How to migrate Google Chrome profile (extensions, cookies, etc.) to another Windows installation?

Question

This question has been asked a million times on the web (example) but I have found no solutions that actually work, so I'm asking it again. Please actually read the entire question before posting.

The question is pretty simple. I have installed a second copy of Windows on the same machine (same OS -- Windows 8.1 -- with the same product key and all) and I'm trying to migrate everything to it.
However, when I try to make the new installation of Chrome use my old profile, it wipes some of the data (e.g. all of my extensions), claiming they are corrupt, while preserving others (e.g. bookmarks).
Needless to say, the profile isn't actually corrupt; it works just fine in my old Windows installation. And yes, I'm using the same version of Chrome (version 47 x64) and all.

For the life of me, I can't figure out how or why it does this. I've even looked at the Chromium source code and can't even figure out where Chrome makes the decision to reset the profile, and what it bases this decision on. I've tried using Process Monitor to figure out how it detects anything is going on, and I haven't found anything.

Can someone explain to me what is going on and how I can continue to use my old profile as-is, intact in my new Windows installation?

Note: Due to the frustratingly low amount of information on this issue and high number of non-working "solutions" on this site and elsewhere on the web, please, don't make random guesses. Only post an answer if you have reproduced the problem and can reproduce a working solution to it, or alternatively, if you can point to the exact line causing this in the Chromium source code. Thanks.

Answer 1

A partial answer from myself:

It seems that this has to do with the "Secure Preferences" feature, and the profile is encrypted based on the Machine SID in Windows. I managed to change my machine SID to the old one, and now my profile loads and my extensions are not deleted. However, my cookies still don't seem to work, so if someone knows why, please explain.

Relevant code bits are in pref_hash_store_impl.cc as of this writing (GenerateDeviceId, which calls GetDeterministicMachineSpecificId, which calls LookupAccountNameW).

Answer 2

Not a complete migration, but information on the encryption and keyset migration.

Several files of Google Chrome profile are encrypted with DPAPI. Keys used to encrypt data are stored in "the user profile under RootDirectory \Documents and Settings\< username >\Application Data\Microsoft\Protect" - https://technet.microsoft.com/en-us/library/cc962112.aspx; and additionally encrypted by combination of User SID and hash of his password.

There are some solutions to decrypt data: https://www.nirsoft.net/utils/chrome_cookies_view.html and https://www.nirsoft.net/utils/dpapi_data_decryptor.html (which gives more details about encryption mode and key file used). DPAPI decryptor may also work offline (reading files from the harddrive of another windows installation). But they both can't reencrypt data with newer keys or import data into new profile.

There are also some ideas to migrate all user keys to another installation of the Windows (search internet by "dpapimig.exe" for such kind of instructions):

• https://www.reddit.com/r/vivaldibrowser/comments/65qrlb/importing_cookiespasswords_from_vivaldichrome/ "Importing Cookies/Passwords from Vivaldi/Chrome installed on another Windows computer (100% working)." (2017)
• https://gist.github.com/HarmJ0y/2af9ac57f95e6663a26742774c822b10 "Restore a user's stolen DPAPI master key folder and optional KeePass DPAPI data blob." (2016)

So, migration method (importing of DPAPI keys) may work for you. In complete migration solution user DPAPI keys should be decrypted with older windows installation master keys/sids and then reencrypted with sids/master keys of newer windows installation.