keepassxc/src/core/Database.cpp

454 lines
10 KiB
C++
Raw Normal View History

2010-08-07 09:10:44 -04:00
/*
* Copyright (C) 2010 Felix Geyer <debfx@fobos.de>
2017-06-09 17:40:36 -04:00
* Copyright (C) 2017 KeePassXC Team <team@keepassxc.org>
2010-08-07 09:10:44 -04:00
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 2 or (at your option)
* version 3 of the License.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
#include "Database.h"
#include <QFile>
2017-06-14 19:50:19 -04:00
#include <QSaveFile>
#include <QTextStream>
#include <QTimer>
#include <QXmlStreamReader>
2010-08-07 09:10:44 -04:00
#include "cli/Utils.h"
2011-07-08 07:57:02 -04:00
#include "core/Group.h"
#include "core/Metadata.h"
#include "crypto/Random.h"
#include "format/KeePass2.h"
2017-03-12 13:47:05 -04:00
#include "format/KeePass2Reader.h"
2017-06-14 19:50:19 -04:00
#include "format/KeePass2Writer.h"
#include "keys/PasswordKey.h"
#include "keys/FileKey.h"
#include "keys/CompositeKey.h"
2010-08-07 09:10:44 -04:00
QHash<Uuid, Database*> Database::m_uuidMap;
2010-08-13 12:08:06 -04:00
Database::Database()
2012-04-23 13:44:43 -04:00
: m_metadata(new Metadata(this))
2012-06-24 11:53:01 -04:00
, m_timer(new QTimer(this))
, m_emitModified(false)
, m_uuid(Uuid::random())
2010-08-07 09:10:44 -04:00
{
2013-11-22 04:28:11 -05:00
m_data.cipher = KeePass2::CIPHER_AES;
m_data.compressionAlgo = CompressionGZip;
m_data.transformRounds = 100000;
2013-11-22 04:28:11 -05:00
m_data.hasKey = false;
setRootGroup(new Group());
rootGroup()->setUuid(Uuid::random());
2012-06-24 11:53:01 -04:00
m_timer->setSingleShot(true);
m_uuidMap.insert(m_uuid, this);
2012-06-24 11:53:01 -04:00
connect(m_metadata, SIGNAL(modified()), this, SIGNAL(modifiedImmediate()));
connect(m_metadata, SIGNAL(nameTextChanged()), this, SIGNAL(nameTextChanged()));
2012-06-24 11:53:01 -04:00
connect(this, SIGNAL(modifiedImmediate()), this, SLOT(startModifiedTimer()));
connect(m_timer, SIGNAL(timeout()), SIGNAL(modified()));
2010-08-07 09:10:44 -04:00
}
Database::~Database()
{
m_uuidMap.remove(m_uuid);
}
Group* Database::rootGroup()
{
return m_rootGroup;
}
2010-08-15 09:03:47 -04:00
const Group* Database::rootGroup() const
{
return m_rootGroup;
}
void Database::setRootGroup(Group* group)
{
Q_ASSERT(group);
2011-07-08 07:57:02 -04:00
m_rootGroup = group;
m_rootGroup->setParent(this);
}
Metadata* Database::metadata()
{
return m_metadata;
}
2010-09-19 15:22:24 -04:00
const Metadata* Database::metadata() const
{
2010-09-19 15:22:24 -04:00
return m_metadata;
}
Entry* Database::resolveEntry(const Uuid& uuid)
{
return recFindEntry(uuid, m_rootGroup);
}
Entry* Database::recFindEntry(const Uuid& uuid, Group* group)
{
const QList<Entry*> entryList = group->entries();
for (Entry* entry : entryList) {
2012-04-18 18:25:57 -04:00
if (entry->uuid() == uuid) {
return entry;
2012-04-18 18:25:57 -04:00
}
}
const QList<Group*> children = group->children();
for (Group* child : children) {
Entry* result = recFindEntry(uuid, child);
2012-04-18 18:25:57 -04:00
if (result) {
return result;
2012-04-18 18:25:57 -04:00
}
}
2015-07-24 12:28:12 -04:00
return nullptr;
}
Group* Database::resolveGroup(const Uuid& uuid)
{
return recFindGroup(uuid, m_rootGroup);
}
Group* Database::recFindGroup(const Uuid& uuid, Group* group)
{
2012-04-18 18:25:57 -04:00
if (group->uuid() == uuid) {
return group;
2012-04-18 18:25:57 -04:00
}
const QList<Group*> children = group->children();
for (Group* child : children) {
2010-09-13 17:16:28 -04:00
Group* result = recFindGroup(uuid, child);
2012-04-18 18:25:57 -04:00
if (result) {
2010-09-13 17:16:28 -04:00
return result;
2012-04-18 18:25:57 -04:00
}
}
2015-07-24 12:28:12 -04:00
return nullptr;
}
QList<DeletedObject> Database::deletedObjects()
{
return m_deletedObjects;
}
void Database::addDeletedObject(const DeletedObject& delObj)
{
Q_ASSERT(delObj.deletionTime.timeSpec() == Qt::UTC);
m_deletedObjects.append(delObj);
}
void Database::addDeletedObject(const Uuid& uuid)
{
DeletedObject delObj;
2015-07-22 17:48:08 -04:00
delObj.deletionTime = QDateTime::currentDateTimeUtc();
delObj.uuid = uuid;
addDeletedObject(delObj);
}
Uuid Database::cipher() const
{
2013-11-22 04:28:11 -05:00
return m_data.cipher;
}
Database::CompressionAlgorithm Database::compressionAlgo() const
{
2013-11-22 04:28:11 -05:00
return m_data.compressionAlgo;
}
QByteArray Database::transformSeed() const
{
2013-11-22 04:28:11 -05:00
return m_data.transformSeed;
}
quint64 Database::transformRounds() const
{
2013-11-22 04:28:11 -05:00
return m_data.transformRounds;
}
QByteArray Database::transformedMasterKey() const
{
2013-11-22 04:28:11 -05:00
return m_data.transformedMasterKey;
}
QByteArray Database::challengeResponseKey() const
{
return m_data.challengeResponseKey;
}
bool Database::challengeMasterSeed(const QByteArray& masterSeed)
{
m_data.masterSeed = masterSeed;
return m_data.key.challenge(masterSeed, m_data.challengeResponseKey);
}
void Database::setCipher(const Uuid& cipher)
{
Q_ASSERT(!cipher.isNull());
2013-11-22 04:28:11 -05:00
m_data.cipher = cipher;
}
void Database::setCompressionAlgo(Database::CompressionAlgorithm algo)
{
Q_ASSERT(static_cast<quint32>(algo) <= CompressionAlgorithmMax);
2013-11-22 04:28:11 -05:00
m_data.compressionAlgo = algo;
}
bool Database::setTransformRounds(quint64 rounds)
{
2013-11-22 04:28:11 -05:00
if (m_data.transformRounds != rounds) {
quint64 oldRounds = m_data.transformRounds;
2013-11-22 04:28:11 -05:00
m_data.transformRounds = rounds;
2013-11-22 04:28:11 -05:00
if (m_data.hasKey) {
if (!setKey(m_data.key)) {
m_data.transformRounds = oldRounds;
return false;
}
}
}
return true;
}
2017-06-15 10:31:14 -04:00
bool Database::setKey(const CompositeKey& key, const QByteArray& transformSeed, bool updateChangedTime)
{
bool ok;
QString errorString;
2017-06-15 10:31:14 -04:00
QByteArray transformedMasterKey = key.transform(transformSeed, transformRounds(), &ok, &errorString);
if (!ok) {
return false;
}
2013-11-22 04:28:11 -05:00
m_data.key = key;
m_data.transformSeed = transformSeed;
m_data.transformedMasterKey = transformedMasterKey;
2013-11-22 04:28:11 -05:00
m_data.hasKey = true;
2012-04-11 09:57:11 -04:00
if (updateChangedTime) {
2015-07-22 17:48:08 -04:00
m_metadata->setMasterKeyChanged(QDateTime::currentDateTimeUtc());
2012-04-11 09:57:11 -04:00
}
emit modifiedImmediate();
return true;
}
bool Database::setKey(const CompositeKey& key)
{
return setKey(key, randomGen()->randomArray(32));
}
bool Database::hasKey() const
{
2013-11-22 04:28:11 -05:00
return m_data.hasKey;
}
bool Database::verifyKey(const CompositeKey& key) const
{
Q_ASSERT(hasKey());
if (!m_data.challengeResponseKey.isEmpty()) {
QByteArray result;
if (!key.challenge(m_data.masterSeed, result)) {
// challenge failed, (YubiKey?) removed?
return false;
}
if (m_data.challengeResponseKey != result) {
// wrong response from challenged device(s)
return false;
}
}
2013-11-22 04:28:11 -05:00
return (m_data.key.rawKey() == key.rawKey());
}
2012-04-21 13:06:28 -04:00
void Database::createRecycleBin()
{
Group* recycleBin = Group::createRecycleBin();
2012-04-21 13:06:28 -04:00
recycleBin->setParent(rootGroup());
m_metadata->setRecycleBin(recycleBin);
}
void Database::recycleEntry(Entry* entry)
{
if (m_metadata->recycleBinEnabled()) {
if (!m_metadata->recycleBin()) {
2012-04-21 13:06:28 -04:00
createRecycleBin();
}
entry->setGroup(metadata()->recycleBin());
2017-06-15 10:31:14 -04:00
} else {
delete entry;
}
}
2012-04-21 13:06:28 -04:00
void Database::recycleGroup(Group* group)
{
2017-06-15 10:31:14 -04:00
if (m_metadata->recycleBinEnabled()) {
2012-04-21 13:06:28 -04:00
if (!m_metadata->recycleBin()) {
createRecycleBin();
}
group->setParent(metadata()->recycleBin());
2017-06-15 10:31:14 -04:00
} else {
2012-04-21 13:06:28 -04:00
delete group;
2017-06-15 10:31:14 -04:00
}
2012-06-24 11:53:01 -04:00
}
2017-04-21 10:33:06 -04:00
void Database::emptyRecycleBin()
{
if (m_metadata->recycleBinEnabled() && m_metadata->recycleBin()) {
// destroying direct entries of the recycle bin
QList<Entry*> subEntries = m_metadata->recycleBin()->entries();
for (Entry* entry : subEntries) {
delete entry;
}
// destroying direct subgroups of the recycle bin
QList<Group*> subGroups = m_metadata->recycleBin()->children();
for (Group* group : subGroups) {
delete group;
}
}
}
void Database::merge(const Database* other)
{
m_rootGroup->merge(other->rootGroup());
emit modified();
}
2012-06-24 11:53:01 -04:00
void Database::setEmitModified(bool value)
{
if (m_emitModified && !value) {
m_timer->stop();
2012-04-21 13:06:28 -04:00
}
2012-06-24 11:53:01 -04:00
m_emitModified = value;
2012-04-21 13:06:28 -04:00
}
2013-11-22 04:28:11 -05:00
void Database::copyAttributesFrom(const Database* other)
{
m_data = other->m_data;
m_metadata->copyAttributesFrom(other->m_metadata);
}
Uuid Database::uuid()
{
return m_uuid;
}
Database* Database::databaseByUuid(const Uuid& uuid)
{
return m_uuidMap.value(uuid, 0);
}
2012-06-24 11:53:01 -04:00
void Database::startModifiedTimer()
{
if (!m_emitModified) {
return;
}
if (m_timer->isActive()) {
m_timer->stop();
}
m_timer->start(150);
}
2017-05-19 14:04:11 -04:00
const CompositeKey& Database::key() const
{
return m_data.key;
}
2017-03-12 13:47:05 -04:00
Database* Database::openDatabaseFile(QString fileName, CompositeKey key)
{
QFile dbFile(fileName);
if (!dbFile.exists()) {
qCritical("File %s does not exist.", qPrintable(fileName));
return nullptr;
}
if (!dbFile.open(QIODevice::ReadOnly)) {
qCritical("Unable to open file %s.", qPrintable(fileName));
return nullptr;
}
KeePass2Reader reader;
Database* db = reader.readDatabase(&dbFile, key);
if (reader.hasError()) {
qCritical("Error while parsing the database: %s", qPrintable(reader.errorString()));
return nullptr;
}
return db;
}
Database* Database::unlockFromStdin(QString databaseFilename, QString keyFilename)
{
CompositeKey compositeKey;
QTextStream outputTextStream(stdout);
QTextStream errorTextStream(stderr);
outputTextStream << QObject::tr("Insert password to unlock %1: ").arg(databaseFilename);
outputTextStream.flush();
QString line = Utils::getPassword();
PasswordKey passwordKey;
passwordKey.setPassword(line);
compositeKey.addKey(passwordKey);
if (!keyFilename.isEmpty()) {
FileKey fileKey;
QString errorMessage;
if (!fileKey.load(keyFilename, &errorMessage)) {
2017-09-24 05:45:58 -04:00
errorTextStream << QObject::tr("Failed to load key file %1 : %2").arg(keyFilename, errorMessage);
errorTextStream << endl;
return nullptr;
}
compositeKey.addKey(fileKey);
}
return Database::openDatabaseFile(databaseFilename, compositeKey);
}
2017-06-14 19:50:19 -04:00
QString Database::saveToFile(QString filePath)
{
KeePass2Writer writer;
QSaveFile saveFile(filePath);
if (saveFile.open(QIODevice::WriteOnly)) {
// write the database to the file
writer.writeDatabase(&saveFile, this);
if (writer.hasError()) {
return writer.errorString();
}
if (saveFile.commit()) {
// successfully saved database file
return QString();
} else {
return saveFile.errorString();
}
} else {
return saveFile.errorString();
}
}