components/os_crypt/key_storage_linux.cc - Issue 1973483002: OSCrypt for POSIX uses libsecret to store a randomised encryption key.

Side by Side Diff: components/os_crypt/key_storage_linux.cc

Issue 1973483002: OSCrypt for POSIX uses libsecret to store a randomised encryption key. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Refactored CL Created 4 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch

« components/os_crypt/key_storage_linux.h ('K') | « components/os_crypt/key_storage_linux.h ('k') | components/os_crypt/libsecret_util_posix.h » ('j') | components/os_crypt/libsecret_util_posix.cc » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

OLD	NEW
(Empty)
	1 // Copyright 2016 The Chromium Authors. All rights reserved.

	2 // Use of this source code is governed by a BSD-style license that can be

	3 // found in the LICENSE file.

	4

	5 #include "components/os_crypt/key_storage_linux.h"

	6

	7 #include "base/base64.h"

	8 #include "base/rand_util.h"

	9 #include "base/strings/string_number_conversions.h"

	10 #include "components/os_crypt/libsecret_util_posix.h"

	11

	12 #ifdef OFFICIAL_BUILD
	vabr (Chromium) 2016/05/13 15:10:17 I'm not sure we need to differentiate the name her I'm not sure we need to differentiate the name here. It is not particularly user-facing, and there is no problem arising from potential clashes between Chrome and Chromium running on the same computer (it can also be multiple instances of the official build in parallel, anyway). So to keep out unnecessary #ifdefs, I would just go with the "Chromium" version. cfroussios 2016/05/13 17:09:11 This name is the name Seahorse uses to display the Show quoted text On 2016/05/13 15:10:17, vabr (OOO until 22 May) wrote: > I'm not sure we need to differentiate the name here. It is not particularly > user-facing, and there is no problem arising from potential clashes between > Chrome and Chromium running on the same computer (it can also be multiple > instances of the official build in parallel, anyway). So to keep out unnecessary > #ifdefs, I would just go with the "Chromium" version. This name is the name Seahorse uses to display the entry. I did it to be consistent with the mac implementation, which also does this.
	13 const char kKeyStorageEntryName[] = "Chrome Safe Storage";

	14 #else

	15 const char kKeyStorageEntryName[] = "Chromium Safe Storage";

	16 #endif

	17

	18 // static

	19 std::unique_ptr<KeyStorage> KeyStorage::FindService() {
	vabr (Chromium) 2016/05/13 15:10:17 nit: Here "Find" is a bit confusing. It sounds lik nit: Here "Find" is a bit confusing. It sounds like there is a pool of already created objects, which are searched for the one to return. Instead this just creates a new one or gives up completely. My suggestion: The appropriate name would be Create(). cfroussios 2016/05/13 17:09:11 Done. Show quoted text On 2016/05/13 15:10:17, vabr (OOO until 22 May) wrote: > nit: Here "Find" is a bit confusing. It sounds like there is a pool of already > created objects, which are searched for the one to return. Instead this just > creates a new one or gives up completely. > > My suggestion: The appropriate name would be Create(). Done.
	20 std::unique_ptr<KeyStorage> key_storage;

	21

	22 key_storage.reset(new KeyStorageLibsecret());
	vabr (Chromium) 2016/05/13 15:10:17 nit: You can merge lines 20 and 22. nit: You can merge lines 20 and 22. cfroussios 2016/05/13 17:09:11 I added this redundant expression to be symmetrica Show quoted text On 2016/05/13 15:10:17, vabr (OOO until 22 May) wrote: > nit: You can merge lines 20 and 22. I added this redundant expression to be symmetrical with other KeyStorages, that are not yet implemented.
	23 if (key_storage->Init())

	24 return key_storage;

	25

	26 return nullptr;

	27 }

	28

	29 const SecretSchema kKeystoreSchema = {

	30 "chrome_libsecret_os_crypt_password",

	31 SECRET_SCHEMA_NONE,

	32 {

	33 {nullptr, SECRET_SCHEMA_ATTRIBUTE_STRING},

	34 }};

	35

	36 std::string AddRandomPasswordInLibsecret() {
	vabr (Chromium) 2016/05/13 15:10:17 nit: Please put local (=not exported beyond this . nit: Please put local (=not exported beyond this .cc file) functions into an anonymous namespace. cfroussios 2016/05/13 17:09:11 Done. Show quoted text On 2016/05/13 15:10:17, vabr (OOO until 22 May) wrote: > nit: Please put local (=not exported beyond this .cc file) functions into an > anonymous namespace. Done.
	37 std::string password;

	38 base::Base64Encode(base::RandBytesAsString(128 / 8), &password);

	39 GError* error = nullptr;

	40 LibsecretLoader::secret_password_store_sync(

	41 &kKeystoreSchema, nullptr, kKeyStorageEntryName, password.c_str(),

	42 nullptr, &error, nullptr);

	43

	44 if (error) {

	45 VLOG(1) << "Libsecret lookup failed: " << error->message;

	46 return std::string();

	47 }

	48 return password;

	49 }

	50

	51 std::string KeyStorageLibsecret::GetKey() {

	52 GError* error = nullptr;

	53 LibsecretAttributesBuilder attrs;

	54 SecretValue* password_libsecret = LibsecretLoader::secret_service_lookup_sync(

	55 nullptr, &kKeystoreSchema, attrs.Get(), nullptr, &error);

	56

	57 if (error) {

	58 VLOG(1) << "Libsecret lookup failed: " << error->message;

	59 g_error_free(error);

	60 return "";
	vabr (Chromium) 2016/05/13 15:10:17 "" -> std::string() "" -> std::string() cfroussios 2016/05/13 17:09:11 Done. Show quoted text On 2016/05/13 15:10:17, vabr (OOO until 22 May) wrote: > "" -> std::string() Done.
	61 } else if (password_libsecret == nullptr) {

	62 return AddRandomPasswordInLibsecret();

	63 } else {

	64 std::string password(

	65 LibsecretLoader::secret_value_get_text(password_libsecret));

	66 LibsecretLoader::secret_value_unref(password_libsecret);

	67 return password;

	68 }

	69 }

	70

	71 bool KeyStorageLibsecret::Init() {

	72 return LibsecretLoader::EnsureLibsecretLoaded();

	73 }

	74

	75 KeyStorageMock::KeyStorageMock(std::string in_key) : key(in_key) {}
	vabr (Chromium) 2016/05/13 15:10:17 Either use std::move(in_key) or change the type of Either use std::move(in_key) or change the type of in_key to "const std::string&" to avoid unnecessary copies. cfroussios 2016/05/13 17:09:11 Done. Show quoted text On 2016/05/13 15:10:17, vabr (OOO until 22 May) wrote: > Either use std::move(in_key) or change the type of in_key to "const > std::string&" to avoid unnecessary copies. Done.
	76

	77 std::string KeyStorageMock::GetKey() {

	78 if (key == "")
	vabr (Chromium) 2016/05/13 15:10:17 if (key_.empty()) (empty() is more efficient than if (key_.empty()) (empty() is more efficient than string comparison.) cfroussios 2016/05/13 17:09:11 Done. Show quoted text On 2016/05/13 15:10:17, vabr (OOO until 22 May) wrote: > if (key_.empty()) > > (empty() is more efficient than string comparison.) Done.
	79 base::Base64Encode(base::RandBytesAsString(128 / 8), &key);

	80 return key;

	81 }

	82

	83 bool KeyStorageMock::Init() {

	84 return true;

	85 }

	86

	87 void KeyStorageMock::ResetTo(std::string in_key) {

	88 key = std::move(in_key);

	89 }

OLD	NEW