Debug logs Mobile Phone Onboarding

daniel-hurley · January 3, 2024, 1:56am

Checklist
I have read intro post: About the Installation Issues category
I have read the tutorials, help and searched for similar issues
I provide relevant information about my server (component names and versions, etc.)
I provide a copy of my logs and healthcheck
I describe the steps I have taken to trouble shoot the problem
I describe the steps on how to reproduce the issue

I am at a sort of lost for words what the issue is here.

Story: I just purchased a new phone, the fairphone 4 with e/OS. I want to have it obtain access to my self hosted passbolt server. The server lives in a “cloud of my choosing”.

I install the passbolt application via app lounge, and proceed to do the very basic mobile setup: log into the server via another machine, navigate to mobile setup, scan the QR code, import successfull.

When I get to the point where it asks of my passphrase - I enter my passphrase, and then passbolt returns an error saying passphrase incorrect. Ok. I triple check make sure I am entering my passphrase correctly, and indeed it’s still erroring with thesame output.

I enable debugging on the application, and see the following error of notice:

“There was an error during unlockKeygo.Universe$proxyerror: gopenpgp: error in unlocking key: openpgp: Invalid Data: private key checksum failure”

Ok strange. I uninstall app, reinstall. Same issue. I install from play store (rather than app lounge). Same Issue. I try to manually import my account (through the manual import with uuid url and private key). Same issue. I tried recovering the account in question on another web browser / extentsion (albeit desktop) and import was successfull. I ensured the passbolt has Full permission in android.

I have another work account under my self hosted instance. I figured I’d give that a try and see if I can import it on the phone. Well, this actually worked with the QR code as-you-would expect! My passphrase gets me past the next step - which makes me really susceptible to the particular account I am trying to diagnose.

Here is output of healthcheck:

     ____                  __          ____  
    / __ \____  _____ ____/ /_  ____  / / /_ 
   / /_/ / __ `/ ___/ ___/ __ \/ __ \/ / __/ 
  / ____/ /_/ (__  |__  ) /_/ / /_/ / / /    
 /_/    \__,_/____/____/_.___/\____/_/\__/   

 Open source password manager for teams
-------------------------------------------------------------------------------
 Healthcheck shell         
-------------------------------------------------------------------------------

 Environment

 [PASS] PHP version 8.1.2-1ubuntu2.14.
 [PASS] PHP version is 8.1 or above.
 [PASS] PCRE compiled with unicode support.
 [FAIL] The temporary directory and its content are not writable, or are executable.
 [HELP] Ensure the temporary directory and its content are writable by the webserver user.
 [HELP] you can try:
 [HELP] sudo chown -R www-data:www-data /var/lib/passbolt/tmp/
 [HELP] sudo chmod -R 775 $(find /var/lib/passbolt/tmp/ -type d)
 [HELP] sudo chmod -R 664 $(find /var/lib/passbolt/tmp/ -type f)
 [PASS] The logs directory and its content are writable.
 [PASS] GD or Imagick extension is installed.
 [PASS] Intl extension is installed.
 [PASS] Mbstring extension is installed.

 Config files

 [PASS] The application config file is present
 [PASS] The passbolt config file is present

 Core config

 [PASS] Debug mode is off.
 [PASS] Cache is working.
 [PASS] Unique value set for security.salt
 [PASS] Full base url is set to https://passbolt.XXXXXXXXXX.life
 [PASS] App.fullBaseUrl validation OK.
 [PASS] /healthcheck/status is reachable.

 SSL Certificate

 [PASS] SSL peer certificate validates
 [PASS] Hostname is matching in SSL certificate.
 [PASS] Not using a self-signed certificate

 Database

 [PASS] The application is able to connect to the database
 [PASS] 31 tables found
 [PASS] Some default content is present
 [PASS] The database schema up to date.

 GPG Configuration

 [PASS] PHP GPG Module is installed and loaded.
 [PASS] The environment variable GNUPGHOME is set to /var/lib/passbolt/.gnupg.
 [PASS] The directory /var/lib/passbolt/.gnupg containing the keyring is writable by the webserver user.
 [PASS] The server OpenPGP key is not the default one
 [PASS] The public key file is defined in /etc/passbolt/passbolt.php and readable.
 [PASS] The private key file is defined in /etc/passbolt/passbolt.php and readable.
 [PASS] The server key fingerprint matches the one defined in /etc/passbolt/passbolt.php.
 [PASS] The server public key defined in the /etc/passbolt/passbolt.php (or environment variables) is in the keyring.
 [PASS] There is a valid email id defined for the server key.
 [PASS] The public key can be used to encrypt a message.
 [PASS] The private key can be used to sign a message.
 [PASS] The public and private keys can be used to encrypt and sign a message.
 [PASS] The private key can be used to decrypt a message.
 [PASS] The private key can be used to decrypt and verify a message.
 [PASS] The public key can be used to verify a signature.
 [PASS] The server public key format is Gopengpg compatible.
 [PASS] The server private key format is Gopengpg compatible.

 Application configuration

 [PASS] Using latest passbolt version (4.4.2).
 [PASS] Passbolt is configured to force SSL use.
 [PASS] App.fullBaseUrl is set to HTTPS.
 [PASS] Selenium API endpoints are disabled.
 [PASS] Search engine robots are told not to index content.
 [INFO] The Self Registration plugin is enabled.
 [INFO] Registration is closed, only administrators can add users.
 [WARN] The deprecated self registration public setting was found in /etc/passbolt/passbolt.php.
 [HELP] You may remove the "passbolt.registration.public" setting.
 [WARN] Host availability checking is disabled.
 [HELP] Make sure this instance is not publicly available on the internet.
 [HELP] Or set the PASSBOLT_EMAIL_VALIDATE_MX environment variable to true.
 [HELP] Or set passbolt.email.validate.mx to true in /etc/passbolt/passbolt.php.
 [PASS] Serving the compiled version of the javascript app.
 [WARN] Some email notifications are disabled by the administrator.

 JWT Authentication

 [PASS] The JWT Authentication plugin is enabled
 [PASS] The /etc/passbolt/jwt/ directory is not writable.
 [PASS] A valid JWT key pair was found

 SMTP Settings

 [PASS] The SMTP Settings plugin is enabled.
 [PASS] SMTP Settings coherent. You may send a test email to validate them.
 [PASS] The SMTP Settings source is: database.
 [WARN] The SMTP Settings plugin endpoints are enabled.
 [HELP] It is recommended to disable the plugin endpoints.
 [HELP] Set the PASSBOLT_SECURITY_SMTP_SETTINGS_ENDPOINTS_DISABLED environment variable to true.
 [HELP] Or set passbolt.security.smtpSettings.endpointsDisabled to true in /etc/passbolt/passbolt.php.

 [FAIL] 1 error(s) found. Hang in there!

By all means, the service seems to be working just fine. Something to do with this particular account, and the phone. I will eventually want to see if I can do it on another phone. But I am tired for the time being.

clayton · January 5, 2024, 8:05am

To see a bit more could you run the status report instead of the healthcheck? This will run the healthcheck and a couple others.
Since it looks like you are on ubuntu it should be:
sudo su -s /bin/bash -c "/usr/share/php/passbolt/bin/status-report" www-data

daniel-hurley · January 8, 2024, 6:02am

The output

     ____                  __          ____  
    / __ \____  _____ ____/ /_  ____  / / /_ 
   / /_/ / __ `/ ___/ ___/ __ \/ __ \/ / __/ 
  / ____/ /_/ (__  |__  ) /_/ / /_/ / / /    
 /_/    \__,_/____/____/_.___/\____/_/\__/   

 Open source password manager for teams
-------------------------------------------------------------------------------
Passbolt CE 4.4.2
Cakephp 4.4.17
Linux passbolt 5.15.0-91-generic #101-Ubuntu SMP Tue Nov 14 13:30:08 UTC 2023 x86_64 x86_64 x86_64 GNU/Linux
PHP 8.1.2-1ubuntu2.14 (cli) (built: Aug 18 2023 11:41:11) (NTS)
mysql  Ver 8.0.35-0ubuntu0.22.04.1 for Linux on x86_64 ((Ubuntu))
gpg (GnuPG) 2.2.27
libgcrypt 1.9.4
 ERROR: /usr/share/php/passbolt/bin/utils.sh: line 64: composer: command not found
warning: 512 :: SplFileInfo::openFile(/var/lib/passbolt/tmp/cache/persistent/myapp_cake_core_translations.cake_console.en_UK): Failed to open stream: Permission denied on line 391 of /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Cache/Engine/FileEngine.php
warning: 512 :: SplFileInfo::openFile(/var/lib/passbolt/tmp/cache/persistent/myapp_cake_core_translations.cake_console.en_UK): Failed to open stream: Permission denied on line 391 of /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Cache/Engine/FileEngine.php

     ____                  __          ____  
    / __ \____  _____ ____/ /_  ____  / / /_ 
   / /_/ / __ `/ ___/ ___/ __ \/ __ \/ / __/ 
  / ____/ /_/ (__  |__  ) /_/ / /_/ / / /    
 /_/    \__,_/____/____/_.___/\____/_/\__/   

 Open source password manager for teams
-------------------------------------------------------------------------------
 Healthcheck shell         
-------------------------------------------------------------------------------

 Environment

 [PASS] PHP version 8.1.2-1ubuntu2.14.
 [PASS] PHP version is 8.1 or above.
 [PASS] PCRE compiled with unicode support.
 [FAIL] The temporary directory and its content are not writable, or are executable.
 [HELP] Ensure the temporary directory and its content are writable by the webserver user.
 [HELP] you can try:
 [HELP] sudo chown -R www-data:www-data /var/lib/passbolt/tmp/
 [HELP] sudo chmod -R 775 $(find /var/lib/passbolt/tmp/ -type d)
 [HELP] sudo chmod -R 664 $(find /var/lib/passbolt/tmp/ -type f)
 [PASS] The logs directory and its content are writable.
 [PASS] GD or Imagick extension is installed.
 [PASS] Intl extension is installed.
 [PASS] Mbstring extension is installed.

 Config files

 [PASS] The application config file is present
 [PASS] The passbolt config file is present

 Core config

 [PASS] Debug mode is off.
 [PASS] Cache is working.
 [PASS] Unique value set for security.salt
 [PASS] Full base url is set to https://passbolt.xxxx.xxxx
 [PASS] App.fullBaseUrl validation OK.
 [PASS] /healthcheck/status is reachable.

 SSL Certificate

 [PASS] SSL peer certificate validates
 [PASS] Hostname is matching in SSL certificate.
 [PASS] Not using a self-signed certificate

 Database

 [PASS] The application is able to connect to the database
 [PASS] 31 tables found
 [PASS] Some default content is present
 [PASS] The database schema up to date.

 GPG Configuration

 [PASS] PHP GPG Module is installed and loaded.
 [PASS] The environment variable GNUPGHOME is set to /var/lib/passbolt/.gnupg.
 [PASS] The directory /var/lib/passbolt/.gnupg containing the keyring is writable by the webserver user.
 [PASS] The server OpenPGP key is not the default one
 [PASS] The public key file is defined in /etc/passbolt/passbolt.php and readable.
 [PASS] The private key file is defined in /etc/passbolt/passbolt.php and readable.
 [PASS] The server key fingerprint matches the one defined in /etc/passbolt/passbolt.php.
 [PASS] The server public key defined in the /etc/passbolt/passbolt.php (or environment variables) is in the keyring.
 [PASS] There is a valid email id defined for the server key.
 [PASS] The public key can be used to encrypt a message.
 [PASS] The private key can be used to sign a message.
 [PASS] The public and private keys can be used to encrypt and sign a message.
 [PASS] The private key can be used to decrypt a message.
 [PASS] The private key can be used to decrypt and verify a message.
 [PASS] The public key can be used to verify a signature.
 [PASS] The server public key format is Gopengpg compatible.
 [PASS] The server private key format is Gopengpg compatible.

 Application configuration

 [PASS] Using latest passbolt version (4.4.2).
 [PASS] Passbolt is configured to force SSL use.
 [PASS] App.fullBaseUrl is set to HTTPS.
 [PASS] Selenium API endpoints are disabled.
 [PASS] Search engine robots are told not to index content.
 [INFO] The Self Registration plugin is enabled.
 [INFO] Registration is closed, only administrators can add users.
 [WARN] The deprecated self registration public setting was found in /etc/passbolt/passbolt.php.
 [HELP] You may remove the "passbolt.registration.public" setting.
 [WARN] Host availability checking is disabled.
 [HELP] Make sure this instance is not publicly available on the internet.
 [HELP] Or set the PASSBOLT_EMAIL_VALIDATE_MX environment variable to true.
 [HELP] Or set passbolt.email.validate.mx to true in /etc/passbolt/passbolt.php.
 [PASS] Serving the compiled version of the javascript app.
 [WARN] Some email notifications are disabled by the administrator.

 JWT Authentication

 [PASS] The JWT Authentication plugin is enabled
 [PASS] The /etc/passbolt/jwt/ directory is not writable.
 [PASS] A valid JWT key pair was found

 SMTP Settings

 [PASS] The SMTP Settings plugin is enabled.
 [PASS] SMTP Settings coherent. You may send a test email to validate them.
 [PASS] The SMTP Settings source is: database.
 [WARN] The SMTP Settings plugin endpoints are enabled.
 [HELP] It is recommended to disable the plugin endpoints.
 [HELP] Set the PASSBOLT_SECURITY_SMTP_SETTINGS_ENDPOINTS_DISABLED environment variable to true.
 [HELP] Or set passbolt.security.smtpSettings.endpointsDisabled to true in /etc/passbolt/passbolt.php.

 [FAIL] 1 error(s) found. Hang in there!


     ____                  __          ____  
    / __ \____  _____ ____/ /_  ____  / / /_ 
   / /_/ / __ `/ ___/ ___/ __ \/ __ \/ / __/ 
  / ____/ /_/ (__  |__  ) /_/ / /_/ / / /    
 /_/    \__,_/____/____/_.___/\____/_/\__/   

 Open source password manager for teams
-------------------------------------------------------------------------------
 Cleanup shell (dry-run)
-------------------------------------------------------------------------------
No issue found, data looks squeaky clean!
warning: 512 :: SplFileInfo::openFile(/var/lib/passbolt/tmp/cache/persistent/myapp_cake_core_translations.cake_console.en_UK): Failed to open stream: Permission denied on line 391 of /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Cache/Engine/FileEngine.php
warning: 512 :: SplFileInfo::openFile(/var/lib/passbolt/tmp/cache/persistent/myapp_cake_core_translations.cake_console.en_UK): Failed to open stream: Permission denied on line 391 of /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Cache/Engine/FileEngine.php

     ____                  __          ____  
    / __ \____  _____ ____/ /_  ____  / / /_ 
   / /_/ / __ `/ ___/ ___/ __ \/ __ \/ / __/ 
  / ____/ /_/ (__  |__  ) /_/ / /_/ / / /    
 /_/    \__,_/____/____/_.___/\____/_/\__/   

 Open source password manager for teams
-------------------------------------------------------------------------------
Data check shell
[PASS] Data integrity for AuthenticationTokens.
  [PASS] Can validate: 1187/1187
[PASS] Data integrity for Comments.
  [PASS] Can validate: 0/0
[PASS] Data integrity for Favorites.
  [PASS] Can validate: 0/0
[PASS] Data integrity for Gpgkeys.
  [PASS] Can encrypt: 4/4
  [PASS] Pass validation service checks: 4/4
  [PASS] Entity data and armored key data matches: 4/4
  [PASS] Is not expired: 4/4
  [PASS] Is armored key format valid: 4/4
[PASS] Data integrity for Groups.
  [PASS] Can validate: 1/1
[PASS] Data integrity for Profiles.
  [PASS] Can validate: 6/6
[PASS] Data integrity for Resources.
  [PASS] Can validate: 243/243
[PASS] Data integrity for Secrets.
  [PASS] Can validate: 222/222
[PASS] Data integrity for Users.
  [PASS] Can validate: 6/6
Client IP: 103.121.39.54
2024-01-08 00:18:30 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/samples/chatroom/chatroom-spa/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /samples/chatroom/chatroom-spa/.env
Client IP: 103.121.39.54
2024-01-08 00:18:30 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/samples/docker/deploymentscripts/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /samples/docker/deploymentscripts/.env
Client IP: 103.121.39.54
2024-01-08 00:18:31 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/src/__tests__/__fixtures__/instanceWithDependentSteps/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /src/__tests__/__fixtures__/instanceWithDependentSteps/.env
Client IP: 103.121.39.54
2024-01-08 00:18:31 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/src/__tests__/__fixtures__/typeScriptIntegrationProject/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /src/__tests__/__fixtures__/typeScriptIntegrationProject/.env
Client IP: 103.121.39.54
2024-01-08 00:18:31 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/src/__tests__/__fixtures__/typeScriptProject/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /src/__tests__/__fixtures__/typeScriptProject/.env
Client IP: 103.121.39.54
2024-01-08 00:18:31 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/src/__tests__/__fixtures__/typeScriptVisualizeProject/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /src/__tests__/__fixtures__/typeScriptVisualizeProject/.env
Client IP: 103.121.39.54
2024-01-08 00:18:32 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/src/main/resources/archetype-resources/__rootArtifactId__-acceptance-test/src/test/resources/app-launcher-tile/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /src/main/resources/archetype-resources/__rootArtifactId__-acceptance-test/src/test/resources/app-launcher-tile/.env
Client IP: 103.121.39.54
2024-01-08 00:18:32 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Modix/ClientApp/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Modix/ClientApp/.env
Client IP: 103.121.39.54
2024-01-08 00:18:32 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/MyRentals.Web/ClientApp/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /MyRentals.Web/ClientApp/.env
Client IP: 103.121.39.54
2024-01-08 00:18:33 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Nodejs-Projects/play-ground/ManageUserRoles/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Nodejs-Projects/play-ground/ManageUserRoles/.env
Client IP: 103.121.39.54
2024-01-08 00:18:33 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Nodejs-Projects/play-ground/login/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Nodejs-Projects/play-ground/login/.env
Client IP: 103.121.39.54
2024-01-08 00:18:33 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Nuke.App.Ui/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Nuke.App.Ui/.env
Client IP: 103.121.39.54
2024-01-08 00:18:33 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Final_Project/Airflow_Dag/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Final_Project/Airflow_Dag/.env
Client IP: 103.121.39.54
2024-01-08 00:18:34 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Final_Project/StartingFile/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Final_Project/StartingFile/.env
Client IP: 103.121.39.54
2024-01-08 00:18:35 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Final_Project/kafka_twitter/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Final_Project/kafka_twitter/.env
Client IP: 103.121.39.54
2024-01-08 00:18:35 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/3-sequelize/final/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /3-sequelize/final/.env
Client IP: 103.121.39.54
2024-01-08 00:18:35 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/31_structure_tests/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /31_structure_tests/.env
Client IP: 103.121.39.54
2024-01-08 00:18:35 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Archipel/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Archipel/.env
Client IP: 103.121.39.54
2024-01-08 00:18:36 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Assignment3/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Assignment3/.env
Client IP: 103.121.39.54
2024-01-08 00:18:36 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Assignment4/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Assignment4/.env
Client IP: 103.121.39.54
2024-01-08 00:18:36 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Chai/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Chai/.env
Client IP: 103.121.39.54
2024-01-08 00:18:37 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/ClientApp/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /ClientApp/.env
Client IP: 103.121.39.54
2024-01-08 00:18:37 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/CodeGolf.Web/ClientApp/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /CodeGolf.Web/ClientApp/.env
Client IP: 103.121.39.54
2024-01-08 00:18:37 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/ContainerRegistry/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /ContainerRegistry/.env
Client IP: 103.121.39.54
2024-01-08 00:18:37 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Exercise.Frontend/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Exercise.Frontend/.env
Client IP: 103.121.39.54
2024-01-08 00:18:38 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/Exercise.Frontend/train/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /Exercise.Frontend/train/.env
Client IP: 103.121.39.54
2024-01-08 00:18:38 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/FE/huey/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /FE/huey/.env
Client IP: 103.121.39.54
2024-01-08 00:18:38 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/FIRST_CONFIG/.env" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /FIRST_CONFIG/.env
Client IP: 103.121.39.54
2024-01-08 00:25:15 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/discover/qi/polygon" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /discover/qi/polygon
Client IP: 45.81.20.44
2024-01-08 00:49:55 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/database/.git/config" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /database/.git/config
Client IP: 54.185.142.136
2024-01-08 01:26:58 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/lib/display.js" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /lib/display.js
Client IP: 45.81.20.87
2024-01-08 03:31:51 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/en/coinjoin/btc" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /en/coinjoin/btc
Client IP: 45.81.20.18
2024-01-08 04:58:09 error: [Cake\Routing\Exception\MissingRouteException] A route matching "/autodiscover/autodiscover.json" could not be found. in /usr/share/php/passbolt/vendor/cakephp/cakephp/src/Routing/RouteCollection.php on line 197
Request URL: /autodiscover/autodiscover.json?@zdi/Powershell
Client IP: 104.131.128.22

daniel-hurley · January 8, 2024, 6:09am

After trying the suggested help to adjust the directory/file permissions, it stills errors that “The temporary directory and its content are not writable, or are executable.” www-data is owner. all files and sub-directories are read write and executable.

daniel-hurley · January 8, 2024, 6:12am

This node is indeed reachable on the internet, but I am not sure why this is a suggestion (?)

[WARN] The deprecated self registration public setting was found in /etc/passbolt/passbolt.php.
[HELP] You may remove the “passbolt.registration.public” setting.
[WARN] Host availability checking is disabled.
[HELP] Make sure this instance is not publicly available on the internet.

daniel-hurley · January 8, 2024, 6:25am

Here are the debug logs from the phone.

FYI I replaced the actual domain with “bogus.domain”

Device: Fairphone FP4
Android 12 (32)
Passbolt 1.17.0-27

9:55:15 PM File logging tree planted
9:57:30 PM --> PUT https://passbolt.bogus.domain/mobile/transfers/9a4bdd4b-7205-4a0f-aa93-a7f34e8d1e0a/b227e49f-6c22-4484-a917-c191680b04da.json http/1.1 (41-byte body)
9:57:30 PM <-- 200 OK https://passbolt.bogus.domain/mobile/transfers/9a4bdd4b-7205-4a0f-aa93-a7f34e8d1e0a/b227e49f-6c22-4484-a917-c191680b04da.json (262ms, unknown-length body)
9:57:31 PM --> PUT https://passbolt.bogus.domain/mobile/transfers/9a4bdd4b-7205-4a0f-aa93-a7f34e8d1e0a/b227e49f-6c22-4484-a917-c191680b04da.json http/1.1 (41-byte body)
9:57:31 PM <-- 200 OK https://passbolt.bogus.domain/mobile/transfers/9a4bdd4b-7205-4a0f-aa93-a7f34e8d1e0a/b227e49f-6c22-4484-a917-c191680b04da.json (147ms, unknown-length body)
9:57:32 PM --> PUT https://passbolt.bogus.domain/mobile/transfers/9a4bdd4b-7205-4a0f-aa93-a7f34e8d1e0a/b227e49f-6c22-4484-a917-c191680b04da.json http/1.1 (41-byte body)
9:57:32 PM <-- 200 OK https://passbolt.bogus.domain/mobile/transfers/9a4bdd4b-7205-4a0f-aa93-a7f34e8d1e0a/b227e49f-6c22-4484-a917-c191680b04da.json (146ms, unknown-length body)
9:57:32 PM --> PUT https://passbolt.bogus.domain/mobile/transfers/9a4bdd4b-7205-4a0f-aa93-a7f34e8d1e0a/b227e49f-6c22-4484-a917-c191680b04da.json http/1.1 (41-byte body)
9:57:32 PM <-- 200 OK https://passbolt.bogus.domain/mobile/transfers/9a4bdd4b-7205-4a0f-aa93-a7f34e8d1e0a/b227e49f-6c22-4484-a917-c191680b04da.json (140ms, unknown-length body)
9:57:33 PM Saving private key.
9:57:33 PM --> PUT https://passbolt.bogus.domain/mobile/transfers/9a4bdd4b-7205-4a0f-aa93-a7f34e8d1e0a/b227e49f-6c22-4484-a917-c191680b04da.json?contain%5Buser.profile%5D=1 http/1.1 (38-byte body)
9:57:33 PM <-- 200 OK https://passbolt.bogus.domain/mobile/transfers/9a4bdd4b-7205-4a0f-aa93-a7f34e8d1e0a/b227e49f-6c22-4484-a917-c191680b04da.json?contain%5Buser.profile%5D=1 (208ms, unknown-length body)
9:57:35 PM Checking biometry state
9:57:36 PM --> GET https://passbolt.bogus.domain/avatars/view/58b398d9-af30-4a58-9394-c03a3d3682f3/medium.jpg http/1.1
9:57:36 PM <-- 200 OK https://passbolt.bogus.domain/avatars/view/58b398d9-af30-4a58-9394-c03a3d3682f3/medium.jpg (305ms, unknown-length body)
9:57:36 PM --> GET https://passbolt.bogus.domain/avatars/view/58b398d9-af30-4a58-9394-c03a3d3682f3/medium.jpg http/1.1
9:57:36 PM <-- 200 OK https://passbolt.bogus.domain/avatars/view/58b398d9-af30-4a58-9394-c03a3d3682f3/medium.jpg (119ms, unknown-length body)
9:57:53 PM There was an error during unlockKey
go.Universe$proxyerror: gopenpgp: error in unlocking key: openpgp: invalid data: private key checksum failure
	at com.proton.gopenpgp.crypto.Key.unlock(Native Method)
	at com.passbolt.mobile.android.gopenpgp.OpenPgp$unlockKey$2.invokeSuspend(SourceFile:98)
	at kotlin.coroutines.jvm.internal.BaseContinuationImpl.resumeWith(SourceFile:33)
	at kotlinx.coroutines.DispatchedTask.run(SourceFile:108)
	at kotlinx.coroutines.internal.LimitedDispatcher$Worker.run(SourceFile:115)
	at kotlinx.coroutines.scheduling.TaskImpl.run(SourceFile:103)
	at kotlinx.coroutines.scheduling.CoroutineScheduler.runSafely(SourceFile:584)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.executeTask(SourceFile:793)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.runWorker(SourceFile:697)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.run(SourceFile:684)

go.Universe$proxyerror: gopenpgp: error in unlocking key: openpgp: invalid data: private key checksum failure
	at com.proton.gopenpgp.crypto.Key.unlock(Native Method)
	at com.passbolt.mobile.android.gopenpgp.OpenPgp$unlockKey$2.invokeSuspend(SourceFile:98)
	at kotlin.coroutines.jvm.internal.BaseContinuationImpl.resumeWith(SourceFile:33)
	at kotlinx.coroutines.DispatchedTask.run(SourceFile:108)
	at kotlinx.coroutines.internal.LimitedDispatcher$Worker.run(SourceFile:115)
	at kotlinx.coroutines.scheduling.TaskImpl.run(SourceFile:103)
	at kotlinx.coroutines.scheduling.CoroutineScheduler.runSafely(SourceFile:584)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.executeTask(SourceFile:793)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.runWorker(SourceFile:697)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.run(SourceFile:684)
9:57:53 PM gopenpgp: error in unlocking key: openpgp: invalid data: private key checksum failure
10:18:38 PM There was an error during unlockKey
go.Universe$proxyerror: gopenpgp: error in unlocking key: openpgp: invalid data: private key checksum failure
	at com.proton.gopenpgp.crypto.Key.unlock(Native Method)
	at com.passbolt.mobile.android.gopenpgp.OpenPgp$unlockKey$2.invokeSuspend(SourceFile:98)
	at kotlin.coroutines.jvm.internal.BaseContinuationImpl.resumeWith(SourceFile:33)
	at kotlinx.coroutines.DispatchedTask.run(SourceFile:108)
	at kotlinx.coroutines.internal.LimitedDispatcher$Worker.run(SourceFile:115)
	at kotlinx.coroutines.scheduling.TaskImpl.run(SourceFile:103)
	at kotlinx.coroutines.scheduling.CoroutineScheduler.runSafely(SourceFile:584)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.executeTask(SourceFile:793)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.runWorker(SourceFile:697)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.run(SourceFile:684)

go.Universe$proxyerror: gopenpgp: error in unlocking key: openpgp: invalid data: private key checksum failure
	at com.proton.gopenpgp.crypto.Key.unlock(Native Method)
	at com.passbolt.mobile.android.gopenpgp.OpenPgp$unlockKey$2.invokeSuspend(SourceFile:98)
	at kotlin.coroutines.jvm.internal.BaseContinuationImpl.resumeWith(SourceFile:33)
	at kotlinx.coroutines.DispatchedTask.run(SourceFile:108)
	at kotlinx.coroutines.internal.LimitedDispatcher$Worker.run(SourceFile:115)
	at kotlinx.coroutines.scheduling.TaskImpl.run(SourceFile:103)
	at kotlinx.coroutines.scheduling.CoroutineScheduler.runSafely(SourceFile:584)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.executeTask(SourceFile:793)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.runWorker(SourceFile:697)
	at kotlinx.coroutines.scheduling.CoroutineScheduler$Worker.run(SourceFile:684)
10:18:38 PM gopenpgp: error in unlocking key: openpgp: invalid data: private key checksum failure

daniel-hurley · January 8, 2024, 6:42am

Last thing I tried for tonight is scanning the QR code from Google Chrome (versus Brave), and alternatively scanning the QR code on the phone app on my old phone. Same issue, same logs.