Add KeepassXC support for Safari on MacOS

keepassxc-browser-safari/KeePassXC-Browser/KeePassXC-Browser Extension/Info.plist

@@ -0,0 +1,33 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>CFBundleDevelopmentRegion</key>
+	<string>$(DEVELOPMENT_LANGUAGE)</string>
+	<key>CFBundleDisplayName</key>
+	<string>KeePassXC-Browser Extension</string>
+	<key>CFBundleExecutable</key>
+	<string>$(EXECUTABLE_NAME)</string>
+	<key>CFBundleIdentifier</key>
+	<string>$(PRODUCT_BUNDLE_IDENTIFIER)</string>
+	<key>CFBundleInfoDictionaryVersion</key>
+	<string>6.0</string>
+	<key>CFBundleName</key>
+	<string>$(PRODUCT_NAME)</string>
+	<key>CFBundlePackageType</key>
+	<string>$(PRODUCT_BUNDLE_PACKAGE_TYPE)</string>
+	<key>CFBundleShortVersionString</key>
+	<string>$(MARKETING_VERSION)</string>
+	<key>CFBundleVersion</key>
+	<string>1</string>
+	<key>LSMinimumSystemVersion</key>
+	<string>$(MACOSX_DEPLOYMENT_TARGET)</string>
+	<key>NSExtension</key>
+	<dict>
+		<key>NSExtensionPointIdentifier</key>
+		<string>com.apple.Safari.web-extension</string>
+		<key>NSExtensionPrincipalClass</key>
+		<string>$(PRODUCT_MODULE_NAME).SafariWebExtensionHandler</string>
+	</dict>
+</dict>
+</plist>

keepassxc-browser-safari/KeePassXC-Browser/KeePassXC-Browser Extension/KeePassXC_Browser_Extension.entitlements

@@ -0,0 +1,12 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>com.apple.security.app-sandbox</key>
+	<true/>
+	<key>com.apple.security.network.client</key>
+	<true/>
+	<key>com.apple.security.application-groups</key>
+	<string>org.keepassxc.KeePassXC</string>
+</dict>
+</plist>

keepassxc-browser-safari/KeePassXC-Browser/KeePassXC-Browser Extension/SafariWebExtensionHandler.swift

@@ -0,0 +1,163 @@
+/*
+ *  Copyright (C) 2023 KeePassXC Team <[email protected]>
+ *
+ *  This program is free software: you can redistribute it and/or modify
+ *  it under the terms of the GNU General Public License as published by
+ *  the Free Software Foundation, either version 3 of the License, or
+ *  (at your option) any later version.
+ *
+ *  This program is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ *  GNU General Public License for more details.
+ *
+ *  You should have received a copy of the GNU General Public License
+ *  along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ */
+
+import SafariServices
+import os.log
+
+let SFExtensionMessageKey = "message"
+let SocketFileName = "org.keepassxc.KeePassXC.BrowserServer"
+var socketFD  : Int32 = -1
+var socketConnected = false
+var maxMessageLength: Int32 = 1024 * 1024;
+
+class SafariWebExtensionHandler: NSObject, NSExtensionRequestHandling {
+    func getSocketPath() -> String {
+        let homePath = FileManager.default.containerURL(forSecurityApplicationGroupIdentifier: "org.keepassxc.KeePassXC")?.path
+        return homePath! + "/" + SocketFileName;
+    }
+
+    func closeSocket() {
+        if (socketFD != -1) {
+            os_log(.default, "Closing socket")
+            close(socketFD)
+            socketFD = -1
+        }
+    }
+
+    func connectSocket() -> Bool {
+        if (socketFD != -1) {
+            // Reuse socket
+            return true
+        }
+
+        socketFD = socket(PF_LOCAL, SOCK_STREAM, 0)
+        os_log(.default, "Create socket: %d" , socketFD)
+        if (socketFD == -1) {
+            os_log(.error, "Cannot create socket")
+            return false
+        }
+
+        var optval: Int = 1; // Use 1 to enable the option, 0 to disable
+        let status = setsockopt(socketFD, SOL_SOCKET,
+            SO_REUSEADDR, &optval, socklen_t(MemoryLayout<Int32>.size))
+        if (status == -1) {
+            os_log(.error, "setsockopt error: %d", errno)
+            return false
+        }
+
+        guard setsockopt(socketFD, SOL_SOCKET, SO_SNDBUF, &maxMessageLength, socklen_t(MemoryLayout<Int32>.size(ofValue: maxMessageLength))) != -1 else {
+            os_log(.error, "setsockopt error")
+            return false
+        }
+
+        let socketPath = getSocketPath()
+        os_log(.default, "Socket path: %s", socketPath)
+
+        // Check if socket file exists
+        let fileManager = FileManager.default
+        if fileManager.fileExists(atPath: socketPath) {
+            os_log(.default, "Socket file exists")
+        } else {
+            os_log(.default, "Socket file does not exist")
+            return false
+        }
+
+        var addr = sockaddr_un()
+        addr.sun_family = UInt8(AF_LOCAL)
+        let lengthOfPath = socketPath.utf8.count
+        guard lengthOfPath < MemoryLayout.size(ofValue: addr.sun_path) else {
+            os_log(.error, "Pathname is too long")
+            return false
+        }
+
+        strlcpy(&addr.sun_path.0, socketPath, MemoryLayout.size(ofValue: addr.sun_path))
+        addr.sun_len = UInt8(MemoryLayout<sa_family_t>.size + MemoryLayout<UInt8>.size + lengthOfPath + 1)
+
+        let sockLen = socklen_t(addr.sun_len)
+        let result = withUnsafePointer(to: &addr) {
+            $0.withMemoryRebound(to: sockaddr.self, capacity: 1) {
+                connect(socketFD, $0, sockLen)
+            }
+        }
+
+        if (result == -1) {
+            let strError = String(utf8String: strerror(errno)) ?? "Unknown error"
+            os_log(.error, "Cannot connect socket: %s", strError)
+            return false
+        }
+
+        return true
+    }
+
+	func beginRequest(with context: NSExtensionContext) {
+        guard let item = context.inputItems.first as? NSExtensionItem else {
+            os_log(.error, "Invalid amount of arguments for NSExtensionItem")
+            return
+        }
+
+        guard let dict = item.userInfo?[SFExtensionMessageKey] as? Dictionary<String, Any> else {
+            os_log(.error, "Invalid Safari extension message receieved")
+            return
+        }
+
+        guard let message = dict["message"] as? String else {
+            os_log(.error, "Invalid extension message receieved")
+            return
+        }
+
+        os_log(.default, "JSON string: %{public}s", message)
+
+        if (!socketConnected) {
+            if (!connectSocket()) {
+                closeSocket()
+                os_log(.error, "Socket not connected")
+                return
+            }
+
+            socketConnected = true
+        }
+
+        // Send message
+        let bytesWritten = write(socketFD, message, message.count)
+        if (bytesWritten == -1) {
+            os_log(.error, "Cannot write to socket %d", errno)
+            return
+        }
+
+        os_log(.default, "Written %d bytes", bytesWritten)
+
+        // Receive response
+        let receiveBuffer = UnsafeMutablePointer<CChar>.allocate(capacity: Int(maxMessageLength))
+        let bytesRead = read(socketFD, receiveBuffer, Int(maxMessageLength))
+        if (bytesRead > 0) {
+            os_log(.default, "Read %d bytes", bytesRead)
+
+            let responseString = String.init(bytesNoCopy: receiveBuffer, length: bytesRead, encoding: .utf8, freeWhenDone: false)
+
+            os_log(.default, "Response: %{public}s", responseString!)
+
+            // Send the response to the extension
+            let response = NSExtensionItem()
+            response.userInfo = [ SFExtensionMessageKey: [ responseString ] ]
+            context.completeRequest(returningItems: [response], completionHandler: nil)
+        } else {
+            os_log(.error, "Error reading from socket %d", errno)
+        }
+
+        receiveBuffer.deallocate()
+    }
+}