Implement detection of volumes with vulnerable XTS master key.

If vulnerability detected, a warning message is displayed during mount or backup/restore header, and changing the password is disallowed since it will not change the master key.
author: Mounir IDRASSI <mounir.idrassi@idrix.fr> 2024-08-02 00:20:53 +0200
committer: Mounir IDRASSI <mounir.idrassi@idrix.fr> 2024-08-02 00:20:53 +0200
commit: ed1263bf8c6c678420eb1b9ad3f37d3a6d33af7c (patch)
tree: 14dfb134969574b7f0d869c455981418c652780e /src/ExpandVolume
parent: 6121ca02397e75fe51b2c76111ef836556fedb49 (diff)
download: VeraCrypt-ed1263bf8c6c678420eb1b9ad3f37d3a6d33af7c.tar.gz
VeraCrypt-ed1263bf8c6c678420eb1b9ad3f37d3a6d33af7c.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/src/ExpandVolume/ExpandVolume.c b/src/ExpandVolume/ExpandVolume.c
index d9019ada..f79fd5b7 100644
--- a/src/ExpandVolume/ExpandVolume.c
+++ b/src/ExpandVolume/ExpandVolume.c
@@ -691,6 +691,12 @@ static int ExpandVolume (HWND hwndDlg, wchar_t *lpszVolume, Password *pVolumePas
 	if (nStatus == ERR_CIPHER_INIT_WEAK_KEY)
 		nStatus = 0;	// We can ignore this error here
 
+	// if the volume master key is vulnerable, print a warning to inform the user
+	if (cryptoInfo->bVulnerableMasterKey)
+	{
+		DebugAddProgressDlgStatus(hwndDlg, GetString ("ERR_XTS_MASTERKEY_VULNERABLE_SHORT"));
+	}
+
 	if (nStatus != 0)
 	{
 		cryptoInfo = NULL;
author	Mounir IDRASSI <mounir.idrassi@idrix.fr>	2024-08-02 00:20:53 +0200
committer	Mounir IDRASSI <mounir.idrassi@idrix.fr>	2024-08-02 00:20:53 +0200
commit	ed1263bf8c6c678420eb1b9ad3f37d3a6d33af7c (patch)
tree	14dfb134969574b7f0d869c455981418c652780e /src/ExpandVolume
parent	6121ca02397e75fe51b2c76111ef836556fedb49 (diff)
download	VeraCrypt-ed1263bf8c6c678420eb1b9ad3f37d3a6d33af7c.tar.gz VeraCrypt-ed1263bf8c6c678420eb1b9ad3f37d3a6d33af7c.zip