Merge branch 'main' into burn-qml-import-version-numbers

Author: tdewey-rpi

qt/features_exclude.embedded.list

@@ -4,7 +4,6 @@ assistant
 batch_test_support
 bluetooth
 calendarwidget
-clipboard
 completer
 concatenatetablesproxymodel
 designer

qt/features_exclude.list

@@ -4,7 +4,6 @@ assistant
 batch_test_support
 bluetooth
 calendarwidget
-clipboard
 completer
 concatenatetablesproxymodel
 designer

qt/features_exclude.macos.list

@@ -8,7 +8,6 @@ assistant
 batch_test_support
 bluetooth
 calendarwidget
-clipboard
 completer
 concatenatetablesproxymodel
 designer

src/CMakeLists.txt

@@ -39,6 +39,9 @@ set(CMAKE_INCLUDE_CURRENT_DIR ON)
 set(CMAKE_CXX_STANDARD 20)
 set(CMAKE_CXX_STANDARD_REQUIRED ON)
 
+# One place to define the Windows callback IPC port
+set(IMAGER_CALLBACK_PORT "49629" CACHE STRING "TCP port for rpi-imager callback relay on Windows")
+
 # Apply optimization flags globally to all targets (including bundled dependencies)
 if(CMAKE_BUILD_TYPE STREQUAL "Release" OR CMAKE_BUILD_TYPE STREQUAL "RelWithDebInfo" OR CMAKE_BUILD_TYPE STREQUAL "MinSizeRel")
     # Use -Os instead of -O3 for better code size vs performance balance
@@ -232,11 +235,11 @@ if(BUILD_CLI_ONLY)
         find_package(Qt6 6.9 COMPONENTS Core Network OPTIONAL_COMPONENTS LinguistTools)
     endif()
 else()
-    # Regular GUI build: need Core, Quick, Svg, Network - DBus only needed on Linux
+    # Regular GUI build: need Core, Quick, Svg, Network, Gui - DBus only needed on Linux
     if(UNIX AND NOT APPLE)
-        find_package(Qt6 6.9 COMPONENTS Core Quick Svg Network OPTIONAL_COMPONENTS LinguistTools DBus)
+        find_package(Qt6 6.9 COMPONENTS Core Gui Quick Svg Network OPTIONAL_COMPONENTS LinguistTools DBus)
     else()
-        find_package(Qt6 6.9 COMPONENTS Core Quick Svg Network OPTIONAL_COMPONENTS LinguistTools)
+        find_package(Qt6 6.9 COMPONENTS Core Gui Quick Svg Network OPTIONAL_COMPONENTS LinguistTools)
     endif()
 endif()
 if (Qt6_FOUND)
@@ -371,6 +374,13 @@ endif()
 if (WIN32)
     # Adding WIN32 prevents a console window being opened on Windows
     add_executable(${PROJECT_NAME} WIN32 ${SOURCES} ${DEPENDENCIES})
+
+    # Inject the callback port macro for Windows builds
+    target_compile_definitions(${PROJECT_NAME}
+            PRIVATE RPI_IMAGER_CALLBACK_PORT=${IMAGER_CALLBACK_PORT})
+
+    # Ensure the relay builds with the app
+    add_dependencies(${PROJECT_NAME} rpi-imager-callback-relay)
 else()
     add_executable(${PROJECT_NAME} ${SOURCES} ${DEPENDENCIES})
 endif()
@@ -481,6 +491,7 @@ if(NOT BUILD_CLI_ONLY)
         hwlistmodel.cpp
         oslistmodel.cpp
         urlfmt.cpp
+        clipboardhelper.cpp
     )
 endif()
 
@@ -517,7 +528,7 @@ if(BUILD_CLI_ONLY)
     target_link_libraries(${PROJECT_NAME} PRIVATE ${QT}::Core ${QT}::Network ${CURL_LIBRARIES} ${LibArchive_LIBRARIES} ${ZSTD_LIBRARIES} ${LIBLZMA_LIBRARIES} ${ZLIB_LIBRARIES} ${YESCRYPT_LIBRARIES} ${LIBDRM_LIBRARIES} ${ATOMIC_LIBRARY} ${EXTRALIBS})
 else()
     # Regular GUI build: link all GUI components
-    target_link_libraries(${PROJECT_NAME} PRIVATE ${QT}::Core ${QT}::Quick ${QT}::Svg ${QT}::Network ${CURL_LIBRARIES} ${LibArchive_LIBRARIES} ${ZSTD_LIBRARIES} ${LIBLZMA_LIBRARIES} ${ZLIB_LIBRARIES} ${YESCRYPT_LIBRARIES} ${LIBDRM_LIBRARIES} ${ATOMIC_LIBRARY} ${EXTRALIBS})
+    target_link_libraries(${PROJECT_NAME} PRIVATE ${QT}::Core ${QT}::Gui ${QT}::Quick ${QT}::Svg ${QT}::Network ${CURL_LIBRARIES} ${LibArchive_LIBRARIES} ${ZSTD_LIBRARIES} ${LIBLZMA_LIBRARIES} ${ZLIB_LIBRARIES} ${YESCRYPT_LIBRARIES} ${LIBDRM_LIBRARIES} ${ATOMIC_LIBRARY} ${EXTRALIBS})
 endif()
 
 # Testing

src/clipboardhelper.cpp

@@ -0,0 +1,55 @@
+/*
+ * SPDX-License-Identifier: Apache-2.0
+ * Copyright (C) 2025 Raspberry Pi Ltd
+ */
+
+#include "clipboardhelper.h"
+#include <QGuiApplication>
+#include <QClipboard>
+#include <QDebug>
+
+ClipboardHelper::ClipboardHelper(QObject *parent)
+    : QObject(parent)
+{
+    // Connect to clipboard changes to emit our signal
+    QClipboard *clipboard = QGuiApplication::clipboard();
+    if (clipboard) {
+        connect(clipboard, &QClipboard::dataChanged, this, &ClipboardHelper::clipboardChanged);
+    }
+}
+
+void ClipboardHelper::setText(const QString &text)
+{
+    QClipboard *clipboard = QGuiApplication::clipboard();
+    if (clipboard) {
+        clipboard->setText(text, QClipboard::Clipboard);
+        qDebug() << "ClipboardHelper: Set clipboard text:" << text;
+    } else {
+        qWarning() << "ClipboardHelper: Failed to access clipboard";
+    }
+}
+
+QString ClipboardHelper::getText() const
+{
+    // Use the static method as shown in Qt documentation
+    QClipboard *clipboard = QGuiApplication::clipboard();
+    if (clipboard) {
+        QString text = clipboard->text(QClipboard::Clipboard);
+        qDebug() << "ClipboardHelper: Got clipboard text:" << text;
+        return text;
+    } else {
+        qWarning() << "ClipboardHelper: Failed to access clipboard";
+        return QString();
+    }
+}
+
+bool ClipboardHelper::hasText() const
+{
+    // Use the static method as shown in Qt documentation
+    QClipboard *clipboard = QGuiApplication::clipboard();
+    if (clipboard) {
+        return !clipboard->text(QClipboard::Clipboard).isEmpty();
+    }
+    return false;
+}
+

src/clipboardhelper.h

@@ -0,0 +1,33 @@
+#ifndef CLIPBOARDHELPER_H
+#define CLIPBOARDHELPER_H
+
+/*
+ * SPDX-License-Identifier: Apache-2.0
+ * Copyright (C) 2025 Raspberry Pi Ltd
+ */
+
+#include <QObject>
+#include <QString>
+#include <QQmlEngine>
+
+class ClipboardHelper : public QObject
+{
+    Q_OBJECT
+    QML_ELEMENT
+    QML_SINGLETON
+    Q_PROPERTY(bool hasText READ hasText NOTIFY clipboardChanged)
+
+public:
+    explicit ClipboardHelper(QObject *parent = nullptr);
+
+    // Clipboard operations
+    Q_INVOKABLE void setText(const QString &text);
+    Q_INVOKABLE QString getText() const;
+    bool hasText() const;
+
+signals:
+    void clipboardChanged();
+};
+
+#endif // CLIPBOARDHELPER_H
+

src/imagewriter.cpp

@@ -43,7 +43,12 @@
 #include <QQmlContext>
 #include <QWindow>
 #include <QGuiApplication>
+#include <QClipboard>
 #endif
+#include <QUrl>
+#include <QUrlQuery>
+#include <QString>
+#include <QStringList>
 #include <QHostAddress>
 #include <QNetworkAccessManager>
 #include <QNetworkReply>
@@ -957,6 +962,7 @@ namespace {
                 QNetworkRequest request(subUrl);
                 request.setAttribute(QNetworkRequest::RedirectPolicyAttribute,
                         QNetworkRequest::NoLessSafeRedirectPolicy);
+                request.setMaximumRedirectsAllowed(3);
                 manager.get(request);
             }
         }
@@ -1066,6 +1072,7 @@ void ImageWriter::handleNetworkRequestFinished(QNetworkReply *data) {
 
             auto request = QNetworkRequest(redirUrl);
             request.setAttribute(QNetworkRequest::RedirectionTargetAttribute, QNetworkRequest::NoLessSafeRedirectPolicy);
+            request.setMaximumRedirectsAllowed(3);
             data->manager()->get(request);
 
             // maintain manager
@@ -1202,6 +1209,7 @@ void ImageWriter::beginOSListFetch() {
     QNetworkRequest request = QNetworkRequest(topUrl);
     request.setAttribute(QNetworkRequest::RedirectPolicyAttribute,
                          QNetworkRequest::NoLessSafeRedirectPolicy);
+    request.setMaximumRedirectsAllowed(3);
     // This will set up a chain of requests that culiminate in the eventual fetch and assembly of
     // a complete cached OS list.
    _networkManager.get(request);
@@ -2547,18 +2555,87 @@ void ImageWriter::openUrl(const QUrl &url)
     }
 }
 
+bool ImageWriter::verifyAuthKey(const QString &s, bool strict) const
+{
+    // Base58 (no 0 O I l)
+    static const QRegularExpression base58OnlyRe(QStringLiteral("^[1-9A-HJ-NP-Za-km-z]+$"));
+
+    // Required prefix
+    bool hasPrefix = s.startsWith(QStringLiteral("rpuak_")) || s.startsWith(QStringLiteral("rpoak_"));
+    if (!hasPrefix)
+        return false;
+
+    const QString payload = s.mid(6);
+    bool base58Match = base58OnlyRe.match(payload).hasMatch();
+    
+    if (payload.isEmpty() || !base58Match)
+        return false;
+
+    if (strict) {
+        // Exactly 24 Base58 chars today → total length 30
+        return payload.size() == 24;
+    } else {
+        // Future-proof: accept >=24 Base58 chars
+        return payload.size() >= 24;
+    }
+}
+
+QString ImageWriter::parseTokenFromUrl(const QUrl &url, bool strictAuthKey) const {
+    // Handle QUrl or string, accept auth_key
+    if (!url.isValid())
+        return {};
+
+    QUrlQuery q(url);
+    const QString val = q.queryItemValue(QStringLiteral("auth_key"), QUrl::FullyDecoded);
+    if (!val.isEmpty()) {
+        if (verifyAuthKey(val, strictAuthKey)) {
+            return val;
+        }
+
+        qWarning() << "Ignoring auth_key with invalid format/length:" << val;
+    }
+
+    return {};
+}
+
 void ImageWriter::handleIncomingUrl(const QUrl &url)
 {
     qDebug() << "Incoming URL:" << url;
-    emit connectCallbackReceived(QVariant::fromValue(url));
+
+    auto token = parseTokenFromUrl(url);
+    if (!token.isEmpty()) {
+        if (!_piConnectToken.isEmpty()) {
+            if (_piConnectToken != token) {
+                // Let QML decide whether to overwrite
+                emit connectTokenConflictDetected(token);
+            }
+
+            return;
+        }
+
+        overwriteConnectToken(token);
+    }
 }
 
-void ImageWriter::setRuntimeConnectToken(const QString &token)
+void ImageWriter::overwriteConnectToken(const QString &token)
 {
+    // Ephemeral session-only Connect token (never persisted)
     _piConnectToken = token;
+    emit connectTokenReceived(token);
 }
 
 QString ImageWriter::getRuntimeConnectToken() const
 {
     return _piConnectToken;
 }
+
+QString ImageWriter::getClipboardText() const
+{
+#ifndef CLI_ONLY_BUILD
+    QClipboard *clipboard = QGuiApplication::clipboard();
+    if (clipboard) {
+        return clipboard->text();
+    }
+#endif
+    return QString();
+}

src/imagewriter.h

@@ -267,9 +267,10 @@ class ImageWriter : public QObject
     Q_INVOKABLE void reboot();
     Q_INVOKABLE void openUrl(const QUrl &url);
     Q_INVOKABLE void handleIncomingUrl(const QUrl &url);
-    // Ephemeral session-only Connect token (never persisted)
-    Q_INVOKABLE void setRuntimeConnectToken(const QString &token);
+    Q_INVOKABLE void overwriteConnectToken(const QString &token);
     Q_INVOKABLE QString getRuntimeConnectToken() const;
+    Q_INVOKABLE QString getClipboardText() const;
+    Q_INVOKABLE bool verifyAuthKey(const QString &token, bool strict = false) const;
 
     /* Override OS list refresh schedule (in minutes); pass negative to clear override */
     Q_INVOKABLE void setOsListRefreshOverride(int intervalMinutes, int jitterMinutes);
@@ -299,7 +300,8 @@ class ImageWriter : public QObject
     void keychainPermissionRequested();
     void keychainPermissionResponseReceived();
     void writeStateChanged();
-    void connectCallbackReceived(QVariant url);
+    void connectTokenReceived(const QString &token);
+    void connectTokenConflictDetected(const QString &token);
     void cacheStatusChanged();
 
 protected slots:
@@ -339,6 +341,8 @@ protected slots:
     bool _deviceFilterIsInclusive;
     std::shared_ptr<DeviceInfo> _device_info;
 
+    QString parseTokenFromUrl(const QUrl &url, bool strictAuthKey = false) const;
+
 protected:
     QUrl _src, _repo;
     QString _dst, _parentCategory, _osName, _osReleaseDate, _currentLang, _currentLangcode, _currentKeyboard;