search

nilsteampassnet / TeamPass

Collaborative Passwords Manager
https://www.teampass.net
1.67k stars 544 forks source link

Unable to edit entry or copy password - Same #3897 #3917

Open Len16-53 opened 11 months ago

Len16-53 commented 11 months ago

Steps to reproduce

Unable to consistently reproduce

Expected behaviour

Users should be able to view/copy password as well as view entry

Actual behaviour

Not all users, but multiple users can not view/edit entry or view copy/password. Password is blank. Have deleted users multiple times and have had users regenerate keys but still no luck.

As can bee seen in the logs below, it appears teampass is having an issue decrypting password for those particular accounts. It feels like old keys are being used but can not put my finger on it.

Server configuration

Operating system: Debian GNU/Linux 11 (bullseye)

Web server: Apache/2.4.56 (Debian)

Database: 10.11.2-MariaDB-1:10.11.2+maria~deb11

PHP version: 8.2.11

Teampass version: 3.10.0.88

Teampass configuration file:

<?php
global $SETTINGS;
$SETTINGS = array (
    'max_latest_items' => '10',
    'enable_favourites' => '1',
    'show_last_items' => '1',
    'enable_pf_feature' => '1',
    'log_connections' => '1',
    'log_accessed' => '1',
    'time_format' => 'H:i:s',
    'date_format' => 'd/m/Y',
    'duplicate_folder' => '0',
    'item_duplicate_in_same_folder' => '0',
    'duplicate_item' => '0',
    'number_of_used_pw' => '3',
    'manager_edit' => '1',
    'cpassman_dir' => '/var/www/html/teampass',
    'cpassman_url' => 'https://DOMAINENAME',
    'favicon' => 'https://DOMAINENAME/favicon.ico',
    'path_to_upload_folder' => '/home/linux/teampass/upload',
    'path_to_files_folder' => '/home/linux/teampass/files',
    'url_to_files_folder' => 'http://DOMAINENAME/files',
    'activate_expiration' => '0',
    'pw_life_duration' => '0',
    'maintenance_mode' => '0',
    'enable_sts' => '1',
    'encryptClientServer' => '1',
    'cpassman_version' => '3.0.0.22',
    'ldap_mode' => '0',
    'ldap_type' => '0',
    'ldap_suffix' => '0',
    'ldap_domain_dn' => '0',
    'ldap_domain_controler' => '0',
    'ldap_user_attribute' => '0',
    'ldap_ssl' => '0',
    'ldap_tls' => '0',
    'ldap_search_base' => '0',
    'ldap_port' => '389',
    'richtext' => '0',
    'allow_print' => '1',
    'roles_allowed_to_print' => '0',
    'show_description' => '1',
    'anyone_can_modify' => '0',
    'anyone_can_modify_bydefault' => '0',
    'nb_bad_authentication' => '0',
    'utf8_enabled' => '1',
    'restricted_to' => '0',
    'restricted_to_roles' => '0',
    'enable_send_email_on_user_login' => '0',
    'enable_user_can_create_folders' => '1',
    'insert_manual_entry_item_history' => '0',
    'enable_kb' => '0',
    'enable_email_notification_on_item_shown' => '0',
    'enable_email_notification_on_user_pw_change' => '0',
    'custom_logo' => '',
    'custom_login_text' => '',
    'default_language' => 'french',
    'send_stats' => '0',
    'send_statistics_items' => 'stat_country;stat_users;stat_items;stat_items_shared;stat_folders;stat_folders_shared;stat_admins;stat_managers;stat_ro;stat_mysqlversion;stat_phpversion;stat_teampassversion;stat_languages;stat_kb;stat_suggestion;stat_customfields;stat_api;stat_2fa;stat_agses;stat_duo;stat_ldap;stat_syslog;stat_stricthttps;stat_fav;stat_pf;',
    'send_stats_time' => '1654508580',
    'get_tp_info' => '1',
    'send_mail_on_user_login' => '0',
    'nb_items_by_query' => 'auto',
    'enable_delete_after_consultation' => '0',
    'enable_personal_saltkey_cookie' => '0',
    'personal_saltkey_cookie_duration' => '31',
    'email_smtp_server' => 'CONFIDENTIAL',
    'email_smtp_auth' => '0',
    'email_auth_username' => 'CONFIDENTIAL',
    'email_auth_pwd' => 'CONFIDENTIAL$T',
    'email_port' => 'CONFIDENTIAL',
    'email_security' => 'none',
    'email_server_url' => 'https://DOMAINENAME/teampass',
    'email_from' => 'teampass@DOMAINENAME.com',
    'email_from_name' => 'TeamPass',
    'pwd_maximum_length' => '40',
    'google_authentication' => '1',
    'delay_item_edition' => '0',
    'allow_import' => '0',
    'proxy_ip' => '',
    'proxy_port' => '',
    'upload_maxfilesize' => '20mb',
    'upload_docext' => 'doc,docx,dotx,xls,xlsx,xltx,rtf,csv,txt,pdf,ppt,pptx,pot,dotx,xltx',
    'upload_imagesext' => 'jpg,jpeg,gif,png',
    'upload_pkgext' => '7z,rar,tar,zip',
    'upload_otherext' => 'sql,xml',
    'upload_imageresize_options' => '1',
    'upload_imageresize_width' => '800',
    'upload_imageresize_height' => '600',
    'upload_imageresize_quality' => '90',
    'use_md5_password_as_salt' => '0',
    'ga_website_name' => 'TeamPass DOMAINENAME',
    'api' => '0',
    'subfolder_rights_as_parent' => '0',
    'show_only_accessible_folders' => '0',
    'enable_suggestion' => '0',
    'otv_expiration_period' => '7',
    'default_session_expiration_time' => '240',
    'duo' => '0',
    'enable_server_password_change' => '0',
    'ldap_object_class' => '0',
    'bck_script_path' => '/var/www/html/teampass/backups',
    'bck_script_filename' => 'bck_teampass',
    'syslog_enable' => '0',
    'syslog_host' => 'localhost',
    'syslog_port' => '514',
    'manager_move_item' => '0',
    'create_item_without_password' => '0',
    'otv_is_enabled' => '0',
    'agses_authentication_enabled' => '0',
    'item_extra_fields' => '0',
    'saltkey_ante_2127' => 'none',
    'migration_to_2127' => 'done',
    'files_with_defuse' => 'done',
    'timezone' => 'Europe/Paris',
    'enable_attachment_encryption' => '1',
    'personal_saltkey_security_level' => '50',
    'ldap_new_user_is_administrated_by' => '0',
    'disable_show_forgot_pwd_link' => '0',
    'offline_key_level' => '0',
    'enable_http_request_login' => '0',
    'ldap_and_local_authentication' => '0',
    'secure_display_image' => '1',
    'upload_zero_byte_file' => '0',
    'upload_all_extensions_file' => '0',
    'bck_script_passkey' => '',
    'admin_2fa_required' => '0',
    'password_overview_delay' => '4',
    'copy_to_clipboard_small_icons' => '1',
    'duo_akey' => '',
    'duo_ikey' => '',
    'duo_skey' => '',
    'duo_host' => '',
    'teampass_version' => '3.0.10',
    'roles_allowed_to_print_select' => '[8]',
    'clipboard_life_duration' => '30',
    'mfa_for_roles' => '',
    'tree_counters' => '0',
    'settings_offline_mode' => '0',
    'settings_tree_counters' => '0',
    'enable_massive_move_delete' => '0',
    'email_debug_level' => '1',
    'ga_reset_by_user' => '',
    'onthefly-backup-key' => '',
    'onthefly-restore-key' => '',
    'ldap_user_dn_attribute' => '',
    'ldap_dn_additional_user_dn' => '',
    'ldap_user_object_filter' => '',
    'ldap_bdn' => '',
    'ldap_hosts' => '',
    'ldap_password' => '',
    'ldap_username' => '',
    'max_last_items' => '10',
    'upload_imageresize_options_input' => '',
    'can_create_root_folder' => '0',
    'api_token_duration' => '60',
    'enable_tasks_manager' => '1',
    'task_maximum_run_time' => '500',
    'maximum_number_of_items_to_treat' => '500',
    'tasks_manager_refreshing_period' => '60',
    'ldap_tls_certifacte_check' => 'LDAP_OPT_X_TLS_NEVER',
    'enable_tasks_log' => '1',
    'enable_ad_users_with_ad_groups' => '0',
    'enable_ad_user_auto_creation' => '0',
    'ldap_group_object_filter' => '',
    'ldap_guid_attibute' => 'objectguid',
    'upgrade_timestamp' => '1698220594',
    'sending_emails_job_frequency' => '1',
    'user_keys_job_frequency' => '1',
    'items_statistics_job_frequency' => '1',
    'reload_cache_table_task' => 'daily;22:00',
    'rebuild_config_file' => '',
    'purge_temporary_files_task' => 'daily;23:45',
    'clean_orphan_objects_task' => 'daily;23:30',
    'users_personal_folder_task' => 'daily;22:30',
    'rebuild_config_file_task' => 'hourly;00:45',
    'maximum_session_expiration_time' => '60',
    'items_ops_job_frequency' => '1',
    'items_statistics_job_frequency' => '5',
);

Updated from an older Teampass or fresh install: Fresh Install

Client configuration

Browser: Chrome 118.0.5993.118

Operating system: Windows 11 22H2

Logs

Web server error log:

MACHINEIP - - [30/Oct/2023:09:59:13 +0100] "POST /sources/items.queries.php HTTP/1.1" 200 983 "https://DOMAINENAME/index.php?page=items" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36"
Len16-53 commented 11 months ago

The problem happens for all new users and not for all passwords.

Len16-53 commented 11 months ago

@nilsteampassnet any ideas?

Len16-53 commented 11 months ago

@nilsteampassnet Sorry for SPAM, but i try last version, i have error during installation:

IPMACHINE - - [02/Nov/2023:11:43:51 +0100] "POST /install/upgrade_operations.php HTTP/1.1" 500 329 "https://DOMAINENAME/install/upgrade.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36"

2023-11-02_11h46_50

nilsteampassnet commented 11 months ago

Thank you I can see error 500 So it means you have an error logged by apache or nginx Please check in details

Len16-53 commented 11 months ago

@nilsteampassnet I'm not good enough in php to understand, sorry, see error.log:

[Thu Nov 02 13:59:00.305022 2023] [proxy_fcgi:error] [pid 69828] [client IPMACHINE:58021] AH01071: Got error 'PHP message: PHP Warning:  Constant DB_PASSWD_CLEAR already defined in /var/www/html/teampass/install/upgrade.php on line 272', referer: https://DOMAINENAME/install/upgrade.php
[Thu Nov 02 13:59:26.049254 2023] [proxy_fcgi:error] [pid 69788] [client IPMACHINE:58030] AH01071: Got error 'PHP message: PHP Fatal error:  Uncaught MeekroDBException: Unable to connect to MySQL server! Error: MySQL server has gone away in /var/www/html/teampass/vendor/sergeytsalkov/meekrodb/db.class.php:236\nStack trace:\n#0 /var/www/html/teampass/vendor/sergeytsalkov/meekrodb/db.class.php(896): MeekroDB->get()\n#1 /var/www/html/teampass/vendor/sergeytsalkov/meekrodb/db.class.php(871): MeekroDB->queryHelper()\n#2 /var/www/html/teampass/vendor/sergeytsalkov/meekrodb/db.class.php(120): MeekroDB->query()\n#3 /var/www/html/teampass/sources/main.functions.php(4205): DB::__callStatic()\n#4 /var/www/html/teampass/install/upgrade_operations.php(147): purgeUnnecessaryKeys()\n#5 {main}\n  thrown in /var/www/html/teampass/vendor/sergeytsalkov/meekrodb/db.class.php on line 236', referer: https://DOMAINENAME/install/upgrade.php

PS: I would like to point out that I had no errors during the 3.0.10.88 update and that no modifications to Apache or PHP have been made since. PS2: I updated again in 3.0.10.88, no problem, I tried in 3.0.10.89, I have the same problem, I am trying, version by version.

rafa-ga commented 11 months ago

@nilsteampassnet Sorry for SPAM, but i try last version, i have error during installation:

IPMACHINE - - [02/Nov/2023:11:43:51 +0100] "POST /install/upgrade_operations.php HTTP/1.1" 500 329 "https://DOMAINENAME/install/upgrade.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36"

2023-11-02_11h46_50

Same problem here :/

Len16-53 commented 11 months ago

@nilsteampassnet @rafa-ga Same problem on fresh install on new machine (3.0.10.88 to 3.0.10.96).