search

Kunzisoft / KeePassDX

Lightweight vault and password manager for Android, KeePassDX allows editing encrypted data in a single file in KeePass format and fill in the forms in a secure way.
https://www.keepassdx.com/
GNU General Public License v3.0
4.29k stars 260 forks source link

You need to remember your vault main credential if you use device unlock recognition #1774

Closed nollinvoyd closed 3 months ago

nollinvoyd commented 4 months ago

Samsung galaxy tab s5e

Everything was fine until yesterday. I can login with the password, but when it comes to biometrics, I can't get beyond this

With "Device unlock link"

keepass login message

20240228_115334

"unavailable"?

Screenshot_20240228-114057_KeePassDX

I tried enabling this, then I couldn't login at all, even after I disabled it. I had to uninstall and reinstall to get back in, but biometrics still not working.

Screenshot_20240228-141227_KeePassDX

One other thing. I can't edit this

20240228_144853

KeePassDX:

Android:

J-Jamet commented 4 months ago

Seems to be a defect in your OS's biometric API.

shuvashish76 commented 4 months ago

Same heppened with me because my biometric scanner button is broken/malfunctioning. Try with other apps (e.g. Aegis) that supports biometric & check if it works.

nollinvoyd commented 4 months ago

I have KeepassDX and Keepass2Android installed on both my Samsung phone and tablet.

The only biometrics problem that I'm aware of with anything on both devices is with KeepassDX on my tablet. No problem with Keepass2Android on the tablet. I use the same credentials with all four.

I do have biometrics enabled in the settings. I also temporarily tried switching to "Device Credential Unlock" just to see if it would have any effect.

Screenshot_20240301_151454_KeePassDX

I don't understand what "You need to remember your vault main credential if you use device unlock recognition" is supposed to do. I thought it was just a matter of entering your password, and confirming biometrics going forward, but clicking "ok" on that notification prompts no further actions/optiions. It just closes the notification popup.

Since KeepassDX is operating as expected on my phone, is there something I can use/ export from there to reset it?

nollinvoyd commented 3 months ago

Seems to be a defect in your OS's biometric API.

Has there been any further progress on this issue?

Can you explain this "defect in your OS's biometric API" How can it be dealt with?

nollinvoyd commented 3 months ago

Now it's also happening with my phone install

Screenshot_20240310_140456_KeePassDX

Screenshot_20240311_141326_KeePassDX

J-Jamet commented 3 months ago

The only biometrics problem that I'm aware of with anything on both devices is with KeepassDX on my tablet. No problem with Keepass2Android on the tablet. I use the same credentials with all four.

KeePassDX and KeePass2Android don't use the same credential storage methods, KeePassDX uses a symmetrical key system in the Keystore which is very secure but some systems don't work with this method, you just can't enable biometrics.

I don't understand what "You need to remember your vault main credential if you use device unlock recognition" is supposed to do.

It's just informative

Since KeepassDX is operating as expected on my phone, is there something I can use/ export from there to reset it?

Nothing to reset, just the toggles.

Has there been any further progress on this issue?

As far as I'm concerned, there's nothing really wrong with the KeePassDX code at this level, because it works with all other devices and uses the API of the phone or tablet.

Can you explain this "defect in your OS's biometric API" How can it be dealt with?

You chose your device, so contacting the manufacturer who created the OS is a good start.

Now it's also happening with my phone install

This is another problem: the .kdbx file is no longer accessible from the file provider.