Sign in
cos
/
mirrors
/
cros
/
chromiumos
/
platform2
/
refs/heads/main
/
.
/
cryptohome
tree: 2a975c4bcd0f51b5d495f16cd2aee3674f92adab [
path history
]
[
tgz
]
auth_blocks/
auth_factor/
auth_io/
auth_session/
challenge_credentials/
cleanup/
client/
cryptorecovery/
data_migrator/
dbus_bindings/
dev-utils/
docs/
encrypted_reboot_vault/
error/
etc/
fake_platform/
fido/
flatbuffer_schemas/
fp_migration/
fuzzers/
init/
libs/
lockbox-cache-manager/
namespace_mounter/
pkcs11/
recoverable_key_store/
seccomp/
signature_sealing/
stateful_recovery/
storage/
tmpfiles.d/
udev/
user_secret_stash/
user_session/
uss_experiment/
util/
.gitignore
auth_factor_vault_keyset_converter.cc
auth_factor_vault_keyset_converter.h
auth_factor_vault_keyset_converter_unittest.cc
BUILD.gn
chaps_client_factory.cc
chaps_client_factory.h
crc.h
crc_unittest.cc
create_vault_keyset_rpc_impl.cc
create_vault_keyset_rpc_impl.h
credential_verifier.cc
credential_verifier.h
credential_verifier_test_utils.h
credential_verifier_unittest.cc
crypto.cc
crypto.h
crypto_error.cc
crypto_error.h
crypto_unittest.cc
cryptohome-path.cc
cryptohome.cc
cryptohome_common.h
cryptohome_key_loader.cc
cryptohome_key_loader.h
cryptohome_key_loader_unittest.cc
cryptohome_keys_manager.cc
cryptohome_keys_manager.h
cryptohome_keys_manager_unittest.cc
cryptohome_metrics.cc
cryptohome_metrics.h
cryptohome_userdataauth_interface.conf
cryptohomed.cc
dbus_service.h
device_management_client_proxy.cc
device_management_client_proxy.h
DIR_METADATA
email_to_image
fake_features.h
fake_platform.cc
fake_platform.h
features.cc
features.h
filesystem_layout.cc
filesystem_layout.h
filesystem_layout_unittest.cc
fingerprint_manager.cc
fingerprint_manager.h
fingerprint_manager_unittest.cc
flatbuffer_file.cc
flatbuffer_file.h
flatbuffer_file_unittest.cc
glib_transition.h
homedirs_initializer.cc
key_challenge_service.h
key_challenge_service_factory.h
key_challenge_service_factory_impl.cc
key_challenge_service_factory_impl.h
key_challenge_service_impl.cc
key_challenge_service_impl.h
key_objects.cc
key_objects.h
key_objects_unittest.cc
keyset_management.cc
keyset_management.h
keyset_management_unittest.cc
lockbox-cache-main.cc
lockbox-cache-unittest.cc
lockbox-cache.cc
lockbox-cache.h
lockbox.cc
lockbox.h
lockbox_unittest.cc
migration_type.h
mock_credential_verifier.h
mock_cryptohome_key_loader.cc
mock_cryptohome_key_loader.h
mock_cryptohome_keys_manager.cc
mock_cryptohome_keys_manager.h
mock_device_management_client_proxy.cc
mock_device_management_client_proxy.h
mock_fingerprint_manager.h
mock_key_challenge_service.cc
mock_key_challenge_service.h
mock_key_challenge_service_factory.h
mock_keyset_management.h
mock_lockbox.cc
mock_lockbox.h
mock_pkcs11_init.cc
mock_pkcs11_init.h
mock_signalling.h
mock_vault_keyset.h
mock_vault_keyset_factory.h
OWNERS
OWNERS.primary
pkcs11_init.cc
pkcs11_init.h
protobuf_test_utils.h
README.md
service_userdataauth.cc
service_userdataauth.h
signalling.h
signature_sealed_data.proto
system_apis.h
timestamp.proto
tpm_live_test.h
user_policy_file.cc
user_policy_file.h
user_policy_file_unittest.cc
userdataauth.cc
userdataauth.h
userdataauth_auth_session_unittest.cc
userdataauth_test_utils.h
userdataauth_unittest.cc
username.h
vault_keyset.cc
vault_keyset.h
vault_keyset.proto
vault_keyset_factory.cc
vault_keyset_factory.h
vault_keyset_unittest.cc
cryptohome/README.md
Chromium OS cryptohome
This directory contains source code and documentation for the cryptohome daemon.
Architecture
: Architecture of auth stack and USS.
Auth Factors
: The security tiers of different factors.
Challenge Response Key
: Challenge response auth scheme.
New Crypthome API
: Explanation of upcoming cryptohome APIs.
D-Bus
: cryptohome provides all functionality via a D-Bus interface.
Decrypt
: Secret wrapping scheme for VK.
Error Reporting
: Explanation of cryptohome verbose error reporting.
Filesystem Layout
: On disc location of various entities.
Firmware Management Parameters
LE Credentials
: Scheme for LowEntropy wrapping
Lockbox
: Tamper-evident, install-time system attribute storage.
Mount
: Mounting process
P0 Fix Checklist
TPM Owner Initialization