Welcome to mirror list, hosted at ThFree Co, Russian Federation.

github.com/keepassxreboot/keepassxc.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/src/fdosecrets/objects/Item.cpp
diff options
context:
space:
mode:
Diffstat (limited to 'src/fdosecrets/objects/Item.cpp')
-rw-r--r--src/fdosecrets/objects/Item.cpp420
1 files changed, 420 insertions, 0 deletions
diff --git a/src/fdosecrets/objects/Item.cpp b/src/fdosecrets/objects/Item.cpp
new file mode 100644
index 000000000..18624bbdb
--- /dev/null
+++ b/src/fdosecrets/objects/Item.cpp
@@ -0,0 +1,420 @@
+/*
+ * Copyright (C) 2019 Aetf <aetf@unlimitedcodeworks.xyz>
+ *
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 2 or (at your option)
+ * version 3 of the License.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program. If not, see <http://www.gnu.org/licenses/>.
+ */
+
+#include "Item.h"
+
+#include "fdosecrets/FdoSecretsPlugin.h"
+#include "fdosecrets/objects/Collection.h"
+#include "fdosecrets/objects/Prompt.h"
+#include "fdosecrets/objects/Service.h"
+#include "fdosecrets/objects/Session.h"
+
+#include "core/Entry.h"
+#include "core/EntryAttributes.h"
+#include "core/Group.h"
+#include "core/Tools.h"
+
+#include <QMimeDatabase>
+#include <QRegularExpression>
+#include <QSet>
+#include <QTextCodec>
+
+namespace FdoSecrets
+{
+
+ const QSet<QString> Item::ReadOnlyAttributes(QSet<QString>() << ItemAttributes::UuidKey << ItemAttributes::PathKey);
+
+ static void setEntrySecret(Entry* entry, const QByteArray& data, const QString& contentType);
+ static SecretStruct getEntrySecret(Entry* entry);
+
+ namespace
+ {
+ constexpr auto FDO_SECRETS_DATA = "FDO_SECRETS_DATA";
+ constexpr auto FDO_SECRETS_CONTENT_TYPE = "FDO_SECRETS_CONTENT_TYPE";
+ } // namespace
+
+ Item::Item(Collection* parent, Entry* backend)
+ : DBusObject(parent)
+ , m_backend(backend)
+ {
+ Q_ASSERT(!p()->objectPath().path().isEmpty());
+
+ registerWithPath(QStringLiteral(DBUS_PATH_TEMPLATE_ITEM).arg(p()->objectPath().path(), m_backend->uuidToHex()),
+ new ItemAdaptor(this));
+
+ connect(m_backend.data(), &Entry::entryModified, this, &Item::itemChanged);
+ }
+
+ DBusReturn<bool> Item::locked() const
+ {
+ auto ret = ensureBackend();
+ if (ret.isError()) {
+ return ret;
+ }
+ return collection()->locked();
+ }
+
+ DBusReturn<const StringStringMap> Item::attributes() const
+ {
+ auto ret = ensureBackend();
+ if (ret.isError()) {
+ return ret;
+ }
+ ret = ensureUnlocked();
+ if (ret.isError()) {
+ return ret;
+ }
+
+ StringStringMap attrs;
+
+ // add default attributes except password
+ auto entryAttrs = m_backend->attributes();
+ for (const auto& attr : EntryAttributes::DefaultAttributes) {
+ if (entryAttrs->isProtected(attr) || attr == EntryAttributes::PasswordKey) {
+ continue;
+ }
+
+ auto value = entryAttrs->value(attr);
+ if (entryAttrs->isReference(attr)) {
+ value = m_backend->maskPasswordPlaceholders(value);
+ value = m_backend->resolveMultiplePlaceholders(value);
+ }
+ attrs[attr] = value;
+ }
+
+ // add custom attributes
+ const auto customKeys = entryAttrs->customKeys();
+ for (const auto& attr : customKeys) {
+ // decode attr key
+ auto decoded = decodeAttributeKey(attr);
+
+ attrs[decoded] = entryAttrs->value(attr);
+ }
+
+ // add some informative and readonly attributes
+ attrs[ItemAttributes::UuidKey] = m_backend->uuidToHex();
+ attrs[ItemAttributes::PathKey] = path();
+ return attrs;
+ }
+
+ DBusReturn<void> Item::setAttributes(const StringStringMap& attrs)
+ {
+ auto ret = ensureBackend();
+ if (ret.isError()) {
+ return ret;
+ }
+ ret = ensureUnlocked();
+ if (ret.isError()) {
+ return ret;
+ }
+
+ m_backend->beginUpdate();
+
+ auto entryAttrs = m_backend->attributes();
+ for (auto it = attrs.constBegin(); it != attrs.constEnd(); ++it) {
+ if (entryAttrs->isProtected(it.key()) || it.key() == EntryAttributes::PasswordKey) {
+ continue;
+ }
+
+ if (ReadOnlyAttributes.contains(it.key())) {
+ continue;
+ }
+
+ auto encoded = encodeAttributeKey(it.key());
+ entryAttrs->set(encoded, it.value());
+ }
+
+ m_backend->endUpdate();
+
+ return {};
+ }
+
+ DBusReturn<QString> Item::label() const
+ {
+ auto ret = ensureBackend();
+ if (ret.isError()) {
+ return ret;
+ }
+ ret = ensureUnlocked();
+ if (ret.isError()) {
+ return ret;
+ }
+
+ return m_backend->title();
+ }
+
+ DBusReturn<void> Item::setLabel(const QString& label)
+ {
+ auto ret = ensureBackend();
+ if (ret.isError()) {
+ return ret;
+ }
+ ret = ensureUnlocked();
+ if (ret.isError()) {
+ return ret;
+ }
+
+ m_backend->beginUpdate();
+ m_backend->setTitle(label);
+ m_backend->endUpdate();
+
+ return {};
+ }
+
+ DBusReturn<qulonglong> Item::created() const
+ {
+ auto ret = ensureBackend();
+ if (ret.isError()) {
+ return ret;
+ }
+ ret = ensureUnlocked();
+ if (ret.isError()) {
+ return ret;
+ }
+
+ return static_cast<qulonglong>(m_backend->timeInfo().creationTime().toMSecsSinceEpoch() / 1000);
+ }
+
+ DBusReturn<qulonglong> Item::modified() const
+ {
+ auto ret = ensureBackend();
+ if (ret.isError()) {
+ return ret;
+ }
+ ret = ensureUnlocked();
+ if (ret.isError()) {
+ return ret;
+ }
+
+ return static_cast<qulonglong>(m_backend->timeInfo().lastModificationTime().toMSecsSinceEpoch() / 1000);
+ }
+
+ DBusReturn<PromptBase*> Item::deleteItem()
+ {
+ auto ret = ensureBackend();
+ if (ret.isError()) {
+ return ret;
+ }
+ auto prompt = new DeleteItemPrompt(service(), this);
+ return prompt;
+ }
+
+ DBusReturn<SecretStruct> Item::getSecret(Session* session)
+ {
+ auto ret = ensureBackend();
+ if (ret.isError()) {
+ return ret;
+ }
+ ret = ensureUnlocked();
+ if (ret.isError()) {
+ return ret;
+ }
+
+ if (!session) {
+ return DBusReturn<>::Error(QStringLiteral(DBUS_ERROR_SECRET_NO_SESSION));
+ }
+
+ auto secret = getEntrySecret(m_backend);
+
+ // encode using session
+ secret = session->encode(secret);
+
+ // show notification is this was directly called from DBus
+ if (calledFromDBus()) {
+ service()->plugin()->emitRequestShowNotification(
+ tr(R"(Entry "%1" from database "%2" was used by %3)")
+ .arg(m_backend->title(), collection()->name(), callingPeerName()));
+ }
+ return secret;
+ }
+
+ DBusReturn<void> Item::setSecret(const SecretStruct& secret)
+ {
+ auto ret = ensureBackend();
+ if (ret.isError()) {
+ return ret;
+ }
+ ret = ensureUnlocked();
+ if (ret.isError()) {
+ return ret;
+ }
+
+ auto session = pathToObject<Session>(secret.session);
+ if (!session) {
+ return DBusReturn<>::Error(QStringLiteral(DBUS_ERROR_SECRET_NO_SESSION));
+ }
+
+ // decode using session
+ auto decoded = session->decode(secret);
+
+ // set in backend
+ m_backend->beginUpdate();
+ setEntrySecret(m_backend, decoded.value, decoded.contentType);
+ m_backend->endUpdate();
+
+ return {};
+ }
+
+ DBusReturn<void> Item::setProperties(const QVariantMap& properties)
+ {
+ auto label = properties.value(QStringLiteral(DBUS_INTERFACE_SECRET_ITEM ".Label")).toString();
+
+ auto ret = setLabel(label);
+ if (ret.isError()) {
+ return ret;
+ }
+
+ auto attributes = qdbus_cast<StringStringMap>(
+ properties.value(QStringLiteral(DBUS_INTERFACE_SECRET_ITEM ".Attributes")).value<QDBusArgument>());
+ ret = setAttributes(attributes);
+ if (ret.isError()) {
+ return ret;
+ }
+
+ return {};
+ }
+
+ Collection* Item::collection() const
+ {
+ return qobject_cast<Collection*>(p());
+ }
+
+ DBusReturn<void> Item::ensureBackend() const
+ {
+ if (!m_backend) {
+ return DBusReturn<>::Error(QStringLiteral(DBUS_ERROR_SECRET_NO_SUCH_OBJECT));
+ }
+ return {};
+ }
+
+ DBusReturn<void> Item::ensureUnlocked() const
+ {
+ auto locked = collection()->locked();
+ if (locked.isError()) {
+ return locked;
+ }
+ if (locked.value()) {
+ return DBusReturn<>::Error(QStringLiteral(DBUS_ERROR_SECRET_IS_LOCKED));
+ }
+ return {};
+ }
+
+ Entry* Item::backend() const
+ {
+ return m_backend;
+ }
+
+ void Item::doDelete()
+ {
+ emit itemAboutToDelete();
+
+ // Unregister current path early, do not rely on deleteLater's call to destructor
+ // as in case of Entry moving between groups, new Item will be created at the same DBus path
+ // before the current Item is deleted in the event loop.
+ unregisterCurrentPath();
+
+ m_backend = nullptr;
+ deleteLater();
+ }
+
+ Service* Item::service() const
+ {
+ return collection()->service();
+ }
+
+ QString Item::path() const
+ {
+ QStringList pathComponents{m_backend->title()};
+
+ Group* group = m_backend->group();
+ while (group && group != collection()->exposedRootGroup()) {
+ pathComponents.prepend(group->name());
+ group = group->parentGroup();
+ }
+ // we should always reach the exposed root group
+ Q_ASSERT(group);
+
+ // root group is represented by a single slash, thus adding an empty component.
+ pathComponents.prepend(QLatin1Literal(""));
+
+ return pathComponents.join('/');
+ }
+
+ QString Item::encodeAttributeKey(const QString& key)
+ {
+ return QUrl::toPercentEncoding(key, "", "_:").replace('%', '_');
+ }
+
+ QString Item::decodeAttributeKey(const QString& key)
+ {
+ return QString::fromUtf8(QByteArray::fromPercentEncoding(key.toLatin1(), '_'));
+ }
+
+ void setEntrySecret(Entry* entry, const QByteArray& data, const QString& contentType)
+ {
+ auto mimeName = contentType.split(';').takeFirst().trimmed();
+
+ // find the mime type
+ QMimeDatabase db;
+ auto mimeType = db.mimeTypeForName(mimeName);
+
+ // find a suitable codec
+ QTextCodec* codec = nullptr;
+ static const QRegularExpression charsetPattern(QStringLiteral(R"re(charset=(?<encode>.+)$)re"));
+ auto match = charsetPattern.match(contentType);
+ if (match.hasMatch()) {
+ codec = QTextCodec::codecForName(match.captured(QStringLiteral("encode")).toLatin1());
+ } else {
+ codec = QTextCodec::codecForName(QByteArrayLiteral("utf-8"));
+ }
+
+ if (!mimeType.isValid() || !mimeType.inherits(QStringLiteral("text/plain")) || !codec) {
+ // we can't handle this content type, save the data as attachment
+ entry->attachments()->set(FDO_SECRETS_DATA, data);
+ entry->attributes()->set(FDO_SECRETS_CONTENT_TYPE, contentType);
+ return;
+ }
+
+ // save the data to password field
+ if (entry->attachments()->hasKey(FDO_SECRETS_DATA)) {
+ entry->attachments()->remove(FDO_SECRETS_DATA);
+ }
+ if (entry->attributes()->hasKey(FDO_SECRETS_CONTENT_TYPE)) {
+ entry->attributes()->remove(FDO_SECRETS_CONTENT_TYPE);
+ }
+
+ Q_ASSERT(codec);
+ entry->setPassword(codec->toUnicode(data));
+ }
+
+ SecretStruct getEntrySecret(Entry* entry)
+ {
+ SecretStruct ss;
+
+ if (entry->attachments()->hasKey(FDO_SECRETS_DATA)) {
+ ss.value = entry->attachments()->value(FDO_SECRETS_DATA);
+ Q_ASSERT(entry->attributes()->hasKey(FDO_SECRETS_CONTENT_TYPE));
+ ss.contentType = entry->attributes()->value(FDO_SECRETS_CONTENT_TYPE);
+ return ss;
+ }
+
+ ss.value = entry->resolveMultiplePlaceholders(entry->password()).toUtf8();
+ ss.contentType = QStringLiteral("text/plain");
+ return ss;
+ }
+
+} // namespace FdoSecrets
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-11 01:18:41 +0300