Upstream/bitwarden-browser
1
0
Fork 0
mirror of https://github.com/bitwarden/browser.git synced 2025-02-08 00:01:28 +01:00
Code Issues Projects Releases Wiki Activity

wip

Browse Source
This commit is contained in:
Hinton 2020-10-16 17:08:53 +02:00
parent 41134aee98
commit 90bba83ae5
2 changed files with 41 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/background/main.background.ts
View File

@ -233,7 +233,7 @@ export default class MainBackground {
this.platformUtilsService as BrowserPlatformUtilsService, this.storageService, this.i18nService, this.platformUtilsService as BrowserPlatformUtilsService, this.storageService, this.i18nService,
this.analytics, this.notificationsService, this.systemService, this.vaultTimeoutService, this.analytics, this.notificationsService, this.systemService, this.vaultTimeoutService,
this.environmentService); this.environmentService);
this.nativeMessagingBackground = new NativeMessagingBackground(this.storageService, this.cryptoService, this.vaultTimeoutService, this.runtimeBackground); this.nativeMessagingBackground = new NativeMessagingBackground(this.storageService, this.cryptoService, this.cryptoFunctionService, this.vaultTimeoutService, this.runtimeBackground);
this.commandsBackground = new CommandsBackground(this, this.passwordGenerationService, this.commandsBackground = new CommandsBackground(this, this.passwordGenerationService,
this.platformUtilsService, this.analytics, this.vaultTimeoutService); this.platformUtilsService, this.analytics, this.vaultTimeoutService);

44
src/background/nativeMessaging.background.ts
View File

@ -1,19 +1,27 @@
import { CryptoService, LogService, VaultTimeoutService } from 'jslib/abstractions'; import { CryptoService, LogService, VaultTimeoutService } from 'jslib/abstractions';
import { CryptoFunctionService } from 'jslib/abstractions/cryptoFunction.service';
import { StorageService } from 'jslib/abstractions/storage.service'; import { StorageService } from 'jslib/abstractions/storage.service';
import { Utils } from 'jslib/misc/utils';
import { ConstantsService } from 'jslib/services'; import { ConstantsService } from 'jslib/services';
import { BrowserApi } from '../browser/browserApi'; import { BrowserApi } from '../browser/browserApi';
import RuntimeBackground from './runtime.background'; import RuntimeBackground from './runtime.background';
const MessageValidTimeout = 10 * 1000; const MessageValidTimeout = 10 * 1000;
const EncryptionAlgorithm = 'sha256';
export class NativeMessagingBackground { export class NativeMessagingBackground {
private connected = false; private connected = false;
private port: browser.runtime.Port | chrome.runtime.Port; private port: browser.runtime.Port | chrome.runtime.Port;
private resolver: any = null; private resolver: any = null;
publicKey: ArrayBuffer;
privateKey: ArrayBuffer;
private secureSetupResolve: any = null;
remotePublicKey: ArrayBufferLike;
constructor(private storageService: StorageService, private cryptoService: CryptoService, constructor(private storageService: StorageService, private cryptoService: CryptoService,
private vaultTimeoutService: VaultTimeoutService, private runtimeBackground: RuntimeBackground) {} private cryptoFunctionService: CryptoFunctionService, private vaultTimeoutService: VaultTimeoutService,
private runtimeBackground: RuntimeBackground) {}
connect() { connect() {
this.port = BrowserApi.connectNative('com.8bit.bitwarden'); this.port = BrowserApi.connectNative('com.8bit.bitwarden');
@ -33,9 +41,13 @@ export class NativeMessagingBackground {
this.connect(); this.connect();
} }
if (this.publicKey == null) {
await this.secureCommunication();
}
message.timestamp = Date.now(); message.timestamp = Date.now();
const encrypted = await this.cryptoService.encrypt(JSON.stringify(message)); const encrypted = await this.cryptoFunctionService.rsaEncrypt(Buffer.from(JSON.stringify(message)), this.remotePublicKey, EncryptionAlgorithm);
this.port.postMessage(encrypted); this.port.postMessage(encrypted);
} }
@ -55,7 +67,11 @@ export class NativeMessagingBackground {
} }
switch (message.command) { switch (message.command) {
case 'biometricUnlock': { case 'setupEncryption':
this.remotePublicKey = Utils.fromB64ToArray(message.publicKey).buffer;
this.secureSetupResolve();
break;
case 'biometricUnlock':
await this.storageService.remove(ConstantsService.biometricAwaitingAcceptance); await this.storageService.remove(ConstantsService.biometricAwaitingAcceptance);
const enabled = await this.storageService.get(ConstantsService.biometricUnlockKey); const enabled = await this.storageService.get(ConstantsService.biometricUnlockKey);
@ -71,7 +87,7 @@ export class NativeMessagingBackground {
this.runtimeBackground.processMessage({command: 'unlocked'}, null, null); this.runtimeBackground.processMessage({command: 'unlocked'}, null, null);
this.vaultTimeoutService.biometricLocked = false; this.vaultTimeoutService.biometricLocked = false;
} }
} break;
default: default:
// tslint:disable-next-line // tslint:disable-next-line
console.error('NativeMessage, got unknown command.'); console.error('NativeMessage, got unknown command.');
@ -81,4 +97,24 @@ export class NativeMessagingBackground {
this.resolver(message); this.resolver(message);
} }
} }
private async secureCommunication() {
// Using crypto function service directly since we cannot encrypt the private key as
// master key might not be available
[this.publicKey, this.privateKey] = await this.cryptoFunctionService.rsaGenerateKeyPair(2048);
this.sendUnencrypted({command: 'setupEncryption', publicKey: Utils.fromBufferToB64(this.publicKey)});
return new Promise((resolve, reject) => this.secureSetupResolve = resolve);
}
private async sendUnencrypted(message: any) {
if (!this.connected) {
this.connect();
}
message.timestamp = Date.now();
this.port.postMessage(message);
}
} }