Cryptsetup 2.8.2 released on Thursday for this open-source utility used for setting up disk encryption with dm-crypt on Linux systems, including for LUKS volumes, TrueCrypt, BitLocker, and other formats.
One of the notable new features with Cryptsetup 2.8.2 is now support for opening devices with Clear Key in BitLocker. Clear Key is for BitLocker devices not yet encrypted and the Clear Key is not protected by a password. Cryptsetup can now handle said devices to let users access the data on them. More details on the BitLocker Clear Key support can be found via the issue ticket and subsequent merge that added the BitLocker Clear Key support.
Clear Key is an excellent example of usability completely neutering security.
Your drive encryption keys (FVEK) are protected by the VMK which is then encrypted and written to the drive on suspend and then the key that was used to encrypt it is also written to the drive in plaintext.
It’s like a lock that comes with a key that’s chained to it, completely worthless but they can say, like Microsoft here, that it is technically locked.