[PM-23278] Upgrade user KDF settings to minimums #5955
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Conflicts: # app/src/main/kotlin/com/x8bit/bitwarden/data/auth/repository/AuthRepositoryImpl.kt # app/src/main/kotlin/com/x8bit/bitwarden/ui/platform/feature/debugmenu/components/FeatureFlagListItems.kt # app/src/main/kotlin/com/x8bit/bitwarden/ui/vault/feature/vault/VaultViewModel.kt # app/src/main/kotlin/com/x8bit/bitwarden/ui/vault/feature/vault/handlers/VaultHandlers.kt # app/src/test/kotlin/com/x8bit/bitwarden/ui/vault/feature/vault/VaultViewModelTest.kt # core/src/main/kotlin/com/bitwarden/core/data/manager/model/FlagKey.kt # network/src/main/kotlin/com/bitwarden/network/service/AccountsService.kt # network/src/main/kotlin/com/bitwarden/network/service/AccountsServiceImpl.kt # network/src/test/kotlin/com/bitwarden/network/service/AccountsServiceTest.kt # ui/src/main/res/values/strings.xml
…esponses, and save to profile.
…minimum # Conflicts: # app/src/main/kotlin/com/x8bit/bitwarden/data/auth/repository/util/UserStateJsonExtensions.kt # core/src/main/kotlin/com/bitwarden/core/data/manager/model/FlagKey.kt
Contributor
|
New Issues (2)Checkmarx found the following issues in this Pull Request
|
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
app/src/test/kotlin/com/x8bit/bitwarden/ui/vault/feature/vault/VaultScreenTest.kt
Dismissed
Show dismissed
Hide dismissed
app/src/test/kotlin/com/x8bit/bitwarden/ui/vault/feature/vault/VaultViewModelTest.kt
Fixed
Show fixed
Hide fixed
app/src/test/kotlin/com/x8bit/bitwarden/ui/vault/feature/vault/VaultViewModelTest.kt
Fixed
Show fixed
Hide fixed
app/src/test/kotlin/com/x8bit/bitwarden/ui/vault/feature/vault/VaultViewModelTest.kt
Fixed
Show fixed
Hide fixed
app/src/test/kotlin/com/x8bit/bitwarden/ui/vault/feature/vault/VaultViewModelTest.kt
Fixed
Show fixed
Hide fixed
SaintPatrck
reviewed
Oct 8, 2025
| .updateKdfToMinimumsIfNeeded(password = password) | ||
| .also { result -> | ||
| if (result is UpdateKdfMinimumsResult.Error) { | ||
| Timber.e("Failed to silent update KDF settings: ${result.error}") |
Contributor
There was a problem hiding this comment.
Can we just do Timber.e(result.error, "Failed to silently update KDF settings.")?
SaintPatrck
reviewed
Oct 8, 2025
| ) | ||
| .also { result -> | ||
| if (result is UpdateKdfMinimumsResult.Error) { | ||
| Timber.e("Failed to silent update KDF settings: ${result.error}") |
Contributor
There was a problem hiding this comment.
Can we do
Timber.e(result.error, "Failed to silently update KDF settings.")
SaintPatrck
reviewed
Oct 8, 2025
| * @param onDismissRequest called when the user attempts to dismiss the dialog (for example by | ||
| * tapping outside of it). | ||
| */ | ||
| @Suppress("LongMethod") |
Contributor
There was a problem hiding this comment.
Can you double check if this is needed? I removed it and detekt didn't complain. 🤔
SaintPatrck
reviewed
Oct 8, 2025
| .asText(), | ||
| error = result.error, | ||
| ) | ||
| Timber.e(message = "Failed to update kdf to minimums: ${result.error}") |
Contributor
There was a problem hiding this comment.
Another place we can pass the error as an arg instead.
Timber.e(result.error, "Failed to update kdf to minimums.")
🤔 Is this actually needed since we're logging errors in the data layer?
SaintPatrck
reviewed
Oct 8, 2025
ui/src/main/res/values/strings.xml
Outdated
Comment on lines
1139
to
1140
| <string name="kdf_update_failed_active_account_not_found">"Kdf update failed, active account not found. Please try again or contact us."</string> | ||
| <string name="an_error_occurred_while_trying_to_update_your_kdf_settings">"An error occurred while trying to update your kdf settings. Please try again or contact us."</string> |
Contributor
There was a problem hiding this comment.
Should these be surrounded by quotes? If so, we should be using the “ and ” chars for opening and closing quotes.
Collaborator
There was a problem hiding this comment.
Outer quotes like this do not actually appear in the displayed string, I actually just removed a bunch of these. I think they should be removed
SaintPatrck
requested changes
Oct 8, 2025
Contributor
SaintPatrck
left a comment
SaintPatrck
left a comment
There was a problem hiding this comment.
Left a few minor comments. Overall, it's looking good. Great job!
SaintPatrck
reviewed
Oct 8, 2025
| kdf = Kdf.Pbkdf2(iterations = DEFAULT_PBKDF2_ITERATIONS.toUInt()), | ||
| ) | ||
| .fold( | ||
| onSuccess = { updateKdfOnServer(createUpdateKdfRequest(it)) }, |
SaintPatrck
reviewed
Oct 8, 2025
Comment on lines
95
to
106
| private suspend fun updateKdfOnServer(request: UpdateKdfJsonRequest): UpdateKdfMinimumsResult { | ||
| return accountsService | ||
| .updateKdf(body = request) | ||
| .fold( | ||
| onSuccess = { | ||
| authDiskSource.userState = authDiskSource.userState | ||
| ?.toUserStateJsonKdfUpdatedMinimums() | ||
| UpdateKdfMinimumsResult.Success | ||
| }, | ||
| onFailure = { UpdateKdfMinimumsResult.Error(error = it) }, | ||
| ) | ||
| } |
Contributor
There was a problem hiding this comment.
I like that request creation is extracted, but I think this introduces an unnecessary fold operation. vaultSdkSource.makeUpdateKdf().flatMap will handle mapping a successful result to the result of accountsService.updateKdf(), then you only have to handle failures once, in the final fold().
return vaultSdkSource
.makeUpdateKdf()
.flatMap { response ->
accountsService.updateKdf(
request = createUpdateKdfRequest(response)
)
}
.fold(
onSuccess = {
authDiskSource.userState = authDiskSource.userState
?.toUserStateJsonKdfUpdatedMinimums()
UpdateKdfMinimumsResult.Success
},
onFailure = { UpdateKdsMinimumsResult.Error(error = it) },
)
SaintPatrck
previously approved these changes
Oct 8, 2025
Contributor
SaintPatrck
left a comment
SaintPatrck
left a comment
There was a problem hiding this comment.
Awesome! Thanks for that. LGTM
david-livefront
previously approved these changes
Oct 8, 2025
# Conflicts: # app/src/main/kotlin/com/x8bit/bitwarden/data/auth/manager/di/AuthManagerModule.kt # app/src/main/kotlin/com/x8bit/bitwarden/ui/vault/feature/vault/VaultViewModel.kt # app/src/test/kotlin/com/x8bit/bitwarden/ui/vault/feature/vault/VaultViewModelTest.kt
andrebispo5
dismissed stale reviews from david-livefront and SaintPatrck
via
14c4700
david-livefront
previously approved these changes
Oct 8, 2025
vvolkgang
approved these changes
Oct 9, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Note
Depends on PR: #5944
🎟️ Tracking
https://bitwarden.atlassian.net/browse/PM-23278
https://bitwarden.atlassian.net/browse/PM-23577
📔 Objective
This pull request introduces functionality to ensure user KDF (Key Derivation Function) settings meet minimum security requirements. It adds logic to check if an account's KDF configuration is outdated and, if so, updates it automatically after password unlock, provided the relevant feature flag is enabled. The changes also include necessary model, service, and dependency updates to support this workflow.
KDF Minimums Enforcement and Update Workflow
AuthRepositoryandAuthRepositoryImplto check if a user's KDF settings are below the minimum and to update them if needed, including integration with a feature flag (ForceUpdateKdfSettings). [1] [2]Model and SDK Support
UpdateKdfMinimumsResultsealed class to model the result of updating KDF settings.makeUpdateKdfmethod toVaultSdkSourceand its implementation to generate updated KDF data using the SDK. [1] [2]toKdfRequestModelto convert SDK KDF objects to network request models.Dependency Injection and Feature Flag Integration
AuthRepositoryModule) to provideFeatureFlagManagertoAuthRepositoryImpl. [1] [2] [3]📸 Screenshots
Screen.Recording.2025-10-02.at.09.24.01.mov
⏰ Reminders before review
🦮 Reviewer guidelines
:+1:) or similar for great changes:memo:) or ℹ️ (:information_source:) for notes or general info:question:) for questions:thinking:) or 💭 (:thought_balloon:) for more open inquiry that's not quite a confirmed issue and could potentially benefit from discussion:art:) for suggestions / improvements:x:) or:warning:) for more significant problems or concerns needing attention:seedling:) or ♻️ (:recycle:) for future improvements or indications of technical debt:pick:) for minor or nitpick changes