From 65a1d1b0f7da71755e0f41103b5e88aea8635cd9 Mon Sep 17 00:00:00 2001 From: Patrick Sean Klein Date: Sun, 3 Apr 2022 17:31:15 +0200 Subject: [PATCH] Limit zxcvbn entropy estimation length Limit the use of zxcvbn based password entropy estimation to 256 bytes. After this threshold, the average per-byte entropy from the zxcvbn calculation is added for each additional byte. In practice, this produces a slightly higher entropy calculation for purely randomized passwords than zxcvbn would normally calculate. However, the time to calculate is capped leading to a much better user experience and removing unnecessary calculations. Fixes #7712 --- src/core/PasswordHealth.cpp | 33 ++++++-- src/core/PasswordHealth.h | 2 + src/gui/PasswordGeneratorWidget.cpp | 98 +++++++++++------------ src/gui/PasswordGeneratorWidget.h | 12 +-- tests/gui/TestGui.cpp | 117 ++++++++++++++++++---------- tests/gui/TestGui.h | 1 + 6 files changed, 156 insertions(+), 107 deletions(-) diff --git a/src/core/PasswordHealth.cpp b/src/core/PasswordHealth.cpp index 7b52fa4ba..94d2c3a47 100644 --- a/src/core/PasswordHealth.cpp +++ b/src/core/PasswordHealth.cpp @@ -21,10 +21,32 @@ #include "PasswordHealth.h" #include "zxcvbn.h" -PasswordHealth::PasswordHealth(double entropy) - : m_score(entropy) - , m_entropy(entropy) +namespace { + const static int ZXCVBN_ESTIMATE_THRESHOLD = 256; +} // namespace + +PasswordHealth::PasswordHealth(double entropy) +{ + init(entropy); +} + +PasswordHealth::PasswordHealth(const QString& pwd) +{ + auto entropy = 0.0; + entropy += ZxcvbnMatch(pwd.left(ZXCVBN_ESTIMATE_THRESHOLD).toUtf8(), nullptr, nullptr); + if (pwd.length() > ZXCVBN_ESTIMATE_THRESHOLD) { + // Add the average entropy per character for any characters above the estimate threshold + auto average = entropy / ZXCVBN_ESTIMATE_THRESHOLD; + entropy += average * (pwd.length() - ZXCVBN_ESTIMATE_THRESHOLD); + } + init(entropy); +} + +void PasswordHealth::init(double entropy) +{ + m_score = m_entropy = entropy; + switch (quality()) { case Quality::Bad: case Quality::Poor: @@ -43,11 +65,6 @@ PasswordHealth::PasswordHealth(double entropy) } } -PasswordHealth::PasswordHealth(const QString& pwd) - : PasswordHealth(ZxcvbnMatch(pwd.toUtf8(), nullptr, nullptr)) -{ -} - void PasswordHealth::setScore(int score) { m_score = score; diff --git a/src/core/PasswordHealth.h b/src/core/PasswordHealth.h index 35b582e94..b24b80803 100644 --- a/src/core/PasswordHealth.h +++ b/src/core/PasswordHealth.h @@ -35,6 +35,8 @@ public: explicit PasswordHealth(double entropy); explicit PasswordHealth(const QString& pwd); + void init(double entropy); + /* * The password score is defined to be the greater the better * (more secure) the password is. It doesn't have a dimension, diff --git a/src/gui/PasswordGeneratorWidget.cpp b/src/gui/PasswordGeneratorWidget.cpp index 900774309..b41b0c006 100644 --- a/src/gui/PasswordGeneratorWidget.cpp +++ b/src/gui/PasswordGeneratorWidget.cpp @@ -56,7 +56,7 @@ PasswordGeneratorWidget::PasswordGeneratorWidget(QWidget* parent) connect(shortcut, &QShortcut::activated, this, [this] { applyPassword(); }); connect(m_ui->editNewPassword, SIGNAL(textChanged(QString)), SLOT(updateButtonsEnabled(QString))); - connect(m_ui->editNewPassword, SIGNAL(textChanged(QString)), SLOT(updatePasswordStrength(QString))); + connect(m_ui->editNewPassword, SIGNAL(textChanged(QString)), SLOT(updatePasswordStrength())); connect(m_ui->buttonAdvancedMode, SIGNAL(toggled(bool)), SLOT(setAdvancedMode(bool))); connect(m_ui->buttonAddHex, SIGNAL(clicked()), SLOT(excludeHexChars())); connect(m_ui->editAdditionalChars, SIGNAL(textChanged(QString)), SLOT(updateGenerator())); @@ -115,9 +115,7 @@ PasswordGeneratorWidget::PasswordGeneratorWidget(QWidget* parent) loadSettings(); } -PasswordGeneratorWidget::~PasswordGeneratorWidget() -{ -} +PasswordGeneratorWidget::~PasswordGeneratorWidget() = default; void PasswordGeneratorWidget::closeEvent(QCloseEvent* event) { @@ -253,15 +251,11 @@ void PasswordGeneratorWidget::regeneratePassword() { if (m_ui->tabWidget->currentIndex() == Password) { if (m_passwordGenerator->isValid()) { - QString password = m_passwordGenerator->generatePassword(); - m_ui->editNewPassword->setText(password); - updatePasswordStrength(password); + m_ui->editNewPassword->setText(m_passwordGenerator->generatePassword()); } } else { if (m_dicewareGenerator->isValid()) { - QString password = m_dicewareGenerator->generatePassphrase(); - m_ui->editNewPassword->setText(password); - updatePasswordStrength(password); + m_ui->editNewPassword->setText(m_dicewareGenerator->generatePassphrase()); } } } @@ -274,21 +268,52 @@ void PasswordGeneratorWidget::updateButtonsEnabled(const QString& password) m_ui->buttonCopy->setEnabled(!password.isEmpty()); } -void PasswordGeneratorWidget::updatePasswordStrength(const QString& password) +void PasswordGeneratorWidget::updatePasswordStrength() { - PasswordHealth health(password); + // Calculate the password / passphrase health + PasswordHealth passwordHealth(0); if (m_ui->tabWidget->currentIndex() == Diceware) { - // Diceware estimates entropy differently - health = PasswordHealth(m_dicewareGenerator->estimateEntropy()); - - m_ui->charactersInPassphraseLabel->setText(QString::number(password.length())); + passwordHealth.init(m_dicewareGenerator->estimateEntropy()); + m_ui->charactersInPassphraseLabel->setText(QString::number(m_ui->editNewPassword->text().length())); + } else { + passwordHealth = PasswordHealth(m_ui->editNewPassword->text()); } - m_ui->entropyLabel->setText(tr("Entropy: %1 bit").arg(QString::number(health.entropy(), 'f', 2))); + // Update the entropy text labels + m_ui->entropyLabel->setText(tr("Entropy: %1 bit").arg(QString::number(passwordHealth.entropy(), 'f', 2))); + m_ui->entropyProgressBar->setValue(std::min(int(passwordHealth.entropy()), m_ui->entropyProgressBar->maximum())); - m_ui->entropyProgressBar->setValue(std::min(int(health.entropy()), m_ui->entropyProgressBar->maximum())); + // Update the visual strength meter + QString style = m_ui->entropyProgressBar->styleSheet(); + QRegularExpression re("(QProgressBar::chunk\\s*\\{.*?background-color:)[^;]+;", + QRegularExpression::CaseInsensitiveOption | QRegularExpression::DotMatchesEverythingOption); + style.replace(re, "\\1 %1;"); - colorStrengthIndicator(health); + StateColorPalette statePalette; + switch (passwordHealth.quality()) { + case PasswordHealth::Quality::Bad: + case PasswordHealth::Quality::Poor: + m_ui->entropyProgressBar->setStyleSheet( + style.arg(statePalette.color(StateColorPalette::HealthCritical).name())); + m_ui->strengthLabel->setText(tr("Password Quality: %1").arg(tr("Poor", "Password quality"))); + break; + + case PasswordHealth::Quality::Weak: + m_ui->entropyProgressBar->setStyleSheet(style.arg(statePalette.color(StateColorPalette::HealthBad).name())); + m_ui->strengthLabel->setText(tr("Password Quality: %1").arg(tr("Weak", "Password quality"))); + break; + + case PasswordHealth::Quality::Good: + m_ui->entropyProgressBar->setStyleSheet(style.arg(statePalette.color(StateColorPalette::HealthOk).name())); + m_ui->strengthLabel->setText(tr("Password Quality: %1").arg(tr("Good", "Password quality"))); + break; + + case PasswordHealth::Quality::Excellent: + m_ui->entropyProgressBar->setStyleSheet( + style.arg(statePalette.color(StateColorPalette::HealthExcellent).name())); + m_ui->strengthLabel->setText(tr("Password Quality: %1").arg(tr("Excellent", "Password quality"))); + break; + } } void PasswordGeneratorWidget::applyPassword() @@ -471,41 +496,6 @@ void PasswordGeneratorWidget::excludeHexChars() updateGenerator(); } -void PasswordGeneratorWidget::colorStrengthIndicator(const PasswordHealth& health) -{ - // Take the existing stylesheet and convert the text and background color to arguments - QString style = m_ui->entropyProgressBar->styleSheet(); - QRegularExpression re("(QProgressBar::chunk\\s*\\{.*?background-color:)[^;]+;", - QRegularExpression::CaseInsensitiveOption | QRegularExpression::DotMatchesEverythingOption); - style.replace(re, "\\1 %1;"); - - StateColorPalette statePalette; - switch (health.quality()) { - case PasswordHealth::Quality::Bad: - case PasswordHealth::Quality::Poor: - m_ui->entropyProgressBar->setStyleSheet( - style.arg(statePalette.color(StateColorPalette::HealthCritical).name())); - m_ui->strengthLabel->setText(tr("Password Quality: %1").arg(tr("Poor", "Password quality"))); - break; - - case PasswordHealth::Quality::Weak: - m_ui->entropyProgressBar->setStyleSheet(style.arg(statePalette.color(StateColorPalette::HealthBad).name())); - m_ui->strengthLabel->setText(tr("Password Quality: %1").arg(tr("Weak", "Password quality"))); - break; - - case PasswordHealth::Quality::Good: - m_ui->entropyProgressBar->setStyleSheet(style.arg(statePalette.color(StateColorPalette::HealthOk).name())); - m_ui->strengthLabel->setText(tr("Password Quality: %1").arg(tr("Good", "Password quality"))); - break; - - case PasswordHealth::Quality::Excellent: - m_ui->entropyProgressBar->setStyleSheet( - style.arg(statePalette.color(StateColorPalette::HealthExcellent).name())); - m_ui->strengthLabel->setText(tr("Password Quality: %1").arg(tr("Excellent", "Password quality"))); - break; - } -} - PasswordGenerator::CharClasses PasswordGeneratorWidget::charClasses() { PasswordGenerator::CharClasses classes; diff --git a/src/gui/PasswordGeneratorWidget.h b/src/gui/PasswordGeneratorWidget.h index a42c44d3a..fa18ccd48 100644 --- a/src/gui/PasswordGeneratorWidget.h +++ b/src/gui/PasswordGeneratorWidget.h @@ -20,6 +20,7 @@ #define KEEPASSX_PASSWORDGENERATORWIDGET_H #include +#include #include "core/PassphraseGenerator.h" #include "core/PasswordGenerator.h" @@ -57,6 +58,10 @@ public: static PasswordGeneratorWidget* popupGenerator(QWidget* parent = nullptr); +signals: + void appliedPassword(const QString& password); + void closed(); + public slots: void regeneratePassword(); void applyPassword(); @@ -65,19 +70,14 @@ public slots: void deleteWordList(); void addWordList(); -signals: - void appliedPassword(const QString& password); - void closed(); - private slots: void updateButtonsEnabled(const QString& password); - void updatePasswordStrength(const QString& password); + void updatePasswordStrength(); void setAdvancedMode(bool advanced); void excludeHexChars(); void passwordLengthChanged(int length); void passphraseLengthChanged(int length); - void colorStrengthIndicator(const PasswordHealth& health); void updateGenerator(); diff --git a/tests/gui/TestGui.cpp b/tests/gui/TestGui.cpp index 19c4c6ac1..f91d45655 100644 --- a/tests/gui/TestGui.cpp +++ b/tests/gui/TestGui.cpp @@ -648,6 +648,75 @@ void TestGui::testAddEntry() QTRY_COMPARE(entryView->model()->rowCount(), 3); } +void TestGui::testPasswordEntryEntropy_data() +{ + QTest::addColumn("password"); + QTest::addColumn("expectedEntropyLabel"); + QTest::addColumn("expectedStrengthLabel"); + + QTest::newRow("Empty password") << "" + << "Entropy: 0.00 bit" + << "Password Quality: Poor"; + + QTest::newRow("Well-known password") << "hello" + << "Entropy: 6.38 bit" + << "Password Quality: Poor"; + + QTest::newRow("Password composed of well-known words.") << "helloworld" + << "Entropy: 13.10 bit" + << "Password Quality: Poor"; + + QTest::newRow("Password composed of well-known words with number.") << "password1" + << "Entropy: 4.00 bit" + << "Password Quality: Poor"; + + QTest::newRow("Password out of small character space.") << "D0g.................." + << "Entropy: 19.02 bit" + << "Password Quality: Poor"; + + QTest::newRow("XKCD, easy substitutions.") << "Tr0ub4dour&3" + << "Entropy: 30.87 bit" + << "Password Quality: Poor"; + + QTest::newRow("XKCD, word generator.") << "correcthorsebatterystaple" + << "Entropy: 47.98 bit" + << "Password Quality: Weak"; + + QTest::newRow("Random characters, medium length.") << "YQC3kbXbjC652dTDH" + << "Entropy: 95.83 bit" + << "Password Quality: Good"; + + QTest::newRow("Random characters, long.") << "Bs5ZFfthWzR8DGFEjaCM6bGqhmCT4km" + << "Entropy: 174.59 bit" + << "Password Quality: Excellent"; + + QTest::newRow("Long password using Zxcvbn chunk estimation") + << "quintet-tamper-kinswoman-humility-vengeful-haven-tastiness-aspire-widget-ipad-cussed-reaffirm-ladylike-" + "ashamed-anatomy-daybed-jam-swear-strudel-neatness-stalemate-unbundle-flavored-relation-emergency-underrate-" + "registry-getting-award-unveiled-unshaken-stagnate-cartridge-magnitude-ointment-hardener-enforced-scrubbed-" + "radial-fiddling-envelope-unpaved-moisture-unused-crawlers-quartered-crushed-kangaroo-tiptop-doily" + << "Entropy: 1205.85 bit" + << "Password Quality: Excellent"; + + QTest::newRow("Longer password above Zxcvbn threshold") + << "quintet-tamper-kinswoman-humility-vengeful-haven-tastiness-aspire-widget-ipad-cussed-reaffirm-ladylike-" + "ashamed-anatomy-daybed-jam-swear-strudel-neatness-stalemate-unbundle-flavored-relation-emergency-underrate-" + "registry-getting-award-unveiled-unshaken-stagnate-cartridge-magnitude-ointment-hardener-enforced-scrubbed-" + "radial-fiddling-envelope-unpaved-moisture-unused-crawlers-quartered-crushed-kangaroo-tiptop-doily-hefty-" + "untie-fidgeting-radiance-twilight-freebase-sulphuric-parrot-decree-monotype-nautical-pout-sip-geometric-" + "crunching-deviancy-festival-hacking-rage-unify-coronary-zigzagged-dwindle-possum-lilly-exhume-daringly-" + "barbell-rage-animate-lapel-emporium-renounce-justifier-relieving-gauze-arrive-alive-collected-immobile-" + "unleash-snowman-gift-expansion-marbles-requisite-excusable-flatness-displace-caloric-sensuous-moustache-" + "sensuous-capillary-aversion-contents-cadet-giggly-amenity-peddling-spotting-drier-mooned-rudder-peroxide-" + "posting-oppressor-scrabble-scorer-whomever-paprika-slapstick-said-spectacle-capture-debate-attire-emcee-" + "unfocused-sympathy-doily-election-ambulance-polish-subtype-grumbling-neon-stooge-reanalyze-rockfish-" + "disparate-decorated-washroom-threefold-muzzle-buckwheat-kerosene-swell-why-reprocess-correct-shady-" + "impatient-slit-banshee-scrubbed-dreadful-unlocking-urologist-hurried-citable-fragment-septic-lapped-" + "prankish-phantom-unpaved-moisture-unused-crawlers-quartered-crushed-kangaroo-lapel-emporium-renounce" + << "Entropy: 4210.27 bit" + << "Password Quality: Excellent"; +} + void TestGui::testPasswordEntryEntropy() { auto* toolBar = m_mainWindow->findChild("toolBar"); @@ -689,45 +758,13 @@ void TestGui::testPasswordEntryEntropy() auto* entropyLabel = pwGeneratorWidget->findChild("entropyLabel"); auto* strengthLabel = pwGeneratorWidget->findChild("strengthLabel"); - generatedPassword->setText(""); - QTest::keyClicks(generatedPassword, "hello"); - QCOMPARE(entropyLabel->text(), QString("Entropy: 6.38 bit")); - QCOMPARE(strengthLabel->text(), QString("Password Quality: Poor")); + QFETCH(QString, password); + QFETCH(QString, expectedEntropyLabel); + QFETCH(QString, expectedStrengthLabel); - generatedPassword->setText(""); - QTest::keyClicks(generatedPassword, "helloworld"); - QCOMPARE(entropyLabel->text(), QString("Entropy: 13.10 bit")); - QCOMPARE(strengthLabel->text(), QString("Password Quality: Poor")); - - generatedPassword->setText(""); - QTest::keyClicks(generatedPassword, "password1"); - QCOMPARE(entropyLabel->text(), QString("Entropy: 4.00 bit")); - QCOMPARE(strengthLabel->text(), QString("Password Quality: Poor")); - - generatedPassword->setText(""); - QTest::keyClicks(generatedPassword, "D0g.................."); - QCOMPARE(entropyLabel->text(), QString("Entropy: 19.02 bit")); - QCOMPARE(strengthLabel->text(), QString("Password Quality: Poor")); - - generatedPassword->setText(""); - QTest::keyClicks(generatedPassword, "Tr0ub4dour&3"); - QCOMPARE(entropyLabel->text(), QString("Entropy: 30.87 bit")); - QCOMPARE(strengthLabel->text(), QString("Password Quality: Poor")); - - generatedPassword->setText(""); - QTest::keyClicks(generatedPassword, "correcthorsebatterystaple"); - QCOMPARE(entropyLabel->text(), QString("Entropy: 47.98 bit")); - QCOMPARE(strengthLabel->text(), QString("Password Quality: Weak")); - - generatedPassword->setText(""); - QTest::keyClicks(generatedPassword, "YQC3kbXbjC652dTDH"); - QCOMPARE(entropyLabel->text(), QString("Entropy: 95.83 bit")); - QCOMPARE(strengthLabel->text(), QString("Password Quality: Good")); - - generatedPassword->setText(""); - QTest::keyClicks(generatedPassword, "Bs5ZFfthWzR8DGFEjaCM6bGqhmCT4km"); - QCOMPARE(entropyLabel->text(), QString("Entropy: 174.59 bit")); - QCOMPARE(strengthLabel->text(), QString("Password Quality: Excellent")); + generatedPassword->setText(password); + QCOMPARE(entropyLabel->text(), expectedEntropyLabel); + QCOMPARE(strengthLabel->text(), expectedStrengthLabel); QTest::mouseClick(generatedPassword, Qt::LeftButton); QTest::keyClick(generatedPassword, Qt::Key_Escape);); @@ -786,9 +823,11 @@ void TestGui::testDicewareEntryEntropy() // Verify entropy and strength auto* entropyLabel = pwGeneratorWidget->findChild("entropyLabel"); auto* strengthLabel = pwGeneratorWidget->findChild("strengthLabel"); + auto* wordLengthLabel = pwGeneratorWidget->findChild("charactersInPassphraseLabel"); - QCOMPARE(entropyLabel->text(), QString("Entropy: 77.55 bit")); + QTRY_COMPARE_WITH_TIMEOUT(entropyLabel->text(), QString("Entropy: 77.55 bit"), 200); QCOMPARE(strengthLabel->text(), QString("Password Quality: Good")); + QCOMPARE(wordLengthLabel->text().toInt(), pwGeneratorWidget->getGeneratedPassword().size()); QTest::mouseClick(generatedPassword, Qt::LeftButton); QTest::keyClick(generatedPassword, Qt::Key_Escape);); diff --git a/tests/gui/TestGui.h b/tests/gui/TestGui.h index 2a1baed2d..2e18ce4cd 100644 --- a/tests/gui/TestGui.h +++ b/tests/gui/TestGui.h @@ -46,6 +46,7 @@ private slots: void testSearchEditEntry(); void testAddEntry(); void testPasswordEntryEntropy(); + void testPasswordEntryEntropy_data(); void testDicewareEntryEntropy(); void testTotp(); void testSearch();