Get back GnomeKeyringKeychainAccess, KDEWalletKeychainAccess

Author: purejava

pom.xml

@@ -41,7 +41,9 @@
 		<!-- runtime dependencies -->
 
 		<api.version>1.7.0</api.version>
-		<secret-service.version>1.0.0</secret-service.version>
+		<secret-service.version>2.0.1-alpha</secret-service.version>
+		<kdewallet.version>1.4.0</kdewallet.version>
+		<secret-service-02.version>1.0.0</secret-service-02.version>
 		<slf4j.version>2.0.17</slf4j.version>
 		<appindicator.version>1.4.2</appindicator.version>
 
@@ -72,10 +74,20 @@
 			<version>${slf4j.version}</version>
 		</dependency>
 		<dependency>
-			<groupId>org.purejava</groupId>
+			<groupId>de.swiesend</groupId>
 			<artifactId>secret-service</artifactId>
 			<version>${secret-service.version}</version>
 		</dependency>
+		<dependency>
+			<groupId>org.purejava</groupId>
+			<artifactId>kdewallet</artifactId>
+			<version>${kdewallet.version}</version>
+		</dependency>
+		<dependency>
+			<groupId>org.purejava</groupId>
+			<artifactId>secret-service</artifactId>
+			<version>${secret-service-02.version}</version>
+		</dependency>
 		<!-- Java bindings for appindicator -->
 		<dependency>
 			<groupId>org.purejava</groupId>

src/main/java/module-info.java

@@ -4,6 +4,8 @@
 import org.cryptomator.integrations.revealpath.RevealPathService;
 import org.cryptomator.integrations.tray.TrayMenuController;
 import org.cryptomator.linux.autostart.FreedesktopAutoStartService;
+import org.cryptomator.linux.keychain.GnomeKeyringKeychainAccess;
+import org.cryptomator.linux.keychain.KDEWalletKeychainAccess;
 import org.cryptomator.linux.keychain.SecretServiceKeychainAccess;
 import org.cryptomator.linux.quickaccess.DolphinPlaces;
 import org.cryptomator.linux.quickaccess.NautilusBookmarks;
@@ -15,11 +17,14 @@
 	requires org.slf4j;
 	requires org.freedesktop.dbus;
 	requires org.purejava.appindicator;
+	requires org.purejava.kwallet;
+	requires de.swiesend.secretservice;
 	requires org.purejava.secret;
 	requires java.xml;
+	requires org.cryptomator.integrations.linux;
 
 	provides AutoStartProvider with FreedesktopAutoStartService;
-	provides KeychainAccessProvider with SecretServiceKeychainAccess;
+	provides KeychainAccessProvider with SecretServiceKeychainAccess, GnomeKeyringKeychainAccess, KDEWalletKeychainAccess;
 	provides RevealPathService with DBusSendRevealPathService;
 	provides TrayMenuController with AppindicatorTrayMenuController;
 	provides QuickAccessService with NautilusBookmarks, DolphinPlaces;

src/main/java/org/cryptomator/linux/keychain/GnomeKeyringKeychainAccess.java

@@ -0,0 +1,103 @@
+package org.cryptomator.linux.keychain;
+
+import de.swiesend.secretservice.simple.SimpleCollection;
+import org.cryptomator.integrations.common.DisplayName;
+import org.cryptomator.integrations.common.OperatingSystem;
+import org.cryptomator.integrations.common.Priority;
+import org.cryptomator.integrations.keychain.KeychainAccessException;
+import org.cryptomator.integrations.keychain.KeychainAccessProvider;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import java.io.IOException;
+import java.util.List;
+import java.util.Map;
+
+@Priority(900)
+@OperatingSystem(OperatingSystem.Value.LINUX)
+@DisplayName("GNOME Keyring")
+public class GnomeKeyringKeychainAccess implements KeychainAccessProvider {
+
+	private static final Logger LOG = LoggerFactory.getLogger(GnomeKeyringKeychainAccess.class);
+
+	private final String LABEL_FOR_SECRET_IN_KEYRING = "Cryptomator";
+
+	@Override
+	public boolean isSupported() {
+		try {
+			return SimpleCollection.isGnomeKeyringAvailable();
+		} catch (RuntimeException e) {
+			LOG.warn("Initializing secret service keychain access failed", e);
+			return false;
+		} catch (ExceptionInInitializerError err) {
+			LOG.warn("Initializing secret service keychain access failed", err.getException());
+			return false;
+		}
+	}
+
+	@Override
+	public boolean isLocked() {
+		try (SimpleCollection keyring = new SimpleCollection()) {
+			return keyring.isLocked();
+		} catch (IOException e) {
+			return true;
+		}
+	}
+
+	@Override
+	public void storePassphrase(String key, String displayName, CharSequence passphrase) throws KeychainAccessException {
+		try (SimpleCollection keyring = new SimpleCollection()) {
+			List<String> list = keyring.getItems(createAttributes(key));
+			if (list == null || list.isEmpty()) {
+				keyring.createItem(LABEL_FOR_SECRET_IN_KEYRING, passphrase, createAttributes(key));
+			} else {
+				changePassphrase(key, displayName, passphrase);
+			}
+		} catch (IOException | SecurityException e) {
+			throw new KeychainAccessException("Storing password failed.", e);
+		}
+	}
+
+	@Override
+	public char[] loadPassphrase(String key) throws KeychainAccessException {
+		try (SimpleCollection keyring = new SimpleCollection()) {
+			List<String> list = keyring.getItems(createAttributes(key));
+			if (list != null && !list.isEmpty()) {
+				return keyring.getSecret(list.get(0));
+			} else {
+				return null;
+			}
+		} catch (IOException | SecurityException e) {
+			throw new KeychainAccessException("Loading password failed.", e);
+		}
+	}
+
+	@Override
+	public void deletePassphrase(String key) throws KeychainAccessException {
+		try (SimpleCollection keyring = new SimpleCollection()) {
+			List<String> list = keyring.getItems(createAttributes(key));
+			if (list != null && !list.isEmpty()) {
+				keyring.deleteItem(list.get(0));
+			}
+		} catch (IOException | SecurityException e) {
+			throw new KeychainAccessException("Deleting password failed.", e);
+		}
+	}
+
+	@Override
+	public void changePassphrase(String key, String displayName, CharSequence passphrase) throws KeychainAccessException {
+		try (SimpleCollection keyring = new SimpleCollection()) {
+			List<String> list = keyring.getItems(createAttributes(key));
+			if (list != null && !list.isEmpty()) {
+				keyring.updateItem(list.get(0), LABEL_FOR_SECRET_IN_KEYRING, passphrase, createAttributes(key));
+			}
+		} catch (IOException | SecurityException e) {
+			throw new KeychainAccessException("Changing password failed.", e);
+		}
+	}
+
+	private Map<String, String> createAttributes(String key) {
+		return Map.of("Vault", key);
+	}
+
+}

src/main/java/org/cryptomator/linux/keychain/KDEWalletKeychainAccess.java

@@ -0,0 +1,196 @@
+package org.cryptomator.linux.keychain;
+
+import org.cryptomator.integrations.common.DisplayName;
+import org.cryptomator.integrations.common.OperatingSystem;
+import org.cryptomator.integrations.common.Priority;
+import org.cryptomator.integrations.keychain.KeychainAccessException;
+import org.cryptomator.integrations.keychain.KeychainAccessProvider;
+import org.cryptomator.linux.util.CheckUtil;
+import org.freedesktop.dbus.connections.impl.DBusConnection;
+import org.freedesktop.dbus.connections.impl.DBusConnectionBuilder;
+import org.freedesktop.dbus.exceptions.DBusConnectionException;
+import org.freedesktop.dbus.exceptions.DBusException;
+import org.freedesktop.dbus.exceptions.DBusExecutionException;
+import org.purejava.kwallet.KWallet;
+import org.purejava.kwallet.KDEWallet;
+import org.purejava.kwallet.Static;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import java.util.Optional;
+
+@Priority(900)
+@OperatingSystem(OperatingSystem.Value.LINUX)
+@DisplayName("KDE Wallet")
+public class KDEWalletKeychainAccess implements KeychainAccessProvider {
+
+	private static final Logger LOG = LoggerFactory.getLogger(KDEWalletKeychainAccess.class);
+	private static final String FOLDER_NAME = "Cryptomator";
+	private static final String APP_NAME = "Cryptomator";
+
+	private final Optional<ConnectedWallet> wallet;
+
+	public KDEWalletKeychainAccess() {
+		this.wallet = ConnectedWallet.connect();
+	}
+
+	@Override
+	public boolean isSupported() {
+		return wallet.map(ConnectedWallet::isSupported).orElse(false);
+	}
+
+	@Override
+	public boolean isLocked() {
+		return wallet.map(ConnectedWallet::isLocked).orElse(false);
+	}
+
+	@Override
+	public void storePassphrase(String key, String displayName, CharSequence passphrase) throws KeychainAccessException {
+		CheckUtil.checkState(wallet.isPresent(), "Keychain not supported.");
+		wallet.get().storePassphrase(key, passphrase);
+	}
+
+	@Override
+	public char[] loadPassphrase(String key) throws KeychainAccessException {
+		CheckUtil.checkState(wallet.isPresent(), "Keychain not supported.");
+		return wallet.get().loadPassphrase(key);
+	}
+
+	@Override
+	public void deletePassphrase(String key) throws KeychainAccessException {
+		CheckUtil.checkState(wallet.isPresent(), "Keychain not supported.");
+		wallet.get().deletePassphrase(key);
+	}
+
+	@Override
+	public void changePassphrase(String key, String displayName, CharSequence passphrase) throws KeychainAccessException {
+		CheckUtil.checkState(wallet.isPresent(), "Keychain not supported.");
+		wallet.get().changePassphrase(key, passphrase);
+	}
+
+	private static class ConnectedWallet {
+
+		private final KDEWallet wallet;
+		private int handle = -1;
+
+		public ConnectedWallet(DBusConnection connection) {
+			this.wallet = new KDEWallet(connection);
+		}
+
+		static Optional<ConnectedWallet> connect() {
+			try {
+				return Optional.of(new ConnectedWallet(getNewConnection()));
+			} catch (DBusException e) {
+				LOG.warn("Connecting to D-Bus failed.", e);
+				return Optional.empty();
+			}
+		}
+
+		private static DBusConnection getNewConnection() throws DBusException {
+			try {
+				return DBusConnectionBuilder.forSessionBus().withShared(false).build();
+			} catch (DBusConnectionException | DBusExecutionException de) {
+				LOG.warn("Connecting to SESSION bus failed.", de);
+				LOG.warn("Falling back to SYSTEM DBus");
+				return DBusConnectionBuilder.forSystemBus().build();
+			}
+		}
+
+		public boolean isSupported() {
+			try {
+				return wallet.isEnabled();
+			} catch (RuntimeException e) {
+				LOG.warn("Failed to check if KDE Wallet is available.", e);
+				return false;
+			}
+		}
+
+		public boolean isLocked() {
+			try {
+				return !wallet.isOpen(Static.DEFAULT_WALLET);
+			} catch (RuntimeException e) {
+				LOG.warn("Failed to check whether KDE Wallet is open, therefore considering it closed.", e);
+				return true;
+			}
+		}
+
+		public void storePassphrase(String key, CharSequence passphrase) throws KeychainAccessException {
+			try {
+				if (walletIsOpen() &&
+						!(wallet.hasEntry(handle, FOLDER_NAME, key, APP_NAME) && wallet.entryType(handle, FOLDER_NAME, key, APP_NAME) == 1)
+						&& wallet.writePassword(handle, FOLDER_NAME, key, passphrase.toString(), APP_NAME) == 0) {
+					LOG.debug("Passphrase successfully stored.");
+				} else {
+					LOG.debug("Passphrase was not stored.");
+				}
+			} catch (RuntimeException e) {
+				throw new KeychainAccessException("Storing the passphrase failed.", e);
+			}
+		}
+
+		public char[] loadPassphrase(String key) throws KeychainAccessException {
+			String password = "";
+			try {
+				if (walletIsOpen()) {
+					password = wallet.readPassword(handle, FOLDER_NAME, key, APP_NAME);
+					LOG.debug("loadPassphrase: wallet is open.");
+				} else {
+					LOG.debug("loadPassphrase: wallet is closed.");
+				}
+				return (password.isEmpty()) ? null : password.toCharArray();
+			} catch (RuntimeException e) {
+				throw new KeychainAccessException("Loading the passphrase failed.", e);
+			}
+		}
+
+		public void deletePassphrase(String key) throws KeychainAccessException {
+			try {
+				if (walletIsOpen()
+						&& wallet.hasEntry(handle, FOLDER_NAME, key, APP_NAME)
+						&& wallet.entryType(handle, FOLDER_NAME, key, APP_NAME) == 1
+						&& wallet.removeEntry(handle, FOLDER_NAME, key, APP_NAME) == 0) {
+					LOG.debug("Passphrase successfully deleted.");
+				} else {
+					LOG.debug("Passphrase was not deleted.");
+				}
+			} catch (RuntimeException e) {
+				throw new KeychainAccessException("Deleting the passphrase failed.", e);
+			}
+		}
+
+		public void changePassphrase(String key, CharSequence passphrase) throws KeychainAccessException {
+			try {
+				if (walletIsOpen()
+						&& wallet.hasEntry(handle, FOLDER_NAME, key, APP_NAME)
+						&& wallet.entryType(handle, FOLDER_NAME, key, APP_NAME) == 1
+						&& wallet.writePassword(handle, FOLDER_NAME, key, passphrase.toString(), APP_NAME) == 0) {
+					LOG.debug("Passphrase successfully changed.");
+				} else {
+					LOG.debug("Passphrase could not be changed.");
+				}
+			} catch (RuntimeException e) {
+				throw new KeychainAccessException("Changing the passphrase failed.", e);
+			}
+		}
+
+		private boolean walletIsOpen() throws KeychainAccessException {
+			try {
+				if (wallet.isOpen(Static.DEFAULT_WALLET)) {
+					// This is needed due to KeechainManager loading the passphase directly
+					if (handle == -1) handle = wallet.open(Static.DEFAULT_WALLET, 0, APP_NAME);
+					return true;
+				}
+				wallet.openAsync(Static.DEFAULT_WALLET, 0, APP_NAME, false);
+				wallet.getSignalHandler().await(KWallet.walletAsyncOpened.class, Static.ObjectPaths.KWALLETD5, () -> null);
+				handle = wallet.getSignalHandler().getLastHandledSignal(KWallet.walletAsyncOpened.class, Static.ObjectPaths.KWALLETD5).handle;
+				LOG.debug("Wallet successfully initialized.");
+				return handle != -1;
+			} catch (RuntimeException e) {
+				throw new KeychainAccessException("Asynchronous opening the wallet failed.", e);
+			}
+		}
+
+
+	}
+}
+

src/main/resources/META-INF/services/org.cryptomator.integrations.keychain.KeychainAccessProvider

@@ -1 +1,3 @@
-org.cryptomator.linux.keychain.SecretServiceKeychainAccess
+org.cryptomator.linux.keychain.SecretServiceKeychainAccess
+org.cryptomator.linux.keychain.KDEWalletKeychainAccess
+org.cryptomator.linux.keychain.GnomeKeyringKeychainAccess