From 65f2790170ac80fdd33b9ae54968470bf81b2ef6 Mon Sep 17 00:00:00 2001
From: Felix Geyer <debfx@fobos.de>
Date: Thu, 10 May 2012 11:44:25 +0200
Subject: [PATCH] Parse KeePass 1 database meta streams.

Refs #2
---
 src/format/KeePass1Reader.cpp | 134 +++++++++++++++++++++++++++++++---
 src/format/KeePass1Reader.h   |   4 +-
 tests/TestKeePass1Reader.cpp  |  78 ++++++++++++++++----
 tests/TestKeePass1Reader.h    |   7 ++
 tests/data/basic.kdb          | Bin 1100 -> 1836 bytes
 5 files changed, 198 insertions(+), 25 deletions(-)

diff --git a/src/format/KeePass1Reader.cpp b/src/format/KeePass1Reader.cpp
index 5b4725ba..dc968cdd 100644
--- a/src/format/KeePass1Reader.cpp
+++ b/src/format/KeePass1Reader.cpp
@@ -19,11 +19,13 @@
 
 #include <QtCore/QFile>
 #include <QtCore/QTextCodec>
+#include <QtGui/QImage>
 
 #include "core/Database.h"
 #include "core/Endian.h"
 #include "core/Entry.h"
 #include "core/Group.h"
+#include "core/Metadata.h"
 #include "crypto/CryptoHash.h"
 #include "format/KeePass1.h"
 #include "keys/CompositeKey.h"
@@ -170,9 +172,7 @@ Database* KeePass1Reader::readDatabase(QIODevice* device, const QString& passwor
 
     Q_FOREACH (Entry* entry, entries) {
         if (isMetaStream(entry)) {
-            if (!parseMetaStream(entry)) {
-                return 0;
-            }
+            parseMetaStream(entry);
 
             delete entry;
         }
@@ -189,12 +189,10 @@ Database* KeePass1Reader::readDatabase(QIODevice* device, const QString& passwor
         group->setUpdateTimeinfo(true);
     }
 
-    Q_FOREACH (Entry* entry, entries) {
+    Q_FOREACH (Entry* entry, m_db->rootGroup()->entriesRecursive()) {
         entry->setUpdateTimeinfo(true);
     }
 
-
-
     return db.take();
 }
 
@@ -607,7 +605,7 @@ bool KeePass1Reader::constructGroupTree(const QList<Group*> groups)
         else {
             for (int j = (i - 1); j >= 0; j--) {
                 if (m_groupLevels.value(groups[j]) < level) {
-                    if ((m_groupLevels.value(groups[j]) - level) != 1) {
+                    if ((level - m_groupLevels.value(groups[j])) != 1) {
                         return false;
                     }
 
@@ -625,9 +623,127 @@ bool KeePass1Reader::constructGroupTree(const QList<Group*> groups)
     return true;
 }
 
-bool KeePass1Reader::parseMetaStream(const Entry* entry)
+void KeePass1Reader::parseMetaStream(const Entry* entry)
 {
-    // TODO: implement
+    QByteArray data = entry->attachments()->value("bin-stream");
+
+    if (entry->notes() == "KPX_GROUP_TREE_STATE") {
+        if (!parseGroupTreeState(data)) {
+            qWarning("Unable to parse group tree state metastream.");
+        }
+    }
+    else if (entry->notes() == "KPX_CUSTOM_ICONS_4") {
+        if (!parseCustomIcons4(data)) {
+            qWarning("Unable to parse custom icons metastream.");
+        }
+    }
+    else {
+        qWarning("Ignoring unknown metastream \"%s\".", entry->notes().toLocal8Bit().constData());
+    }
+}
+
+bool KeePass1Reader::parseGroupTreeState(const QByteArray& data)
+{
+    if (data.size() < 4) {
+        return false;
+    }
+
+    int pos = 0;
+    quint32 num = Endian::bytesToUInt32(data.mid(pos, 4), KeePass1::BYTEORDER);
+    pos += 4;
+
+    if ((data.size() - 4) != (num * 5)) {
+        return false;
+    }
+
+    for (quint32 i = 0; i < num; i++) {
+        quint32 groupId = Endian::bytesToUInt32(data.mid(pos, 4), KeePass1::BYTEORDER);
+        pos += 4;
+
+        bool expanded = data.at(pos);
+        pos += 1;
+
+        if (m_groupIds.contains(groupId)) {
+            m_groupIds[groupId]->setExpanded(expanded);
+        }
+    }
+
+    return true;
+}
+
+bool KeePass1Reader::parseCustomIcons4(const QByteArray& data)
+{
+    if (data.size() < 12) {
+        return false;
+    }
+
+    int pos = 0;
+
+    quint32 numIcons = Endian::bytesToUInt32(data.mid(pos, 4), KeePass1::BYTEORDER);
+    pos += 4;
+
+    quint32 numEntries = Endian::bytesToUInt32(data.mid(pos, 4), KeePass1::BYTEORDER);
+    pos += 4;
+
+    quint32 numGroups = Endian::bytesToUInt32(data.mid(pos, 4), KeePass1::BYTEORDER);
+    pos += 4;
+
+    QList<Uuid> iconUuids;
+
+    for (quint32 i = 0; i < numIcons; i++) {
+        if (data.size() < (pos + 4)) {
+            return false;
+        }
+        quint32 iconSize = Endian::bytesToUInt32(data.mid(pos, 4), KeePass1::BYTEORDER);
+        pos += 4;
+
+        if (data.size() < (pos + iconSize)) {
+            return false;
+        }
+        QImage icon = QImage::fromData(data.mid(pos, iconSize));
+        pos += iconSize;
+
+        if (icon.width() != 16 || icon.height() != 16) {
+            icon = icon.scaled(16, 16);
+        }
+
+        Uuid uuid = Uuid::random();
+        iconUuids.append(uuid);
+        m_db->metadata()->addCustomIcon(uuid, icon);
+    }
+
+    if (data.size() < (pos + numEntries * 20)) {
+        return false;
+    }
+
+    for (quint32 i = 0; i < numEntries; i++) {
+        QByteArray entryUuid = data.mid(pos, 16);
+        pos += 16;
+
+        int iconId = Endian::bytesToUInt32(data.mid(pos, 4), KeePass1::BYTEORDER);
+        pos += 4;
+
+        if (m_entryUuids.contains(entryUuid) && (iconId < iconUuids.size())) {
+            m_entryUuids[entryUuid]->setIcon(iconUuids[iconId]);
+        }
+    }
+
+    if (data.size() < (pos + numGroups * 8)) {
+        return false;
+    }
+
+    for (quint32 i = 0; i < numGroups; i++) {
+        quint32 groupId = Endian::bytesToUInt32(data.mid(pos, 4), KeePass1::BYTEORDER);
+        pos += 4;
+
+        int iconId = Endian::bytesToUInt32(data.mid(pos, 4), KeePass1::BYTEORDER);
+        pos += 4;
+
+        if (m_groupIds.contains(groupId) && (iconId < iconUuids.size())) {
+            m_groupIds[groupId]->setIcon(iconUuids[iconId]);
+        }
+    }
+
     return true;
 }
 
diff --git a/src/format/KeePass1Reader.h b/src/format/KeePass1Reader.h
index f0459438..95cb883f 100644
--- a/src/format/KeePass1Reader.h
+++ b/src/format/KeePass1Reader.h
@@ -56,7 +56,9 @@ private:
     Group* readGroup(QIODevice* cipherStream);
     Entry* readEntry(QIODevice* cipherStream);
     bool constructGroupTree(const QList<Group*> groups);
-    bool parseMetaStream(const Entry* entry);
+    void parseMetaStream(const Entry* entry);
+    bool parseGroupTreeState(const QByteArray& data);
+    bool parseCustomIcons4(const QByteArray& data);
     void raiseError(const QString& str);
     static QDateTime dateFromPackedStruct(const QByteArray& data);
     static bool isMetaStream(const Entry* entry);
diff --git a/tests/TestKeePass1Reader.cpp b/tests/TestKeePass1Reader.cpp
index 54f7ac1f..eff5093f 100644
--- a/tests/TestKeePass1Reader.cpp
+++ b/tests/TestKeePass1Reader.cpp
@@ -24,29 +24,31 @@
 #include "core/Database.h"
 #include "core/Entry.h"
 #include "core/Group.h"
+#include "core/Metadata.h"
 #include "crypto/Crypto.h"
 #include "format/KeePass1Reader.h"
 
 void TestKeePass1Reader::initTestCase()
 {
     Crypto::init();
+
+    QString filename = QString(KEEPASSX_TEST_DATA_DIR).append("/basic.kdb");
+
+    KeePass1Reader reader;
+    m_db = reader.readDatabase(filename, "masterpw", QByteArray());
+    QVERIFY(m_db);
+    QVERIFY(!reader.hasError());
 }
 
 void TestKeePass1Reader::testBasic()
 {
-    QString filename = QString(KEEPASSX_TEST_DATA_DIR).append("/basic.kdb");
+    QCOMPARE(m_db->rootGroup()->children().size(), 2);
 
-    KeePass1Reader reader;
-    Database* db = reader.readDatabase(filename, "masterpw", QByteArray());
-    QVERIFY(db);
-    QVERIFY(!reader.hasError());
-
-    QCOMPARE(db->rootGroup()->children().size(), 2);
-
-    Group* group1 = db->rootGroup()->children().at(0);
+    Group* group1 = m_db->rootGroup()->children().at(0);
     QCOMPARE(group1->name(), QString("Internet"));
-    QCOMPARE(group1->iconNumber(), 1);
+    QCOMPARE(group1->children().size(), 2);
     QCOMPARE(group1->entries().size(), 2);
+    QCOMPARE(group1->iconNumber(), 1);
 
     Entry* entry11 = group1->entries().at(0);
     QCOMPARE(entry11->title(), QString("Test entry"));
@@ -71,12 +73,58 @@ void TestKeePass1Reader::testBasic()
     QVERIFY(!entry12->timeInfo().expires());
     QCOMPARE(entry12->attachments()->keys().size(), 0);
 
-    Group* group2 = db->rootGroup()->children().at(1);
-    QCOMPARE(group2->name(), QString("eMail"));
-    QCOMPARE(group2->iconNumber(), 19);
-    QCOMPARE(group2->entries().size(), 0);
+    Group* group11 = group1->children().at(0);
+    QCOMPARE(group11->name(), QString("Subgroup 1"));
+    QCOMPARE(group11->children().size(), 1);
 
-    delete db;
+    Group* group111 = group11->children().at(0);
+    QCOMPARE(group111->name(), QString("Unexpanded"));
+    QCOMPARE(group111->children().size(), 1);
+
+    Group* group1111 = group111->children().at(0);
+    QCOMPARE(group1111->name(), QString("abc"));
+    QCOMPARE(group1111->children().size(), 0);
+
+    Group* group12 = group1->children().at(1);
+    QCOMPARE(group12->name(), QString("Subgroup 2"));
+    QCOMPARE(group12->children().size(), 0);
+
+    Group* group2 = m_db->rootGroup()->children().at(1);
+    QCOMPARE(group2->name(), QString("eMail"));
+    QCOMPARE(group2->entries().size(), 1);
+    QCOMPARE(group2->iconNumber(), 19);
+}
+
+void TestKeePass1Reader::testCustomIcons()
+{
+    QCOMPARE(m_db->metadata()->customIcons().size(), 1);
+
+    Entry* entry = m_db->rootGroup()->children().at(1)->entries().first();
+
+    QCOMPARE(entry->icon().width(), 16);
+    QCOMPARE(entry->icon().height(), 16);
+
+    for (int x = 0; x < 16; x++) {
+        for (int y = 0; y < 16; y++) {
+            QRgb rgb = entry->icon().pixel(x, y);
+            QCOMPARE(qRed(rgb), 8);
+            QCOMPARE(qGreen(rgb), 160);
+            QCOMPARE(qBlue(rgb), 60);
+        }
+    }
+}
+
+void TestKeePass1Reader::testGroupExpanded()
+{
+    QCOMPARE(m_db->rootGroup()->children().at(0)->isExpanded(), true);
+    QCOMPARE(m_db->rootGroup()->children().at(0)->children().at(0)->isExpanded(), true);
+    QCOMPARE(m_db->rootGroup()->children().at(0)->children().at(0)->children().at(0)->isExpanded(),
+             false);
+}
+
+void TestKeePass1Reader::cleanupTestCase()
+{
+    delete m_db;
 }
 
 QDateTime TestKeePass1Reader::genDT(int year, int month, int day, int hour, int min)
diff --git a/tests/TestKeePass1Reader.h b/tests/TestKeePass1Reader.h
index 55f4a9fd..19416768 100644
--- a/tests/TestKeePass1Reader.h
+++ b/tests/TestKeePass1Reader.h
@@ -21,6 +21,8 @@
 #include <QtCore/QDateTime>
 #include <QtCore/QObject>
 
+class Database;
+
 class TestKeePass1Reader : public QObject
 {
     Q_OBJECT
@@ -28,9 +30,14 @@ class TestKeePass1Reader : public QObject
 private Q_SLOTS:
     void initTestCase();
     void testBasic();
+    void testCustomIcons();
+    void testGroupExpanded();
+    void cleanupTestCase();
 
 private:
     static QDateTime genDT(int year, int month, int day, int hour, int min);
+
+    Database* m_db;
 };
 
 #endif // KEEPASSX_TESTKEEPASS1READER_H
diff --git a/tests/data/basic.kdb b/tests/data/basic.kdb
index 76402e4190832af03774399b80848690b334715d..3bf5f75a1bf128323b90d393e28c37b7f2e119aa 100644
GIT binary patch
delta 1822
zcmV+(2jTe42&@iR1KFaQW&2CD0{{R30ssR57gv_NO7WAMnuwPxJlwlFjEL?9<gCiY
zbHbo$Y-mV{1^@s61poj5j-cZT#s~s}Fkg9YM(jrO6%gHSzb_>T6@(sTfS{wGkys>u
zj~uXL_h;2!ShNS;F1`EZ_xiURqH@`1nD{S3AWgKN`dhQ=R|LC%YWy13OVX^geyS&D
z**~o(r1CP01N<h0N*m1N%BZ+VsVFYy)Y{zb?GMm4Tjv70oE2Tcr<id8R;|2tWdl^t
zFZHvD__C~&z(0k3MI|)(yXOb;l;zle(IVAgj)7&-xE*q7Phi66_5!rdEWvA;PlY19
z9x}&#l>#n_7)4rNDM;qt^n1$kN63t=&=sZ4M%6-*@<$Al&D4tAx<$j-;nyXPK*BAa
zIUEt&SVM%gQ@MjVQt58Uh(C=y(cD!Z0F(cS8_=}(2d}r{^BH0A*X>e+<V}o!6yD5g
zlT~}WM4j>rU1_ULtj!zm0*9eL3!b9IpEjL!->ZeDzJ$wzl7}q1eE<X}L&>!nYDJ!N
z0$8D4q#HYRATfnj3fL!eJA>;VZ~0=MGk{kuU~u33ICL^-2R@_NJ5lZ^xlkhS)2%v2
zu5@L=Umn9u6PVd&!&nDT(%O%I9{Z?+=nH=b@OnI4YHLBYg`MtkUPg80zEh}HH1kq6
zvH#>&n^Jb^L*;c3ueGQ+0kGm}hIq=Z88d<L7<?spkoUMvb9tb(!}x?UR_W)<=rk7G
z4b9O+%O^0;`a;MwXWb893N8$+yEJIXROaN34s(#oK-7U}i--#}NCBvS^H#JdO8bv;
z!w&mz;Pm)ynPJ?$Jb|UR8f}rBC89P4XO^HE0n$!fD6sq1_iUsprj%4vDi5YEFOQBq
z<N&!N3*Thv41L3l_)HJyz~EeK#Mp4L95{&Od72AGG~OF%s&uyy!z)cl*M}Pa`f>B1
z<g#ZK2^+?QmQiY-t5*wuoH@Cn1ifm!i?6TM&!YlD7F;V@?5nL>xGacY%1KwDH{Dvz
zVN1s%Gcc0OC8)NTxm?h|yFJC=-`{wSI1U0Z7n9Koy<f!%prMo5zljzw@T8XFRf37x
zBxOC+tyeyF`HSu{d6Dp|mZ}CvBs^4ypZt@^UIj=FLq9KK-Q5Cz@Ki2m?|RhAE~7ID
zO3Jq$Tj{sK^!-fZpDyQPh81Dz+gbwy2osc^ZY)c9fhZ@~0M>0lqIXq+O;UI`lJN7`
zxZ(hWwC52arVP0OjX?eM^mXj%?dF2Wci|Fm=~@_5?J+s%``}-dOu{m-Av$QpeGpg3
z4v_&F7_^7OM&?6*avfwzFYa`!hG@e>QDTdP9S5E!WVqT3-H<0w1i`ema~kq*@R<i9
zp!mx694<p0cUmQjei^${IH(I(O_mqfx>8Qj_Y<l-o<bK(clHJYw|adu-r2;U5r*P*
zHx4?Sf`}&$cJ2SOQk^S~p&F$Zhjrqbq0{fC`tq;l9Aq(n$XzHSsK7@VsI3HLY4bu7
zI?B`ks4T_a)8z%J{bL4uxF9Y3ALCm8IzN^gsV{HuhlMzN!^wfyMi{s;J@tdrVyn!L
zD)%x=1|b#8fa=&D#rx0u#vSBCtmEcOLirvGq_0@wS$JV)y1_aYe9=%sALsk(JZTY#
zh%DLUg)r8CrdSJ0juLfZcwPN;mk6&Jqq3enq|agnNC;y+;YS5!yS!Wb8I6K~4gUHz
ztva!g5m}>{2Ozg@sg8{jQ@5hZ(B3C{E~+beMbJ7&^4t8*Akj!U_sFD7;Kbz?i?(bK
zfFFqqj@kH3jDESWqu~{LN|Ot3-da%Fx@<(k4LMhT4ndp6(Z;LKncpm-6xkT$Sb^)7
zgobwLF>@optZ5V{_o)SYS74+C*)?ufrHIF!X#oQwI9UYMlEI*~<lwt5&@f6G(Q~D~
zP#^Sxg6X2|P@jG@Uu-;T_8;XyfweucuX$B{5lZ74Q-gMiyWIRLD-2?vtyH+SGw!LV
z{JI@~Zl+dbGiegqpaKSXF77h#A{kFEyr<>&wNJ?FG!}(AN}~rJP~K<3=|y_6dOHyc
zc~qqUelcp7(ham&VgRL$=rkw)$nJArA#LB2pU%k7Z-WaB*`wajekcDgyjuwi8@=Z3
zT5CPE^j&90X3aTvtmEp5MRMEA_!p#Y-yLIr9mev2yt|}oF*TGyns$&uu6O9H`<3)9
zLz0l{H<m=BI}mAc9mt<fT%g302g(y3yXPi9E+VyAAyI*{8SMd0)V?Y#*v8Ls<C*wj
z<x-hhINT^et1q&`N<M|R7WZ%-DKueHCHOIqV(Z|zdaH!y5^mkF5u6Aca+;+Mb(_aM
z;Y&O?=vF@`w40LQhSmfS3R$s)dkM$w4*)Y{=c?L232+ddJK!mD%hJtrg6@%T4{@$h
M)4aa{6YxuDNox;*Gynhq

delta 1080
zcmV-81jqZV4$KHx1KFaQW&2CD0{{R30ssR5MKGKv0U1(JG4DGq>SOAH@Qqjq)tS%^
zG~-%^YCr4Q0ssI21ONa4e(Y`|2GJHSsV-cUaj{_E5}XON9PZ(^j+{iS^iR}wkys>u
z1+1cXJoas@(GPmucFuwm%ZFj}ya3?Sj`?9uX`$KqSY$n{;?)NS-kAehVP(Iwcw~As
zKMS?m;9*adyo&myQMPC?z>;?IHteTE^(`zb;snThTxaY6!T}=Ef_g`(mTj3bQ5EHr
z3Vw*71QV~-4t(`;mpi9$MkzHZB7rS`N@)}8AA=8e$rlrbAXFW;MF6kB8{A2FtQ-J&
zid-n<GAvbx5dCUD{X{CUi^NWdAfDZ?vO%E$UIsY7f&q*1U4@zYx&R1`jUGD8uWn>K
zcSGe=3f+z@QnvxwSCxzQHa^_w>3dyFxKQ-pTh22a`PGTb_gbf|=X#$`v_pq~q=It$
zL=Zu81UsH!72?<dvYO%DJnoyTQJhBx11n^)+@@k$AMiu^{z&}XkU}m)=KtpU0F^}&
zv-{;0(=8p|5I1$(pBDAE<l>%`M$sNW68V(p!uqR)HdKJ(*N53jyj6bYw5IasjdNKE
zIM1eB>8_y#Cn>97$oG)6Kp$Fvto;ZFTn-#_sJg&GmfP0X3<){w-!HbBX?t3bVC(`h
zaFq}ec$~)lVqLsbGS+9Qd!OkPD^p&ZFuyqx>i^JA*Mh{A3y^761Qq|kuhp%_8YK@a
zSz{<wT9NsYEnGzZGHi7tH6+0H*PZ~ACKoqCx%HI#VOlz?K{GYJgg#S$FeV60Z)Dou
zGu@dRk>Z3+et%{Er6|kX6|G_YE5&BU^#XO55Mih~>vA}{VaKMuz$PsH2@57MaDY8T
z$NkN^a#lzvD|L4Q<d}PVW-HK4CbV8|erwUVvAdC2$@Gd0;^0!JB=blPQo0X^eo=d*
zkVSlcd;PqnSyxf!PM{rsHS?;+o)!NOe(hdL{;OoT%Xq2ra#yJ4vRPw~J)OZJC;(NG
z{-e0(v6aZ}slyEWdNx!uHu#PwAr>L{DoW!(;SePY#n+m1{J8!Vwh4Msg5hTA*wk{}
zWnB8-O4ACA;`=PF(!Lww5HyJaMB8k<GvOsaw^;C`StU1d<(CG3)1C8h2pAzxk#VHg
zhrkTXN`oUBojp!05pgu#QQLn`h{MS{aI}{oza}qM6%I3GL!KjeMMRV|8!h<+1eU(4
zfCsX*Eka})kn%*1fH1PJUKmdYN&JaglF#NJ!mBTnro^qr4uW<0=E9+XT=w&+qvEvt
zLpCBo2rO25@3Np*K?;jOCnX_;5C1Rr-7#ppYD>XS@o5kFDx1;u)3l(j9x7nnB$AVX
ybdOVs;6oC#p7Nd2A8mRAZr6T0twgtCaT6NR33`O<Jy_=Gd&7{#p{A8dH!EKb9|->d