client/secure_qsettings.h

#ifndef SECUREQSETTINGS_H
#define SECUREQSETTINGS_H

#include <QMutex>
#include <QMutexLocker>
#include <QObject>
#include <QSettings>

#include "../client/3rd/qtkeychain/qtkeychain/keychain.h"

class SecureQSettings : public QObject
{
    Q_OBJECT

public:
    explicit SecureQSettings(const QString &organization, const QString &application = QString(),
                             QObject *parent = nullptr);

    QVariant value(const QString &key, const QVariant &defaultValue = QVariant()) const;
    void setValue(const QString &key, const QVariant &value);
    void remove(const QString &key);

    QByteArray backupAppConfig() const;
    bool restoreAppConfig(const QByteArray &json);

    void clearSettings();

private:
    QByteArray encryptText(const QByteArray &value) const;
    QByteArray decryptText(const QByteArray &ba) const;

    bool encryptionRequired() const;

    QByteArray getEncKey() const;
    QByteArray getEncIv() const;

    static QByteArray getSecTag(const QString &tag);
    static void setSecTag(const QString &tag, const QByteArray &data);

    QSettings m_settings;

    mutable QHash<QString, QVariant> m_cache;

    QStringList encryptedKeys; // encode only key listed here
    // only this fields need for backup
    QStringList m_fieldsToBackup = {
        "Conf/", "Servers/",
    };

    mutable QByteArray m_key;
    mutable QByteArray m_iv;

    const QByteArray magicString { "EncData" }; // Magic keyword used for mark encrypted QByteArray

    mutable QRecursiveMutex m_mutex;
};

#endif // SECUREQSETTINGS_H
Secure settings 2 2022-08-05 14:31:12 +03:00			`#ifndef SECUREQSETTINGS_H`
			`#define SECUREQSETTINGS_H`

App refactoring finished 2022-08-26 00:35:03 +03:00			`#include <QMutex>`
			`#include <QMutexLocker>`
added button 'Reset settings and remove all data from the application' 2023-07-14 22:59:49 +09:00			`#include <QObject>`
			`#include <QSettings>`
App refactoring finished 2022-08-26 00:35:03 +03:00
feature: fillswitch strict mode (#1333) * Add allowed DNS list for killswitch * Windows killswitch strict mode backend part * Killswitch strict mode for Linux and MacOS * Windows fixes * feature: Add Kill Switch settings page with strict mode option * fix windows build after merge * Refresh killswitch mode when it toggled * Use HLM to store strictMode flag * Some Linux updates * feat: Enhance VerticalRadioButton with improved styling and disabled states * Refresh killSwitch state update * Fix build * refactor: Modularize header components * Change kill switch radio button styling * Fix strict kill switch mode handling * Refactor: Replace HeaderType with new Types for headers in QML pages * Remove deprecated HeaderType QML component * Refresh strict mode killswitch after global toggle change * Implement model, controller and UI for killswitch dns exceptions * Connect backend part and UI * Change label text to DNS exceptions * Remove HeaderType from PageSettingsApiDevices * Some pretty fixes * Fix problem with definition sequence of PageSettingsKillSwitchExceptions.pml elements * Add exclusion method for Windows firewall * Change ubuntu version in deploy script * Update ubuntu version in GH actions * Add confirmation popup for strict killswitch mode * Add qt standard path for build script * Add method to killswitch for expanding strickt mode exceptions list and fix allowTrafficTo() for Windows. Also Added cache in KillSwitch class for exceptions * Add insertion of gateway address to strict killswitch exceptions * Review fixes * buildfix and naming --------- Co-authored-by: aiamnezia <ai@amnezia.org> 2025-05-02 23:54:36 -07:00			`#include "../client/3rd/qtkeychain/qtkeychain/keychain.h"`
Secure settings rework 2022-08-27 17:35:43 +03:00
Secure settings 2 2022-08-05 14:31:12 +03:00			`class SecureQSettings : public QObject`
			`{`
now value and setValue of secureQSettings are always called in the main thread 2024-01-10 23:05:22 +07:00			`Q_OBJECT`

Secure settings 2 2022-08-05 14:31:12 +03:00			`public:`
added button 'Reset settings and remove all data from the application' 2023-07-14 22:59:49 +09:00			`explicit SecureQSettings(const QString &organization, const QString &application = QString(),`
			`QObject *parent = nullptr);`
Secure settings 2 2022-08-05 14:31:12 +03:00
fix: change event looping to mutexes for settings and secureqsettings (#2270) 2026-02-26 04:41:08 +01:00			`QVariant value(const QString &key, const QVariant &defaultValue = QVariant()) const;`
			`void setValue(const QString &key, const QVariant &value);`
Backup/restore config 2022-08-05 18:59:47 +03:00			`void remove(const QString &key);`

			`QByteArray backupAppConfig() const;`
Secure settings rework 2022-08-27 17:35:43 +03:00			`bool restoreAppConfig(const QByteArray &json);`
Secure settings 2 2022-08-05 14:31:12 +03:00
fix: change event looping to mutexes for settings and secureqsettings (#2270) 2026-02-26 04:41:08 +01:00			`void clearSettings();`

			`private:`
Secure settings refactoring 2022-08-06 19:47:29 +03:00			`QByteArray encryptText(const QByteArray &value) const;`
added button 'Reset settings and remove all data from the application' 2023-07-14 22:59:49 +09:00			`QByteArray decryptText(const QByteArray &ba) const;`
Secure settings refactoring 2022-08-06 19:47:29 +03:00
			`bool encryptionRequired() const;`

Secure config WIP 2022-08-24 07:38:13 -07:00			`QByteArray getEncKey() const;`
			`QByteArray getEncIv() const;`
Secure settings rework 2022-08-27 17:35:43 +03:00
			`static QByteArray getSecTag(const QString &tag);`
			`static void setSecTag(const QString &tag, const QByteArray &data);`

Secure settings rework 2022-08-23 22:47:23 +03:00			`QSettings m_settings;`
Backup/restore config 2022-08-05 18:59:47 +03:00
refactoring: improved the performance of secure_settings 2025-01-19 10:12:30 +07:00			`mutable QHash<QString, QVariant> m_cache;`
Backup/restore config 2022-08-05 18:59:47 +03:00
			`QStringList encryptedKeys; // encode only key listed here`
Filter settings fields to backup 2024-05-09 00:06:23 +03:00			`// only this fields need for backup`
			`QStringList m_fieldsToBackup = {`
			`"Conf/", "Servers/",`
			`};`
Secure settings refactoring 2022-08-06 19:47:29 +03:00
Secure config WIP 2022-08-24 07:38:13 -07:00			`mutable QByteArray m_key;`
			`mutable QByteArray m_iv;`
Secure settings rework 2022-08-23 22:47:23 +03:00
			`const QByteArray magicString { "EncData" }; // Magic keyword used for mark encrypted QByteArray`

fix: change event looping to mutexes for settings and secureqsettings (#2270) 2026-02-26 04:41:08 +01:00			`mutable QRecursiveMutex m_mutex;`
Secure settings 2 2022-08-05 14:31:12 +03:00			`};`

			`#endif // SECUREQSETTINGS_H`