You should look at what the c++ code does, but ideally we shouldn't even decrypt the passphrase unless/until the user requests to. The less it is in memory, the lower the risk. Even though it is more work, I think the current pattern is preferable.
--
You received this message because you are subscribed to the Google Groups "Chromium Settings" group.
To unsubscribe from this group and stop receiving emails from it, send an email to chromium-setti...@chromium.org.
To post to this group, send email to chromium...@chromium.org.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/chromium-settings/CA%2Bmjahmbi5a_H2w9PtLaqVFap26fmPotCmsvHCFSyL9zP0GJpg%40mail.gmail.com.