[PM-9619] Fix broken vault upon saving empty URI (#10037)

* [PM-9619] Add null check for URI before validating checksum * [PM-9619] Prevent saving empty string login URIs (cherry picked from commit 2fe07f3)
bitwarden · Jul 9, 2024 · 5b41189 · 5b41189
1 parent 7230cb2
commit 5b41189
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 1 deletion.
diff --git a/libs/common/src/vault/models/domain/login.ts b/libs/common/src/vault/models/domain/login.ts
@@ -69,6 +69,11 @@ export class Login extends Domain {
     if (this.uris != null) {
       view.uris = [];
       for (let i = 0; i < this.uris.length; i++) {
+        // If the uri is null, there is nothing to decrypt or validate
+        if (this.uris[i].uri == null) {
+          continue;
+        }
+
         const uri = await this.uris[i].decrypt(orgId, encKey);
         // URIs are shared remotely after decryption
         // we need to validate that the string hasn't been changed by a compromised server

diff --git a/libs/common/src/vault/services/cipher.service.ts b/libs/common/src/vault/services/cipher.service.ts
@@ -1374,7 +1374,7 @@ export class CipherService implements CipherServiceAbstraction {
 
         if (model.login.uris != null) {
           cipher.login.uris = [];
-          model.login.uris = model.login.uris.filter((u) => u.uri != null);
+          model.login.uris = model.login.uris.filter((u) => u.uri != null && u.uri !== "");
           for (let i = 0; i < model.login.uris.length; i++) {
             const loginUri = new LoginUri();
             loginUri.match = model.login.uris[i].match;