Enabled master-key encryption accidentially

deutsch
encryption
10

#1

Hi folks,
don't ask me why I did something that stupid - I hope you guys can help me out and get those files recovered.
Clicked on "Master Key" and now it seems most of the files cannot be decrypted anymore ...
See detailed information below ..
Any way to fix that ?
Thanks already in advance!

Steps to reproduce

  1. Basic encryption module was already enabled
  2. Enabled master key encryption accidentially

Expected behaviour

Tell us what should happen

Actual behaviour

When trying to open some files now, "ERR_INVALID_RESPONSE" is given in Chrome and downloading files not longer possible

Server configuration

Operating system:
Linux 3.16.0-4-amd64 #1 SMP Debian 3.16.43-2+deb8u5 (2017-09-19) x86_64 GNU/Linux
(ISPConfig 3 Setup)

Web server:
Apache2

Database:
MySQL

PHP version:
PHP5

ownCloud version: (see ownCloud admin page)
10.0.0.3

Updated from an older ownCloud or fresh install:
Updated step by step from 8.0 to 10.0 yesterday

Where did you install ownCloud from:
official Website

Signing status (ownCloud 9.0 and above):

No errors have been found.

The content of config/config.php:

{
"basic": {
"license key": "REMOVED SENSITIVE VALUE",
"date": "Fri, 27 Oct 2017 23:34:18 +0000",
"ownCloud version": "10.0.3.3",
"ownCloud version string": "10.0.3",
"ownCloud edition": "Community",
"server OS": "Linux",
"server OS version": "Linux 3.16.0-4-amd64 #1 SMP Debian 3.16.43-2+deb8u5 (2017-09-19) x86_64",
"server SAPI": "cgi-fcgi",
"webserver version": "Apache\/2.4.10 (Debian)",
"hostname": "XXX",
"user count": 22,
"user directories": 22,
"logged-in user": "XXX"
},
"config": {
"instanceid": "oca2ae985ecf",
"passwordsalt": "REMOVED SENSITIVE VALUE",
"trusted_domains": [
"XXX"
],
"datadirectory": "\/var\/www\/clients\/client6\/web14\/web\/owncloud\/data",
"version": "10.0.3.3",
"dbtype": "mysql",
"dbname": "web49db1",
"dbhost": "localhost",
"dbtableprefix": "oc_",
"dbuser": "REMOVED SENSITIVE VALUE",
"dbpassword": "REMOVED SENSITIVE VALUE",
"installed": true,
"version.hide": false,
"default_language": "de",
"defaultapp": "files",
"knowledgebaseenabled": false,
"enable_avatars": false,
"allow_user_to_change_display_name": true,
"remember_login_cookie_lifetime": 1296000,
"session_lifetime": 86400,
"session_keepalive": true,
"token_auth_enforced": false,
"csrf.disabled": false,
"skeletondirectory": "",
"accounts.enable_medial_search": true,
"htaccess.RewriteBase": "\/owncloud",
"versions_retention_obligation": "auto",
"appcodechecker": false,
"updatechecker": false,
"updater.server.url": "https:\/\/updates.owncloud.com\/server\/",
"has_internet_connection": true,
"check_for_working_webdav": true,
"check_for_working_wellknown_setup": true,
"check_for_working_htaccess": true,
"config_is_read_only": false,
"cron_log": true,
"log_rotate_size": 20971520,
"enable_previews": true,
"preview_max_x": 2048,
"preview_max_y": 2048,
"preview_max_scale_factor": 10,
"preview_max_filesize_image": 50,
"preview_libreoffice_path": "\/usr\/bin\/libreoffice",
"enabledPreviewProviders": [
"OC\Preview\PNG",
"OC\Preview\JPEG",
"OC\Preview\GIF",
"OC\Preview\BMP",
"OC\Preview\XBitmap",
"OC\Preview\MP3",
"OC\Preview\TXT",
"OC\Preview\MarkDown",
"OC\Preview\PDF",
"OC\Preview\MSOffice2003",
"OC\Preview\MSOffice2007",
"OC\Preview\MSOfficeDoc",
"OC\Preview\OpenDocument"
],
"singleuser": false,
"tempdirectory": "\/var\/www\/clients\/client6\/web14\/tmp",
"hashingCost": 10,
"upgrade.automatic-app-update": true,
"debug": false,
"mail_from_address": "owncloud",
"mail_smtpmode": "php",
"mail_domain": "cybercomm.at",
"theme": "",
"overwritewebroot": "owncloud",
"maintenance": false,
"xframe_restriction": false,
"user_webdavauth_url": "http:\/\/XXX\/remote.php\/",
"secret": "REMOVED SENSITIVE VALUE",
"overwrite.cli.url": "\/owncloud",
"loglevel": 4,
"trashbin_retention_obligation": "auto",
"updater.secret": "REMOVED SENSITIVE VALUE",
"memcache.local": "\OC\Memcache\Redis",
"memcache.distributed": "\OC\Memcache\Redis",
"filelocking.enabled": true,
"memcache.locking": "\OC\Memcache\Redis",
"redis": {
"host": "localhost",
"port": 6379,
"timeout": 0,
"password": "REMOVED SENSITIVE VALUE"
}
},
"integritychecker": {
"passing": true,
"enabled": true,
"result": []
},
"core": {
"OC_Channel": "stable",
"backgroundjobs_mode": "cron",
"backgroundjobs_step": "queued_tasks",
"backgroundjobs_task": "",
"default_encryption_module": "OC_DEFAULT_MODULE",
"enable_external_storage": "yes",
"encryption_enabled": "yes",
"global_cache_gc_lastrun": "1465290662",
"incoming_server2server_share_enabled": "no",
"installedat": "1408790307.5401",
"lastcron": "1509147002",
"lastupdateResult": "[]",
"lastupdatedat": "1509143984",
"outgoing_server2server_share_enabled": "no",
"public_caldav": "calendar\/share.php",
"public_calendar": "calendar\/share.php",
"public_documents": "documents\/public.php",
"public_files": "files_sharing\/public.php",
"public_gallery": "gallery\/public.php",
"public_shorty_qrcode": "shorty\/qrcode.php",
"public_shorty_query": "shorty\/query.php",
"public_shorty_relay": "shorty\/relay.php",
"public_webdav": "dav\/appinfo\/v1\/publicwebdav.php",
"remote_ampache": "media\/remote.php",
"remote_caldav": "dav\/appinfo\/v1\/caldav.php",
"remote_calendar": "dav\/appinfo\/v1\/caldav.php",
"remote_carddav": "dav\/appinfo\/v1\/carddav.php",
"remote_contacts": "dav\/appinfo\/v1\/carddav.php",
"remote_contactthumbnail": "contacts\/thumbnail.php",
"remote_core.css": "\/core\/minimizer.php",
"remote_core.js": "\/core\/minimizer.php",
"remote_dav": "dav\/appinfo\/v2\/remote.php",
"remote_files": "dav\/appinfo\/v1\/webdav.php",
"remote_filesync": "files\/appinfo\/filesync.php",
"remote_webdav": "dav\/appinfo\/v1\/webdav.php",
"repairlegacystoragesdone": "yes",
"shareapi_allow_mail_notification": "yes",
"shareapi_allow_public_notification": "yes",
"shareapi_allow_public_upload": "no",
"shareapi_allow_resharing": "no",
"shareapi_default_expire_date": "no",
"updater.secret.created": "1509052259",
"vendor": "owncloud"
}

Are you using external storage, if yes which one: no

Are you using encryption: yes

Are you using an external user-backend, if yes which one: no

Client configuration

Browser:
Google Chrome

Operating system:
Windows 7 Pro

Logs

Web server error log

no abnormal messages

ownCloud log (data/owncloud.log)

{"reqId":"uiYYMKamwdJYZg7NUOA9","level":4,"time":"2017-10-27T23:27:03+00:00","remoteAddr":"78.41.113.233","user":"chris","app":"webdav","method":"GET","url":"\/owncloud\/remote.php\/webdav\/ERSTE_SCHRITTE.docx","message":"Exception: {\"Message\":\"Can not decrypt this file, probably this is a shared file. Please ask the file owner to reshare the file with you.\",\"Exception\":\"OC\\Encryption\\Exceptions\\DecryptionFailedException\",\"Code\":0,\"Trace\":\"#0 \\/var\\/www\\/clients\\/client6\\/web14\\/web\\/owncloud\\/lib\\/private\\/Files\\/Stream\\/Encryption.php(463): OCA\\Encryption\\Crypto\\Encryption->decrypt('ANY51q8hiEQmgBe...', 0)\n#1 \\/var\\/www\\/clients\\/client6\\/web14\\/web\\/owncloud\\/lib\\/private\\/Files\\/Stream\\/Encryption.php(294): OC\\Files\\Stream\\Encryption->readCache()\n#2 [internal function]: OC\\Files\\Stream\\Encryption->stream_read(8192)\n#3 \\/var\\/www\\/clients\\/client6\\/web14\\/web\\/owncloud\\/apps\\/files_external\\/3rdparty\\/icewind\\/streams\\/src\\/Wrapper.php(83): fread(Resource id #93, 8192)\n#4 \\/var\\/www\\/clients\\/client6\\/web14\\/web\\/owncloud\\/apps\\/files_external\\/3rdparty\\/icewind\\/streams\\/src\\/CallbackWrapper.php(91): Icewind\\Streams\\Wrapper->stream_read(8192)\n#5 [internal function]: Icewind\\Streams\\CallbackWrapper->stream_read(8192)\n#6 \\/var\\/www\\/clients\\/client6\\/web14\\/web\\/owncloud\\/lib\\/composer\\/sabre\\/http\\/lib\\/Sapi.php(78): stream_copy_to_stream(Resource id #96, Resource id #98, '63121')\n#7 \\/var\\/www\\/clients\\/client6\\/web14\\/web\\/owncloud\\/lib\\/composer\\/sabre\\/dav\\/lib\\/DAV\\/Server.php(498): Sabre\\HTTP\\Sapi::sendResponse(Object(Sabre\\HTTP\\Response))\n#8 \\/var\\/www\\/clients\\/client6\\/web14\\/web\\/owncloud\\/lib\\/composer\\/sabre\\/dav\\/lib\\/DAV\\/Server.php(254): Sabre\\DAV\\Server->invokeMethod(Object(Sabre\\HTTP\\Request), Object(Sabre\\HTTP\\Response))\n#9 \\/var\\/www\\/clients\\/client6\\/web14\\/web\\/owncloud\\/apps\\/dav\\/appinfo\\/v1\\/webdav.php(63): Sabre\\DAV\\Server->exec()\n#10 \\/var\\/www\\/clients\\/client6\\/web14\\/web\\/owncloud\\/remote.php(165): require_once('\\/var\\/www\\/client...')\n#11 {main}\",\"File\":\"\\/var\\/www\\/clients\\/client6\\/web14\\/web\\/owncloud\\/apps\\/encryption\\/lib\\/Crypto\\/Encryption.php\",\"Line\":366,\"User\":\"chris\"}"}

Browser log

no abnormal messages


Verschl├╝sselung in ownCloud 10
Verschl├╝sselung in ownCloud 10
#2

Exact same problem with me. Is there any solution for this?


#3

Hi,

do you have access to command line? Then you could try this occ command:

occ encryption:decrypt-all

It this does not work, do you have a backup?