remoting/android/java/src/org/chromium/chromoting/ThirdPartyTokenFetcher.java - Issue 463393002: Android Chromoting: Initialize SecureRandom generator.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: remoting/android/java/src/org/chromium/chromoting/ThirdPartyTokenFetcher.java

Issue 463393002: Android Chromoting: Initialize SecureRandom generator. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Pull initialization code into a reusable class Created 6 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« remoting/android/java/src/org/chromium/chromoting/SecureRandomInitializer.java ('K') | « remoting/android/java/src/org/chromium/chromoting/SecureRandomInitializer.java ('k') | no next file » | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: remoting/android/java/src/org/chromium/chromoting/ThirdPartyTokenFetcher.java

diff --git a/remoting/android/java/src/org/chromium/chromoting/ThirdPartyTokenFetcher.java b/remoting/android/java/src/org/chromium/chromoting/ThirdPartyTokenFetcher.java

index ac195cf617acbc1cbb598000b5dd1fa87c2dd55c..7d8dee5de8d728a042b96288cab691a0a53a27b7 100644

--- a/remoting/android/java/src/org/chromium/chromoting/ThirdPartyTokenFetcher.java

+++ b/remoting/android/java/src/org/chromium/chromoting/ThirdPartyTokenFetcher.java

@@ -4,6 +4,7 @@

package org.chromium.chromoting;

+import android.annotation.SuppressLint;

import android.app.Activity;

import android.content.ActivityNotFoundException;

import android.content.ComponentName;

@@ -14,6 +15,7 @@ import android.text.TextUtils;

import android.util.Base64;

import android.util.Log;

+import java.io.IOException;

import java.security.SecureRandom;

import java.util.ArrayList;

@@ -39,7 +41,19 @@ public class ThirdPartyTokenFetcher {

private static final String RESPONSE_TYPE = "code token";

/** This is used to securely generate an opaque 128 bit for the |mState| variable. */

- private static SecureRandom sSecureRandom = new SecureRandom();

+ @SuppressLint("TrulyRandom")

+ private static SecureRandom sSecureRandom;

+ // TODO(lambroslambrou): Refactor this class to only initialize a PRNG when ThirdPartyAuth is

+ // actually used.

+ static {

+ sSecureRandom = new SecureRandom();

+ try {

+ SecureRandomInitializer.initialize(sSecureRandom);

palmer 2014/08/18 17:47:52 I almost wonder if the interface should instead be

Lambros 2014/08/18 20:31:31 I thought about that, but there are a lot of Secur

+ } catch (IOException e) {

+ throw new RuntimeException("Failed to initialize PRNG: " + e);

+ }

/** This is used to launch the third party login page in the browser. */

private Activity mContext;