nitrokey-storage-firmware icon indicating copy to clipboard operation
nitrokey-storage-firmware copied to clipboard

Published 20 hours ago verified publisher icon Nitrokey

Sudden data loss on EV

Open szszszsz opened this issue 4 years ago • 3 comments

User reports sudden data loss on Windows 10 on Encrypted Volume. From the description it appears that the AES key was changed. Asking for further details.

szszszsz avatar Jul 06 '20 15:07 szszszsz

Should be fixed in v0.55 release. Leaving open for monitoring. To be closed on the next release.

szszszsz avatar Dec 30 '20 14:12 szszszsz

Unfortunately this problem has reproduced again, on a different OS. Quote from the user's report below:

This most serious recent problem, which caused erasing both data and TOTPs, happened on Dell Precision 7560 with Fedora 34 and following versions of libnitrokey, nitrokey-app and nitrokey storage firmware:

  • libnitrokey: 3.5-5.fc34
  • nitrokey-app: 1.4.2-2.fc34
  • firmware: 0.55

First warning mentioned that (all of a sudden!) encryption keys are missing and they need to be generated (even though I’ve been using this disk with encrypted volume and TOTPs for several months already). Thinking that perhaps there was some update to Nitrokey-App (as I do frequent updates to all packages), I followed these instructions. Unfortunately, this still did not allow me to unlock and mount the encrypted volume, and I received another warning, this time it said “Encrypted volume is not secure, Select ‘Initialize storage with random data’.”. Again, not being able to encrypt and mount the volume I use daily in my work, I clicked ‘yes’, assuming there was some update to Nitrokey-App. However, upon completion of this, all data and TOTPs got erased; I had to create a (EXT4) partition all over again.

I expect some data access race condition is still occurring, which was missed during the last time the code was reviewed. This should be found and removed, or the implementation restructured. Having a backup configuration page should help as well. Firmware side it seems to occur only in a certain usage pattern, or under a heavy load. I do not see how hardware could trigger this behavior (which basically is clearing the user configuration pages).

szszszsz avatar Nov 16 '21 08:11 szszszsz

This was reported recently on the support forum with current firmware, but the cause seem to be in the configuration being lost or overwritten. In general the frequency of the data lost look a lot smaller than it used to be before the latest release.

szszszsz avatar Nov 28 '22 13:11 szszszsz