content/public/android/java/src/org/chromium/content/browser/installedapp/PackageHash.java - Issue 2802603002: getInstalledRelatedApps: Introduce random delay to stop timing attacks.

Unified Diff: content/public/android/java/src/org/chromium/content/browser/installedapp/PackageHash.java

Issue 2802603002: getInstalledRelatedApps: Introduce random delay to stop timing attacks. (Closed)

Patch Set: Added tests for PackageHash and the delay in InstalledAppProviderImpl. Created 3 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« content/public/android/java/src/org/chromium/content/browser/installedapp/InstalledAppProviderImpl.java ('K') | « content/public/android/java/src/org/chromium/content/browser/installedapp/InstalledAppProviderImpl.java ('k') | content/public/android/junit/src/org/chromium/content/browser/installedapp/InstalledAppProviderTest.java » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: content/public/android/java/src/org/chromium/content/browser/installedapp/PackageHash.java

diff --git a/content/public/android/java/src/org/chromium/content/browser/installedapp/PackageHash.java b/content/public/android/java/src/org/chromium/content/browser/installedapp/PackageHash.java

new file mode 100644

index 0000000000000000000000000000000000000000..ddfc3f04615445baa14fddcb8e949456ae262c68

--- /dev/null

+++ b/content/public/android/java/src/org/chromium/content/browser/installedapp/PackageHash.java

@@ -0,0 +1,78 @@

+// Use of this source code is governed by a BSD-style license that can be

+// found in the LICENSE file.

+package org.chromium.content.browser.installedapp;

+import org.chromium.base.VisibleForTesting;

+import java.io.UnsupportedEncodingException;

+import java.security.MessageDigest;

+import java.security.NoSuchAlgorithmException;

+import java.util.UUID;

+/**

+ * Helper class for retrieving a device-unique hash for an Android package name.

+ *

+ * This is used to counter a potential timing attack against the getInstalledRelatedApps API, by

+ * adding a pseudo-random time delay to the query. The delay is a hash of a globally unique

+ * identifier for the current browser session, and the package name, which means websites are unable

+ * to predict what each user's delay will be, nor compare between apps on a given device.

+ *

+ * The salt is generated per browser session (not per query, page load, user or device) because it

+ * we want it to change "occasionally" -- not too frequently, but sometimes. Each time the salt

+ * changes, it gives the site another opportunity to collect data that could be averaged out to

+ * cancel out the random noise and find the true timing. So we don't want it changing too often.

+ * However, it does need to change periodically: because installing or uninstalling the app creates

+ * a noticeable change to the timing of the operation, we need to occasionally change the salt to

+ * create plausible deniability (the attacker can't tell the difference between the salt changing

+ * and the app being installed/uninstalled).

+ */

+class PackageHash {

+ // Global salt string for the life of the browser process. A unique salt is generated for

+ // each run of the browser process that will be stable for its lifetime.

+ private static String sSalt;

+ /**

+ * Returns a SHA-256 hash of the package name, truncated to a 16-bit integer.

+ */

+ public static short hashForPackage(String packageName) {

+ String salt = getGlobalSalt();

palmer 2017/04/07 18:56:33 Instead, use ByteArrayGenerator.getBytes (content/

Matt Giuca 2017/04/10 08:33:40 Acknowledged. Will review tomorrow (ran out of tim

Matt Giuca 2017/04/11 08:34:08 Done.

+ String input = salt + ':' + packageName;

palmer 2017/04/07 18:56:33 It not hugely important for this low-entropy, best

Matt Giuca 2017/04/10 08:33:40 Acknowledged. Will review tomorrow.

Matt Giuca 2017/04/11 08:34:08 Done.

+ MessageDigest hasher;

+ try {

+ hasher = MessageDigest.getInstance("SHA-256");

+ } catch (NoSuchAlgorithmException e) {

+ // Should never happen.

+ throw new RuntimeException(e);

+ }

+ byte[] inputBytes;

+ try {

+ inputBytes = input.getBytes("UTF-8");

+ } catch (UnsupportedEncodingException e) {

+ // Should never happen.

+ throw new RuntimeException(e);

+ }

+ byte[] digest = hasher.digest(inputBytes);

+ // Take just the first two bytes of the digest.

+ int hash = ((((int) digest[0]) & 0xff) << 8) | (((int) digest[1]) & 0xff);

+ return (short) hash;

+ }

+ /**

+ * Gets the global salt for the current browser session.

+ *

+ * If one does not exist, generates one using a PRNG and caches it, then returns it.

+ */

+ private static String getGlobalSalt() {

+ if (sSalt == null) sSalt = UUID.randomUUID().toString();

+ return sSalt;

+ }

+ @VisibleForTesting

+ public static void setGlobalSaltForTesting(String salt) {

+ sSalt = salt;

+ }