[SOLVED] TOTP no longer works after new update on IOS

Ablac · June 16, 2021, 4:07pm

The entire Bit-warden app has Literally forgotten how to generate TOTP codes. The authenticator keys are correct and it’s able to generate correct keys on the computer but not in IOS anymore, this has been really annoying having to open Bitwarden, copy the TOTP key and then adding it into Authy every time I try to login to a website on my phone now…

Not sure how to fix this

xyzzy · June 16, 2021, 5:04pm

Is the iOS app not generating the TOTP codes, or is it generating incorrect TOTP codes?

Peter_H · June 16, 2021, 5:14pm

Are date, time and time zone correct on the device that shows the issue ?

Ablac · June 16, 2021, 6:01pm

It’s not generating TOTP codes at all, the keys are entered correctly but it’s not generating anything. On all my other devices they generate correctly.

Peter_H · June 16, 2021, 6:27pm

Reboot. If the issue still occurs: Uninstall Bitwarden, reboot, re-install Bitwarden.

danmullen · June 16, 2021, 7:42pm

Also, I don’t suppose your Premium licence has expired, has it?

Thames · June 16, 2021, 11:46pm

Have you just updated to the iOS 15 beta by any chance? I’ve heard some rumours of authenticator apps not working on it, so presumably some issue with the timekeeping.

Ablac · June 17, 2021, 12:02am

Ah! I’m on IOS 15 so I’m assuming your correct!

Thames · June 17, 2021, 12:18am

That’d be it! Interesting to hear of an example of this bug in the real world! (Be sure to report it to Apple, I can’t find many references to the issue online at all)

I believe that all time-based authenticator apps are broken, including Google, Microsoft and even some banking apps that rely on TOTP generation (such as HSBC).

Ablac · June 17, 2021, 12:37am

I know Authy is working, I haven’t checked the others you listed.

Thames · June 17, 2021, 1:09pm

Interesting… I wonder why some TOTP generators are able to function and others not?

Ablac · June 17, 2021, 3:03pm

As a matter of fact it was… after investigation it seems as though my premium expired, so I renewed it and now it’s working perfectly

danmullen · June 17, 2021, 3:19pm

Always worth ruling out the obvious, as it’s often the solution!

Glad you got it sorted

anonymous1184 · June 18, 2021, 5:33am

iOS API is constantly changing, most of the time for the better but from time time this happens.

The algorithm to generate TOTP is based on UNIX Epoch, depending on how you get the time is weather or not the application can get an error. If you rely on the hardware clock and the time is not correct you will get erroneous codes, that’s why some developers opt to get the time from other places.

I wrote an implementation that on application start gets the time from the headers of a simple web call to the evil lords at Google, and then each calculation just offsets that. For example in Windows you can type this in a terminal and see how time can retrieved from an internet source:

curl -ILs www.google.com | findstr Date:

On *nix platforms:

curl -ILs www.google.com | grep -i Date: