[needsbackport] apply an alternative fix for #20826 & #21582

jef-n · jef-n · commit f7d47f084375 · 2019-03-29T23:05:37.000+01:00
Partly reverts c9e7616, which removed the synchronizatiion of credential requests (eg. in a project that has multiple layers from the same postgresql database without credentials) and led to multiple concurrent requests for the same credentials. Some of which were silently discarded, when events processed in the dialogs exec() event loop tried to reinvoke the dialog and caused invalid layers. Authentications caused by network requests can still cause this. The credential cache is now guarded by a separate mutex. (cherry picked from commit 2af3535)
diff --git a/python/core/auto_generated/qgscredentials.sip.in b/python/core/auto_generated/qgscredentials.sip.in
@@ -20,6 +20,9 @@ credential creator function.
 
 QGIS application uses QgsCredentialDialog class for displaying a dialog to the user.
 
+Caller can use the mutex to synchronize authentications to avoid requesting
+credentials for the same resource several times.
+
 Object deletes itself when it's not needed anymore. Children should use
 signal destroyed() to be notified of the deletion
 %End
@@ -68,27 +71,27 @@ combinations are used with this method.
 retrieves instance
 %End
 
- void lock() /Deprecated/;
+    void lock();
 %Docstring
 Lock the instance against access from multiple threads. This does not really lock access to get/put methds,
 it will just prevent other threads to lock the instance and continue the execution. When the class is used
 from non-GUI threads, they should call lock() before the get/put calls to avoid race conditions.
 
-.. deprecated:: since QGIS 3.4 - mutex locking is automatically handled
+.. versionadded:: 2.4
 %End
 
- void unlock() /Deprecated/;
+    void unlock();
 %Docstring
 Unlock the instance after being locked.
 
-.. deprecated:: since QGIS 3.4 - mutex locking is automatically handled
+.. versionadded:: 2.4
 %End
 
- QMutex *mutex() /Deprecated/;
+    QMutex *mutex();
 %Docstring
 Returns pointer to mutex
 
-.. deprecated:: since QGIS 3.4 - mutex locking is automatically handled
+.. versionadded:: 2.4
 %End
 
   protected:
diff --git a/src/app/qgisapp.cpp b/src/app/qgisapp.cpp
@@ -13755,35 +13755,30 @@ void QgisApp::namProxyAuthenticationRequired( const QNetworkProxy &proxy, QAuthe
 
   for ( ;; )
   {
-    bool ok;
-
-    {
-      ok = QgsCredentials::instance()->get(
-             QStringLiteral( "proxy %1:%2 [%3]" ).arg( proxy.hostName() ).arg( proxy.port() ).arg( auth->realm() ),
-             username, password,
-             tr( "Proxy authentication required" ) );
-    }
+    bool ok = QgsCredentials::instance()->get(
+                QStringLiteral( "proxy %1:%2 [%3]" ).arg( proxy.hostName() ).arg( proxy.port() ).arg( auth->realm() ),
+                username, password,
+                tr( "Proxy authentication required" ) );
     if ( !ok )
       return;
 
     if ( auth->user() != username || ( password != auth->password() && !password.isNull() ) )
+    {
+      QgsCredentials::instance()->put(
+        QStringLiteral( "proxy %1:%2 [%3]" ).arg( proxy.hostName() ).arg( proxy.port() ).arg( auth->realm() ),
+        username, password
+      );
       break;
-
-    // credentials didn't change - stored ones probably wrong? clear password and retry
+    }
+    else
     {
+      // credentials didn't change - stored ones probably wrong? clear password and retry
       QgsCredentials::instance()->put(
         QStringLiteral( "proxy %1:%2 [%3]" ).arg( proxy.hostName() ).arg( proxy.port() ).arg( auth->realm() ),
         username, QString() );
     }
   }
 
-  {
-    QgsCredentials::instance()->put(
-      QStringLiteral( "proxy %1:%2 [%3]" ).arg( proxy.hostName() ).arg( proxy.port() ).arg( auth->realm() ),
-      username, password
-    );
-  }
-
   auth->setUser( username );
   auth->setPassword( password );
 }
diff --git a/src/core/auth/qgsauthmanager.cpp b/src/core/auth/qgsauthmanager.cpp
@@ -3205,9 +3205,8 @@ bool QgsAuthManager::masterPasswordInput()
 
   if ( ! ok )
   {
-    QgsCredentials *creds = QgsCredentials::instance();
     pass.clear();
-    ok = creds->getMasterPassword( pass, masterPasswordHashInDatabase() );
+    ok = QgsCredentials::instance()->getMasterPassword( pass, masterPasswordHashInDatabase() );
   }
 
   if ( ok && !pass.isEmpty() && mMasterPass != pass )
diff --git a/src/core/qgscredentials.cpp b/src/core/qgscredentials.cpp
@@ -40,27 +40,23 @@ QgsCredentials *QgsCredentials::instance()
 
 bool QgsCredentials::get( const QString &realm, QString &username, QString &password, const QString &message )
 {
-  QMutexLocker locker( &mMutex );
-  if ( mCredentialCache.contains( realm ) )
   {
-    QPair<QString, QString> credentials = mCredentialCache.take( realm );
-    locker.unlock();
-    username = credentials.first;
-    password = credentials.second;
-#if 0 // don't leak credentials on log
-    QgsDebugMsg( QStringLiteral( "retrieved realm:%1 username:%2 password:%3" ).arg( realm, username, password ) );
-#endif
-
-    if ( !password.isNull() )
-      return true;
+    QMutexLocker locker( &mCacheMutex );
+    if ( mCredentialCache.contains( realm ) )
+    {
+      QPair<QString, QString> credentials = mCredentialCache.take( realm );
+      username = credentials.first;
+      password = credentials.second;
+      QgsDebugMsg( QStringLiteral( "retrieved realm:%1 username:%2" ).arg( realm, username ) );
+
+      if ( !password.isNull() )
+        return true;
+    }
   }
-  locker.unlock();
 
   if ( request( realm, username, password, message ) )
   {
-#if 0 // don't leak credentials on log
-    QgsDebugMsg( QStringLiteral( "requested realm:%1 username:%2 password:%3" ).arg( realm, username, password ) );
-#endif
+    QgsDebugMsg( QStringLiteral( "requested realm:%1 username:%2" ).arg( realm, username ) );
     return true;
   }
   else
@@ -72,10 +68,8 @@ bool QgsCredentials::get( const QString &realm, QString &username, QString &pass
 
 void QgsCredentials::put( const QString &realm, const QString &username, const QString &password )
 {
-#if 0 // don't leak credentials on log
-  QgsDebugMsg( QStringLiteral( "inserting realm:%1 username:%2 password:%3" ).arg( realm, username, password ) );
-#endif
-  QMutexLocker locker( &mMutex );
+  QMutexLocker locker( &mCacheMutex );
+  QgsDebugMsg( QStringLiteral( "inserting realm:%1 username:%2" ).arg( realm, username ) );
   mCredentialCache.insert( realm, QPair<QString, QString>( username, password ) );
 }
 
@@ -91,12 +85,12 @@ bool QgsCredentials::getMasterPassword( QString &password, bool stored )
 
 void QgsCredentials::lock()
 {
-  mMutex.lock();
+  mAuthMutex.lock();
 }
 
 void QgsCredentials::unlock()
 {
-  mMutex.unlock();
+  mAuthMutex.unlock();
 }
 
 
diff --git a/src/core/qgscredentials.h b/src/core/qgscredentials.h
@@ -35,6 +35,9 @@
 
  * QGIS application uses QgsCredentialDialog class for displaying a dialog to the user.
 
+ * Caller can use the mutex to synchronize authentications to avoid requesting
+ * credentials for the same resource several times.
+
  * Object deletes itself when it's not needed anymore. Children should use
  * signal destroyed() to be notified of the deletion
 */
@@ -84,25 +87,21 @@ class CORE_EXPORT QgsCredentials
      * Lock the instance against access from multiple threads. This does not really lock access to get/put methds,
      * it will just prevent other threads to lock the instance and continue the execution. When the class is used
      * from non-GUI threads, they should call lock() before the get/put calls to avoid race conditions.
-     *
-     * \deprecated since QGIS 3.4 - mutex locking is automatically handled
+     * \since QGIS 2.4
      */
-    Q_DECL_DEPRECATED void lock() SIP_DEPRECATED;
+    void lock();
 
     /**
      * Unlock the instance after being locked.
-     * \deprecated since QGIS 3.4 - mutex locking is automatically handled
+     * \since QGIS 2.4
      */
-    Q_DECL_DEPRECATED void unlock() SIP_DEPRECATED;
+    void unlock();
 
     /**
      * Returns pointer to mutex
-     * \deprecated since QGIS 3.4 - mutex locking is automatically handled
+     * \since QGIS 2.4
      */
-    Q_DECL_DEPRECATED QMutex *mutex() SIP_DEPRECATED
-    {
-      return &mMutex;
-    }
+    QMutex *mutex() { return &mAuthMutex; }
 
   protected:
 
@@ -133,7 +132,11 @@ class CORE_EXPORT QgsCredentials
     //! Pointer to the credential instance
     static QgsCredentials *sInstance;
 
-    QMutex mMutex;
+    //! Mutex to synchronize authentications
+    QMutex mAuthMutex;
+
+    //! Mutex to guard the cache
+    QMutex mCacheMutex;
 };
 
 
diff --git a/src/gui/qgscredentialdialog.cpp b/src/gui/qgscredentialdialog.cpp
@@ -59,7 +59,7 @@ bool QgsCredentialDialog::request( const QString &realm, QString &username, QStr
   {
     QgsDebugMsg( QStringLiteral( "emitting signal" ) );
     emit credentialsRequested( realm, &username, &password, message, &ok );
-    QgsDebugMsg( QStringLiteral( "signal returned %1 (username=%2, password=%3)" ).arg( ok ? "true" : "false", username, password ) );
+    QgsDebugMsg( QStringLiteral( "signal returned %1 (username=%2)" ).arg( ok ? "true" : "false", username ) );
   }
   else
   {
@@ -81,7 +81,9 @@ void QgsCredentialDialog::requestCredentials( const QString &realm, QString *use
   labelMessage->setText( message );
   labelMessage->setHidden( message.isEmpty() );
 
-  if ( !leUsername->text().isEmpty() )
+  if ( leUsername->text().isEmpty() )
+    leUsername->setFocus();
+  else
     lePassword->setFocus();
 
   QWidget *activeWindow = qApp->activeWindow();
diff --git a/src/providers/db2/qgsdb2provider.cpp b/src/providers/db2/qgsdb2provider.cpp
@@ -201,6 +201,7 @@ QSqlDatabase QgsDb2Provider::getDatabase( const QString &connInfo, QString &errM
   db.setPort( port.toInt() );
   bool connected = false;
   int i = 0;
+  QgsCredentials::instance()->lock();
   while ( !connected && i < 3 )
   {
     i++;
@@ -214,6 +215,7 @@ QSqlDatabase QgsDb2Provider::getDatabase( const QString &connInfo, QString &errM
       {
         errMsg = QStringLiteral( "Cancel clicked" );
         QgsDebugMsg( errMsg );
+        QgsCredentials::instance()->unlock();
         break;
       }
     }
@@ -255,6 +257,7 @@ QSqlDatabase QgsDb2Provider::getDatabase( const QString &connInfo, QString &errM
   {
     QgsCredentials::instance()->put( databaseName, userName, password );
   }
+  QgsCredentials::instance()->unlock();
 
   return db;
 }
diff --git a/src/providers/grass/qgsgrass.cpp b/src/providers/grass/qgsgrass.cpp
@@ -700,7 +700,7 @@ void QgsGrass::loadMapsetSearchPath()
 
 void QgsGrass::setMapsetSearchPathWatcher()
 {
-  QgsDebugMsg( "etered" );
+  QgsDebugMsg( "entered." );
   if ( mMapsetSearchPathWatcher )
   {
     delete mMapsetSearchPathWatcher;
diff --git a/src/providers/oracle/qgsoracleconn.cpp b/src/providers/oracle/qgsoracleconn.cpp
@@ -96,6 +96,8 @@ QgsOracleConn::QgsOracleConn( QgsDataSourceUri uri )
   QgsDebugMsg( QStringLiteral( "Connecting with options: " ) + options );
   if ( !mDatabase.open() )
   {
+    QgsCredentials::instance()->lock();
+
     while ( !mDatabase.open() )
     {
       bool ok = QgsCredentials::instance()->get( realm, username, password, mDatabase.lastError().text() );
@@ -125,6 +127,8 @@ QgsOracleConn::QgsOracleConn( QgsDataSourceUri uri )
 
     if ( mDatabase.isOpen() )
       QgsCredentials::instance()->put( realm, username, password );
+
+    QgsCredentials::instance()->unlock();
   }
 
   if ( !mDatabase.isOpen() )
diff --git a/src/providers/postgres/qgspostgresconn.cpp b/src/providers/postgres/qgspostgresconn.cpp
@@ -272,6 +272,8 @@ QgsPostgresConn::QgsPostgresConn( const QString &conninfo, bool readOnly, bool s
     QString username = uri.username();
     QString password = uri.password();
 
+    QgsCredentials::instance()->lock();
+
     int i = 0;
     while ( PQstatus() != CONNECTION_OK && i < 5 )
     {
@@ -296,6 +298,8 @@ QgsPostgresConn::QgsPostgresConn( const QString &conninfo, bool readOnly, bool s
 
     if ( PQstatus() == CONNECTION_OK )
       QgsCredentials::instance()->put( conninfo, username, password );
+
+    QgsCredentials::instance()->unlock();
   }
 
   if ( PQstatus() != CONNECTION_OK )

Original file line number	Diff line number	Diff line change
`@@ -3205,9 +3205,8 @@ bool QgsAuthManager::masterPasswordInput()`
`3205`	`3205`
`3206`	`3206`	`if ( ! ok )`
`3207`	`3207`	`{`
`3208`		`- QgsCredentials *creds = QgsCredentials::instance();`
`3209`	`3208`	`pass.clear();`
`3210`		`- ok = creds->getMasterPassword( pass, masterPasswordHashInDatabase() );`
	`3209`	`+ ok = QgsCredentials::instance()->getMasterPassword( pass, masterPasswordHashInDatabase() );`
`3211`	`3210`	`}`
`3212`	`3211`
`3213`	`3212`	`if ( ok && !pass.isEmpty() && mMasterPass != pass )`
Original file line number	Diff line number	Diff line change
`@@ -40,27 +40,23 @@ QgsCredentials *QgsCredentials::instance()`
`40`	`40`
`41`	`41`	`bool QgsCredentials::get( const QString &realm, QString &username, QString &password, const QString &message )`
`42`	`42`	`{`
`43`		`- QMutexLocker locker( &mMutex );`
`44`		`- if ( mCredentialCache.contains( realm ) )`
`45`	`43`	`{`
`46`		`- QPair<QString, QString> credentials = mCredentialCache.take( realm );`
`47`		`- locker.unlock();`
`48`		`- username = credentials.first;`
`49`		`- password = credentials.second;`
`50`		`-#if 0 // don't leak credentials on log`
`51`		`- QgsDebugMsg( QStringLiteral( "retrieved realm:%1 username:%2 password:%3" ).arg( realm, username, password ) );`
`52`		`-#endif`
`53`		`-`
`54`		`- if ( !password.isNull() )`
`55`		`- return true;`
	`44`	`+ QMutexLocker locker( &mCacheMutex );`
	`45`	`+ if ( mCredentialCache.contains( realm ) )`
	`46`	`+ {`
	`47`	`+ QPair<QString, QString> credentials = mCredentialCache.take( realm );`
	`48`	`+ username = credentials.first;`
	`49`	`+ password = credentials.second;`
	`50`	`+ QgsDebugMsg( QStringLiteral( "retrieved realm:%1 username:%2" ).arg( realm, username ) );`
	`51`	`+`
	`52`	`+ if ( !password.isNull() )`
	`53`	`+ return true;`
	`54`	`+ }`
`56`	`55`	`}`
`57`		`- locker.unlock();`
`58`	`56`
`59`	`57`	`if ( request( realm, username, password, message ) )`
`60`	`58`	`{`
`61`		`-#if 0 // don't leak credentials on log`
`62`		`- QgsDebugMsg( QStringLiteral( "requested realm:%1 username:%2 password:%3" ).arg( realm, username, password ) );`
`63`		`-#endif`
	`59`	`+ QgsDebugMsg( QStringLiteral( "requested realm:%1 username:%2" ).arg( realm, username ) );`
`64`	`60`	`return true;`
`65`	`61`	`}`
`66`	`62`	`else`
`@@ -72,10 +68,8 @@ bool QgsCredentials::get( const QString &realm, QString &username, QString &pass`
`72`	`68`
`73`	`69`	`void QgsCredentials::put( const QString &realm, const QString &username, const QString &password )`
`74`	`70`	`{`
`75`		`-#if 0 // don't leak credentials on log`
`76`		`- QgsDebugMsg( QStringLiteral( "inserting realm:%1 username:%2 password:%3" ).arg( realm, username, password ) );`
`77`		`-#endif`
`78`		`- QMutexLocker locker( &mMutex );`
	`71`	`+ QMutexLocker locker( &mCacheMutex );`
	`72`	`+ QgsDebugMsg( QStringLiteral( "inserting realm:%1 username:%2" ).arg( realm, username ) );`
`79`	`73`	`mCredentialCache.insert( realm, QPair<QString, QString>( username, password ) );`
`80`	`74`	`}`
`81`	`75`
`@@ -91,12 +85,12 @@ bool QgsCredentials::getMasterPassword( QString &password, bool stored )`
`91`	`85`
`92`	`86`	`void QgsCredentials::lock()`
`93`	`87`	`{`
`94`		`- mMutex.lock();`
	`88`	`+ mAuthMutex.lock();`
`95`	`89`	`}`
`96`	`90`
`97`	`91`	`void QgsCredentials::unlock()`
`98`	`92`	`{`
`99`		`- mMutex.unlock();`
	`93`	`+ mAuthMutex.unlock();`
`100`	`94`	`}`
`101`	`95`
`102`	`96`
Original file line number	Diff line number	Diff line change
`@@ -59,7 +59,7 @@ bool QgsCredentialDialog::request( const QString &realm, QString &username, QStr`
`59`	`59`	`{`
`60`	`60`	`QgsDebugMsg( QStringLiteral( "emitting signal" ) );`
`61`	`61`	`emit credentialsRequested( realm, &username, &password, message, &ok );`
`62`		`- QgsDebugMsg( QStringLiteral( "signal returned %1 (username=%2, password=%3)" ).arg( ok ? "true" : "false", username, password ) );`
	`62`	`+ QgsDebugMsg( QStringLiteral( "signal returned %1 (username=%2)" ).arg( ok ? "true" : "false", username ) );`
`63`	`63`	`}`
`64`	`64`	`else`
`65`	`65`	`{`
`@@ -81,7 +81,9 @@ void QgsCredentialDialog::requestCredentials( const QString &realm, QString *use`
`81`	`81`	`labelMessage->setText( message );`
`82`	`82`	`labelMessage->setHidden( message.isEmpty() );`
`83`	`83`
`84`		`- if ( !leUsername->text().isEmpty() )`
	`84`	`+ if ( leUsername->text().isEmpty() )`
	`85`	`+ leUsername->setFocus();`
	`86`	`+ else`
`85`	`87`	`lePassword->setFocus();`
`86`	`88`
`87`	`89`	`QWidget *activeWindow = qApp->activeWindow();`
Original file line number	Diff line number	Diff line change
`@@ -201,6 +201,7 @@ QSqlDatabase QgsDb2Provider::getDatabase( const QString &connInfo, QString &errM`
`201`	`201`	`db.setPort( port.toInt() );`
`202`	`202`	`bool connected = false;`
`203`	`203`	`int i = 0;`
	`204`	`+ QgsCredentials::instance()->lock();`
`204`	`205`	`while ( !connected && i < 3 )`
`205`	`206`	`{`
`206`	`207`	`i++;`
`@@ -214,6 +215,7 @@ QSqlDatabase QgsDb2Provider::getDatabase( const QString &connInfo, QString &errM`
`214`	`215`	`{`
`215`	`216`	`errMsg = QStringLiteral( "Cancel clicked" );`
`216`	`217`	`QgsDebugMsg( errMsg );`
	`218`	`+ QgsCredentials::instance()->unlock();`
`217`	`219`	`break;`
`218`	`220`	`}`
`219`	`221`	`}`
`@@ -255,6 +257,7 @@ QSqlDatabase QgsDb2Provider::getDatabase( const QString &connInfo, QString &errM`
`255`	`257`	`{`
`256`	`258`	`QgsCredentials::instance()->put( databaseName, userName, password );`
`257`	`259`	`}`
	`260`	`+ QgsCredentials::instance()->unlock();`
`258`	`261`
`259`	`262`	`return db;`
`260`	`263`	`}`
Original file line number	Diff line number	Diff line change
`@@ -700,7 +700,7 @@ void QgsGrass::loadMapsetSearchPath()`
`700`	`700`
`701`	`701`	`void QgsGrass::setMapsetSearchPathWatcher()`
`702`	`702`	`{`
`703`		`- QgsDebugMsg( "etered" );`
	`703`	`+ QgsDebugMsg( "entered." );`
`704`	`704`	`if ( mMapsetSearchPathWatcher )`
`705`	`705`	`{`
`706`	`706`	`delete mMapsetSearchPathWatcher;`
Original file line number	Diff line number	Diff line change
`@@ -96,6 +96,8 @@ QgsOracleConn::QgsOracleConn( QgsDataSourceUri uri )`
`96`	`96`	`QgsDebugMsg( QStringLiteral( "Connecting with options: " ) + options );`
`97`	`97`	`if ( !mDatabase.open() )`
`98`	`98`	`{`
	`99`	`+ QgsCredentials::instance()->lock();`
	`100`	`+`
`99`	`101`	`while ( !mDatabase.open() )`
`100`	`102`	`{`
`101`	`103`	`bool ok = QgsCredentials::instance()->get( realm, username, password, mDatabase.lastError().text() );`
`@@ -125,6 +127,8 @@ QgsOracleConn::QgsOracleConn( QgsDataSourceUri uri )`
`125`	`127`
`126`	`128`	`if ( mDatabase.isOpen() )`
`127`	`129`	`QgsCredentials::instance()->put( realm, username, password );`
	`130`	`+`
	`131`	`+ QgsCredentials::instance()->unlock();`
`128`	`132`	`}`
`129`	`133`
`130`	`134`	`if ( !mDatabase.isOpen() )`
Original file line number	Diff line number	Diff line change
`@@ -272,6 +272,8 @@ QgsPostgresConn::QgsPostgresConn( const QString &conninfo, bool readOnly, bool s`
`272`	`272`	`QString username = uri.username();`
`273`	`273`	`QString password = uri.password();`
`274`	`274`
	`275`	`+ QgsCredentials::instance()->lock();`
	`276`	`+`
`275`	`277`	`int i = 0;`
`276`	`278`	`while ( PQstatus() != CONNECTION_OK && i < 5 )`
`277`	`279`	`{`
`@@ -296,6 +298,8 @@ QgsPostgresConn::QgsPostgresConn( const QString &conninfo, bool readOnly, bool s`
`296`	`298`
`297`	`299`	`if ( PQstatus() == CONNECTION_OK )`
`298`	`300`	`QgsCredentials::instance()->put( conninfo, username, password );`
	`301`	`+`
	`302`	`+ QgsCredentials::instance()->unlock();`
`299`	`303`	`}`
`300`	`304`
`301`	`305`	`if ( PQstatus() != CONNECTION_OK )`