Skip to content

Commit

Permalink
Merge branch 'os_password_manager_integration'
Browse files Browse the repository at this point in the history
  • Loading branch information
@ttyridal
ttyridal committed Sep 4, 2015
2 parents a192f2e + e50570f commit 5f7dfca
Show file tree
Hide file tree
Showing 5 changed files with 598 additions and 1 deletion.
10 changes: 10 additions & 0 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,3 +19,13 @@ Many sites (like google) have localized url's (google.de, google.co.uk etc). It
When you first open masterpassword on a localized domain, that domain will be suggested in masterpassword. You can change this. It will be remembered for your next visit.

If you have several accounts at a domain, it is suggested to prefix the site name with something like "username@" (ie [email protected]). The site name in masterpassword will change to a dropdown if you have multiple variants.

# KWallet / GNOME Keyring security
`version >= 2.0pre1`

The plugin can store your master key in your OS' key store (ie GNOME Keyring or KWallet, Linux only!). This feature is turned off by default and must be enabled in the addon preferences menu. Before you do, please consider the following:

While both solutions claim to store the password in an encrypted database, you might as well just keep your passwords in a plain text file - with a big fat **PASSWORD** as name - and put that file on an encrypted disk. There is absolutely _no_ isolation against rouge software. Any client can connect to the server and request for every password stored there.

As with most things, it is a balancing act: if you feel that the convenience outweighs the risks, the feature is there for you.

347 changes: 347 additions & 0 deletions ext/lib/dbus.js
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,347 @@
/* Copyright Torbjorn Tyridal 2015
This file is part of Masterpassword for Firefox (herby known as "the software").
The software is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.
The software is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with the software. If not, see <http://www.gnu.org/licenses/>.
*/

/*
*
* Minimal dbus api for accessing Secret Services API (gnome keyring / ksecretservice)
* and Kwallet.
*
**/

exports.dbus = (function(){

try {
var { setTimeout } = require("sdk/timers");
var {Cu} = require('chrome');
Cu.import("resource://gre/modules/ctypes.jsm");
} catch(e) {
console.error("Failed to load js-ctypes");
return null;
}


function dbus() {
var lib
try { lib = ctypes.open("libdbus-1.so.3"); }
catch(e) {
console.error("Failed to load libdbus-1.so.3");
return null;
}

const DBusError = ctypes.StructType('DBusError', [
{'name': ctypes.char.ptr},
{'message': ctypes.char.ptr},
{'dummy1': ctypes.int},
{'dummy2': ctypes.int},
{'dummy3': ctypes.int},
{'dummy4': ctypes.int},
{'dummy5': ctypes.int},
{'padding': ctypes.voidptr_t},
]),
DBusConnection = ctypes.StructType('DBusConnection'),
DBusMessage = ctypes.StructType('DBusMessage'),
DBusMessageIter = ctypes.StructType('DBusMessageIter', [
{'dummy1': ctypes.voidptr_t},
{'dummy2': ctypes.voidptr_t},
{'dummy3': ctypes.uint32_t},
{'dummy4': ctypes.int},
{'dummy5': ctypes.int},
{'dummy6': ctypes.int},
{'dummy7': ctypes.int},
{'dummy8': ctypes.int},
{'dummy9': ctypes.int},
{'dummy10': ctypes.int},
{'dummy11': ctypes.int},
{'pad1': ctypes.int},
{'pad2': ctypes.int},
{'pad3': ctypes.voidptr_t}

]),
DBusPendingCall = ctypes.StructType('DBusPendingCall');

const bus_get = lib.declare('dbus_bus_get', ctypes.default_abi, DBusConnection.ptr,
ctypes.int, DBusError.ptr),
message_iter_init = lib.declare('dbus_message_iter_init', ctypes.default_abi, ctypes.bool,
DBusMessage.ptr, DBusMessageIter.ptr),
message_iter_get_arg_type = lib.declare('dbus_message_iter_get_arg_type', ctypes.default_abi, ctypes.int,
DBusMessageIter.ptr),
message_iter_get_basic = lib.declare('dbus_message_iter_get_basic', ctypes.default_abi, ctypes.void_t,
DBusMessageIter.ptr, ctypes.voidptr_t),
message_iter_recurse = lib.declare('dbus_message_iter_recurse', ctypes.default_abi, ctypes.void_t,
DBusMessageIter.ptr, DBusMessageIter.ptr),
message_iter_init_append = lib.declare('dbus_message_iter_init_append', ctypes.default_abi, ctypes.void_t,
DBusMessage.ptr, DBusMessageIter.ptr),
message_iter_append_basic = lib.declare('dbus_message_iter_append_basic', ctypes.default_abi, ctypes.bool,
DBusMessageIter.ptr, ctypes.int, ctypes.voidptr_t),
message_iter_next = lib.declare('dbus_message_iter_next', ctypes.default_abi, ctypes.bool,
DBusMessageIter.ptr),
message_iter_open_container = lib.declare('dbus_message_iter_open_container', ctypes.default_abi, ctypes.bool,
DBusMessageIter.ptr, ctypes.int, ctypes.char.ptr, DBusMessageIter.ptr),
message_iter_close_container = lib.declare('dbus_message_iter_close_container', ctypes.default_abi, ctypes.bool,
DBusMessageIter.ptr, DBusMessageIter.ptr),
message_new_method_call = lib.declare('dbus_message_new_method_call', ctypes.default_abi, DBusMessage.ptr,
ctypes.char.ptr, ctypes.char.ptr, ctypes.char.ptr, ctypes.char.ptr ),
message_unref = lib.declare('dbus_message_unref', ctypes.default_abi, ctypes.void_t,
DBusMessage.ptr ),
connection_send_with_reply_and_block = lib.declare('dbus_connection_send_with_reply_and_block', ctypes.default_abi, DBusMessage.ptr,
DBusConnection.ptr, DBusMessage.ptr, ctypes.int, DBusError.ptr);
connection_send_with_reply = lib.declare('dbus_connection_send_with_reply', ctypes.default_abi, ctypes.bool,
DBusConnection.ptr, DBusMessage.ptr, DBusPendingCall.ptr.ptr, ctypes.int);
pending_call_block = lib.declare('dbus_pending_call_block', ctypes.default_abi, ctypes.void_t,
DBusPendingCall.ptr);
pending_call_steal_reply = lib.declare('dbus_pending_call_steal_reply', ctypes.default_abi, DBusMessage.ptr,
DBusPendingCall.ptr);
pending_call_unref = lib.declare('dbus_pending_call_unref', ctypes.default_abi, ctypes.void_t,
DBusPendingCall.ptr);
pending_call_get_completed = lib.declare('dbus_pending_call_get_completed', ctypes.default_abi, ctypes.bool,
DBusPendingCall.ptr);
set_error_from_message = lib.declare('dbus_set_error_from_message', ctypes.default_abi, ctypes.bool,
DBusError.ptr, DBusMessage.ptr);

const dbus_type = {'string': 's'.charCodeAt(0),
'objectpath': 'o'.charCodeAt(0),
'integer': 'i'.charCodeAt(0),
'bool': 'b'.charCodeAt(0),
'int64': 'x'.charCodeAt(0),
'variant': 'v'.charCodeAt(0),
'array': 'a'.charCodeAt(0),
'byte': 'y'.charCodeAt(0),
'struct': 'r'.charCodeAt(0),
'dict_entry': 'e'.charCodeAt(0),
}

function send_with_reply(con, msg, timeout) {
var toreturn = [],
rep,
pendingCall = DBusPendingCall.ptr();

if (timeout == undefined) timeout = -1;
else timeout = Math.round(timeout * 1000);

connection_send_with_reply(con, msg, pendingCall.address(), timeout);
//pending_call_block(pendingCall);

return new Promise(function(resolve, fail){

(function loop(){
if (!pending_call_get_completed(pendingCall)) {
setTimeout(loop, 200);
return;
}

rep = pending_call_steal_reply(pendingCall);
if (rep.isNull()) {
throw new Error("steal_reply returned null");
}

var err = new DBusError();
if (set_error_from_message(err.address(), rep)) {
throw new Error("method execute, Failed to send message:"+err.name.readString()+"\n"+err.message.readString());
} else {
it = new DBusMessageIter();
if (message_iter_init(rep, it.address()))
toreturn = iter_result(it.address());
}
message_unref(rep);
pending_call_unref(pendingCall);

resolve(toreturn);
})();
});
}

function iter_result(it) {
var typ, data, ret = [];
for (typ = message_iter_get_arg_type(it); typ != 0; message_iter_next(it), typ = message_iter_get_arg_type(it)) {
switch(typ) {
case dbus_type.objectpath:
case dbus_type.string:
data = ctypes.char.ptr();
message_iter_get_basic(it, data.address());
ret.push(data.readString());
break;
case dbus_type.integer:
data = ctypes.int();
message_iter_get_basic(it, data.address());
ret.push(data.value);
break;
case dbus_type.int64:
data = ctypes.int64_t();
message_iter_get_basic(it, data.address());
ret.push(data.value);
break;
case dbus_type.byte:
data = ctypes.uint8_t();
message_iter_get_basic(it, data.address());
ret.push(data.value);
break;
case dbus_type.struct:
case dbus_type.variant:
case dbus_type.array:
data = new DBusMessageIter();
message_iter_recurse(it, data.address());
if (typ==dbus_type.variant)
ret.push( iter_result(data.address())[0] );
else
ret.push( iter_result(data.address()) );
break;
default:
console.warn("iter_result, Unknown data type",typ);
}
}
return ret;
}

var err = new DBusError();
var dbus_con = bus_get(0, err.address());
if (dbus_con.isNull()) {
console.error('Failed to get bus', err.name, err.message);
return null;
}

/// helpers ///
function iter_each(ar, cb) {
for (var key in ar)
if (ar.hasOwnProperty(key))
cb(key, ar[key]);
}
function msg_arg_str(it, s) {
var ss = ctypes.char.array()(s);
var x = ctypes.cast(ss.address(), ctypes.char.ptr);
message_iter_append_basic(it, dbus_type.string, x.address());
}
function msg_arg_objectpath(it, s) {
var ss = ctypes.char.array()(s);
var x = ctypes.cast(ss.address(), ctypes.char.ptr);
message_iter_append_basic(it, dbus_type.objectpath, x.address());
}
function msg_arg_dict(it, typ, then) {
var dic = new DBusMessageIter();
message_iter_open_container(it, dbus_type.array, typ, dic.address());
then(dic.address());
message_iter_close_container(it, dic.address());
}
function msg_arg_dict_entry(dic, key, then) {
var entry = new DBusMessageIter();
message_iter_open_container(dic, dbus_type.dict_entry, null, entry.address());
msg_arg_str(entry.address(), key);
then(entry.address());
message_iter_close_container(dic, entry.address());
}
function msg_arg_variant(it, typ, then) {
var va = new DBusMessageIter();
message_iter_open_container(it, dbus_type.variant, typ, va.address());
then(va.address());
message_iter_close_container(it, va.address());
}
function msg_arg_struct(it, then) {
var va = new DBusMessageIter();
message_iter_open_container(it, dbus_type.struct, null, va.address());
then(va.address());
message_iter_close_container(it, va.address());
}
function msg_arg_bytearray(it, ar) {
var va = new DBusMessageIter();
message_iter_open_container(it, dbus_type.array, 'y', va.address());
for (var x of ar) {
if (x.charCodeAt(0) > 255) throw new Error("Illegal byte array thing.. did you forget to convert to utf-8?");
var x = ctypes.uint8_t(x.charCodeAt(0));
message_iter_append_basic(va.address(), dbus_type.byte, x.address());
}
message_iter_close_container(it, va.address());
}
//compounds
function msg_arg_var_str(it, s) {
msg_arg_variant(it, 's', function(v){ msg_arg_str(v, s);});
}
function msg_arg_dict_strs(it, d) {
msg_arg_dict(it, '{ss}', function(dic) {
iter_each(d, function(key, val) {
msg_arg_dict_entry(dic, key, function(c){ msg_arg_str(c, d[key]); });
});
});
}

const new_method_call = function(dest, path, iface, method) {
var m = message_new_method_call(dest, path, iface, method);
var it = new DBusMessageIter();
message_iter_init_append(m, it.address());
return {
'secret_services_attributes_arg': function(label, attrs) {
msg_arg_dict(it.address(), '{sv}', function(dic) {
msg_arg_dict_entry(dic, 'org.freedesktop.Secret.Item.Label', function(e){ msg_arg_var_str(e, label); });
msg_arg_dict_entry(dic, 'org.freedesktop.Secret.Item.Attributes', function(e) {
msg_arg_variant(e, 'a{ss}', function(v) {
msg_arg_dict_strs(v, attrs);
});
});
});
},
'secret_services_passwd_arg': function(session, session_key, pass, pass_fmt) {
msg_arg_struct(it.address(), function(s) {
msg_arg_objectpath(s, session);
msg_arg_bytearray(s, session_key);
msg_arg_bytearray(s, pass);
msg_arg_str(s, pass_fmt);
});
},
'dict_str_arg': function(s) { msg_arg_dict_strs(it.address(), s); },
'var_string_arg': function(s) { msg_arg_var_str(it.address(), s); },
'string_arg': function(s) { msg_arg_str(it.address(), s); },
'objpath_arg': function(s) { msg_arg_objectpath(it.address(), s); },
'int_arg': function(s) {
var x = ctypes.int(s);
message_iter_append_basic(it.address(), dbus_type.integer, x.address());
},
'int64_arg': function(s) {
var x = ctypes.int64_t(s);
message_iter_append_basic(it.address(), dbus_type.int64, x.address());
},
'bool_arg': function(s) {
var x = ctypes.int({true:1, false:0}[s]);
message_iter_append_basic(it.address(), dbus_type.bool, x.address());
},
'execute': function(timeout) {
console.log('execute',method);
var p = send_with_reply(dbus_con, m, timeout);
message_unref(m);
return p;
}
};
}

const get_property = function(dest, path, iface, prop) {
var m = new_method_call(dest, path, 'org.freedesktop.DBus.Properties', 'Get');
m.string_arg(iface);
m.string_arg(prop);
return m.execute().then(function(dta){ return dta[0]; });
}

return {
'get': function (dest) { return {
'load': function(path) { return {
'bind': function(iface) { return {
'method_call': function(m) { return new_method_call(dest, path, iface, m); },
'get_property': function(p, cb) { return get_property(dest, path, iface, p, cb); }
};}
};}
};}
};
}
return dbus
})();
Loading

0 comments on commit 5f7dfca

Please sign in to comment.