Skip useless prompts

Author: replydev

src/argument_functions.rs

@@ -1,4 +1,4 @@
-use crate::database_loader;
+use crate::{cryptograpy, database_loader};
 use crate::otp::{otp_element::OTPElement,otp_helper};
 use crate::importers;
 use crate::cryptograpy::prompt_for_passwords;
@@ -44,7 +44,7 @@ pub fn import(args: Vec<String>){
             }
         }
 
-        match database_loader::overwrite_database(elements){
+        match database_loader::overwrite_database(elements,&cryptograpy::prompt_for_passwords("Choose a password: ", 8,true)){
             Ok(()) => {
                 println!("Successfully imported database");
             },
@@ -75,7 +75,7 @@ pub fn add(args: Vec<String>){
             return;
         }
 
-        match database_loader::add_element(&prompt_for_passwords("Insert the secret: ",0),&args[2],&args[3],&args[4],digits){
+        match database_loader::add_element(&prompt_for_passwords("Insert the secret: ",0,false),&args[2],&args[3],&args[4],digits){
             Ok(()) => println!("Success"),
             Err(e) => eprintln!("An error occurred: {}",e)
         }
@@ -102,7 +102,7 @@ pub fn remove(args: Vec<String>){
 pub fn edit(args: Vec<String>){
     if args.len() == 7{
         let id = args[2].parse::<usize>().unwrap();
-        let secret = &prompt_for_passwords("Inser the secret (type ENTER to skip modification): ",0);
+        let secret = &prompt_for_passwords("Inser the secret (type ENTER to skip modification): ",0,false);
         let issuer = &args[3];
         let label = &args[4];
         let algorithm = &args[5];

src/cryptograpy.rs

@@ -3,6 +3,7 @@ use std::convert::TryInto;
 use sodiumoxide::crypto::pwhash;
 use sodiumoxide::crypto::secretstream::{Stream, Tag, KEYBYTES};
 use sodiumoxide::crypto::secretstream::xchacha20poly1305::{Header, Key};
+use crate::utils::clear_lines;
 
 const SIGNATURE: [u8;4] = [0xC1, 0x0A, 0x4B, 0xED];
 
@@ -92,13 +93,26 @@ fn header_vec_to_header_array(byte_vec: Vec<u8>) -> [u8;24]{
         .unwrap_or_else(|v: Vec<u8>| panic!("Expected a Vec of length {} but it was {}", 24, v.len()))
 }
 
-pub fn prompt_for_passwords(message: &str,minimum_password_length: usize) -> String{
+pub fn prompt_for_passwords(message: &str,minimum_password_length: usize,verify: bool) -> String{
     let mut password;
+    let mut verify_password;
     loop{
         password = rpassword::prompt_password_stdout(message).unwrap();
-        if password.len() >= minimum_password_length {
+        if verify {
+            verify_password = rpassword::prompt_password_stdout("Retype the same password: ").unwrap();
+            if password != verify_password{
+                clear_lines(2, true);
+                println!("Passwords do not match");
+                continue;
+            }
+            if password.len() >= minimum_password_length{
+                break;
+            }
+        } 
+        else if password.len() >= minimum_password_length {
             break;
         }
+        clear_lines(1, true);
         println!("Please insert a password with at least {} digits.",minimum_password_length);
     }
     password

src/database_loader.rs

@@ -7,10 +7,10 @@ use crate::cryptograpy;
 use crate::otp::otp_element::OTPElement;
 
 
-pub fn read_from_file() -> Result<Vec<OTPElement>,String>{
+pub fn read_from_file(password: &str) -> Result<Vec<OTPElement>,String>{
     let encrypted_contents = read_to_string(&get_db_path()).unwrap();
     //rust close files at the end of the function
-    let contents = cryptograpy::decrypt_string(&encrypted_contents, &cryptograpy::prompt_for_passwords("Password: ",8));
+    let contents = cryptograpy::decrypt_string(&encrypted_contents, password);
     match contents {
         Ok(contents) => {
             let vector: Vec<OTPElement> = serde_json::from_str(&contents).unwrap();
@@ -36,14 +36,15 @@ pub fn add_element(secret: &String,issuer: &String,label: &String,algorithm: &st
     if !check_secret(&upper_secret){
         return Err(String::from("Bad secret"))
     }
+    let pw = &cryptograpy::prompt_for_passwords("Password: ",8,false);
     let otp_element = OTPElement::new(upper_secret.to_string(), issuer.to_string(), label.to_string(),digits, String::from("TOTP"), String::from(algorithm).to_uppercase(),String::from("Default"),0,0,30,vec![]);
     let mut elements;
-    match read_from_file(){
+    match read_from_file(pw){
         Ok(result) => elements = result,
         Err(e) => return Err(e)
     }
     elements.push(otp_element);
-    match overwrite_database(elements){
+    match overwrite_database(elements,pw){
         Ok(()) => Ok(()),
         Err(e) => Err(format!("{}",e))
     }
@@ -57,8 +58,8 @@ pub fn remove_element_from_db(mut id: usize) -> Result<(),String>{
     id -= 1;
 
     let mut elements: Vec<OTPElement>;
-
-    match read_from_file(){
+    let pw = &cryptograpy::prompt_for_passwords("Password: ",8,false);
+    match read_from_file(pw){
         Ok(result) => elements = result,
         Err(e) => {
             return Err(e);
@@ -73,7 +74,7 @@ pub fn remove_element_from_db(mut id: usize) -> Result<(),String>{
                     break;
                 }
             }
-            match overwrite_database(elements){
+            match overwrite_database(elements,pw){
                 Ok(()) => Ok(()),
                 Err(e) => Err(format!("{}",e)),
             }
@@ -89,7 +90,8 @@ pub fn edit_element(mut id: usize, secret: &str,issuer: &str,label: &str,algorit
     id -= 1;
 
     let mut elements: Vec<OTPElement>;
-    match read_from_file(){
+    let pw = &cryptograpy::prompt_for_passwords("Password: ",8,false);
+    match read_from_file(pw){
         Ok(result) => elements = result,
         Err(_e) => return Err(String::from("Cannot decrypt existing database"))
     }
@@ -116,7 +118,7 @@ pub fn edit_element(mut id: usize, secret: &str,issuer: &str,label: &str,algorit
                     break;
                 }
             }
-            match overwrite_database(elements){
+            match overwrite_database(elements,pw){
                 Ok(()) => Ok(()),
                 Err(e) => Err(format!("{}",e)),
             }
@@ -130,7 +132,7 @@ pub fn export_database() -> Result<String, String> {
     exported_path.push_str("/exported.cotp");
     let mut file = File::create(&exported_path).expect("Cannot create file");
     let encrypted_contents = read_to_string(&get_db_path()).unwrap();
-    let contents = cryptograpy::decrypt_string(&encrypted_contents, &cryptograpy::prompt_for_passwords("Password: ",8));
+    let contents = cryptograpy::decrypt_string(&encrypted_contents, &cryptograpy::prompt_for_passwords("Password: ",8,false));
     match contents {
         Ok(contents) => {
             if contents == "[]"{
@@ -145,13 +147,13 @@ pub fn export_database() -> Result<String, String> {
     }
 }
 
-pub fn overwrite_database(elements: Vec<OTPElement>) -> Result<(),std::io::Error>{
+pub fn overwrite_database(elements: Vec<OTPElement>,password: &str) -> Result<(),std::io::Error>{
     let json_string: &str = &serde_json::to_string(&elements)?;
-    overwrite_database_json(json_string)
+    overwrite_database_json(json_string,password)
 }
 
-pub fn overwrite_database_json(json: &str) -> Result<(),std::io::Error>{
-    let encrypted = cryptograpy::encrypt_string(json.to_string(), &cryptograpy::prompt_for_passwords("Insert password for database encryption: ",8));
+pub fn overwrite_database_json(json: &str,password: &str) -> Result<(),std::io::Error>{
+    let encrypted = cryptograpy::encrypt_string(json.to_string(), password);
     let mut file = File::create(utils::get_db_path())?;
     utils::write_to_file(&encrypted, &mut file)
 }

src/main.rs

@@ -42,7 +42,7 @@ fn init_ctrlc_handler(lines: usize){
     }).expect("Failed to initialize ctrl-c handler");
 }
 
-fn init() -> Result<(), String>{
+fn init() -> Result<bool, String>{
     match sodiumoxide::init(){
         Err(()) => {
             return Err(String::from("Error during sodiumoxide initialization"))
@@ -52,12 +52,13 @@ fn init() -> Result<(), String>{
     match utils::create_db_if_needed() {
         Ok(value) => {
             if value {
-                match database_loader::overwrite_database_json("[]"){
-                    Ok(()) => return Ok(()),
+                let pw = &cryptograpy::prompt_for_passwords("Choose a password: ", 8,true);
+                match database_loader::overwrite_database_json("[]",pw){
+                    Ok(()) => return Ok(true),
                     Err(_e) => return Err(String::from("An error occurred during database overwriting")),
                 }
             }
-            Ok(())
+            Ok(false)
         },
         Err(()) => {
             return Err(String::from("An error occurred during database creation"));
@@ -69,7 +70,11 @@ fn main() {
     print_title();
     let init_result = init();
     match init_result {
-        Ok(()) => {},
+        Ok(true) => {
+            println!("Database correctly initialized");
+            return;
+        },
+        Ok(false) => {},
         Err(e) => { 
             println!("{}",e);
             return;

src/otp/otp_helper.rs

@@ -1,4 +1,4 @@
-use crate::database_loader;
+use crate::{cryptograpy, database_loader};
 use serde_json;
 use serde::{Deserialize, Serialize};
 use crate::otp::otp_element::OTPElement;
@@ -26,7 +26,7 @@ impl JsonResult {
 }
 
 pub fn read_codes() -> Result<Vec<OTPElement>,String>{
-    match database_loader::read_from_file(){
+    match database_loader::read_from_file(&cryptograpy::prompt_for_passwords("Password: ", 8,false)){
         Ok(result) => Ok(result),
         Err(e) => Err(e),
     }
@@ -61,7 +61,7 @@ fn get_good_otp_code(element: &OTPElement) -> String {
 pub fn get_json_results() -> Result<String,String>{
     let elements: Vec<OTPElement>;
 
-    match database_loader::read_from_file(){
+    match database_loader::read_from_file(&cryptograpy::prompt_for_passwords("Password: ",8,false)){
         Ok(result) => elements = result,
         Err(e) => return Err(e)
     }
@@ -89,7 +89,7 @@ pub fn print_json_result(mut index: usize) -> Result<(),String>{
 
     let elements: Vec<OTPElement>;
 
-    match database_loader::read_from_file(){
+    match database_loader::read_from_file(&cryptograpy::prompt_for_passwords("Password: ",8,false)){
         Ok(result) => elements = result,
         Err(e) => return Err(e),
     }