Check passwords against the HIBP online service #4438
Conversation
wolframroesler
changed the title
wolframroesler
changed the title
wolframroesler
changed the title
wolframroesler
force-pushed
the
feature/hibp
branch
from
e74f100 to
b510b7f
Compare
|
I squashed and rebased all the commits. Only 1 visual comment here:
Otherwise this performs REALLY REALLY well! I got great results from my personal database. The only issue I saw was my credit card entries where I put my CVC code in the password field. That is fine because it was obvious to me and entry templates will help with that problem in the future. |
droidmonkey
force-pushed
the
feature/hibp
branch
from
b510b7f to
df10047
Compare
|
I am checking the code right now, and where it does work there are many efficiencies that can be had. Why do you jump from QString to StdString to C_Str? All operations can be smoothly done in QString. Additionally, you only use the HIBPDownloader once per password then reconstruct it, that is wasteful and the network manager can be loaded up with requests and it will do 5 at a time in batches. This will speed up lookups significantly. |
wolframroesler
force-pushed
the
feature/hibp
branch
from
106e0aa to
6b8d02d
Compare
|
Reworked as requested, please re-review. One more thing. I tried to put the following at the beginning of HibpDownloader.hpp: #ifndef WITH_XC_NETWORKING
#error This file requires KeePassXC to be built with network support.
#endifto make sure it was included only when KeePassXC was built with network support. To my surprise, the #error fires all the time, even when building with |
|
You need to |
|
@wolframroesler for your awareness i have made significant code enhancements locally and will be pushing them soon. I optimized as much as I could and standardized to Qt and code base. |
|
Pushed my code changes, here are some screenshots:
|
droidmonkey
force-pushed
the
feature/hibp
branch
from
7453ec2 to
41a2738
Compare
|
|
||
| private: | ||
| void makeHibpTable(); | ||
| void startValidation(); | ||
| QString countToText(int count); |
There was a problem hiding this comment.
Is there a reason why this is a non-static, non-const member function?
|
@droidmonkey Thanks for the rework, learned a lot from it :) I should have guessed that something like toHex exists in an all-bells-and-whistles-included library like Qt. I particularly like the reworked warning message that appears when you switch to the HIBP pane, it's much better than my modal dialog. It looks like it's made to add a second button, "Perform Offline Analysis", after which you select your downloaded HIBP file in case you don't want to go online. Will implement that on a new branch after this one has been merged. About the warning message, it says
Will everyone understand that this is referring to the first five characters of the hash and not of the password? |
|
Great point! |
* Fixes keepassxreboot#1083 * Add online HIBP checker dialog to the database reports widget. Permission is requested from the user prior to performing any network operations. * The number of times a password has been found in a breach is shown to the user. * If no passwords are breached then a positive message is presented. * Source of HIBP icon: https://github.com/simple-icons/simple-icons/blob/develop/icons/haveibeenpwned.svg
wolframroesler
force-pushed
the
feature/hibp
branch
from
41a2738 to
fc85af3
Compare
|
Fixed two details: fetchFailed had a wrong signature (produced a message on stdout), and it failed to build without networking support. |
|
I did actually intend to remove the password QString from fetchFailed since it is unused and doesn't really matter. I completed my original change in the last commit and fixed the caution message. This should be good to go. |
|
Claim your bounty good sir! |
|
Thanks @droidmonkey :) will claim the bounty when offline checks are done too. |
|
Don't wait for that, I think there are some time restrictions on this bounty. I can't recall if I added a 3 month limit or not. |
|
https://www.bountysource.com/issues/50410294-check-passwords-against-hacked-password-databases says "You will be able to claim this bounty as soon as the original issue is marked as closed" so I suppose #1083 needs to be closed first. |
|
It is closed 😬 |
|
I'm so looking forward for this! Thanks a lot!! |
Added - Custom Light and Dark themes [#4110, #4769, #4791, #4796, #4892, #4915] - Compact mode to use classic Group and Entry line height [#4910] - View menu to quickly switch themes, compact mode, and toggle UI elements [#4910] - Search for groups and scope search to matched groups [#4705] - Save Database Backup feature [#4550] - Sort entries by "natural order" and move lines up/down [#4357] - Option to launch KeePassXC on system startup/login [#4675] - Caps Lock warning on password input fields [#3646] - Add "Size" column to entry view [#4588] - Browser-like tab experience using Ctrl+[Num] (Alt+[Num] on Linux) [#4063, #4305] - Password Generator: Define additional characters to choose from [#3876] - Reports: Database password health check (offline) [#3993] - Reports: HIBP online service to check for breached passwords [#4438] - Auto-Type: DateTime placeholders [#4409] - Browser: Show group name in results sent to browser extension [#4111] - Browser: Ability to define a custom browser location (macOS and Linux only) [#4148] - Browser: Ability to change root group UUID and inline edit connection ID [#4315, #4591] - CLI: `db-info` command [#4231] - CLI: Use wl-clipboard if xclip is not available (Linux) [#4323] - CLI: Incorporate xclip into snap builds [#4697] - SSH Agent: Key file path env substitution, SSH_AUTH_SOCK override, and connection test [#3769, #3801, #4545] - SSH Agent: Context menu actions to add/remove keys [#4290] Changed - Complete replacement of default database icons [#4699] - Complete replacement of application icons [#4066, #4161, #4203, #4411] - Complete rewrite of documentation and manpages using Asciidoctor [#4937] - Complete refactor of config files; separate between local and roaming [#4665] - Complete refactor of browser integration and proxy code [#4680] - Complete refactor of hardware key integration (YubiKey and OnlyKey) [#4584, #4843] - Significantly improve performance when saving and opening databases [#4309, #4833] - Remove read-only detection for database files [#4508] - Overhaul of password fields and password generator [#4367] - Replace instances of "Master Key" with "Database Credentials" [#4929] - Change settings checkboxes to positive phrasing for consistency [#4715] - Improve UX of using entry actions (focus fix) [#3893] - Set expiration time to Now when enabling entry expiration [#4406] - Always show "New Entry" in context menu [#4617] - Issue warning before adding large attachments [#4651] - Improve importing OPVault [#4630] - Improve AutoOpen capability [#3901, #4752] - Check for updates every 7 days even while still running [#4752] - Improve Windows installer UI/UX [#4675] - Improve config file handling of portable distribution [#4131, #4752] - macOS: Hide dock icon when application is hidden to tray [#4782] - Browser: Use unlock dialog to improve UX of opening a locked database [#3698] - Browser: Improve database and entry settings experience [#4392, #4591] - Browser: Improve confirm access dialog [#2143, #4660] - KeeShare: Improve monitoring file changes of shares [#4720] - CLI: Rename `create` command to `db-create` [#4231] - CLI: Cleanup `db-create` options (`--set-key-file` and `--set-password`) [#4313] - CLI: Use stderr for help text and password prompts [#4086, #4623] - FdoSecrets: Display existing secret service process [#4128] Fixed - Fix changing focus around the main window using tab key [#4641] - Fix search field clearing while still using the application [#4368] - Improve search help widget displaying on macOS and Linux [#4236] - Return keyboard focus after editing an entry [#4287] - Reset database path after failed "Save As" [#4526] - Use SHA256 Digest for Windows code signing [#4129] - Improve handling of ccache when building [#4104, #4335] - macOS: Properly re-hide application window after browser integration and Auto-Type usage [#4909] - Auto-Type: Fix crash when performing on new entry [#4132] - Browser: Send legacy HTTP settings to recycle bin [#4589] - Browser: Fix merging browser keys [#4685] - CLI: Fix encoding when exporting database [#3921] - SSH Agent: Improve reliability and underlying code [#3833, #4256, #4549, #4595] - FdoSecrets: Fix crash when editing settings before service is enabled [#4332]
phoerious
added
pr: new feature
Type of change
Description and Context
Add "HIBP" to the "Database -> Reports" panel to check all passwords in the database against the HIBP online service, and display the findings in a table. The "worst" passwords (found the most times in the HIBP database) are listed at the beginning of the table (just as in Health Check).
Offline checks (against a previously downloaded HIBP database file) will be added in another PR.
Lots of temporary commits, feel free to squash or fixup.
Fixes #1083 (together with the upcoming PR for offline checks).
Screenshots
Testing strategy
Tested manually.
Checklist:
-DWITH_ASAN=ON. [REQUIRED]