Encrypt SQLite databases from mozStorageService #173

Not-Nik · 2025-11-20T13:07:31Z

Encrypt SQLite database whose connections are created in mozStorageService. Cloned and ATTACHed connections are also affected. The mechanism is behind a new security.storage.keystore.enabled. The keys for the connections are stored, encrypted by the SDR, in a new bikeshed/keystore.enc.

security/keystore/KeyStorage.cpp

gcp · 2025-11-20T14:26:48Z

security/keystore/KeyStorage.cpp

+}
+
+nsresult GetKeyForFile(nsIFile* aFile, nsCString& keyString) {
+  nsAutoCString telemetryFilename;


Weird naming here.

security/keystore/KeyStorage.cpp

security/keystore/Persist.cpp

gcp · 2025-11-20T14:50:44Z

security/keystore/KeyStorage.sys.mjs

+    }
+
+    try {
+      pk11token.login(true);


I guess we don't actually want this (force pp login dialog?), so this couldn't land without @beurdouche 's follow up patches.

Not on enterprise, no, but this wouldn't do anything here, because the token is already unlocked. I can remove it for this PR, but release needs some way to unlock the token once, for fetching the keys, and then possibly re-locking it once they are loaded.

security/keystore/Persist.cpp

storage/mozStorageConnection.cpp

security/keystore/KeyStorage.cpp

gcp · 2025-11-21T17:06:03Z

I think this wants tests as well. For Foxfooding we can deal with some flakyness but causing all SQLite databases to get corrupted will probably get old soon for the poor testers 😄

Differential Revision: https://phabricator.services.mozilla.com/D270165

Not-Nik temporarily deployed to Credentials November 20, 2025 13:07 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials November 20, 2025 13:20 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials November 20, 2025 13:22 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials November 20, 2025 13:23 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials November 20, 2025 13:25 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials November 20, 2025 13:29 — with GitHub Actions Inactive

gcp requested changes Nov 21, 2025

View reviewed changes

Not-Nik marked this pull request as draft December 4, 2025 16:39

Not-Nik force-pushed the sqlite-encryption branch from 4366c03 to 6c41571 Compare December 4, 2025 16:40

Not-Nik temporarily deployed to Credentials December 4, 2025 16:40 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials December 4, 2025 16:47 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials December 4, 2025 16:48 — with GitHub Actions Inactive

Not-Nik had a problem deploying to Credentials December 4, 2025 16:48 — with GitHub Actions Failure

Not-Nik temporarily deployed to Credentials December 4, 2025 17:03 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials December 4, 2025 17:06 — with GitHub Actions Inactive

Not-Nik force-pushed the sqlite-encryption branch from 6c41571 to 904029f Compare December 11, 2025 13:29

Not-Nik temporarily deployed to Credentials December 11, 2025 13:29 — with GitHub Actions Inactive

Not-Nik had a problem deploying to Credentials December 11, 2025 13:29 — with GitHub Actions Failure

Not-Nik temporarily deployed to Credentials December 11, 2025 13:29 — with GitHub Actions Inactive

Not-Nik had a problem deploying to Credentials December 11, 2025 13:29 — with GitHub Actions Failure

Not-Nik temporarily deployed to Credentials December 11, 2025 13:35 — with GitHub Actions Inactive

Not-Nik had a problem deploying to Credentials December 11, 2025 13:35 — with GitHub Actions Failure

Not-Nik temporarily deployed to Credentials December 11, 2025 13:42 — with GitHub Actions Inactive

Bug 1996558: Encrypt SQLite databases from mozStorageService

8afd65b

Differential Revision: https://phabricator.services.mozilla.com/D270165

Not-Nik force-pushed the sqlite-encryption branch from 904029f to 8afd65b Compare December 16, 2025 12:32

Not-Nik temporarily deployed to Credentials December 16, 2025 12:32 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials December 16, 2025 12:45 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials December 16, 2025 12:47 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials December 16, 2025 12:49 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials December 16, 2025 12:50 — with GitHub Actions Inactive

Not-Nik temporarily deployed to Credentials December 16, 2025 12:55 — with GitHub Actions Inactive

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Encrypt SQLite databases from mozStorageService #173

Encrypt SQLite databases from mozStorageService #173

Uh oh!

Not-Nik commented Nov 20, 2025

Uh oh!

Uh oh!

Uh oh!

gcp Nov 20, 2025

Uh oh!

Uh oh!

Uh oh!

gcp Nov 20, 2025

Uh oh!

Not-Nik Nov 24, 2025

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

gcp commented Nov 21, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Encrypt SQLite databases from mozStorageService #173

Are you sure you want to change the base?

Encrypt SQLite databases from mozStorageService #173

Uh oh!

Conversation

Not-Nik commented Nov 20, 2025

Uh oh!

Uh oh!

Uh oh!

gcp Nov 20, 2025

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

gcp Nov 20, 2025

Choose a reason for hiding this comment

Uh oh!

Not-Nik Nov 24, 2025

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

gcp commented Nov 21, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants