Add sharing of groups between databases

* Add source folder keeshare for sharing with corresponding define WITH_XC_KEESHARE
* Move common crypto parts to src/crypto/ssh
* Extended OpenSSHKey
* Move filewatching to own file (currently in two related classes DelayedFileWatcher and BulkFileWatcher)
* Small improvements for style and code in several classes
* Sharing is secured using RSA-Keys which are generated on demand
* Publisher signs the container using their private key
* Client can verify the signed container and choose to decline an import,
import only once or trust the publisher and automatically import all
data of this source henceforth
* Integration of settings into Group-Settings, Database-Settings and Application-Settings
* Introduced dependency QuaZip as dependency to allow combined export of
key container and the (custom format) certificate

src/keeshare/SettingsWidgetKeeShare.cpp

@@ -0,0 +1,214 @@
+/*
+ *  Copyright (C) 2018 KeePassXC Team <team@keepassxc.org>
+ *
+ *  This program is free software: you can redistribute it and/or modify
+ *  it under the terms of the GNU General Public License as published by
+ *  the Free Software Foundation, either version 2 or (at your option)
+ *  version 3 of the License.
+ *
+ *  This program is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ *  GNU General Public License for more details.
+ *
+ *  You should have received a copy of the GNU General Public License
+ *  along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ */
+
+#include "SettingsWidgetKeeShare.h"
+#include "ui_SettingsWidgetKeeShare.h"
+
+#include "core/Config.h"
+#include "core/Group.h"
+#include "core/Metadata.h"
+#include "gui/FileDialog.h"
+#include "keeshare/KeeShare.h"
+#include "keeshare/KeeShareSettings.h"
+
+#include <QMessageBox>
+#include <QStandardItemModel>
+
+SettingsWidgetKeeShare::SettingsWidgetKeeShare(QWidget* parent)
+    : QWidget(parent)
+    , m_ui(new Ui::SettingsWidgetKeeShare())
+{
+    m_ui->setupUi(this);
+
+    connect(m_ui->ownCertificateSignerEdit, SIGNAL(textChanged(QString)), SLOT(setVerificationExporter(QString)));
+
+    connect(m_ui->generateOwnCerticateButton, SIGNAL(clicked(bool)), SLOT(generateCertificate()));
+    connect(m_ui->importOwnCertificateButton, SIGNAL(clicked(bool)), SLOT(importCertificate()));
+    connect(m_ui->exportOwnCertificateButton, SIGNAL(clicked(bool)), SLOT(exportCertificate()));
+
+    connect(m_ui->trustImportedCertificateButton, SIGNAL(clicked(bool)), SLOT(trustSelectedCertificates()));
+    connect(m_ui->untrustImportedCertificateButton, SIGNAL(clicked(bool)), SLOT(untrustSelectedCertificates()));
+    connect(m_ui->removeImportedCertificateButton, SIGNAL(clicked(bool)), SLOT(removeSelectedCertificates()));
+}
+
+SettingsWidgetKeeShare::~SettingsWidgetKeeShare()
+{
+}
+
+void SettingsWidgetKeeShare::loadSettings()
+{
+    const auto active = KeeShare::active();
+    m_ui->enableExportCheckBox->setChecked(active.out);
+    m_ui->enableImportCheckBox->setChecked(active.in);
+
+    m_own = KeeShare::own();
+    updateOwnCertificate();
+
+    m_foreign = KeeShare::foreign();
+    updateForeignCertificates();
+}
+
+void SettingsWidgetKeeShare::updateForeignCertificates()
+{
+    m_importedCertificateModel.reset(new QStandardItemModel());
+    m_importedCertificateModel->setHorizontalHeaderLabels(
+        QStringList() << tr("Signer") << tr("Status") << tr("Fingerprint") << tr("Certificate"));
+
+    for (const KeeShareSettings::Certificate& certificate : m_foreign.certificates) {
+        QStandardItem* signer = new QStandardItem(certificate.signer);
+        QStandardItem* verified = new QStandardItem(certificate.trusted ? tr("trusted") : tr("untrusted"));
+        QStandardItem* fingerprint = new QStandardItem(certificate.fingerprint());
+        QStandardItem* key = new QStandardItem(certificate.publicKey());
+        m_importedCertificateModel->appendRow(QList<QStandardItem*>() << signer << verified << fingerprint << key);
+    }
+
+    m_ui->importedCertificateTableView->setModel(m_importedCertificateModel.data());
+}
+
+void SettingsWidgetKeeShare::updateOwnCertificate()
+{
+    m_ui->ownCertificateSignerEdit->setText(m_own.certificate.signer);
+    m_ui->ownCertificatePublicKeyEdit->setText(m_own.certificate.publicKey());
+    m_ui->ownCertificatePrivateKeyEdit->setText(m_own.key.privateKey());
+    m_ui->ownCertificateFingerprintEdit->setText(m_own.certificate.fingerprint());
+}
+
+void SettingsWidgetKeeShare::saveSettings()
+{
+    KeeShareSettings::Active active;
+    active.out = m_ui->enableExportCheckBox->isChecked();
+    active.in = m_ui->enableImportCheckBox->isChecked();
+    // TODO HNH: This depends on the order of saving new data - a better model would be to
+    //           store changes to the settings in a temporary object and check on the final values
+    //           of this object (similar scheme to Entry) - this way we could validate the settings before save
+    if (active.in) {
+        emit settingsMessage(tr("Make sure to have a history size greater than 2 to prevent data loss when importing!"), MessageWidget::Warning);
+    }
+
+    KeeShare::setOwn(m_own);
+    KeeShare::setForeign(m_foreign);
+    KeeShare::setActive(active);
+}
+
+void SettingsWidgetKeeShare::setVerificationExporter(const QString& signer)
+{
+    m_own.certificate.signer = signer;
+    m_ui->ownCertificateSignerEdit->setText(m_own.certificate.signer);
+}
+
+void SettingsWidgetKeeShare::generateCertificate()
+{
+    m_own = KeeShareSettings::Own::generate();
+    m_ui->ownCertificateSignerEdit->setText(m_own.certificate.signer);
+    m_ui->ownCertificatePublicKeyEdit->setText(m_own.certificate.publicKey());
+    m_ui->ownCertificatePrivateKeyEdit->setText(m_own.key.privateKey());
+    m_ui->ownCertificateFingerprintEdit->setText(m_own.certificate.fingerprint());
+}
+
+void SettingsWidgetKeeShare::importCertificate()
+{
+    QString defaultDirPath = config()->get("KeeShare/LastKeyDir").toString();
+    const bool dirExists = !defaultDirPath.isEmpty() && QDir(defaultDirPath).exists();
+    if (!dirExists) {
+        defaultDirPath = QStandardPaths::standardLocations(QStandardPaths::DocumentsLocation).first();
+    }
+    const auto filetype = tr("key.share", "Filetype for KeeShare key");
+    const auto filters = QString("%1 (*." + filetype + ");;%2 (*)").arg(tr("KeeShare key file"), tr("All files"));
+    QString filename = fileDialog()->getOpenFileName(this, tr("Select path"), defaultDirPath, filters, nullptr, 0);
+    if (filename.isEmpty()) {
+        return;
+    }
+    QFile file(filename);
+    file.open(QIODevice::ReadOnly);
+    QTextStream stream(&file);
+    m_own = KeeShareSettings::Own::deserialize(stream.readAll());
+    file.close();
+    config()->set("KeeShare/LastKeyDir", QFileInfo(filename).absolutePath());
+
+    updateOwnCertificate();
+}
+
+void SettingsWidgetKeeShare::exportCertificate()
+{
+    if (KeeShare::own() != m_own) {
+        QMessageBox warning;
+        warning.setIcon(QMessageBox::Warning);
+        warning.setWindowTitle(tr("Exporting changed certificate"));
+        warning.setText(tr("The exported certificate is not the same as the one in use. Do you want to export the current certificate?"));
+        auto yes = warning.addButton(QMessageBox::StandardButton::Yes);
+        auto no = warning.addButton(QMessageBox::StandardButton::No);
+        warning.setDefaultButton(no);
+        warning.exec();
+        if (warning.clickedButton() != yes) {
+            return;
+        }
+    }
+    QString defaultDirPath = config()->get("KeeShare/LastKeyDir").toString();
+    const bool dirExists = !defaultDirPath.isEmpty() && QDir(defaultDirPath).exists();
+    if (!dirExists) {
+        defaultDirPath = QStandardPaths::standardLocations(QStandardPaths::DocumentsLocation).first();
+    }
+    const auto filetype = tr("key.share", "Filetype for KeeShare key");
+    const auto filters = QString("%1 (*." + filetype + ");;%2 (*)").arg(tr("KeeShare key file"), tr("All files"));
+    QString filename = tr("%1.%2", "Template for KeeShare key file").arg(m_own.certificate.signer).arg(filetype);
+    filename = fileDialog()->getSaveFileName(this, tr("Select path"), defaultDirPath, filters, nullptr, 0, filetype, filename);
+    if (filename.isEmpty()) {
+        return;
+    }
+    QFile file(filename);
+    file.open(QIODevice::Truncate | QIODevice::WriteOnly);
+    QTextStream stream(&file);
+    stream << KeeShareSettings::Own::serialize(m_own);
+    stream.flush();
+    file.close();
+    config()->set("KeeShare/LastKeyDir", QFileInfo(filename).absolutePath());
+}
+
+void SettingsWidgetKeeShare::trustSelectedCertificates()
+{
+    const auto* selectionModel = m_ui->importedCertificateTableView->selectionModel();
+    Q_ASSERT(selectionModel);
+    for (const auto& index : selectionModel->selectedRows()) {
+        m_foreign.certificates[index.row()].trusted = true;
+    }
+
+    updateForeignCertificates();
+}
+
+void SettingsWidgetKeeShare::untrustSelectedCertificates()
+{
+    const auto* selectionModel = m_ui->importedCertificateTableView->selectionModel();
+    Q_ASSERT(selectionModel);
+    for (const auto& index : selectionModel->selectedRows()) {
+        m_foreign.certificates[index.row()].trusted = false;
+    }
+
+    updateForeignCertificates();
+}
+
+void SettingsWidgetKeeShare::removeSelectedCertificates()
+{
+    QList<KeeShareSettings::Certificate> certificates = m_foreign.certificates;
+    const auto* selectionModel = m_ui->importedCertificateTableView->selectionModel();
+    Q_ASSERT(selectionModel);
+    for (const auto& index : selectionModel->selectedRows()) {
+        certificates.removeOne(m_foreign.certificates[index.row()]);
+    }
+    m_foreign.certificates = certificates;
+
+    updateForeignCertificates();
+}