making a full copy of the contents of RAM while it’s cold, and then doing the analysis to figure out what is what and which bits (pun intended) are valuable. All this to say: this is a guess, but I said “small pieces of information” and now I suppose their size doesn’t really matter. It remains that you’d only go through all those hops if the information to retrieve was really valuable to you.