signal-desktop/js/signal_protocol_store.js

1011 lines
33 KiB
JavaScript
Raw Normal View History

/* global dcodeIO: false */
/* global Backbone: false */
/* global Whisper: false */
/* global _: false */
/* global libsignal: false */
/* global textsecure: false */
/* global ConversationController: false */
/* global wrapDeferred: false */
/* global stringObject: false */
/* eslint-disable more/no-then, no-proto */
// eslint-disable-next-line func-names
2018-04-27 21:25:04 +00:00
(function() {
'use strict';
const TIMESTAMP_THRESHOLD = 5 * 1000; // 5 seconds
const Direction = {
2018-04-27 21:25:04 +00:00
SENDING: 1,
RECEIVING: 2,
};
const VerifiedStatus = {
2018-04-27 21:25:04 +00:00
DEFAULT: 0,
VERIFIED: 1,
UNVERIFIED: 2,
};
function validateVerifiedStatus(status) {
if (
status === VerifiedStatus.DEFAULT ||
status === VerifiedStatus.VERIFIED ||
status === VerifiedStatus.UNVERIFIED
) {
return true;
}
2018-04-27 21:25:04 +00:00
return false;
}
const StaticByteBufferProto = new dcodeIO.ByteBuffer().__proto__;
const StaticArrayBufferProto = new ArrayBuffer().__proto__;
const StaticUint8ArrayProto = new Uint8Array().__proto__;
2018-04-27 21:25:04 +00:00
function isStringable(thing) {
return (
thing === Object(thing) &&
(thing.__proto__ === StaticArrayBufferProto ||
thing.__proto__ === StaticUint8ArrayProto ||
thing.__proto__ === StaticByteBufferProto)
2018-04-27 21:25:04 +00:00
);
}
function convertToArrayBuffer(thing) {
if (thing === undefined) {
return undefined;
}
if (thing === Object(thing)) {
if (thing.__proto__ === StaticArrayBufferProto) {
2018-04-27 21:25:04 +00:00
return thing;
}
// TODO: Several more cases here...
}
2018-04-27 21:25:04 +00:00
if (thing instanceof Array) {
// Assuming Uint16Array from curve25519
const res = new ArrayBuffer(thing.length * 2);
const uint = new Uint16Array(res);
for (let i = 0; i < thing.length; i += 1) {
2018-04-27 21:25:04 +00:00
uint[i] = thing[i];
}
return res;
}
let str;
2018-04-27 21:25:04 +00:00
if (isStringable(thing)) {
str = stringObject(thing);
} else if (typeof thing === 'string') {
2018-04-27 21:25:04 +00:00
str = thing;
} else {
throw new Error(
`Tried to convert a non-stringable thing of type ${typeof thing} to an array buffer`
2018-04-27 21:25:04 +00:00
);
}
const res = new ArrayBuffer(str.length);
const uint = new Uint8Array(res);
for (let i = 0; i < str.length; i += 1) {
2018-04-27 21:25:04 +00:00
uint[i] = str.charCodeAt(i);
}
2018-04-27 21:25:04 +00:00
return res;
}
2018-04-27 21:25:04 +00:00
function equalArrayBuffers(ab1, ab2) {
if (!(ab1 instanceof ArrayBuffer && ab2 instanceof ArrayBuffer)) {
return false;
}
if (ab1.byteLength !== ab2.byteLength) {
return false;
}
let result = 0;
const ta1 = new Uint8Array(ab1);
const ta2 = new Uint8Array(ab2);
for (let i = 0; i < ab1.byteLength; i += 1) {
// eslint-disable-next-line no-bitwise
result |= ta1[i] ^ ta2[i];
2018-04-27 21:25:04 +00:00
}
return result === 0;
}
const Model = Backbone.Model.extend({ database: Whisper.Database });
const PreKey = Model.extend({ storeName: 'preKeys' });
const PreKeyCollection = Backbone.Collection.extend({
2018-04-27 21:25:04 +00:00
storeName: 'preKeys',
database: Whisper.Database,
model: PreKey,
});
const SignedPreKey = Model.extend({ storeName: 'signedPreKeys' });
const SignedPreKeyCollection = Backbone.Collection.extend({
2018-04-27 21:25:04 +00:00
storeName: 'signedPreKeys',
database: Whisper.Database,
model: SignedPreKey,
});
const Session = Model.extend({ storeName: 'sessions' });
const SessionCollection = Backbone.Collection.extend({
2018-04-27 21:25:04 +00:00
storeName: 'sessions',
database: Whisper.Database,
model: Session,
fetchSessionsForNumber(number) {
return this.fetch({ range: [`${number}.1`, `${number}.:`] });
2018-04-27 21:25:04 +00:00
},
});
const Unprocessed = Model.extend({ storeName: 'unprocessed' });
const UnprocessedCollection = Backbone.Collection.extend({
2018-04-27 21:25:04 +00:00
storeName: 'unprocessed',
database: Whisper.Database,
model: Unprocessed,
comparator: 'timestamp',
});
const IdentityRecord = Model.extend({
2018-04-27 21:25:04 +00:00
storeName: 'identityKeys',
validAttributes: [
'id',
'publicKey',
'firstUse',
'timestamp',
'verified',
'nonblockingApproval',
],
validate(attrs) {
const attributeNames = _.keys(attrs);
const { validAttributes } = this;
const allValid = _.all(attributeNames, attributeName =>
_.contains(validAttributes, attributeName)
);
2018-04-27 21:25:04 +00:00
if (!allValid) {
return new Error('Invalid identity key attribute names');
}
const allPresent = _.all(validAttributes, attributeName =>
_.contains(attributeNames, attributeName)
);
2018-04-27 21:25:04 +00:00
if (!allPresent) {
return new Error('Missing identity key attributes');
}
2018-04-27 21:25:04 +00:00
if (typeof attrs.id !== 'string') {
return new Error('Invalid identity key id');
}
if (!(attrs.publicKey instanceof ArrayBuffer)) {
return new Error('Invalid identity key publicKey');
}
if (typeof attrs.firstUse !== 'boolean') {
return new Error('Invalid identity key firstUse');
}
if (typeof attrs.timestamp !== 'number' || !(attrs.timestamp >= 0)) {
return new Error('Invalid identity key timestamp');
}
if (!validateVerifiedStatus(attrs.verified)) {
return new Error('Invalid identity key verified');
}
2018-04-27 21:25:04 +00:00
if (typeof attrs.nonblockingApproval !== 'boolean') {
return new Error('Invalid identity key nonblockingApproval');
}
return null;
2018-04-27 21:25:04 +00:00
},
});
const Group = Model.extend({ storeName: 'groups' });
const Item = Model.extend({ storeName: 'items' });
2018-04-27 21:25:04 +00:00
function SignalProtocolStore() {}
2018-04-27 21:25:04 +00:00
SignalProtocolStore.prototype = {
constructor: SignalProtocolStore,
getIdentityKeyPair() {
const item = new Item({ id: 'identityKey' });
return new Promise((resolve, reject) => {
item.fetch().then(() => {
2018-04-27 21:25:04 +00:00
resolve(item.get('value'));
}, reject);
});
},
getLocalRegistrationId() {
const item = new Item({ id: 'registrationId' });
return new Promise((resolve, reject) => {
item.fetch().then(() => {
2018-04-27 21:25:04 +00:00
resolve(item.get('value'));
}, reject);
});
},
/* Returns a prekeypair object or undefined */
loadPreKey(keyId) {
const prekey = new PreKey({ id: keyId });
return new Promise(resolve => {
2018-04-27 21:25:04 +00:00
prekey.fetch().then(
() => {
window.log.info('Successfully fetched prekey:', keyId);
2018-04-27 21:25:04 +00:00
resolve({
pubKey: prekey.get('publicKey'),
privKey: prekey.get('privateKey'),
});
2018-04-27 21:25:04 +00:00
},
() => {
window.log.error('Failed to fetch prekey:', keyId);
2018-04-27 21:25:04 +00:00
resolve();
}
);
});
},
storePreKey(keyId, keyPair) {
const prekey = new PreKey({
2018-04-27 21:25:04 +00:00
id: keyId,
publicKey: keyPair.pubKey,
privateKey: keyPair.privKey,
});
return new Promise(resolve => {
prekey.save().always(() => {
2018-04-27 21:25:04 +00:00
resolve();
});
});
},
removePreKey(keyId) {
const prekey = new PreKey({ id: keyId });
2018-04-27 21:25:04 +00:00
this.trigger('removePreKey');
return new Promise(resolve => {
const deferred = prekey.destroy();
2018-04-27 21:25:04 +00:00
if (!deferred) {
return resolve();
}
return deferred.then(resolve, error => {
window.log.error(
2018-04-27 21:25:04 +00:00
'removePreKey error:',
error && error.stack ? error.stack : error
);
resolve();
});
});
},
clearPreKeyStore() {
return new Promise(resolve => {
const preKeys = new PreKeyCollection();
2018-04-27 21:25:04 +00:00
preKeys.sync('delete', preKeys, {}).always(resolve);
});
},
/* Returns a signed keypair object or undefined */
loadSignedPreKey(keyId) {
const prekey = new SignedPreKey({ id: keyId });
return new Promise(resolve => {
2018-04-27 21:25:04 +00:00
prekey
.fetch()
.then(() => {
window.log.info(
2018-04-27 21:25:04 +00:00
'Successfully fetched signed prekey:',
prekey.get('id')
);
resolve({
pubKey: prekey.get('publicKey'),
privKey: prekey.get('privateKey'),
created_at: prekey.get('created_at'),
keyId: prekey.get('id'),
confirmed: prekey.get('confirmed'),
});
2018-04-27 21:25:04 +00:00
})
.fail(() => {
window.log.error('Failed to fetch signed prekey:', keyId);
2018-04-27 21:25:04 +00:00
resolve();
});
});
},
loadSignedPreKeys() {
2018-04-27 21:25:04 +00:00
if (arguments.length > 0) {
return Promise.reject(
new Error('loadSignedPreKeys takes no arguments')
);
}
const signedPreKeys = new SignedPreKeyCollection();
return new Promise(resolve => {
signedPreKeys.fetch().then(() => {
2018-04-27 21:25:04 +00:00
resolve(
signedPreKeys.map(prekey => ({
pubKey: prekey.get('publicKey'),
privKey: prekey.get('privateKey'),
created_at: prekey.get('created_at'),
keyId: prekey.get('id'),
confirmed: prekey.get('confirmed'),
}))
2018-04-27 21:25:04 +00:00
);
});
});
},
storeSignedPreKey(keyId, keyPair, confirmed) {
const prekey = new SignedPreKey({
2018-04-27 21:25:04 +00:00
id: keyId,
publicKey: keyPair.pubKey,
privateKey: keyPair.privKey,
created_at: Date.now(),
confirmed: Boolean(confirmed),
});
return new Promise(resolve => {
prekey.save().always(() => {
2018-04-27 21:25:04 +00:00
resolve();
});
});
},
removeSignedPreKey(keyId) {
const prekey = new SignedPreKey({ id: keyId });
return new Promise((resolve, reject) => {
const deferred = prekey.destroy();
2018-04-27 21:25:04 +00:00
if (!deferred) {
return resolve();
}
return deferred.then(resolve, reject);
2018-04-27 21:25:04 +00:00
});
},
clearSignedPreKeysStore() {
return new Promise(resolve => {
const signedPreKeys = new SignedPreKeyCollection();
2018-04-27 21:25:04 +00:00
signedPreKeys.sync('delete', signedPreKeys, {}).always(resolve);
});
},
loadSession(encodedNumber) {
2018-04-27 21:25:04 +00:00
if (encodedNumber === null || encodedNumber === undefined) {
throw new Error('Tried to get session for undefined/null number');
}
return new Promise(resolve => {
const session = new Session({ id: encodedNumber });
session.fetch().always(() => {
2018-04-27 21:25:04 +00:00
resolve(session.get('record'));
});
});
},
storeSession(encodedNumber, record) {
2018-04-27 21:25:04 +00:00
if (encodedNumber === null || encodedNumber === undefined) {
throw new Error('Tried to put session for undefined/null number');
}
return new Promise(resolve => {
const number = textsecure.utils.unencodeNumber(encodedNumber)[0];
const deviceId = parseInt(
textsecure.utils.unencodeNumber(encodedNumber)[1],
10
2018-04-27 21:25:04 +00:00
);
const session = new Session({ id: encodedNumber });
session.fetch().always(() => {
2018-04-27 21:25:04 +00:00
session
.save({
record,
deviceId,
number,
2018-04-27 21:25:04 +00:00
})
.fail(e => {
window.log.error('Failed to save session', encodedNumber, e);
2018-04-27 21:25:04 +00:00
})
.always(() => {
2018-04-27 21:25:04 +00:00
resolve();
});
2018-04-27 21:25:04 +00:00
});
});
},
getDeviceIds(number) {
2018-04-27 21:25:04 +00:00
if (number === null || number === undefined) {
throw new Error('Tried to get device ids for undefined/null number');
}
return new Promise(resolve => {
const sessions = new SessionCollection();
sessions.fetchSessionsForNumber(number).always(() => {
2018-04-27 21:25:04 +00:00
resolve(sessions.pluck('deviceId'));
});
});
},
removeSession(encodedNumber) {
window.log.info('deleting session for ', encodedNumber);
return new Promise(resolve => {
const session = new Session({ id: encodedNumber });
2018-04-27 21:25:04 +00:00
session
.fetch()
.then(() => {
2018-04-27 21:25:04 +00:00
session.destroy().then(resolve);
})
.fail(resolve);
});
},
removeAllSessions(number) {
2018-04-27 21:25:04 +00:00
if (number === null || number === undefined) {
throw new Error('Tried to remove sessions for undefined/null number');
}
return new Promise((resolve, reject) => {
const sessions = new SessionCollection();
sessions.fetchSessionsForNumber(number).always(() => {
const promises = [];
2018-04-27 21:25:04 +00:00
while (sessions.length > 0) {
promises.push(
new Promise((res, rej) => {
2018-04-27 21:25:04 +00:00
sessions
.pop()
.destroy()
.then(res, rej);
})
);
}
Promise.all(promises).then(resolve, reject);
});
});
},
archiveSiblingSessions(identifier) {
const address = libsignal.SignalProtocolAddress.fromString(identifier);
return this.getDeviceIds(address.getName()).then(deviceIds => {
const siblings = _.without(deviceIds, address.getDeviceId());
2018-04-27 21:25:04 +00:00
return Promise.all(
siblings.map(deviceId => {
const sibling = new libsignal.SignalProtocolAddress(
2018-04-27 21:25:04 +00:00
address.getName(),
deviceId
);
window.log.info('closing session for', sibling.toString());
const sessionCipher = new libsignal.SessionCipher(
2018-04-27 21:25:04 +00:00
textsecure.storage.protocol,
sibling
);
return sessionCipher.closeOpenSessionForDevice();
})
);
});
},
archiveAllSessions(number) {
return this.getDeviceIds(number).then(deviceIds =>
Promise.all(
deviceIds.map(deviceId => {
const address = new libsignal.SignalProtocolAddress(
number,
deviceId
);
window.log.info('closing session for', address.toString());
const sessionCipher = new libsignal.SessionCipher(
2018-04-27 21:25:04 +00:00
textsecure.storage.protocol,
address
);
return sessionCipher.closeOpenSessionForDevice();
})
)
);
2018-04-27 21:25:04 +00:00
},
clearSessionStore() {
return new Promise(resolve => {
const sessions = new SessionCollection();
2018-04-27 21:25:04 +00:00
sessions.sync('delete', sessions, {}).always(resolve);
});
},
isTrustedIdentity(identifier, publicKey, direction) {
2018-04-27 21:25:04 +00:00
if (identifier === null || identifier === undefined) {
throw new Error('Tried to get identity key for undefined/null key');
}
const number = textsecure.utils.unencodeNumber(identifier)[0];
const isOurNumber = number === textsecure.storage.user.getNumber();
const identityRecord = new IdentityRecord({ id: number });
return new Promise(resolve => {
2018-04-27 21:25:04 +00:00
identityRecord.fetch().always(resolve);
}).then(() => {
const existing = identityRecord.get('publicKey');
2018-04-27 21:25:04 +00:00
if (isOurNumber) {
return equalArrayBuffers(existing, publicKey);
}
switch (direction) {
case Direction.SENDING:
return this.isTrustedForSending(publicKey, identityRecord);
case Direction.RECEIVING:
return true;
default:
throw new Error(`Unknown direction: ${direction}`);
}
});
2018-04-27 21:25:04 +00:00
},
isTrustedForSending(publicKey, identityRecord) {
const existing = identityRecord.get('publicKey');
2018-04-27 21:25:04 +00:00
if (!existing) {
window.log.info('isTrustedForSending: Nothing here, returning true...');
2018-04-27 21:25:04 +00:00
return true;
}
if (!equalArrayBuffers(existing, publicKey)) {
window.log.info("isTrustedForSending: Identity keys don't match...");
2018-04-27 21:25:04 +00:00
return false;
}
if (identityRecord.get('verified') === VerifiedStatus.UNVERIFIED) {
window.log.error('Needs unverified approval!');
2018-04-27 21:25:04 +00:00
return false;
}
if (this.isNonBlockingApprovalRequired(identityRecord)) {
window.log.error('isTrustedForSending: Needs non-blocking approval!');
2018-04-27 21:25:04 +00:00
return false;
}
return true;
},
loadIdentityKey(identifier) {
2018-04-27 21:25:04 +00:00
if (identifier === null || identifier === undefined) {
throw new Error('Tried to get identity key for undefined/null key');
}
const number = textsecure.utils.unencodeNumber(identifier)[0];
return new Promise(resolve => {
const identityRecord = new IdentityRecord({ id: number });
identityRecord.fetch().always(() => {
2018-04-27 21:25:04 +00:00
resolve(identityRecord.get('publicKey'));
});
});
},
saveIdentity(identifier, publicKey, nonblockingApproval) {
2018-04-27 21:25:04 +00:00
if (identifier === null || identifier === undefined) {
throw new Error('Tried to put identity key for undefined/null key');
}
if (!(publicKey instanceof ArrayBuffer)) {
// eslint-disable-next-line no-param-reassign
2018-04-27 21:25:04 +00:00
publicKey = convertToArrayBuffer(publicKey);
}
if (typeof nonblockingApproval !== 'boolean') {
// eslint-disable-next-line no-param-reassign
2018-04-27 21:25:04 +00:00
nonblockingApproval = false;
}
const number = textsecure.utils.unencodeNumber(identifier)[0];
return new Promise((resolve, reject) => {
const identityRecord = new IdentityRecord({ id: number });
identityRecord.fetch().always(() => {
const oldpublicKey = identityRecord.get('publicKey');
if (!oldpublicKey) {
// Lookup failed, or the current key was removed, so save this one.
window.log.info('Saving new identity...');
identityRecord
.save({
publicKey,
firstUse: true,
timestamp: Date.now(),
verified: VerifiedStatus.DEFAULT,
nonblockingApproval,
})
.then(() => {
2018-04-27 21:25:04 +00:00
resolve(false);
}, reject);
} else if (!equalArrayBuffers(oldpublicKey, publicKey)) {
window.log.info('Replacing existing identity...');
const previousStatus = identityRecord.get('verified');
let verifiedStatus;
if (
previousStatus === VerifiedStatus.VERIFIED ||
previousStatus === VerifiedStatus.UNVERIFIED
) {
verifiedStatus = VerifiedStatus.UNVERIFIED;
} else {
verifiedStatus = VerifiedStatus.DEFAULT;
}
identityRecord
.save({
publicKey,
firstUse: false,
timestamp: Date.now(),
verified: verifiedStatus,
nonblockingApproval,
})
.then(() => {
this.trigger('keychange', number);
this.archiveSiblingSessions(identifier).then(() => {
resolve(true);
}, reject);
}, reject);
} else if (this.isNonBlockingApprovalRequired(identityRecord)) {
window.log.info('Setting approval status...');
identityRecord
.save({
nonblockingApproval,
})
.then(() => {
resolve(false);
}, reject);
} else {
resolve(false);
}
});
});
2018-04-27 21:25:04 +00:00
},
isNonBlockingApprovalRequired(identityRecord) {
2018-04-27 21:25:04 +00:00
return (
!identityRecord.get('firstUse') &&
Date.now() - identityRecord.get('timestamp') < TIMESTAMP_THRESHOLD &&
!identityRecord.get('nonblockingApproval')
);
},
saveIdentityWithAttributes(identifier, attributes) {
2018-04-27 21:25:04 +00:00
if (identifier === null || identifier === undefined) {
throw new Error('Tried to put identity key for undefined/null key');
}
const number = textsecure.utils.unencodeNumber(identifier)[0];
return new Promise((resolve, reject) => {
const identityRecord = new IdentityRecord({ id: number });
2018-04-27 21:25:04 +00:00
identityRecord.set(attributes);
if (identityRecord.isValid()) {
// false if invalid attributes
identityRecord.save().then(resolve);
} else {
reject(identityRecord.validationError);
}
});
},
setApproval(identifier, nonblockingApproval) {
2018-04-27 21:25:04 +00:00
if (identifier === null || identifier === undefined) {
throw new Error('Tried to set approval for undefined/null identifier');
}
if (typeof nonblockingApproval !== 'boolean') {
throw new Error('Invalid approval status');
}
const number = textsecure.utils.unencodeNumber(identifier)[0];
return new Promise((resolve, reject) => {
const identityRecord = new IdentityRecord({ id: number });
identityRecord.fetch().then(() => {
2018-04-27 21:25:04 +00:00
identityRecord
.save({
nonblockingApproval,
2018-04-27 21:25:04 +00:00
})
.then(
() => {
2018-04-27 21:25:04 +00:00
resolve();
},
() => {
2018-04-27 21:25:04 +00:00
// catch
reject(new Error(`No identity record for ${number}`));
2018-04-27 21:25:04 +00:00
}
);
});
});
},
setVerified(identifier, verifiedStatus, publicKey) {
2018-04-27 21:25:04 +00:00
if (identifier === null || identifier === undefined) {
throw new Error('Tried to set verified for undefined/null key');
}
if (!validateVerifiedStatus(verifiedStatus)) {
throw new Error('Invalid verified status');
}
if (arguments.length > 2 && !(publicKey instanceof ArrayBuffer)) {
throw new Error('Invalid public key');
}
return new Promise((resolve, reject) => {
const identityRecord = new IdentityRecord({ id: identifier });
2018-04-27 21:25:04 +00:00
identityRecord.fetch().then(
() => {
2018-04-27 21:25:04 +00:00
if (
!publicKey ||
equalArrayBuffers(identityRecord.get('publicKey'), publicKey)
) {
identityRecord.set({ verified: verifiedStatus });
2018-04-27 21:25:04 +00:00
if (identityRecord.isValid()) {
identityRecord.save({}).then(() => {
2018-04-27 21:25:04 +00:00
resolve();
}, reject);
} else {
reject(identityRecord.validationError);
}
} else {
window.log.info('No identity record for specified publicKey');
2018-04-27 21:25:04 +00:00
resolve();
}
2018-04-27 21:25:04 +00:00
},
() => {
2018-04-27 21:25:04 +00:00
// catch
reject(new Error(`No identity record for ${identifier}`));
2018-04-27 21:25:04 +00:00
}
);
});
},
getVerified(identifier) {
2018-04-27 21:25:04 +00:00
if (identifier === null || identifier === undefined) {
throw new Error('Tried to set verified for undefined/null key');
}
return new Promise((resolve, reject) => {
const identityRecord = new IdentityRecord({ id: identifier });
2018-04-27 21:25:04 +00:00
identityRecord.fetch().then(
() => {
const verifiedStatus = identityRecord.get('verified');
2018-04-27 21:25:04 +00:00
if (validateVerifiedStatus(verifiedStatus)) {
resolve(verifiedStatus);
} else {
resolve(VerifiedStatus.DEFAULT);
}
},
() => {
2018-04-27 21:25:04 +00:00
// catch
reject(new Error(`No identity record for ${identifier}`));
2018-04-27 21:25:04 +00:00
}
);
});
},
// Resolves to true if a new identity key was saved
processContactSyncVerificationState(identifier, verifiedStatus, publicKey) {
2018-04-27 21:25:04 +00:00
if (verifiedStatus === VerifiedStatus.UNVERIFIED) {
return this.processUnverifiedMessage(
identifier,
verifiedStatus,
publicKey
);
}
return this.processVerifiedMessage(identifier, verifiedStatus, publicKey);
2018-04-27 21:25:04 +00:00
},
// This function encapsulates the non-Java behavior, since the mobile apps don't
// currently receive contact syncs and therefore will see a verify sync with
// UNVERIFIED status
processUnverifiedMessage(identifier, verifiedStatus, publicKey) {
2018-04-27 21:25:04 +00:00
if (identifier === null || identifier === undefined) {
throw new Error('Tried to set verified for undefined/null key');
}
if (publicKey !== undefined && !(publicKey instanceof ArrayBuffer)) {
throw new Error('Invalid public key');
}
return new Promise((resolve, reject) => {
const identityRecord = new IdentityRecord({ id: identifier });
let isPresent = false;
let isEqual = false;
identityRecord
.fetch()
.then(() => {
isPresent = true;
if (publicKey) {
isEqual = equalArrayBuffers(
publicKey,
identityRecord.get('publicKey')
);
}
})
.always(() => {
if (
isPresent &&
isEqual &&
identityRecord.get('verified') !== VerifiedStatus.UNVERIFIED
) {
return textsecure.storage.protocol
.setVerified(identifier, verifiedStatus, publicKey)
.then(resolve, reject);
}
if (!isPresent || !isEqual) {
return textsecure.storage.protocol
.saveIdentityWithAttributes(identifier, {
publicKey,
verified: verifiedStatus,
firstUse: false,
timestamp: Date.now(),
nonblockingApproval: true,
})
.then(() => {
if (isPresent && !isEqual) {
this.trigger('keychange', identifier);
return this.archiveAllSessions(identifier).then(
() =>
// true signifies that we overwrote a previous key with a new one
resolve(true),
2018-04-27 21:25:04 +00:00
reject
);
}
2015-04-21 20:30:22 +00:00
return resolve();
}, reject);
}
// The situation which could get us here is:
// 1. had a previous key
// 2. new key is the same
// 3. desired new status is same as what we had before
return resolve();
});
});
2018-04-27 21:25:04 +00:00
},
// This matches the Java method as of
// https://github.com/signalapp/Signal-Android/blob/d0bb68e1378f689e4d10ac6a46014164992ca4e4/src/org/thoughtcrime/securesms/util/IdentityUtil.java#L188
processVerifiedMessage(identifier, verifiedStatus, publicKey) {
2018-04-27 21:25:04 +00:00
if (identifier === null || identifier === undefined) {
throw new Error('Tried to set verified for undefined/null key');
}
if (!validateVerifiedStatus(verifiedStatus)) {
throw new Error('Invalid verified status');
}
if (publicKey !== undefined && !(publicKey instanceof ArrayBuffer)) {
throw new Error('Invalid public key');
}
return new Promise((resolve, reject) => {
const identityRecord = new IdentityRecord({ id: identifier });
let isPresent = false;
let isEqual = false;
identityRecord
.fetch()
.then(() => {
isPresent = true;
if (publicKey) {
isEqual = equalArrayBuffers(
publicKey,
identityRecord.get('publicKey')
);
}
})
.always(() => {
if (!isPresent && verifiedStatus === VerifiedStatus.DEFAULT) {
window.log.info('No existing record for default status');
return resolve();
}
if (
isPresent &&
isEqual &&
identityRecord.get('verified') !== VerifiedStatus.DEFAULT &&
verifiedStatus === VerifiedStatus.DEFAULT
) {
return textsecure.storage.protocol
.setVerified(identifier, verifiedStatus, publicKey)
.then(resolve, reject);
}
2018-04-27 21:25:04 +00:00
if (
verifiedStatus === VerifiedStatus.VERIFIED &&
(!isPresent ||
(isPresent && !isEqual) ||
(isPresent &&
identityRecord.get('verified') !== VerifiedStatus.VERIFIED))
) {
return textsecure.storage.protocol
.saveIdentityWithAttributes(identifier, {
publicKey,
verified: verifiedStatus,
firstUse: false,
timestamp: Date.now(),
nonblockingApproval: true,
})
.then(() => {
if (isPresent && !isEqual) {
this.trigger('keychange', identifier);
return this.archiveAllSessions(identifier).then(
() =>
// true signifies that we overwrote a previous key with a new one
resolve(true),
2018-04-27 21:25:04 +00:00
reject
);
}
2018-04-27 21:25:04 +00:00
return resolve();
}, reject);
}
// We get here if we got a new key and the status is DEFAULT. If the
// message is out of date, we don't want to lose whatever more-secure
// state we had before.
return resolve();
});
});
2018-04-27 21:25:04 +00:00
},
isUntrusted(identifier) {
2018-04-27 21:25:04 +00:00
if (identifier === null || identifier === undefined) {
throw new Error('Tried to set verified for undefined/null key');
}
return new Promise((resolve, reject) => {
const identityRecord = new IdentityRecord({ id: identifier });
2018-04-27 21:25:04 +00:00
identityRecord.fetch().then(
() => {
2018-04-27 21:25:04 +00:00
if (
Date.now() - identityRecord.get('timestamp') <
TIMESTAMP_THRESHOLD &&
!identityRecord.get('nonblockingApproval') &&
!identityRecord.get('firstUse')
) {
resolve(true);
} else {
2018-04-27 21:25:04 +00:00
resolve(false);
}
2018-04-27 21:25:04 +00:00
},
() => {
2018-04-27 21:25:04 +00:00
// catch
reject(new Error(`No identity record for ${identifier}`));
2018-04-27 21:25:04 +00:00
}
);
});
},
async removeIdentityKey(number) {
const identityRecord = new IdentityRecord({ id: number });
try {
await wrapDeferred(identityRecord.fetch());
await wrapDeferred(identityRecord.destroy());
return textsecure.storage.protocol.removeAllSessions(number);
} catch (error) {
throw new Error('Tried to remove identity for unknown number');
}
2018-04-27 21:25:04 +00:00
},
2018-04-27 21:25:04 +00:00
// Groups
getGroup(groupId) {
2018-04-27 21:25:04 +00:00
if (groupId === null || groupId === undefined) {
throw new Error('Tried to get group for undefined/null id');
}
return new Promise(resolve => {
const group = new Group({ id: groupId });
group.fetch().always(() => {
2018-04-27 21:25:04 +00:00
resolve(group.get('data'));
});
});
},
putGroup(groupId, group) {
2018-04-27 21:25:04 +00:00
if (groupId === null || groupId === undefined) {
throw new Error('Tried to put group key for undefined/null id');
}
if (group === null || group === undefined) {
throw new Error('Tried to put undefined/null group object');
}
const newGroup = new Group({ id: groupId, data: group });
return new Promise(resolve => {
newGroup.save().always(resolve);
2018-04-27 21:25:04 +00:00
});
},
removeGroup(groupId) {
2018-04-27 21:25:04 +00:00
if (groupId === null || groupId === undefined) {
throw new Error('Tried to remove group key for undefined/null id');
}
return new Promise(resolve => {
const group = new Group({ id: groupId });
2018-04-27 21:25:04 +00:00
group.destroy().always(resolve);
});
},
// Not yet processed messages - for resiliency
getAllUnprocessed() {
let collection;
return new Promise((resolve, reject) => {
2018-04-27 21:25:04 +00:00
collection = new UnprocessedCollection();
return collection.fetch().then(resolve, reject);
}).then(() =>
2018-04-27 21:25:04 +00:00
// Return a plain array of plain objects
collection.map(model => model.attributes)
);
2018-04-27 21:25:04 +00:00
},
addUnprocessed(data) {
return new Promise((resolve, reject) => {
const unprocessed = new Unprocessed(data);
2018-04-27 21:25:04 +00:00
return unprocessed.save().then(resolve, reject);
});
},
updateUnprocessed(id, updates) {
return new Promise((resolve, reject) => {
const unprocessed = new Unprocessed({
id,
});
return unprocessed
.fetch()
.then(() => unprocessed.save(updates).then(resolve, reject), reject);
});
2018-04-27 21:25:04 +00:00
},
removeUnprocessed(id) {
return new Promise((resolve, reject) => {
const unprocessed = new Unprocessed({
id,
});
return unprocessed.destroy().then(resolve, reject);
});
2018-04-27 21:25:04 +00:00
},
removeAllData() {
2018-04-27 21:25:04 +00:00
// First the in-memory caches:
window.storage.reset(); // items store
ConversationController.reset(); // conversations store
// Then, the entire database:
return Whisper.Database.clear();
},
removeAllConfiguration() {
2018-04-27 21:25:04 +00:00
// First the in-memory cache for the items store:
window.storage.reset();
// Then anything in the database that isn't a message/conversation/group:
return Whisper.Database.clearStores([
'items',
'identityKeys',
'sessions',
'signedPreKeys',
'preKeys',
'unprocessed',
]);
},
};
_.extend(SignalProtocolStore.prototype, Backbone.Events);
2018-04-27 21:25:04 +00:00
window.SignalProtocolStore = SignalProtocolStore;
window.SignalProtocolStore.prototype.Direction = Direction;
window.SignalProtocolStore.prototype.VerifiedStatus = VerifiedStatus;
})();