/* * Copyright (C) 2017 KeePassXC Team * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 2 or (at your option) * version 3 of the License. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "Utils.h" #ifdef Q_OS_WIN #include #else #include #include #endif #include #include #include namespace Utils { QTextStream STDOUT; QTextStream STDERR; QTextStream STDIN; QTextStream DEVNULL; void setDefaultTextStreams() { auto fd = new QFile(); fd->open(stdout, QIODevice::WriteOnly); STDOUT.setDevice(fd); fd = new QFile(); fd->open(stderr, QIODevice::WriteOnly); STDERR.setDevice(fd); fd = new QFile(); fd->open(stdin, QIODevice::ReadOnly); STDIN.setDevice(fd); fd = new QFile(); #ifdef Q_OS_WIN fd->open(fopen("nul", "w"), QIODevice::WriteOnly); #else fd->open(fopen("/dev/null", "w"), QIODevice::WriteOnly); #endif DEVNULL.setDevice(fd); } void setStdinEcho(bool enable = true) { #ifdef Q_OS_WIN HANDLE hIn = GetStdHandle(STD_INPUT_HANDLE); DWORD mode; GetConsoleMode(hIn, &mode); if (enable) { mode |= ENABLE_ECHO_INPUT; } else { mode &= ~ENABLE_ECHO_INPUT; } SetConsoleMode(hIn, mode); #else struct termios t; tcgetattr(STDIN_FILENO, &t); if (enable) { t.c_lflag |= ECHO; } else { t.c_lflag &= ~ECHO; } tcsetattr(STDIN_FILENO, TCSANOW, &t); #endif } QSharedPointer unlockDatabase(const QString& databaseFilename, const bool isPasswordProtected, const QString& keyFilename, const QString& yubiKeySlot, bool quiet) { auto& err = quiet ? DEVNULL : STDERR; auto compositeKey = QSharedPointer::create(); QFileInfo dbFileInfo(databaseFilename); if (dbFileInfo.canonicalFilePath().isEmpty()) { err << QObject::tr("Failed to open database file %1: not found").arg(databaseFilename) << endl; return {}; } if (!dbFileInfo.isFile()) { err << QObject::tr("Failed to open database file %1: not a plain file").arg(databaseFilename) << endl; return {}; } if (!dbFileInfo.isReadable()) { err << QObject::tr("Failed to open database file %1: not readable").arg(databaseFilename) << endl; return {}; } if (isPasswordProtected) { err << QObject::tr("Enter password to unlock %1: ").arg(databaseFilename) << flush; QString line = Utils::getPassword(quiet); auto passwordKey = QSharedPointer::create(); passwordKey->setPassword(line); compositeKey->addKey(passwordKey); } if (!keyFilename.isEmpty()) { auto fileKey = QSharedPointer::create(); QString errorMessage; // LCOV_EXCL_START if (!fileKey->load(keyFilename, &errorMessage)) { err << QObject::tr("Failed to load key file %1: %2").arg(keyFilename, errorMessage) << endl; return {}; } if (fileKey->type() != FileKey::Hashed) { err << QObject::tr("WARNING: You are using a legacy key file format which may become\n" "unsupported in the future.\n\n" "Please consider generating a new key file.") << endl; } // LCOV_EXCL_STOP compositeKey->addKey(fileKey); } #ifdef WITH_XC_YUBIKEY if (!yubiKeySlot.isEmpty()) { bool ok = false; int slot = yubiKeySlot.toInt(&ok, 10); if (!ok || (slot != 1 && slot != 2)) { err << QObject::tr("Invalid YubiKey slot %1").arg(yubiKeySlot) << endl; return {}; } QString errorMessage; bool blocking = YubiKey::instance()->checkSlotIsBlocking(slot, errorMessage); if (!errorMessage.isEmpty()) { err << errorMessage << endl; return {}; } auto key = QSharedPointer(new YkChallengeResponseKeyCLI( slot, blocking, QObject::tr("Please touch the button on your YubiKey to unlock %1").arg(databaseFilename), err.device())); compositeKey->addChallengeResponseKey(key); } #else Q_UNUSED(yubiKeySlot); #endif // WITH_XC_YUBIKEY auto db = QSharedPointer::create(); QString error; if (db->open(databaseFilename, compositeKey, &error, false)) { return db; } else { err << error << endl; return {}; } } /** * Read a user password from STDIN or return a password previously * set by \link setNextPassword(). * * @return the password */ QString getPassword(bool quiet) { auto& in = STDIN; auto& out = quiet ? DEVNULL : STDERR; setStdinEcho(false); QString line = in.readLine(); setStdinEcho(true); out << endl; return line; } /** * Read optional password from stdin. * * @return Pointer to the PasswordKey or null if passwordkey is skipped * by user */ QSharedPointer getConfirmedPassword() { auto& err = STDERR; auto& in = STDIN; QSharedPointer passwordKey; err << QObject::tr("Enter password to encrypt database (optional): "); err.flush(); auto password = Utils::getPassword(); if (password.isEmpty()) { err << QObject::tr("Do you want to create a database with an empty password? [y/N]: "); err.flush(); auto ans = in.readLine(); if (ans.toLower().startsWith("y")) { passwordKey = QSharedPointer::create(""); } err << endl; } else { err << QObject::tr("Repeat password: "); err.flush(); auto repeat = Utils::getPassword(); if (password == repeat) { passwordKey = QSharedPointer::create(password); } else { err << QObject::tr("Error: Passwords do not match.") << endl; } } return passwordKey; } /** * A valid and running event loop is needed to use the global QClipboard, * so we need to use this from the CLI. */ int clipText(const QString& text) { auto& err = STDERR; // List of programs and their arguments QList> clipPrograms; #ifdef Q_OS_UNIX if (QProcessEnvironment::systemEnvironment().contains("WAYLAND_DISPLAY")) { clipPrograms << qMakePair(QStringLiteral("wl-copy"), QStringLiteral("")); } else { clipPrograms << qMakePair(QStringLiteral("xclip"), QStringLiteral("-selection clipboard -i")); } #endif #ifdef Q_OS_MACOS clipPrograms << qMakePair(QStringLiteral("pbcopy"), QStringLiteral("")); #endif #ifdef Q_OS_WIN clipPrograms << qMakePair(QStringLiteral("clip"), QStringLiteral("")); #endif if (clipPrograms.isEmpty()) { err << QObject::tr("No program defined for clipboard manipulation"); err.flush(); return EXIT_FAILURE; } QStringList failedProgramNames; for (auto prog : clipPrograms) { QScopedPointer clipProcess(new QProcess(nullptr)); // Skip empty parts, otherwise the program may clip the empty string QStringList progArgs = prog.second.split(" ", QString::SkipEmptyParts); clipProcess->start(prog.first, progArgs); clipProcess->waitForStarted(); if (clipProcess->state() != QProcess::Running) { failedProgramNames.append(prog.first); continue; } if (clipProcess->write(text.toLatin1()) == -1) { qDebug("Unable to write to process : %s", qPrintable(clipProcess->errorString())); } clipProcess->waitForBytesWritten(); clipProcess->closeWriteChannel(); clipProcess->waitForFinished(); if (clipProcess->exitCode() == EXIT_SUCCESS) { return EXIT_SUCCESS; } } // No clipping program worked err << QObject::tr("All clipping programs failed. Tried %1\n").arg(failedProgramNames.join(", ")); err.flush(); return EXIT_FAILURE; } /** * Splits the given QString into a QString list. For example: * * "hello world" -> ["hello", "world"] * "hello world" -> ["hello", "world"] * "hello\\ world" -> ["hello world"] (i.e. backslash is an escape character * "\"hello world\"" -> ["hello world"] */ QStringList splitCommandString(const QString& command) { QStringList result; bool insideQuotes = false; QString cur; for (int i = 0; i < command.size(); ++i) { QChar c = command[i]; if (c == '\\' && i < command.size() - 1) { cur.append(command[i + 1]); ++i; } else if (!insideQuotes && (c == ' ' || c == '\t')) { if (!cur.isEmpty()) { result.append(cur); cur.clear(); } } else if (c == '"' && (insideQuotes || i == 0 || command[i - 1].isSpace())) { insideQuotes = !insideQuotes; } else { cur.append(c); } } if (!cur.isEmpty()) { result.append(cur); } return result; } QStringList findAttributes(const EntryAttributes& attributes, const QString& name) { QStringList result; if (attributes.hasKey(name)) { result.append(name); return result; } for (const QString& key : attributes.keys()) { if (key.compare(name, Qt::CaseSensitivity::CaseInsensitive) == 0) { result.append(key); } } return result; } } // namespace Utils