Refactor: Extract encryption/key management utilities from google_drive.py and settings.py

## Type
refactor

## Severity
medium

## Area
`nmapui/google_drive.py`, `nmapui/settings.py`

## Description
Both `google_drive.py` and `settings.py` contain nearly identical implementations of:
- `_set_owner_only_permissions()` — sets file to `0o600`
- `_load_or_create_encryption_key()` — creates/loads Fernet keys with atomic file operations

The implementations have the same structure but have drifted slightly. Bug fixes applied to one copy may not be applied to the other.

Additionally, both have a TOCTOU race condition in key creation: between the `exists()` check and `read_bytes()`, another process could delete or modify the key file. Two processes starting simultaneously could both generate different keys, making tokens encrypted with one key undecryptable.

## Proposed Fix
1. Create `nmapui/crypto_utils.py` with the shared implementations
2. Use `fcntl.flock` or `O_CREAT | O_EXCL` for atomic key creation
3. Have both `google_drive.py` and `settings.py` import from the shared module

## Related Issues
#182 (Duplicate encryption helpers — closed, but apparently not fully resolved)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Refactor: Extract encryption/key management utilities from google_drive.py and settings.py #208

Type

Severity

Area

Description

Proposed Fix

Related Issues

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Refactor: Extract encryption/key management utilities from google_drive.py and settings.py #208

Description

Type

Severity

Area

Description

Proposed Fix

Related Issues

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions