Bug #15910

Some VeraCrypt volumes can't be unlocked

Added by segfault 2018-09-03 21:43:55 . Updated 2018-09-03 21:45:37 .

Status:
Confirmed
Priority:
Normal
Assignee:
Category:
Target version:
Start date:
2018-09-03
Due date:
% Done:

0%

Feature Branch:
Type of work:
Code
Blueprint:

Starter:
Affected tool:
Deliverable for:

Description

It was reported that some non-AES encrypted VeraCrypt volumes can’t be unlocked: https://mailman.boum.org/pipermail/tails-testers/2018-August/001084.html

I was able to reproduce this. It seems like cryptsetup does not support the Camellia and Kuznyechik encryption algorithms, as well as the Streebog hash algorithm, which were all added to VeraCrypt in 2016.

I don’t think we will be able to fix this, and I don’t know if there are any efforts upstream to support those.

All other algorithms currently supported in VeraCrypt are also supported in cryptsetup and Tails 3.9.


Subtasks


History

#1 Updated by segfault 2018-09-03 21:45:06

  • Description updated

#2 Updated by segfault 2018-09-03 21:45:37

  • Description updated