Commit aa3d28f3 authored by sebsg's avatar sebsg Committed by Commit Bot

[AF] Use account id hash as key for wallet sync transport opt-in pref.

Bug: 907929
Change-Id: I6cc9d7a908010c204fc8060802c7ee453363ffa3
Reviewed-on: https://chromium-review.googlesource.com/c/1349455
Commit-Queue: Sebastien Seguin-Gagnon <sebsg@chromium.org>
Reviewed-by: default avatarDavid Benjamin <davidben@chromium.org>
Reviewed-by: default avatarFabio Tirelo <ftirelo@chromium.org>
Cr-Commit-Position: refs/heads/master@{#612769}
parent c467f29f
...@@ -58,6 +58,7 @@ jumbo_static_library("common") { ...@@ -58,6 +58,7 @@ jumbo_static_library("common") {
"//components/pref_registry", "//components/pref_registry",
"//components/prefs", "//components/prefs",
"//components/variations", "//components/variations",
"//crypto",
"//ui/base", "//ui/base",
"//ui/gfx/geometry", "//ui/gfx/geometry",
"//url", "//url",
......
include_rules = [
"+crypto/sha2.h",
]
...@@ -7,27 +7,32 @@ ...@@ -7,27 +7,32 @@
#include "components/pref_registry/pref_registry_syncable.h" #include "components/pref_registry/pref_registry_syncable.h"
#include "components/prefs/pref_service.h" #include "components/prefs/pref_service.h"
#include "components/prefs/scoped_user_pref_update.h" #include "components/prefs/scoped_user_pref_update.h"
#include "crypto/sha2.h"
namespace autofill { namespace autofill {
namespace prefs { namespace prefs {
namespace { namespace {
// TODO(crbug.com/907929): Use a hash of the account id. // Returns the opt-in bitfield for the specific |account_id| or 0 if no entry
// Returns the opt-in bitfield for the specifiec |account_id| or 0 if no entry
// was found. // was found.
int GetSyncTransportOptInBitFieldForAccount(const PrefService* prefs, int GetSyncTransportOptInBitFieldForAccount(const PrefService* prefs,
const std::string& account_id) { const std::string& account_hash) {
auto* upload_events = // We should always be passed an account hash, as we don't want to store the
prefs->GetDictionary(prefs::kAutofillSyncTransportOptIn); // account id in clear in the prefs.
DCHECK_EQ(crypto::kSHA256Length, account_hash.size());
auto* dictionary = prefs->GetDictionary(prefs::kAutofillSyncTransportOptIn);
// If there is no dictionary or no entry in the dictionary, it means the // If there is no dictionary it means the account didn't opt-in. Use 0 because
// account didn't opt-in. Use 0 because it's the same as not having opted-in // it's the same as not having opted-in to anything.
// to anything. if (!dictionary) {
if (!upload_events) {
return 0; return 0;
} }
// If there is no entry in the dictionary, it means the account didn't opt-in.
// Use 0 because it's the same as not having opted-in to anything.
auto* found = auto* found =
upload_events->FindKeyOfType(account_id, base::Value::Type::INTEGER); dictionary->FindKeyOfType(account_hash, base::Value::Type::INTEGER);
return found ? found->GetInt() : 0; return found ? found->GetInt() : 0;
} }
...@@ -265,12 +270,17 @@ std::string GetAllProfilesValidityMapsEncodedString(const PrefService* prefs) { ...@@ -265,12 +270,17 @@ std::string GetAllProfilesValidityMapsEncodedString(const PrefService* prefs) {
void SetUserOptedInWalletSyncTransport(PrefService* prefs, void SetUserOptedInWalletSyncTransport(PrefService* prefs,
const std::string& account_id, const std::string& account_id,
bool opted_in) { bool opted_in) {
// Get the hash of the account id. The hashing here is only a secondary bit of
// obfuscation. The primary privacy guarantees are handled by clearing this
// whenever cookies are cleared.
const std::string account_hash = crypto::SHA256HashString(account_id);
DictionaryPrefUpdate update(prefs, prefs::kAutofillSyncTransportOptIn); DictionaryPrefUpdate update(prefs, prefs::kAutofillSyncTransportOptIn);
int value = GetSyncTransportOptInBitFieldForAccount(prefs, account_id); int value = GetSyncTransportOptInBitFieldForAccount(prefs, account_hash);
// If the user has opted in, set that bit while leaving the others intact. // If the user has opted in, set that bit while leaving the others intact.
if (opted_in) { if (opted_in) {
update->SetKey(account_id, update->SetKey(account_hash,
base::Value(value | sync_transport_opt_in::kWallet)); base::Value(value | sync_transport_opt_in::kWallet));
return; return;
} }
...@@ -278,17 +288,20 @@ void SetUserOptedInWalletSyncTransport(PrefService* prefs, ...@@ -278,17 +288,20 @@ void SetUserOptedInWalletSyncTransport(PrefService* prefs,
// Invert the mask in order to reset the Wallet bit while leaving the other // Invert the mask in order to reset the Wallet bit while leaving the other
// bits intact, or remove the key entirely if the Wallet was the only opt-in. // bits intact, or remove the key entirely if the Wallet was the only opt-in.
if (value & ~sync_transport_opt_in::kWallet) { if (value & ~sync_transport_opt_in::kWallet) {
update->SetKey(account_id, update->SetKey(account_hash,
base::Value(value & ~sync_transport_opt_in::kWallet)); base::Value(value & ~sync_transport_opt_in::kWallet));
} else { } else {
update->RemoveKey(account_id); update->RemoveKey(account_hash);
} }
} }
bool IsUserOptedInWalletSyncTransport(const PrefService* prefs, bool IsUserOptedInWalletSyncTransport(const PrefService* prefs,
const std::string& account_id) { const std::string& account_id) {
// Get the hash of the account id.
const std::string account_hash = crypto::SHA256HashString(account_id);
// Return whether the wallet opt-in bit is set. // Return whether the wallet opt-in bit is set.
return GetSyncTransportOptInBitFieldForAccount(prefs, account_id) & return GetSyncTransportOptInBitFieldForAccount(prefs, account_hash) &
sync_transport_opt_in::kWallet; sync_transport_opt_in::kWallet;
} }
......
...@@ -83,48 +83,68 @@ TEST_F(AutofillPrefsTest, WalletSyncTransportPref_GetAndSet) { ...@@ -83,48 +83,68 @@ TEST_F(AutofillPrefsTest, WalletSyncTransportPref_GetAndSet) {
ASSERT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account1)); ASSERT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account1));
ASSERT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account2)); ASSERT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account2));
// There should be no entry for the accounts in the dictionary. // There should be no entry for the accounts in the dictionary.
auto* upload_events = EXPECT_TRUE(pref_service()
pref_service()->GetDictionary(prefs::kAutofillSyncTransportOptIn); ->GetDictionary(prefs::kAutofillSyncTransportOptIn)
EXPECT_EQ(nullptr, ->DictEmpty());
upload_events->FindKeyOfType(account1, base::Value::Type::INTEGER));
EXPECT_EQ(nullptr,
upload_events->FindKeyOfType(account2, base::Value::Type::INTEGER));
// Set the opt-in for the first account. // Set the opt-in for the first account.
SetUserOptedInWalletSyncTransport(pref_service(), account1, true); SetUserOptedInWalletSyncTransport(pref_service(), account1, true);
EXPECT_TRUE(IsUserOptedInWalletSyncTransport(pref_service(), account1)); EXPECT_TRUE(IsUserOptedInWalletSyncTransport(pref_service(), account1));
EXPECT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account2)); EXPECT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account2));
// There should be an entry for the first account only in the dictionary. // There should only be one entry in the dictionary.
upload_events = EXPECT_EQ(1U, pref_service()
pref_service()->GetDictionary(prefs::kAutofillSyncTransportOptIn); ->GetDictionary(prefs::kAutofillSyncTransportOptIn)
EXPECT_NE(nullptr, ->DictSize());
upload_events->FindKeyOfType(account1, base::Value::Type::INTEGER));
EXPECT_EQ(nullptr,
upload_events->FindKeyOfType(account2, base::Value::Type::INTEGER));
// Unset the opt-in for the first account. // Unset the opt-in for the first account.
SetUserOptedInWalletSyncTransport(pref_service(), account1, false); SetUserOptedInWalletSyncTransport(pref_service(), account1, false);
EXPECT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account1)); EXPECT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account1));
EXPECT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account2)); EXPECT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account2));
// There should be no entry for the accounts in the dictionary. // There should be no entry for the accounts in the dictionary.
upload_events = EXPECT_TRUE(pref_service()
pref_service()->GetDictionary(prefs::kAutofillSyncTransportOptIn); ->GetDictionary(prefs::kAutofillSyncTransportOptIn)
EXPECT_EQ(nullptr, ->DictEmpty());
upload_events->FindKeyOfType(account1, base::Value::Type::INTEGER));
EXPECT_EQ(nullptr,
upload_events->FindKeyOfType(account2, base::Value::Type::INTEGER));
// Set the opt-in for the second account. // Set the opt-in for the second account.
SetUserOptedInWalletSyncTransport(pref_service(), account2, true); SetUserOptedInWalletSyncTransport(pref_service(), account2, true);
EXPECT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account1)); EXPECT_FALSE(IsUserOptedInWalletSyncTransport(pref_service(), account1));
EXPECT_TRUE(IsUserOptedInWalletSyncTransport(pref_service(), account2)); EXPECT_TRUE(IsUserOptedInWalletSyncTransport(pref_service(), account2));
// There should be an entry for the second account only in the dictionary. // There should only be one entry in the dictionary.
upload_events = EXPECT_EQ(1U, pref_service()
->GetDictionary(prefs::kAutofillSyncTransportOptIn)
->DictSize());
// Set the opt-in for the first account too.
SetUserOptedInWalletSyncTransport(pref_service(), account1, true);
EXPECT_TRUE(IsUserOptedInWalletSyncTransport(pref_service(), account1));
EXPECT_TRUE(IsUserOptedInWalletSyncTransport(pref_service(), account1));
// There should be tow entries in the dictionary.
EXPECT_EQ(2U, pref_service()
->GetDictionary(prefs::kAutofillSyncTransportOptIn)
->DictSize());
}
// Tests that AutofillSyncTransportOptIn is not stored using the plain text
// account id.
TEST_F(AutofillPrefsTest, WalletSyncTransportPref_UsesHashAccountId) {
const std::string account1 = "account1";
// There should be no opt-in recorded at first.
EXPECT_TRUE(pref_service()
->GetDictionary(prefs::kAutofillSyncTransportOptIn)
->DictEmpty());
// Set the opt-in for the first account.
SetUserOptedInWalletSyncTransport(pref_service(), account1, true);
EXPECT_FALSE(pref_service()
->GetDictionary(prefs::kAutofillSyncTransportOptIn)
->DictEmpty());
// Make sure that the dictionary keys don't contain the account id.
auto* dictionary =
pref_service()->GetDictionary(prefs::kAutofillSyncTransportOptIn); pref_service()->GetDictionary(prefs::kAutofillSyncTransportOptIn);
EXPECT_EQ(nullptr, EXPECT_EQ(NULL,
upload_events->FindKeyOfType(account1, base::Value::Type::INTEGER)); dictionary->FindKeyOfType(account1, base::Value::Type::INTEGER));
EXPECT_NE(nullptr,
upload_events->FindKeyOfType(account2, base::Value::Type::INTEGER));
} }
// Tests that clearing the AutofillSyncTransportOptIn works as expected. // Tests that clearing the AutofillSyncTransportOptIn works as expected.
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment