New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 642124 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: Aug 2016
Cc:
durga.behera@chromium.org
mastiz@chromium.org
tschumann@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Windows
Pri: 2
Type: Bug



Sign in to add a comment

What actions populate syncdata.sqlite3

Reported by chris.mc...@gmail.com, Aug 29 2016 
UserAgent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:47.0) Gecko/20100101 Firefox/47.0

Steps to reproduce the problem:
1. Tested Chrome across several devices
2. 
3. 

What is the expected behavior?
Unknown

What went wrong?
Do not understand what user actions populate this DB.

Did this work before? N/A 

Chrome version: <Copy from: 'about:version'>  Channel: n/a
OS Version: 10.0
Flash Version: Shockwave Flash 22.0 r0

I am a Seattle Police Detective investigating a syncdata.sqlite3 DB related to an organized crime case.  I cannot locate any reference materials to explain what user actions populate the syncdata.sqlite3.  Can someone please refer me to an appropriate resource, point of contact or explain how this DB is populated, please?  I have an Android device associated with an anonymized (drop) gmail account, but numerous syncdata.sqlite3 entries indicating data was synched to syncdata.sqlite3 from several other devices (computers, iPhones, iPads, HTC devices, etc.).  I need to be able to articulate how this DB is populated and if it is specific to a unique user account.  Thank you in advance. - chris.mcnulty@seattle.gov

Comment 1 by durga.behera@chromium.org, Aug 30 2016

Cc: durga.behera@chromium.org
Labels: Needs-Feedback
Thanks for the report, could you please help providing more descriptions for the steps to reproduce the issue.

Comment 2 by chris.mc...@gmail.com, Aug 30 2016 

Sure.  I set up a gmail account, logged into it from a few devices, and tried to recreate similar entries in the syncdata.sqlite3 DB.  I freely admit I am out of my element here and this may not be the appropriate venue to post my questions; however, I am not locating any other reference.  Any assistance y'all can provide is very much appreciated.  Thank you.

Comment 3 by ew...@chromium.org, Aug 31 2016

Status: WontFix (was: Unconfirmed)
Hi Chris,

Thanks for reaching out. We generally don't assist with this type of forensics request through this forum. This forum is meant to be for bug reports and feature requests.

There may be publicly available parsers or forensics tools on github or through other sources that may help you out.

All the best,
Eli

Comment 4 by chris.mc...@gmail.com, Aug 31 2016 

Eli,

I appreciate the response.  I figured this was sort of a last resort: I already researched all of the current published work (of which there is a lot), but nothing that addresses this specific question.  I posted here because I thought the developers of Chromium would know how this Chrome DB is populated.  

Regards,

Chris

Sign in to add a comment