2021-10-16 16:19:51 +01:00
|
|
|
#include "stdafx.h"
|
|
|
|
#include "OptionsWindow.h"
|
|
|
|
#include "SandMan.h"
|
|
|
|
#include "SettingsWindow.h"
|
|
|
|
#include "../MiscHelpers/Common/Settings.h"
|
|
|
|
#include "../MiscHelpers/Common/Common.h"
|
|
|
|
#include "../MiscHelpers/Common/ComboInputDialog.h"
|
|
|
|
#include "../MiscHelpers/Common/SettingsWidgets.h"
|
|
|
|
#include "Helpers/WinAdmin.h"
|
|
|
|
|
|
|
|
|
|
|
|
void COptionsWindow::CreateAccess()
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
// Resource Access
|
|
|
|
connect(ui.chkPrivacy, SIGNAL(clicked(bool)), this, SLOT(OnAccessChanged()));
|
|
|
|
connect(ui.chkUseSpecificity, SIGNAL(clicked(bool)), this, SLOT(OnAccessChanged()));
|
|
|
|
connect(ui.chkCloseForBox, SIGNAL(clicked(bool)), this, SLOT(OnAccessChanged()));
|
|
|
|
connect(ui.chkNoOpenForBox, SIGNAL(clicked(bool)), this, SLOT(OnAccessChanged()));
|
|
|
|
//
|
|
|
|
|
2021-10-16 16:19:51 +01:00
|
|
|
connect(ui.btnAddFile, SIGNAL(clicked(bool)), this, SLOT(OnAddFile()));
|
|
|
|
QMenu* pFileBtnMenu = new QMenu(ui.btnAddFile);
|
|
|
|
pFileBtnMenu->addAction(tr("Browse for File"), this, SLOT(OnBrowseFile()));
|
|
|
|
pFileBtnMenu->addAction(tr("Browse for Folder"), this, SLOT(OnBrowseFolder()));
|
|
|
|
ui.btnAddFile->setPopupMode(QToolButton::MenuButtonPopup);
|
|
|
|
ui.btnAddFile->setMenu(pFileBtnMenu);
|
|
|
|
connect(ui.btnAddKey, SIGNAL(clicked(bool)), this, SLOT(OnAddKey()));
|
|
|
|
connect(ui.btnAddIPC, SIGNAL(clicked(bool)), this, SLOT(OnAddIPC()));
|
|
|
|
connect(ui.btnAddWnd, SIGNAL(clicked(bool)), this, SLOT(OnAddWnd()));
|
|
|
|
connect(ui.btnAddCOM, SIGNAL(clicked(bool)), this, SLOT(OnAddCOM()));
|
|
|
|
connect(ui.chkShowAccessTmpl, SIGNAL(clicked(bool)), this, SLOT(OnShowAccessTmpl()));
|
|
|
|
connect(ui.btnDelAccess, SIGNAL(clicked(bool)), this, SLOT(OnDelAccess()));
|
|
|
|
|
|
|
|
//connect(ui.treeAccess, SIGNAL(itemClicked(QTreeWidgetItem*, int)), this, SLOT(OnAccessItemClicked(QTreeWidgetItem*, int)));
|
|
|
|
connect(ui.treeAccess, SIGNAL(itemDoubleClicked(QTreeWidgetItem*, int)), this, SLOT(OnAccessItemDoubleClicked(QTreeWidgetItem*, int)));
|
|
|
|
connect(ui.treeAccess, SIGNAL(itemSelectionChanged()), this, SLOT(OnAccessSelectionChanged()));
|
|
|
|
}
|
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
void COptionsWindow::OnAccessChanged()
|
|
|
|
{
|
|
|
|
if (ui.chkPrivacy->isChecked() || ui.chkUseSpecificity->isChecked())
|
|
|
|
theGUI->CheckCertificate();
|
|
|
|
|
|
|
|
UpdateAccessPolicy();
|
|
|
|
|
|
|
|
m_AccessChanged = true;
|
|
|
|
OnOptChanged();
|
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::UpdateAccessPolicy()
|
|
|
|
{
|
|
|
|
if (ui.chkPrivacy->isChecked()) {
|
|
|
|
ui.chkUseSpecificity->setEnabled(false);
|
|
|
|
ui.chkUseSpecificity->setChecked(true);
|
|
|
|
|
|
|
|
ui.chkCloseForBox->setEnabled(false);
|
|
|
|
ui.chkCloseForBox->setChecked(false);
|
|
|
|
ui.chkNoOpenForBox->setEnabled(false);
|
|
|
|
ui.chkNoOpenForBox->setChecked(false);
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
ui.chkUseSpecificity->setEnabled(true);
|
|
|
|
|
|
|
|
ui.chkCloseForBox->setEnabled(true);
|
|
|
|
ui.chkNoOpenForBox->setEnabled(true);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2021-10-16 16:19:51 +01:00
|
|
|
QTreeWidgetItem* COptionsWindow::GetAccessEntry(EAccessType Type, const QString& Program, EAccessMode Mode, const QString& Path)
|
|
|
|
{
|
|
|
|
for (int i = 0; i < ui.treeAccess->topLevelItemCount(); i++)
|
|
|
|
{
|
|
|
|
QTreeWidgetItem* pItem = ui.treeAccess->topLevelItem(i);
|
|
|
|
if (pItem->data(0, Qt::UserRole).toInt() == Type
|
|
|
|
&& pItem->data(1, Qt::UserRole).toString().compare(Program, Qt::CaseInsensitive) == 0
|
|
|
|
&& pItem->data(2, Qt::UserRole).toInt() == Mode
|
|
|
|
&& pItem->data(3, Qt::UserRole).toString().compare(Path, Qt::CaseInsensitive) == 0)
|
|
|
|
return pItem;
|
|
|
|
}
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::SetAccessEntry(EAccessType Type, const QString& Program, EAccessMode Mode, const QString& Path)
|
|
|
|
{
|
|
|
|
if (GetAccessEntry(Type, Program, Mode, Path) != NULL)
|
|
|
|
return; // already set
|
|
|
|
m_AccessChanged = true;
|
2021-11-13 08:28:32 +00:00
|
|
|
OnOptChanged();
|
2021-10-16 16:19:51 +01:00
|
|
|
AddAccessEntry(Type, Mode, Program, Path);
|
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::DelAccessEntry(EAccessType Type, const QString& Program, EAccessMode Mode, const QString& Path)
|
|
|
|
{
|
|
|
|
if(QTreeWidgetItem* pItem = GetAccessEntry(Type, Program, Mode, Path))
|
|
|
|
{
|
|
|
|
delete pItem;
|
|
|
|
m_AccessChanged = true;
|
2021-11-13 08:28:32 +00:00
|
|
|
OnOptChanged();
|
2021-10-16 16:19:51 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
QString COptionsWindow::AccessTypeToName(EAccessEntry Type)
|
|
|
|
{
|
|
|
|
switch (Type)
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
case eNormalFilePath: return "NormalFilePath";
|
2021-10-16 16:19:51 +01:00
|
|
|
case eOpenFilePath: return "OpenFilePath";
|
|
|
|
case eOpenPipePath: return "OpenPipePath";
|
|
|
|
case eClosedFilePath: return "ClosedFilePath";
|
|
|
|
case eReadFilePath: return "ReadFilePath";
|
|
|
|
case eWriteFilePath: return "WriteFilePath";
|
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
case eNormalKeyPath: return "NormalKeyPath";
|
2021-10-16 16:19:51 +01:00
|
|
|
case eOpenKeyPath: return "OpenKeyPath";
|
2021-11-13 08:28:32 +00:00
|
|
|
case eOpenConfPath: return "OpenConfPath";
|
2021-10-16 16:19:51 +01:00
|
|
|
case eClosedKeyPath: return "ClosedKeyPath";
|
|
|
|
case eReadKeyPath: return "ReadKeyPath";
|
|
|
|
case eWriteKeyPath: return "WriteKeyPath";
|
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
case eNormalIpcPath: return "NormalIpcPath";
|
2021-10-16 16:19:51 +01:00
|
|
|
case eOpenIpcPath: return "OpenIpcPath";
|
|
|
|
case eClosedIpcPath: return "ClosedIpcPath";
|
|
|
|
|
|
|
|
case eOpenWinClass: return "OpenWinClass";
|
|
|
|
|
|
|
|
case eOpenCOM: return "OpenClsid";
|
|
|
|
case eClosedCOM: return "ClosedClsid";
|
|
|
|
case eClosedCOM_RT: return "ClosedRT";
|
|
|
|
}
|
|
|
|
return "Unknown";
|
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::LoadAccessList()
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
ui.chkPrivacy->setChecked(m_pBox->GetBool("UsePrivacyMode", false));
|
|
|
|
ui.chkUseSpecificity->setChecked(m_pBox->GetBool("UseRuleSpecificity", false));
|
2021-10-16 16:19:51 +01:00
|
|
|
ui.chkCloseForBox->setChecked(m_pBox->GetBool("AlwaysCloseForBoxed", true));
|
2021-11-13 08:28:32 +00:00
|
|
|
ui.chkNoOpenForBox->setChecked(m_pBox->GetBool("DontOpenForBoxed", true));
|
2021-10-16 16:19:51 +01:00
|
|
|
|
|
|
|
ui.treeAccess->clear();
|
|
|
|
|
|
|
|
for (int i = 0; i < eMaxAccessType; i++)
|
|
|
|
{
|
|
|
|
foreach(const QString& Value, m_pBox->GetTextList(AccessTypeToName((EAccessEntry)i), m_Template))
|
|
|
|
ParseAndAddAccessEntry((EAccessEntry)i, Value);
|
|
|
|
}
|
|
|
|
|
|
|
|
LoadAccessListTmpl();
|
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
UpdateAccessPolicy();
|
|
|
|
|
2021-10-16 16:19:51 +01:00
|
|
|
m_AccessChanged = false;
|
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::LoadAccessListTmpl(bool bUpdate)
|
|
|
|
{
|
|
|
|
if (ui.chkShowAccessTmpl->isChecked())
|
|
|
|
{
|
|
|
|
foreach(const QString& Template, m_pBox->GetTemplates())
|
|
|
|
{
|
|
|
|
for (int i = 0; i < eMaxAccessType; i++)
|
|
|
|
{
|
|
|
|
foreach(const QString& Value, m_pBox->GetTextListTmpl(AccessTypeToName((EAccessEntry)i), Template))
|
|
|
|
ParseAndAddAccessEntry((EAccessEntry)i, Value, Template);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
else if (bUpdate)
|
|
|
|
{
|
|
|
|
for (int i = 0; i < ui.treeAccess->topLevelItemCount(); )
|
|
|
|
{
|
|
|
|
QTreeWidgetItem* pItem = ui.treeAccess->topLevelItem(i);
|
|
|
|
int Type = pItem->data(0, Qt::UserRole).toInt();
|
|
|
|
if (Type == -1) {
|
|
|
|
delete pItem;
|
|
|
|
continue; // entry from template
|
|
|
|
}
|
|
|
|
i++;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::ParseAndAddAccessEntry(EAccessEntry EntryType, const QString& Value, const QString& Template)
|
|
|
|
{
|
|
|
|
EAccessType Type;
|
|
|
|
EAccessMode Mode;
|
|
|
|
switch (EntryType)
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
case eNormalFilePath: Type = eFile; Mode = eNormal; break;
|
|
|
|
case eOpenFilePath: Type = eFile; Mode = eOpen; break;
|
|
|
|
case eOpenPipePath: Type = eFile; Mode = eOpen4All; break;
|
2021-10-16 16:19:51 +01:00
|
|
|
case eClosedFilePath: Type = eFile; Mode = eClosed; break;
|
|
|
|
case eReadFilePath: Type = eFile; Mode = eReadOnly; break;
|
|
|
|
case eWriteFilePath: Type = eFile; Mode = eWriteOnly; break;
|
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
case eNormalKeyPath: Type = eKey; Mode = eNormal; break;
|
|
|
|
case eOpenKeyPath: Type = eKey; Mode = eOpen; break;
|
|
|
|
case eOpenConfPath: Type = eKey; Mode = eOpen4All;break;
|
2021-10-16 16:19:51 +01:00
|
|
|
case eClosedKeyPath: Type = eKey; Mode = eClosed; break;
|
|
|
|
case eReadKeyPath: Type = eKey; Mode = eReadOnly; break;
|
|
|
|
case eWriteKeyPath: Type = eKey; Mode = eWriteOnly; break;
|
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
case eNormalIpcPath: Type = eIPC; Mode = eNormal; break;
|
|
|
|
case eOpenIpcPath: Type = eIPC; Mode = eOpen; break;
|
2021-10-16 16:19:51 +01:00
|
|
|
case eClosedIpcPath: Type = eIPC; Mode = eClosed; break;
|
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
case eOpenWinClass: Type = eWnd; Mode = eOpen; break;
|
2021-10-16 16:19:51 +01:00
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
case eOpenCOM: Type = eCOM; Mode = eOpen; break;
|
2021-10-16 16:19:51 +01:00
|
|
|
case eClosedCOM: Type = eCOM; Mode = eClosed; break;
|
|
|
|
case eClosedCOM_RT: Type = eCOM; Mode = eClosedRT; break;
|
|
|
|
|
|
|
|
default: return;
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Mind this special cases
|
|
|
|
// OpenIpcPath=$:program.exe <- full access into the address space of a target process running outside the sandbox.
|
|
|
|
// OpenWinClass=$:program.exe <- permits to use the PostThreadMessage API to send a message directly to a thread running outside the sandbox.
|
|
|
|
// This form of the setting does not support wildcards.
|
|
|
|
//
|
|
|
|
|
|
|
|
QStringList Values = Value.split(",");
|
|
|
|
if (Values.count() >= 2)
|
|
|
|
AddAccessEntry(Type, Mode, Values[0], Values[1], Template);
|
|
|
|
else if (Values[0].left(2) == "$:") // special cases
|
|
|
|
AddAccessEntry(Type, Mode, Values[0].mid(2), "$", Template);
|
|
|
|
else // all programs
|
|
|
|
AddAccessEntry(Type, Mode, "", Values[0], Template);
|
|
|
|
}
|
|
|
|
|
|
|
|
QString COptionsWindow::GetAccessModeStr(EAccessMode Mode)
|
|
|
|
{
|
|
|
|
switch (Mode)
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
case eNormal: return tr("Normal");
|
|
|
|
case eOpen: return tr("Open");
|
|
|
|
case eOpen4All: return tr("Open for All");
|
2021-10-16 16:19:51 +01:00
|
|
|
case eClosed: return tr("Closed");
|
|
|
|
case eClosedRT: return tr("Closed RT");
|
|
|
|
case eReadOnly: return tr("Read Only");
|
2021-11-13 08:28:32 +00:00
|
|
|
case eWriteOnly: return tr("Boxed Only");
|
2021-10-16 16:19:51 +01:00
|
|
|
}
|
|
|
|
return tr("Unknown");
|
|
|
|
}
|
|
|
|
|
|
|
|
QString COptionsWindow::GetAccessTypeStr(EAccessType Type)
|
|
|
|
{
|
|
|
|
switch (Type)
|
|
|
|
{
|
|
|
|
case eFile: return tr("File/Folder");
|
|
|
|
case eKey: return tr("Registry");
|
|
|
|
case eIPC: return tr("IPC Path");
|
|
|
|
case eWnd: return tr("Wnd Class");
|
|
|
|
case eCOM: return tr("COM Object");
|
|
|
|
}
|
|
|
|
return tr("Unknown");
|
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::OnBrowseFile()
|
|
|
|
{
|
|
|
|
QString Value = QFileDialog::getOpenFileName(this, tr("Select File"), "", tr("All Files (*.*)")).replace("/", "\\");
|
|
|
|
if (Value.isEmpty())
|
|
|
|
return;
|
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
AddAccessEntry(eFile, eOpen, "", Value);
|
2021-10-16 16:19:51 +01:00
|
|
|
|
|
|
|
m_AccessChanged = true;
|
2021-11-13 08:28:32 +00:00
|
|
|
OnOptChanged();
|
2021-10-16 16:19:51 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::OnBrowseFolder()
|
|
|
|
{
|
|
|
|
QString Value = QFileDialog::getExistingDirectory(this, tr("Select Directory")).replace("/", "\\");
|
|
|
|
if (Value.isEmpty())
|
|
|
|
return;
|
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
AddAccessEntry(eFile, eOpen, "", Value);
|
2021-10-16 16:19:51 +01:00
|
|
|
|
|
|
|
m_AccessChanged = true;
|
2021-11-13 08:28:32 +00:00
|
|
|
OnOptChanged();
|
2021-10-16 16:19:51 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::AddAccessEntry(EAccessType Type, EAccessMode Mode, QString Program, const QString& Path, const QString& Template)
|
|
|
|
{
|
|
|
|
QTreeWidgetItem* pItem = new QTreeWidgetItem();
|
|
|
|
|
|
|
|
pItem->setText(0, GetAccessTypeStr(Type) + (Template.isEmpty() ? "" : " (" + Template + ")"));
|
|
|
|
pItem->setData(0, Qt::UserRole, !Template.isEmpty() ? -1 : (int)Type);
|
|
|
|
|
|
|
|
pItem->setData(1, Qt::UserRole, Program);
|
|
|
|
bool bAll = Program.isEmpty();
|
|
|
|
if (bAll)
|
|
|
|
Program = tr("All Programs");
|
|
|
|
bool Not = Program.left(1) == "!";
|
|
|
|
if (Not)
|
|
|
|
Program.remove(0, 1);
|
|
|
|
if (Program.left(1) == "<")
|
|
|
|
Program = tr("Group: %1").arg(Program.mid(1, Program.length() - 2));
|
|
|
|
else if(!bAll)
|
|
|
|
m_Programs.insert(Program);
|
|
|
|
pItem->setText(1, (Not ? "NOT " : "") + Program);
|
|
|
|
|
|
|
|
pItem->setText(2, GetAccessModeStr(Mode));
|
|
|
|
pItem->setData(2, Qt::UserRole, (int)Mode);
|
|
|
|
|
|
|
|
pItem->setText(3, Path);
|
|
|
|
pItem->setData(3, Qt::UserRole, Path);
|
|
|
|
|
|
|
|
ui.treeAccess->addTopLevelItem(pItem);
|
|
|
|
}
|
|
|
|
|
|
|
|
QString COptionsWindow::MakeAccessStr(EAccessType Type, EAccessMode Mode)
|
|
|
|
{
|
|
|
|
switch (Type)
|
|
|
|
{
|
|
|
|
case eFile:
|
|
|
|
switch (Mode)
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
case eNormal: return "NormalFilePath";
|
|
|
|
case eOpen: return "OpenFilePath";
|
|
|
|
case eOpen4All: return "OpenPipePath";
|
2021-10-16 16:19:51 +01:00
|
|
|
case eClosed: return "ClosedFilePath";
|
|
|
|
case eReadOnly: return "ReadFilePath";
|
|
|
|
case eWriteOnly: return "WriteFilePath";
|
|
|
|
}
|
|
|
|
break;
|
|
|
|
case eKey:
|
|
|
|
switch (Mode)
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
case eNormal: return "NormalKeyPath";
|
|
|
|
case eOpen: return "OpenKeyPath";
|
|
|
|
case eOpen4All: return "OpenConfPath";
|
2021-10-16 16:19:51 +01:00
|
|
|
case eClosed: return "ClosedKeyPath";
|
|
|
|
case eReadOnly: return "ReadKeyPath";
|
|
|
|
case eWriteOnly: return "WriteKeyPath";
|
|
|
|
}
|
|
|
|
break;
|
|
|
|
case eIPC:
|
|
|
|
switch (Mode)
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
case eNormal: return "NormalIpcPath";
|
|
|
|
case eOpen: return "OpenIpcPath";
|
2021-10-16 16:19:51 +01:00
|
|
|
case eClosed: return "ClosedIpcPath";
|
|
|
|
}
|
|
|
|
break;
|
|
|
|
case eWnd:
|
|
|
|
switch (Mode)
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
case eOpen: return "OpenWinClass";
|
2021-10-16 16:19:51 +01:00
|
|
|
}
|
|
|
|
break;
|
|
|
|
case eCOM:
|
|
|
|
switch (Mode)
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
case eOpen: return "OpenClsid";
|
2021-10-16 16:19:51 +01:00
|
|
|
case eClosed: return "ClosedClsid";
|
|
|
|
case eClosedRT: return "ClosedRT";
|
|
|
|
}
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
return "Unknown";
|
|
|
|
}
|
|
|
|
|
|
|
|
/*void COptionsWindow::OnAccessItemClicked(QTreeWidgetItem* pItem, int Column)
|
|
|
|
{
|
|
|
|
if (Column != 0)
|
|
|
|
return;
|
|
|
|
|
|
|
|
CloseAccessEdit(pItem);
|
|
|
|
}*/
|
|
|
|
|
|
|
|
void COptionsWindow::CloseAccessEdit(bool bSave)
|
|
|
|
{
|
|
|
|
for (int i = 0; i < ui.treeAccess->topLevelItemCount(); i++)
|
|
|
|
{
|
|
|
|
QTreeWidgetItem* pItem = ui.treeAccess->topLevelItem(i);
|
|
|
|
CloseAccessEdit(pItem, bSave);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::CloseAccessEdit(QTreeWidgetItem* pItem, bool bSave)
|
|
|
|
{
|
|
|
|
QWidget* pProgram = ui.treeAccess->itemWidget(pItem, 1);
|
|
|
|
if (!pProgram)
|
|
|
|
return;
|
|
|
|
|
|
|
|
QHBoxLayout* pLayout = (QHBoxLayout*)pProgram->layout();
|
|
|
|
QToolButton* pNot = (QToolButton*)pLayout->itemAt(0)->widget();
|
|
|
|
QComboBox* pCombo = (QComboBox*)pLayout->itemAt(1)->widget();
|
|
|
|
|
|
|
|
QComboBox* pMode = (QComboBox*)ui.treeAccess->itemWidget(pItem, 2);
|
|
|
|
QLineEdit* pPath = (QLineEdit*)ui.treeAccess->itemWidget(pItem, 3);
|
|
|
|
|
|
|
|
QString Program = pCombo->currentText();
|
|
|
|
int Index = pCombo->findText(Program);
|
|
|
|
if (Index != -1)
|
|
|
|
Program = pCombo->itemData(Index, Qt::UserRole).toString();
|
|
|
|
if (!Program.isEmpty() && Program.left(1) != "<")
|
|
|
|
m_Programs.insert(Program);
|
|
|
|
|
|
|
|
if (bSave)
|
|
|
|
{
|
|
|
|
if (pItem->data(0, Qt::UserRole).toInt() == eCOM && !pPath->text().isEmpty())
|
|
|
|
{
|
|
|
|
bool isGUID = pPath->text().length() == 38 && pPath->text().left(1) == "{" && pPath->text().right(1) == "}";
|
|
|
|
switch (pMode->currentData().toInt())
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
case eOpen:
|
2021-10-16 16:19:51 +01:00
|
|
|
case eClosed:
|
|
|
|
if (!isGUID) {
|
|
|
|
QMessageBox::critical(this, "SandboxiePlus", tr("COM objects must be specified by their GUID, like: {00000000-0000-0000-0000-000000000000}"));
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
break;
|
|
|
|
case eClosedRT:
|
|
|
|
if (isGUID) {
|
|
|
|
QMessageBox::critical(this, "SandboxiePlus", tr("RT interfaces must be specified by their name."));
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
pItem->setText(1, (pNot->isChecked() ? "NOT " : "") + pCombo->currentText());
|
|
|
|
pItem->setData(1, Qt::UserRole, (pNot->isChecked() ? "!" : "") + Program);
|
|
|
|
pItem->setText(2, GetAccessModeStr((EAccessMode)pMode->currentData().toInt()));
|
|
|
|
pItem->setData(2, Qt::UserRole, pMode->currentData());
|
|
|
|
pItem->setText(3, pPath->text());
|
|
|
|
pItem->setData(3, Qt::UserRole, pPath->text());
|
|
|
|
|
|
|
|
m_AccessChanged = true;
|
2021-11-13 08:28:32 +00:00
|
|
|
OnOptChanged();
|
2021-10-16 16:19:51 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
ui.treeAccess->setItemWidget(pItem, 1, NULL);
|
|
|
|
ui.treeAccess->setItemWidget(pItem, 2, NULL);
|
|
|
|
ui.treeAccess->setItemWidget(pItem, 3, NULL);
|
|
|
|
}
|
|
|
|
|
|
|
|
QList<COptionsWindow::EAccessMode> COptionsWindow::GetAccessModes(EAccessType Type)
|
|
|
|
{
|
|
|
|
switch (Type)
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
case eFile: return QList<EAccessMode>() << eNormal << eOpen << eOpen4All << eClosed << eReadOnly << eWriteOnly;
|
|
|
|
case eKey: return QList<EAccessMode>() << eNormal << eOpen << eOpen4All << eClosed << eReadOnly << eWriteOnly;
|
|
|
|
case eIPC: return QList<EAccessMode>() << eNormal << eOpen << eClosed;
|
|
|
|
case eWnd: return QList<EAccessMode>() << eOpen;
|
|
|
|
case eCOM: return QList<EAccessMode>() << eOpen << eClosed << eClosedRT;
|
2021-10-16 16:19:51 +01:00
|
|
|
}
|
|
|
|
return QList<EAccessMode>();
|
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::OnAccessItemDoubleClicked(QTreeWidgetItem* pItem, int Column)
|
|
|
|
{
|
|
|
|
//if (Column == 0)
|
|
|
|
// return;
|
|
|
|
|
|
|
|
int Type = pItem->data(0, Qt::UserRole).toInt();
|
|
|
|
if (Type == -1) {
|
|
|
|
QMessageBox::warning(this, "SandboxiePlus", tr("Template values can not be edited."));
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
QString Program = pItem->data(1, Qt::UserRole).toString();
|
|
|
|
|
|
|
|
QWidget* pProgram = new QWidget();
|
|
|
|
pProgram->setAutoFillBackground(true);
|
|
|
|
QHBoxLayout* pLayout = new QHBoxLayout();
|
|
|
|
pLayout->setMargin(0);
|
|
|
|
pLayout->setSpacing(0);
|
|
|
|
pProgram->setLayout(pLayout);
|
|
|
|
QToolButton* pNot = new QToolButton(pProgram);
|
|
|
|
pNot->setText("!");
|
|
|
|
pNot->setCheckable(true);
|
|
|
|
if (Program.left(1) == "!"){
|
|
|
|
pNot->setChecked(true);
|
|
|
|
Program.remove(0, 1);
|
|
|
|
}
|
|
|
|
pLayout->addWidget(pNot);
|
|
|
|
QComboBox* pCombo = new QComboBox(pProgram);
|
|
|
|
pCombo->addItem(tr("All Programs"), "");
|
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
foreach(const QString Group, GetCurrentGroups()){
|
|
|
|
QString GroupName = Group.mid(1, Group.length() - 2);
|
|
|
|
pCombo->addItem(tr("Group: %1").arg(Group), GroupName);
|
2021-10-16 16:19:51 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
foreach(const QString & Name, m_Programs)
|
|
|
|
pCombo->addItem(Name, Name);
|
|
|
|
|
|
|
|
pCombo->setEditable(true);
|
|
|
|
int Index = pCombo->findData(Program);
|
|
|
|
pCombo->setCurrentIndex(Index);
|
|
|
|
if(Index == -1)
|
|
|
|
pCombo->setCurrentText(Program);
|
|
|
|
pLayout->addWidget(pCombo);
|
|
|
|
|
|
|
|
ui.treeAccess->setItemWidget(pItem, 1, pProgram);
|
|
|
|
|
|
|
|
QComboBox* pMode = new QComboBox();
|
|
|
|
foreach(EAccessMode Mode, GetAccessModes((EAccessType)Type))
|
|
|
|
pMode->addItem(GetAccessModeStr(Mode), (int)Mode);
|
|
|
|
pMode->setCurrentIndex(pMode->findData(pItem->data(2, Qt::UserRole)));
|
|
|
|
ui.treeAccess->setItemWidget(pItem, 2, pMode);
|
|
|
|
|
|
|
|
QLineEdit* pPath = new QLineEdit();
|
|
|
|
pPath->setText(pItem->data(3, Qt::UserRole).toString());
|
|
|
|
ui.treeAccess->setItemWidget(pItem, 3, pPath);
|
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::DeleteAccessEntry(QTreeWidgetItem* pItem)
|
|
|
|
{
|
|
|
|
if (!pItem)
|
|
|
|
return;
|
|
|
|
|
|
|
|
if (pItem->data(0, Qt::UserRole).toInt() == -1) {
|
|
|
|
QMessageBox::warning(this, "SandboxiePlus", tr("Template values can not be removed."));
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
delete pItem;
|
|
|
|
}
|
|
|
|
|
|
|
|
void COptionsWindow::OnDelAccess()
|
|
|
|
{
|
|
|
|
DeleteAccessEntry(ui.treeAccess->currentItem());
|
|
|
|
m_AccessChanged = true;
|
2021-11-13 08:28:32 +00:00
|
|
|
OnOptChanged();
|
2021-10-16 16:19:51 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
void COptionsWindow::SaveAccessList()
|
|
|
|
{
|
2021-11-13 08:28:32 +00:00
|
|
|
WriteAdvancedCheck(ui.chkPrivacy, "UsePrivacyMode", "y", "");
|
|
|
|
WriteAdvancedCheck(ui.chkUseSpecificity, "UseRuleSpecificity", "y", "");
|
2021-10-16 16:19:51 +01:00
|
|
|
WriteAdvancedCheck(ui.chkCloseForBox, "AlwaysCloseForBoxed", "", "n");
|
2021-11-13 08:28:32 +00:00
|
|
|
WriteAdvancedCheck(ui.chkNoOpenForBox, "DontOpenForBoxed", "", "n");
|
2021-10-16 16:19:51 +01:00
|
|
|
|
|
|
|
CloseAccessEdit(true);
|
|
|
|
|
2021-11-13 08:28:32 +00:00
|
|
|
QStringList Keys = QStringList()
|
|
|
|
<< "NormalFilePath" << "OpenFilePath" << "OpenPipePath" << "ClosedFilePath" << "ReadFilePath" << "WriteFilePath"
|
|
|
|
<< "NormalKeyPath" << "OpenKeyPath" << "OpenConfPath" << "ClosedKeyPath" << "ReadKeyPath" << "WriteKeyPath"
|
|
|
|
<< "NormalIpcPath"<< "OpenIpcPath" << "ClosedIpcPath" << "OpenWinClass" << "OpenClsid" << "ClosedClsid" << "ClosedRT";
|
2021-10-16 16:19:51 +01:00
|
|
|
|
|
|
|
QMap<QString, QList<QString>> AccessMap;
|
|
|
|
for (int i = 0; i < ui.treeAccess->topLevelItemCount(); i++)
|
|
|
|
{
|
|
|
|
QTreeWidgetItem* pItem = ui.treeAccess->topLevelItem(i);
|
|
|
|
int Type = pItem->data(0, Qt::UserRole).toInt();
|
|
|
|
if (Type == -1)
|
|
|
|
continue; // entry from template
|
|
|
|
int Mode = pItem->data(2, Qt::UserRole).toInt();
|
|
|
|
QString Program = pItem->data(1, Qt::UserRole).toString();
|
|
|
|
QString Value = pItem->data(3, Qt::UserRole).toString();
|
|
|
|
if (Value == "$") // special cases
|
|
|
|
Value = "$:" + Program;
|
|
|
|
else if (!Program.isEmpty())
|
|
|
|
Value.prepend(Program + ",");
|
|
|
|
AccessMap[MakeAccessStr((EAccessType)Type, (EAccessMode)Mode)].append(Value);
|
|
|
|
}
|
|
|
|
|
|
|
|
foreach(const QString& Key, Keys)
|
|
|
|
WriteTextList(Key, AccessMap[Key]);
|
|
|
|
|
|
|
|
m_AccessChanged = false;
|
|
|
|
}
|