chromium/src
0
Fork 0
Code Activity
Files
017fc373a03295e6672c7552152bfb84e81c83f6
src/crypto
History
Nina Satragno 829f87d7db [crypto] Explicitly label win unexportable keys 
Chrome used to rely on an undocumented Windows feature to export wrapped
NCrypt keys to avoid storing metadata about them. This is risky: the
Windows API could stop working underneath us, and it doesn't work for
the software backend, so it's blocking crbug.com/398125798.

Instead, do the same thing we do on MacOS and generate a random
identifier for the key. When loading a TPM key, try to do it both by
name and from the wrapped key to support previously created keys.

Fixed: 398125799
Change-Id: I4747ba1b8777a11783d8bfe8937e0f1ed7a9bfb8
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/6297627
Reviewed-by: David Benjamin <davidben@chromium.org>
Commit-Queue: Nina Satragno <nsatragno@chromium.org>
Auto-Submit: Nina Satragno <nsatragno@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1424722}
2025-02-25 12:38:16 -08:00
..
aead_unittest.cc
Suppress unsafe_libc_call warning for initial identified files.
2025-01-28 18:11:08 -08:00
aead.cc
aead.h
aes_cbc_unittest.cc
//crypto: add AES-CBC API
2024-10-23 17:28:03 +00:00
aes_cbc.cc
//crypto: add AES-CBC API
2024-10-23 17:28:03 +00:00
aes_cbc.h
//crypto: add AES-CBC API
2024-10-23 17:28:03 +00:00
aes_ctr_unittest.cc
crypto: add AES-CTR interface
2024-11-27 16:17:21 +00:00
aes_ctr.cc
crypto: add AES-CTR interface
2024-11-27 16:17:21 +00:00
aes_ctr.h
crypto: add AES-CTR interface
2024-11-27 16:17:21 +00:00
apple_keychain_ios.mm
apple_keychain_mac.cc
apple_keychain_util_unittest.mm
apple_keychain_util.h
apple_keychain_util.mm
apple_keychain_v2.h
apple_keychain_v2.mm
apple_keychain.h
BUILD.gn
Remove Lacros leftovers from crypto/
2025-02-11 16:31:33 -08:00
chaps_support.cc
chaps_support.h
crypto_export.h
DEPS
crypto: it's still useful to review crypto-using code.
2024-10-11 18:01:40 +00:00
DIR_METADATA
ec_private_key_unittest.cc
ec_private_key.cc
spanification: Add #pragma allow_unsafe_buffers to crypto/*
2024-07-18 17:26:55 +00:00
ec_private_key.h
ec_signature_creator_impl.cc
ec_signature_creator_impl.h
ec_signature_creator_unittest.cc
Remove usage of base::make_span(): crypto/
2024-11-28 22:05:07 +00:00
ec_signature_creator.cc
ec_signature_creator.h
encryptor_unittest.cc
crypto: don't re-derive keys in encryptor tests
2025-02-12 17:07:51 -08:00
encryptor.cc
Remove usage of base::make_span(): crypto/
2024-11-28 22:05:07 +00:00
encryptor.h
fake_apple_keychain_v2.h
fake_apple_keychain_v2.mm
[webauthn] Tag iCloud keys with security domain
2024-10-11 18:53:40 +00:00
features.cc
[crypto] Explicitly label win unexportable keys
2025-02-25 12:38:16 -08:00
features.gni
features.h
[crypto] Explicitly label win unexportable keys
2025-02-25 12:38:16 -08:00
hash_unittest.cc
crypto: fix death tests
2024-10-23 21:50:38 +00:00
hash.cc
//crypto: start reworking hash & hmac interfaces
2024-10-23 18:06:46 +00:00
hash.h
crypto/hash: export Hasher
2025-02-20 20:47:25 -08:00
hkdf.cc
Switch to compile-time sizes for various crypto methods/types.
2024-12-19 11:00:09 -08:00
hkdf.h
Switch to compile-time sizes for various crypto methods/types.
2024-12-19 11:00:09 -08:00
hmac_unittest.cc
Remove usage of base::make_span(): crypto/
2024-11-28 22:05:07 +00:00
hmac.cc
Remove usage of base::make_span(): crypto/
2024-11-28 22:05:07 +00:00
hmac.h
Remove usage of base::make_span(): crypto/
2024-11-28 22:05:07 +00:00
kdf_unittest.cc
crypto: add kdf interface
2024-10-10 20:51:36 +00:00
kdf.cc
crypto: add kdf interface
2024-10-10 20:51:36 +00:00
kdf.h
crypto: add kdf interface
2024-10-10 20:51:36 +00:00
mac_security_services_lock.cc
mac_security_services_lock.h
mock_apple_keychain_ios.cc
mock_apple_keychain_mac.cc
mock_apple_keychain_unittest.cc
Add basic unit test for MockAppleKeychain
2024-08-20 17:16:37 +00:00
mock_apple_keychain.cc
mock_apple_keychain.h
nss_crypto_module_delegate.h
nss_key_util_unittest.cc
spanification: Add #pragma allow_unsafe_buffers to crypto/*
2024-07-18 17:26:55 +00:00
nss_key_util.cc
spanification: Add #pragma allow_unsafe_buffers to crypto/*
2024-07-18 17:26:55 +00:00
nss_key_util.h
nss_util_chromeos.cc
Remove most remaining CHECK(false)s
2024-11-22 10:42:01 +00:00
nss_util_internal.h
Remove Lacros leftovers from crypto/
2025-02-11 16:31:33 -08:00
nss_util_unittest.cc
nss_util.cc
Remove Lacros leftovers from crypto/
2025-02-11 16:31:33 -08:00
nss_util.h
Remove Lacros leftovers from crypto/
2025-02-11 16:31:33 -08:00
openssl_util.cc
openssl_util.h
Suppress unsafe_libc_call warning for initial identified files.
2025-01-28 18:11:08 -08:00
OWNERS
root: add CRYPTO_OWNERS
2024-08-14 15:40:02 +00:00
process_bound_string_unittest.cc
Add encrypted string support in crypto
2024-10-11 23:53:50 +00:00
process_bound_string.cc
Add trace events for DPAPI CryptProtectMemory calls
2024-12-18 14:08:53 -08:00
process_bound_string.h
Add encrypted string support in crypto
2024-10-11 23:53:50 +00:00
random_unittest.cc
Cleanups from stricter span usage of size_t: crypto
2024-11-21 17:54:03 +00:00
random.cc
random.h
rsa_private_key_unittest.cc
spanification: Add #pragma allow_unsafe_buffers to crypto/*
2024-07-18 17:26:55 +00:00
rsa_private_key.cc
spanification: Add #pragma allow_unsafe_buffers to crypto/*
2024-07-18 17:26:55 +00:00
rsa_private_key.h
scoped_capi_types.h
Further windows.h cleanups.
2025-01-21 12:13:23 -08:00
scoped_cng_types.h
scoped_fake_apple_keychain_v2.h
scoped_fake_apple_keychain_v2.mm
scoped_fake_user_verifying_key_provider.cc
[WebAuthn] Add additional logging for UV key usage by EnclaveManager
2024-07-11 19:53:53 +00:00
scoped_fake_user_verifying_key_provider.h
scoped_lacontext.h
scoped_lacontext.mm
scoped_mock_unexportable_key_provider.cc
scoped_mock_unexportable_key_provider.h
scoped_nss_types.h
scoped_test_nss_chromeos_user.cc
scoped_test_nss_chromeos_user.h
scoped_test_nss_db.cc
scoped_test_nss_db.h
scoped_test_system_nss_key_slot.cc
scoped_test_system_nss_key_slot.h
secure_hash_unittest.cc
Suppress unsafe_libc_call warning for initial identified files.
2025-01-28 18:11:08 -08:00
secure_hash.cc
Suppress unsafe_libc_call warning for initial identified files.
2025-01-28 18:11:08 -08:00
secure_hash.h
//crypto: start reworking hash & hmac interfaces
2024-10-23 18:06:46 +00:00
secure_util.cc
//crypto: spanify SecureMemEqual
2024-10-18 03:18:26 +00:00
secure_util.h
//crypto: spanify SecureMemEqual
2024-10-18 03:18:26 +00:00
sha2_unittest.cc
Verify empty string hashes fine
2024-08-29 22:17:18 +00:00
sha2.cc
sha2.h
//crypto: start reworking hash & hmac interfaces
2024-10-23 18:06:46 +00:00
signature_creator_unittest.cc
Remove usage of base::make_span(): crypto/
2024-11-28 22:05:07 +00:00
signature_creator.cc
signature_creator.h
signature_verifier_unittest.cc
Remove usage of base::make_span(): crypto/
2024-11-28 22:05:07 +00:00
signature_verifier.cc
spanification: Add #pragma allow_unsafe_buffers to crypto/*
2024-07-18 17:26:55 +00:00
signature_verifier.h
subtle_passkey.cc
crypto: add kdf interface
2024-10-10 20:51:36 +00:00
subtle_passkey.h
ash: migrate ash::Key to new crypto APIs
2025-02-12 17:51:13 -08:00
symmetric_key_unittest.cc
crypto/symmetrickey: remove most remaining methods
2025-02-24 13:05:30 -08:00
symmetric_key.cc
crypto/symmetrickey: remove most remaining methods
2025-02-24 13:05:30 -08:00
symmetric_key.h
crypto/symmetrickey: remove most remaining methods
2025-02-24 13:05:30 -08:00
unexportable_key_mac_unittest.mm
[crypto] Remove mac unexportable keys flag
2024-10-11 17:44:10 +00:00
unexportable_key_mac.h
unexportable_key_mac.mm
[crypto] Remove mac unexportable keys flag
2024-10-11 17:44:10 +00:00
unexportable_key_metrics_unittest.cc
unexportable_key_metrics.cc
[Code Health] Remove stale feature flag kTpmLatencyMetrics
2025-02-06 13:47:52 -08:00
unexportable_key_metrics.h
[crypto] Fix UMA recording TPM key creation from a wrapped key on Win
2025-01-14 02:25:12 -08:00
unexportable_key_software_unsecure.cc
Add RSA software unsecure provider
2024-10-04 18:35:34 +00:00
unexportable_key_unittest.cc
[crypto] Explicitly label win unexportable keys
2025-02-25 12:38:16 -08:00
unexportable_key_win.cc
[crypto] Explicitly label win unexportable keys
2025-02-25 12:38:16 -08:00
unexportable_key_win.h
unexportable_key.cc
webauthn: record software keys as such at the enclave.
2024-07-12 17:57:37 +00:00
unexportable_key.h
webauthn: record software keys as such at the enclave.
2024-07-12 17:57:37 +00:00
user_verifying_key_mac_unittest.mm
[crypto] Remove mac unexportable keys flag
2024-10-11 17:44:10 +00:00
user_verifying_key_mac.mm
webauthn: tag non-hardware user verification keys as "swuv".
2024-08-02 19:44:23 +00:00
user_verifying_key_win.cc
webauthn: tag non-hardware user verification keys as "swuv".
2024-08-02 19:44:23 +00:00
user_verifying_key.cc
webauthn: tag non-hardware user verification keys as "swuv".
2024-08-02 19:44:23 +00:00
user_verifying_key.h
webauthn: tag non-hardware user verification keys as "swuv".
2024-08-02 19:44:23 +00:00