"KDE envrionment but OS keyring is not available for encryption" while using keepassxc #187842
Comments
|
also just noticed that if a key is retrieved from keepassxc, vscode 1.80 rejects it (not using it), whereas the previous 1.79.2 does accept it without problems reverting to vscode 1.79.2 fixes all the issues (no message, settings sync key is not rejected) |
|
Can you try these steps to see if it works:
Restart VS Code and see if it works. In 1.79.2 we used keytar to store things in the keyring. It's been archived so we switched to using an Electron API built on Chromium features instead. My proposal should tell VS Code that you want to use |
|
Adding it to the runtime arguments works, but then immediately it asks me to delete the old entry, and new undescriptive entries show up named Edit: |
|
So the "Safe Storage" part is correct. The way Chromium does things is different than keytar. Rather than storing the entire secret in the keyring, it generates an encryption key, encrypts the secret, and stores the encryption key in the keyring. The secret is encrypted at this point, and can be stored anywhere. We store these encrypted secrets in VS Code's global user storage along with other application state. So that explains why the size is much smaller than before. Now, I am slightly surprised that it's called |
|
just to fully make it clear, i am using https://aur.archlinux.org/packages/visual-studio-code-bin if that makes a difference |
|
@deepak1556 unrelated to that, I think since modern kwallet supports libsecret & since libsecret is agnostic of desktop environment, when we detect KDE I think it would be a good idea to also check libsecret. |
Chromium declares libsecret schema with application name as an attribute whereas the label of the entry is a static constant that currently cannot be configured by embedders. We can polish this but the current state does not cause any harm since entries will be unique per application name. I will merge this to #187338 |
|
I'm getting this error despite putting that line into ~/.vscode/argv.json
And for us who have been studying democracy?? we do not have any google/chromium spyware. |
|
I'm having the exact same issue: I do use Is there any workaround, and are we expecting a fix for this? It's really time consuming for me to reauthenticate to GitHub through the browser each time I spawn a new repo/VS Code session. |
|
@irfanhakim-as that is not expected. Can you open a new issue with the output of the command mentioned here in our docs? https://code.visualstudio.com/docs/editor/settings-sync#_troubleshooting-keychain-issues |
Type: Bug
Message
You're running in a KDE environment but the OS keyring is not available for encryption. Ensure you have kwallet running.keeps showing up with no discernible way to disable it, using keepassxcSteps to reproduce:
Secret Service Integrationenabledinstalled keepassxc version
extra/keepassxc 2.7.5-2(project link)this message did not appear in vscode 1.77 (the version i upgraded from to 1.80)
VS Code version: Code 1.80.0 (660393d, 2023-07-04T13:39:48.236Z)
OS version: Linux x64 6.4.2-3-MANJARO
Modes:
System Info
canvas_oop_rasterization: disabled_off
direct_rendering_display_compositor: disabled_off_ok
gpu_compositing: enabled
multiple_raster_threads: enabled_on
opengl: enabled_on
rasterization: enabled
raw_draw: disabled_off_ok
video_decode: enabled
video_encode: disabled_software
vulkan: disabled_off
webgl: enabled
webgl2: enabled
webgpu: disabled_off
A/B Experiments
The text was updated successfully, but these errors were encountered: