Comment 19 for bug 787868

Here's an update on our recent efforts:

1) RainCT and I have been packaging sqlcipher -- I don't think it should take us much longer to finish (RainCT can probably give a better estimate);
2) I have confirmed (via LD_PRELOAD) that sqlcipher somewhat works with the existing pysqlite bindings, we will need to focus on a non-hacky solution after we have finished the packaging;
3) It is trivial to support keyring integration (this can be done by using the external keyring module, which provides cross-platform support for GnomeKeyring, KDEKWallet, OSXKeychain, and Win32CryptoKeyring);
4) I have already written the code that integrates sqlcipher with Zeitgeist, it's just a matter of testing once packaging is complete.

Regarding the generation of a raw key, I'm currently using the following method:

base64.b64encode(hashlib.sha256(str(random.getrandbits(256))).digest()

Perhaps Jacob could comment on the viability of this method?