Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Attachment 'key' value does not decrypt, and causes the current version V1.3 of BitwardenDecrypt to crash. #5

Closed
chemputer opened this issue Oct 30, 2021 · 4 comments
Closed

Attachment 'key' value does not decrypt, and causes the current version V1.3 of BitwardenDecrypt to crash. #5

chemputer opened this issue Oct 30, 2021 · 4 comments
Assignees
@GurpreetKang
Labels
bug Something isn't working

Comments

@chemputer
Copy link

This is an issue filed after going back and forth with GurpreetKang on Reddit a few times, and just documenting the issue and what we went through and discovered in the process.

With the (as of writing) currently available version, v1.3, setup with Python 3.9.7 (also tried it with 3.10 and 3.8), in a venv created specifically for this, after running pip install -r requirements.txt, then running the program in PowerShell or CMD with the venv active (to rule out any other installed packages or dependencies), it gives the following error:

❯ .\BitwardenDecrypt.py
Password:
Traceback (most recent call last):
  File "E:\Projects\Repos\BitwardenDecrypt\BitwardenDecrypt.py", line 325, in <module>
    main()
  File "E:\Projects\Repos\BitwardenDecrypt\BitwardenDecrypt.py", line 320, in main
    decryptedJSON = decryptBitwardenJSON(inputfile)
  File "E:\Projects\Repos\BitwardenDecrypt\BitwardenDecrypt.py", line 299, in decryptBitwardenJSON
    jsonEscapedString = json.JSONEncoder().encode(decryptCipherString(match, encKey, macKey))
  File "E:\Projects\Repos\BitwardenDecrypt\BitwardenDecrypt.py", line 216, in decryptCipherString
    return(cleartext.decode('utf-8'))
UnicodeDecodeError: 'utf-8' codec can't decode byte 0xa0 in position 0: invalid start byte

Now, 0xa0 is a "non-returning space". I don't think this is relevant as even switching it to a different attachment by reordering the data.json file, regardless of what you do it still causes issues with various bytes that it considers invalid start bytes.

I made a minor modification to the code to print out the cleartext variable in the decryptCipherString function, to see what the last item was before it errored out, and it turned out to be the first instance of an attachment's key.
GurpreetKang then sent me a couple of versions to do some debugging with, and every instance of an attachments key was failing to decrypt. This indicates that it is almost certainly encrypted in a different way to the rest of the file.
@GurpreetKang GurpreetKang self-assigned this Oct 30, 2021
@GurpreetKang GurpreetKang added the bug Something isn't working label Oct 30, 2021
@GurpreetKang
Copy link
Owner

Thanks for reporting this. It looks like each attachment has it's own Protected Symmetric Key, and BitwardenDecrypt is trying to decrypt it with the primary encryption key that's used for all other vault items. This fails, is not handled gracefully and the script aborts.

GurpreetKang added a commit that referenced this issue Oct 30, 2021
@GurpreetKang
UnicodeDecodeError on attachments/keys
3559344 
Don't abort on UnicodeDecodeError (#5) when trying to decrypt an entry with attachments/keys.
@GurpreetKang
Copy link
Owner

Commit 3559344 does not resolve the underlying issue (won't decrypt attachments/keys) but will no longer abort when it encounters them so BitwardenDecrypt can still be used to decrypt a backup data.json (though without attachments/keys).

GurpreetKang added a commit that referenced this issue Oct 31, 2021
@GurpreetKang
Decrypt attachment 'key' values.
4e95002 
Decrypt attachment 'key' values (#5) as hex string + minor code refactoring.
@GurpreetKang
Copy link
Owner

Commit 4e95002 will decrypt the attachment/key value as a hex string.

@GurpreetKang
Copy link
Owner

Closed with Version 1.4.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@GurpreetKang GurpreetKang

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@chemputer @GurpreetKang