/
soldim
/
keepassxc
GigaCode
beta
ОбзорЦентр заботыВойти

keepassxc

Форк
0
Ветки: 13Коммиты: 4628Теги: 59
keepassxc
/src
/format
/
KeePass2.cpp 
157 строк · 5.6 Кб
1
/*
2
 *  Copyright (C) 2017 KeePassXC Team <team@keepassxc.org>
3
 *
4
 *  This program is free software: you can redistribute it and/or modify
5
 *  it under the terms of the GNU General Public License as published by
6
 *  the Free Software Foundation, either version 2 or (at your option)
7
 *  version 3 of the License.
8
 *
9
 *  This program is distributed in the hope that it will be useful,
10
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
11
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
12
 *  GNU General Public License for more details.
13
 *
14
 *  You should have received a copy of the GNU General Public License
15
 *  along with this program.  If not, see <http://www.gnu.org/licenses/>.
16
 */
17


18
#include "KeePass2.h"
19
#include "crypto/CryptoHash.h"
20
#include "crypto/kdf/AesKdf.h"
21
#include "crypto/kdf/Argon2Kdf.h"
22


23
#define UUID_LENGTH 16
24


25
const QUuid KeePass2::CIPHER_AES128 = QUuid("61ab05a1-9464-41c3-8d74-3a563df8dd35");
26
const QUuid KeePass2::CIPHER_AES256 = QUuid("31c1f2e6-bf71-4350-be58-05216afc5aff");
27
const QUuid KeePass2::CIPHER_TWOFISH = QUuid("ad68f29f-576f-4bb9-a36a-d47af965346c");
28
const QUuid KeePass2::CIPHER_CHACHA20 = QUuid("d6038a2b-8b6f-4cb5-a524-339a31dbb59a");
29


30
const QUuid KeePass2::KDF_AES_KDBX3 = QUuid("c9d9f39a-628a-4460-bf74-0d08c18a4fea");
31
const QUuid KeePass2::KDF_AES_KDBX4 = QUuid("7c02bb82-79a7-4ac0-927d-114a00648238");
32
const QUuid KeePass2::KDF_ARGON2D = QUuid("ef636ddf-8c29-444b-91f7-a9a403e30a0c");
33
const QUuid KeePass2::KDF_ARGON2ID = QUuid("9e298b19-56db-4773-b23d-fc3ec6f0a1e6");
34


35
const QByteArray KeePass2::INNER_STREAM_SALSA20_IV("\xe8\x30\x09\x4b\x97\x20\x5d\x2a");
36


37
const QString KeePass2::KDFPARAM_UUID("$UUID");
38
// AES parameters
39
const QString KeePass2::KDFPARAM_AES_ROUNDS("R");
40
const QString KeePass2::KDFPARAM_AES_SEED("S");
41
// Argon2 parameters
42
const QString KeePass2::KDFPARAM_ARGON2_SALT("S");
43
const QString KeePass2::KDFPARAM_ARGON2_PARALLELISM("P");
44
const QString KeePass2::KDFPARAM_ARGON2_MEMORY("M");
45
const QString KeePass2::KDFPARAM_ARGON2_ITERATIONS("I");
46
const QString KeePass2::KDFPARAM_ARGON2_VERSION("V");
47
const QString KeePass2::KDFPARAM_ARGON2_SECRET("K");
48
const QString KeePass2::KDFPARAM_ARGON2_ASSOCDATA("A");
49


50
const QList<QUuid> KeePass2::CIPHERS{KeePass2::CIPHER_AES256, KeePass2::CIPHER_TWOFISH, KeePass2::CIPHER_CHACHA20};
51


52
const QList<QUuid> KeePass2::KDFS{KeePass2::KDF_ARGON2D,
53
                                  KeePass2::KDF_ARGON2ID,
54
                                  KeePass2::KDF_AES_KDBX4,
55
                                  KeePass2::KDF_AES_KDBX3};
56


57
QByteArray KeePass2::hmacKey(const QByteArray& masterSeed, const QByteArray& transformedMasterKey)
58
{
59
    CryptoHash hmacKeyHash(CryptoHash::Sha512);
60
    hmacKeyHash.addData(masterSeed);
61
    hmacKeyHash.addData(transformedMasterKey);
62
    hmacKeyHash.addData(QByteArray(1, '\x01'));
63
    return hmacKeyHash.result();
64
}
65


66
/**
67
 * Create KDF object from KDBX4+ KDF parameters.
68
 *
69
 * @param p variant map containing parameters
70
 * @return initialized KDF
71
 */
72
QSharedPointer<Kdf> KeePass2::kdfFromParameters(const QVariantMap& p)
73
{
74
    QByteArray uuidBytes = p.value(KDFPARAM_UUID).toByteArray();
75
    if (uuidBytes.size() != UUID_LENGTH) {
76
        return {};
77
    }
78


79
    QUuid kdfUuid = QUuid::fromRfc4122(uuidBytes);
80
    if (kdfUuid == KDF_AES_KDBX3) {
81
        // upgrade to non-legacy AES-KDF, since KDBX3 doesn't have any KDF parameters
82
        kdfUuid = KDF_AES_KDBX4;
83
    }
84
    QSharedPointer<Kdf> kdf = uuidToKdf(kdfUuid);
85
    if (kdf.isNull()) {
86
        return {};
87
    }
88


89
    if (!kdf->processParameters(p)) {
90
        return {};
91
    }
92


93
    return kdf;
94
}
95


96
QVariantMap KeePass2::kdfToParameters(const QSharedPointer<Kdf>& kdf)
97
{
98
    return kdf->writeParameters();
99
}
100


101
QSharedPointer<Kdf> KeePass2::uuidToKdf(const QUuid& uuid)
102
{
103
    if (uuid == KDF_AES_KDBX3) {
104
        return QSharedPointer<AesKdf>::create(true);
105
    }
106
    if (uuid == KDF_AES_KDBX4) {
107
        return QSharedPointer<AesKdf>::create();
108
    }
109
    if (uuid == KDF_ARGON2D) {
110
        return QSharedPointer<Argon2Kdf>::create(Argon2Kdf::Type::Argon2d);
111
    }
112
    if (uuid == KDF_ARGON2ID) {
113
        return QSharedPointer<Argon2Kdf>::create(Argon2Kdf::Type::Argon2id);
114
    }
115


116
    return {};
117
}
118


119
KeePass2::ProtectedStreamAlgo KeePass2::idToProtectedStreamAlgo(quint32 id)
120
{
121
    switch (id) {
122
    case static_cast<quint32>(KeePass2::ProtectedStreamAlgo::ArcFourVariant):
123
        return KeePass2::ProtectedStreamAlgo::ArcFourVariant;
124
    case static_cast<quint32>(KeePass2::ProtectedStreamAlgo::Salsa20):
125
        return KeePass2::ProtectedStreamAlgo::Salsa20;
126
    case static_cast<quint32>(KeePass2::ProtectedStreamAlgo::ChaCha20):
127
        return KeePass2::ProtectedStreamAlgo::ChaCha20;
128
    default:
129
        return KeePass2::ProtectedStreamAlgo::InvalidProtectedStreamAlgo;
130
    }
131
}
132


133
QString KeePass2::cipherToString(QUuid cipherUuid)
134
{
135
    if (cipherUuid == KeePass2::CIPHER_AES256) {
136
        return QObject::tr("AES 256-bit");
137
    } else if (cipherUuid == KeePass2::CIPHER_TWOFISH) {
138
        return QObject::tr("Twofish 256-bit");
139
    } else if (cipherUuid == KeePass2::CIPHER_CHACHA20) {
140
        return QObject::tr("ChaCha20 256-bit");
141
    }
142
    return QObject::tr("Invalid Cipher");
143
}
144


145
QString KeePass2::kdfToString(QUuid kdfUuid)
146
{
147
    if (kdfUuid == KeePass2::KDF_ARGON2D) {
148
        return QObject::tr("Argon2d (KDBX 4 – recommended)");
149
    } else if (kdfUuid == KeePass2::KDF_ARGON2ID) {
150
        return QObject::tr("Argon2id (KDBX 4)");
151
    } else if (kdfUuid == KeePass2::KDF_AES_KDBX4) {
152
        return QObject::tr("AES-KDF (KDBX 4)");
153
    } else if (kdfUuid == KDF_AES_KDBX3) {
154
        return QObject::tr("AES-KDF (KDBX 3)");
155
    }
156
    return QObject::tr("Invalid KDF");
157
}
158

Использование cookies

Мы используем файлы cookie в соответствии с Политикой конфиденциальности и Политикой использования cookies.

Нажимая кнопку «Принимаю», Вы даете АО «СберТех» согласие на обработку Ваших персональных данных в целях совершенствования нашего веб-сайта и Сервиса GitVerse, а также повышения удобства их использования.

Запретить использование cookies Вы можете самостоятельно в настройках Вашего браузера.