Kennwortmanager KeePassX Weiterentwicklung der Version 1
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
This repo is archived. You can view files and clone it, but cannot push or open issues/pull-requests.
keepassx1/src/lib/SecString.cpp

149 lines
3.8 KiB

/***************************************************************************
* Copyright (C) 2005 by Tarek Saidi *
* tarek@linux *
* *
* This program is free software; you can redistribute it and/or modify *
* it under the terms of the GNU General Public License as published by *
* the Free Software Foundation; version 2 of the License. *
* *
* This program is distributed in the hope that it will be useful, *
* but WITHOUT ANY WARRANTY; without even the implied warranty of *
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
* GNU General Public License for more details. *
* *
* You should have received a copy of the GNU General Public License *
* along with this program; if not, write to the *
* Free Software Foundation, Inc., *
* 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
***************************************************************************/
CArcFour SecString::RC4;
quint8* SecString::sessionkey;
SecString::operator QString(){
return string();
}
SecString::SecString(){
locked=true;
}
int SecString::length(){
return crypt.size();
}
SecString::~SecString(){
lock();
}
void SecString::lock(){
locked=true;
overwrite(plain);
plain=QString();
}
void SecString::unlock(){
locked = false;
plain = QString();
if(!crypt.length())
return;
const unsigned char* buffer = new unsigned char[crypt.length()];
RC4.decrypt( (quint8*)crypt.data(), (unsigned char*)buffer, crypt.length() );
plain = QString::fromUtf8((const char*)buffer, crypt.size());
overwrite((unsigned char*)buffer, crypt.size());
delete [] buffer;
}
const QString& SecString::string(){
Q_ASSERT_X(!locked, "SecString::string()", "string is locked");
return plain;
}
void SecString::setString(QString& str, bool DeleteSource){
QByteArray StrData = str.toUtf8();
int len = StrData.size();
unsigned char* buffer = new unsigned char[len];
RC4.encrypt((const unsigned char*)StrData.data(), buffer, len);
crypt = QByteArray((const char*)buffer, len);
overwrite(buffer, len);
overwrite((unsigned char*)StrData.data(), len);
delete [] buffer;
if(DeleteSource){
overwrite(str);
str=QString();
}
lock();
}
void SecString::overwrite(unsigned char* str, int strlen){
if(strlen==0 || str==NULL)
return;
for(int i=0; i<strlen; i++)
str[i]=0;
}
void SecString::overwrite(QString& str){
for (int i=0; i<str.length(); i++) {
str[i] = '\0';
}
}
void SecString::generateSessionKey(){
sessionkey = new quint8[32];
if (!lockPage(sessionkey, 32))
qDebug("Failed to lock session key page");
randomize(sessionkey, 32);
RC4.setKey(sessionkey, 32);
}
void SecString::deleteSessionKey() {
overwrite(sessionkey, 32);
unlockPage(sessionkey, 32);
delete[] sessionkey;
}
SecData::SecData(int len) : locked(true){
length = len;
data = new quint8[len];
}
SecData::~SecData(){
if (!locked){
for (int i=0; i<length; i++)
data[i] = 0;
}
delete[] data;
}
void SecData::lock(){
Q_ASSERT(!locked);
SecString::RC4.encrypt(data, data, length);
locked = true;
}
void SecData::unlock(){
Q_ASSERT(locked);
SecString::RC4.decrypt(data, data, length);
locked = false;
}
void SecData::copyData(quint8* src){
locked = false;
memcpy(data, src, length);
lock();
}
void SecData::copyData(SecData& secData){
secData.unlock();
copyData(*secData);
secData.lock();
}
quint8* SecData::operator*(){
Q_ASSERT(!locked);
return data;
}