Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(537)

Side by Side Diff: chrome/browser/password_manager/encryptor_linux.cc

Issue 2931020: AutoFill credit cards should be obfuscated on Linux (Closed)
Patch Set: Merge with trunk and Mac changes. Created 10 years, 5 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « no previous file | chrome/browser/password_manager/encryptor_unittest.cc » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2006-2008 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2010 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #include "chrome/browser/password_manager/encryptor.h" 5 #include "chrome/browser/password_manager/encryptor.h"
6 6
7 #include "base/crypto/encryptor.h"
8 #include "base/crypto/symmetric_key.h"
7 #include "base/logging.h" 9 #include "base/logging.h"
10 #include "base/scoped_ptr.h"
8 #include "base/utf_string_conversions.h" 11 #include "base/utf_string_conversions.h"
9 12
13 namespace {
14
15 // Salt for Symmetric key derivation.
16 const char kSalt[] = "saltysalt";
17
18 // Key size required for 128 bit AES.
19 const size_t kDerivedKeySizeInBits = 128;
20
21 // Constant for Symmetic key derivation.
22 const size_t kEncryptionIterations = 1;
23
24 // Size of initialization vector for AES 128-bit.
25 const size_t kIVBlockSizeAES128 = 16;
26
27 // Prefix for cypher text returned by obfuscation version. We prefix the
28 // cyphertext with this string so that future data migration can detect
29 // this and migrate to full encryption without data loss.
30 const char kObfuscationPrefix[] = "v10";
31
32 // Generates a newly allocated SymmetricKey object based a hard-coded password.
33 // Ownership of the key is passed to the caller. Returns NULL key if a key
34 // generation error occurs.
35 base::SymmetricKey* GetEncryptionKey() {
36 // We currently "obfuscate" by encrypting and decrypting with hard-coded
37 // password. We need to improve this password situation by moving a secure
38 // password into a system-level key store.
39 // http://crbug.com/25404 and http://crbug.com/49115
40 std::string password = "peanuts";
41 std::string salt(kSalt);
42
43 // Create an encryption key from our password and salt.
44 scoped_ptr<base::SymmetricKey> encryption_key(
45 base::SymmetricKey::DeriveKeyFromPassword(base::SymmetricKey::AES,
46 password,
47 salt,
48 kEncryptionIterations,
49 kDerivedKeySizeInBits));
50 DCHECK(encryption_key.get());
51
52 return encryption_key.release();
53 }
54
55 } // namespace
56
10 bool Encryptor::EncryptString16(const string16& plaintext, 57 bool Encryptor::EncryptString16(const string16& plaintext,
11 std::string* ciphertext) { 58 std::string* ciphertext) {
12 return EncryptString(UTF16ToUTF8(plaintext), ciphertext); 59 return EncryptString(UTF16ToUTF8(plaintext), ciphertext);
13 } 60 }
14 61
15 bool Encryptor::DecryptString16(const std::string& ciphertext, 62 bool Encryptor::DecryptString16(const std::string& ciphertext,
16 string16* plaintext) { 63 string16* plaintext) {
17 std::string utf8; 64 std::string utf8;
18 if (!DecryptString(ciphertext, &utf8)) 65 if (!DecryptString(ciphertext, &utf8))
19 return false; 66 return false;
20 67
21 *plaintext = UTF8ToUTF16(utf8); 68 *plaintext = UTF8ToUTF16(utf8);
22 return true; 69 return true;
23 } 70 }
24 71
25 bool Encryptor::EncryptString(const std::string& plaintext, 72 bool Encryptor::EncryptString(const std::string& plaintext,
26 std::string* ciphertext) { 73 std::string* ciphertext) {
27 // This doesn't actually encrypt, we need to work on the Encryptor API. 74 // This currently "obfuscates" by encrypting with hard-coded password.
28 // http://code.google.com/p/chromium/issues/detail?id=25404 75 // We need to improve this password situation by moving a secure password
76 // into a system-level key store.
77 // http://crbug.com/25404 and http://crbug.com/49115
29 78
30 // this does a copy 79 if (plaintext.empty()) {
31 ciphertext->assign(plaintext.data(), plaintext.length()); 80 *ciphertext = std::string();
81 return true;
82 }
83
84 scoped_ptr<base::SymmetricKey> encryption_key(GetEncryptionKey());
85 if (!encryption_key.get())
86 return false;
87
88 std::string iv(kIVBlockSizeAES128, ' ');
89 base::Encryptor encryptor;
90 if (!encryptor.Init(encryption_key.get(), base::Encryptor::CBC, iv))
91 return false;
92
93 if (!encryptor.Encrypt(plaintext, ciphertext))
94 return false;
95
96 // Prefix the cypher text with version information.
97 ciphertext->insert(0, kObfuscationPrefix);
32 return true; 98 return true;
33 } 99 }
34 100
35 bool Encryptor::DecryptString(const std::string& ciphertext, 101 bool Encryptor::DecryptString(const std::string& ciphertext,
36 std::string* plaintext) { 102 std::string* plaintext) {
37 // This doesn't actually decrypt, we need to work on the Encryptor API. 103 // This currently "obfuscates" by encrypting with hard-coded password.
38 // http://code.google.com/p/chromium/issues/detail?id=25404 104 // We need to improve this password situation by moving a secure password
105 // into a system-level key store.
106 // http://crbug.com/25404 and http://crbug.com/49115
39 107
40 plaintext->assign(ciphertext.data(), ciphertext.length()); 108 if (ciphertext.empty()) {
109 *plaintext = std::string();
110 return true;
111 }
112
113 // Check that the incoming cyphertext was indeed encrypted with the expected
114 // version. If the prefix is not found then we'll assume we're dealing with
115 // old data saved as clear text and we'll return it directly.
116 // Credit card numbers are current legacy data, so false match with prefix
117 // won't happen.
118 if (ciphertext.find(kObfuscationPrefix) != 0) {
119 *plaintext = ciphertext;
120 return true;
121 }
122
123 // Strip off the versioning prefix before decrypting.
124 std::string raw_ciphertext = ciphertext.substr(strlen(kObfuscationPrefix));
125
126 scoped_ptr<base::SymmetricKey> encryption_key(GetEncryptionKey());
127 if (!encryption_key.get())
128 return false;
129
130 std::string iv(kIVBlockSizeAES128, ' ');
131 base::Encryptor encryptor;
132 if (!encryptor.Init(encryption_key.get(), base::Encryptor::CBC, iv))
133 return false;
134
135 if (!encryptor.Decrypt(raw_ciphertext, plaintext))
136 return false;
137
41 return true; 138 return true;
42 } 139 }
OLDNEW
« no previous file with comments | « no previous file | chrome/browser/password_manager/encryptor_unittest.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698