Internet Accounts.PrefPane stores Passwords on wrong keychain
| Originator: | pepi.zawodsky | ||
| Number: | rdar://15656441 | Date Originated: | 13-Dec-2013 04:50 PM |
| Status: | Reopened | Resolved: | |
| Product: | OS X | Product Version: | 10.9 (13A603) |
| Classification: | Serious Bug | Reproducible: | Always |
This is NOT _expected_ behavior. What good is the selection of a default keychain if OS X does ignore it? I, the user, does NOT WANT to sync credentials EVER via iCloud. I simply do not trust this mechanism for numerous reasons. I also have legal implications that prohibit the use of this. For these reasons I absolutely have to make sure to NEVER EVER sync ANY details via iCloud from my Keychain. OS X Mavericks makes this an unwanted risk by breaking the default keychain selection. When I as a user select a keychain as the default keychain than any newly created item should be added to this default keychain and this keychain only. NOT any other keychain and absolutely NEVER to a keychain that will (or potentially will) be synced to iCloud servers located or operated by a US company potentially affected by the patriot act. This clearly IS a serious bug since a preference set by the user (the default keychain) is not respected by the software. Also, this has been working correctly since OS X 10.0.0 for each and every release of OS X. This misbehavior has been introduced with OS X Mavericks and is to be fixed. ------------------------------------------------------- Apple Developer Relations13-Dec-2013 11:52 PM Engineering has determined that this issue behaves as intended based on the following information: This is the expected behavior. We use the Local/iCloud keychain (depending if iCloud keychain sync is on), so that we can sync credentials. If you have questions regarding the resolution of this issue, please update your bug report with them. We are now closing this bug report. Please be sure to regularly check new Apple releases for any updates that might affect this issue. -------------------------------------------------------- Summary: Internet Accounts.PrefPane stores Passwords on wrong keychain Steps to Reproduce: Open Keychain Access.app and chose any keychain as your DEFAULT keychain OTHER than Local Items.keychain. Open System Preferences > Internet Accounts and creaty any new system wide account. Enter the necessary credentials to create the account. After successful creation check Keychain Access.app for the newly created password item. Expected Results: New Password Items should always be created in the user set default keychain. Actual Results: The new items gets created in Local Items keychain. Regression: This did not happen before 10.9 where the setting for default keychain was respected. This is caused by the unwanted Local Items keychain. Notes: I can't trust my credentials to a system that stores Items on a likely internet synched keychain located in the USA.
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!