signal-desktop/ts/util/safetyNumber.ts

// Copyright 2020 Signal Messenger, LLC
// SPDX-License-Identifier: AGPL-3.0-only

import { PublicKey, Fingerprint } from '@signalapp/libsignal-client';
import type { ConversationType } from '../state/ducks/conversations';
import { UUID } from '../types/UUID';

import { assertDev } from './assert';
import { missingCaseError } from './missingCaseError';
import * as log from '../logging/log';

function generateSecurityNumber(
  ourId: string,
  ourKey: Uint8Array,
  theirId: string,
  theirKey: Uint8Array
): string {
  const ourNumberBuf = Buffer.from(ourId);
  const ourKeyObj = PublicKey.deserialize(Buffer.from(ourKey));
  const theirNumberBuf = Buffer.from(theirId);
  const theirKeyObj = PublicKey.deserialize(Buffer.from(theirKey));

  const fingerprint = Fingerprint.new(
    5200,
    2,
    ourNumberBuf,
    ourKeyObj,
    theirNumberBuf,
    theirKeyObj
  );

  return fingerprint.displayableFingerprint().toString();
}

export enum SecurityNumberIdentifierType {
  UUIDIdentifier = 'UUIDIdentifier',
  E164Identifier = 'E164Identifier',
}

export async function generateSecurityNumberBlock(
  contact: ConversationType,
  identifierType: SecurityNumberIdentifierType
): Promise<Array<string>> {
  const logId = `generateSecurityNumberBlock(${contact.id}, ${identifierType})`;
  log.info(`${logId}: starting`);

  const { storage } = window.textsecure;
  const ourNumber = storage.user.getNumber();
  const ourUuid = storage.user.getCheckedUuid();

  const us = storage.protocol.getIdentityRecord(ourUuid);
  const ourKey = us ? us.publicKey : null;

  const theirUuid = UUID.lookup(contact.id);
  const them = theirUuid
    ? await storage.protocol.getOrMigrateIdentityRecord(theirUuid)
    : undefined;
  const theirKey = them?.publicKey;

  if (!ourKey) {
    throw new Error('Could not load our key');
  }

  if (!theirKey) {
    throw new Error('Could not load their key');
  }

  let securityNumber: string;
  if (identifierType === SecurityNumberIdentifierType.E164Identifier) {
    if (!contact.e164) {
      log.error(
        `${logId}: Attempted to generate security number for contact with no e164`
      );
      return [];
    }

    assertDev(ourNumber, 'Should have our number');
    securityNumber = generateSecurityNumber(
      ourNumber,
      ourKey,
      contact.e164,
      theirKey
    );
  } else if (identifierType === SecurityNumberIdentifierType.UUIDIdentifier) {
    assertDev(theirUuid, 'Should have their uuid');
    securityNumber = generateSecurityNumber(
      ourUuid.toString(),
      ourKey,
      theirUuid.toString(),
      theirKey
    );
  } else {
    throw missingCaseError(identifierType);
  }

  const chunks = [];
  for (let i = 0; i < securityNumber.length; i += 5) {
    chunks.push(securityNumber.substring(i, i + 5));
  }

  return chunks;
}
Add license headers across the project 2020-10-30 20:34:04 +00:00			`// Copyright 2020 Signal Messenger, LLC`
			`// SPDX-License-Identifier: AGPL-3.0-only`

Update for @signalapp/libsignal-client rename 2022-03-24 21:47:21 +00:00			`import { PublicKey, Fingerprint } from '@signalapp/libsignal-client';`
Prefer `import type` when importing types 2021-10-26 19:15:33 +00:00			`import type { ConversationType } from '../state/ducks/conversations';`
UUID-keyed lookups in SignalProtocolStore 2021-09-10 02:38:11 +00:00			`import { UUID } from '../types/UUID';`
Update safety number change warning dialog 2020-06-26 00:08:58 +00:00
tsc:allowUnreachableCode, eslint:no-unreachable, assert->assertDev 2022-09-15 19:17:15 +00:00			`import { assertDev } from './assert';`
Simplify redux ducks and avoid reexport 2023-04-07 17:46:00 +00:00			`import { missingCaseError } from './missingCaseError';`
Import log instead of using it off of window 2021-09-17 18:27:53 +00:00			`import * as log from '../logging/log';`
Enforce stronger types for ArrayBuffers and storage 2021-06-15 00:09:37 +00:00
Simplify redux ducks and avoid reexport 2023-04-07 17:46:00 +00:00			`function generateSecurityNumber(`
			`ourId: string,`
Uint8Array migration 2021-09-24 00:49:05 +00:00			`ourKey: Uint8Array,`
Simplify redux ducks and avoid reexport 2023-04-07 17:46:00 +00:00			`theirId: string,`
Uint8Array migration 2021-09-24 00:49:05 +00:00			`theirKey: Uint8Array`
Simplify redux ducks and avoid reexport 2023-04-07 17:46:00 +00:00			`): string {`
			`const ourNumberBuf = Buffer.from(ourId);`
Fingerprint using SignalClient library 2021-02-23 23:34:23 +00:00			`const ourKeyObj = PublicKey.deserialize(Buffer.from(ourKey));`
Simplify redux ducks and avoid reexport 2023-04-07 17:46:00 +00:00			`const theirNumberBuf = Buffer.from(theirId);`
Fingerprint using SignalClient library 2021-02-23 23:34:23 +00:00			`const theirKeyObj = PublicKey.deserialize(Buffer.from(theirKey));`

			`const fingerprint = Fingerprint.new(`
			`5200,`
			`2,`
			`ourNumberBuf,`
			`ourKeyObj,`
			`theirNumberBuf,`
			`theirKeyObj`
Update safety number change warning dialog 2020-06-26 00:08:58 +00:00			`);`
Fingerprint using SignalClient library 2021-02-23 23:34:23 +00:00
Simplify redux ducks and avoid reexport 2023-04-07 17:46:00 +00:00			`return fingerprint.displayableFingerprint().toString();`
			`}`

			`export enum SecurityNumberIdentifierType {`
			`UUIDIdentifier = 'UUIDIdentifier',`
			`E164Identifier = 'E164Identifier',`
Update safety number change warning dialog 2020-06-26 00:08:58 +00:00			`}`

			`export async function generateSecurityNumberBlock(`
Simplify redux ducks and avoid reexport 2023-04-07 17:46:00 +00:00			`contact: ConversationType,`
			`identifierType: SecurityNumberIdentifierType`
Update safety number change warning dialog 2020-06-26 00:08:58 +00:00			`): Promise<Array<string>> {`
Simplify redux ducks and avoid reexport 2023-04-07 17:46:00 +00:00			const logId = `generateSecurityNumberBlock(${contact.id}, ${identifierType})`;
			log.info(`${logId}: starting`);

UUID-keyed lookups in SignalProtocolStore 2021-09-10 02:38:11 +00:00			`const { storage } = window.textsecure;`
			`const ourNumber = storage.user.getNumber();`
			`const ourUuid = storage.user.getCheckedUuid();`
Update safety number change warning dialog 2020-06-26 00:08:58 +00:00
UUID-keyed lookups in SignalProtocolStore 2021-09-10 02:38:11 +00:00			`const us = storage.protocol.getIdentityRecord(ourUuid);`
Update safety number change warning dialog 2020-06-26 00:08:58 +00:00			`const ourKey = us ? us.publicKey : null;`

UUID-keyed lookups in SignalProtocolStore 2021-09-10 02:38:11 +00:00			`const theirUuid = UUID.lookup(contact.id);`
			`const them = theirUuid`
			`? await storage.protocol.getOrMigrateIdentityRecord(theirUuid)`
			`: undefined;`
			`const theirKey = them?.publicKey;`
Update safety number change warning dialog 2020-06-26 00:08:58 +00:00
			`if (!ourKey) {`
			`throw new Error('Could not load our key');`
			`}`

			`if (!theirKey) {`
			`throw new Error('Could not load their key');`
			`}`

Simplify redux ducks and avoid reexport 2023-04-07 17:46:00 +00:00			`let securityNumber: string;`
			`if (identifierType === SecurityNumberIdentifierType.E164Identifier) {`
			`if (!contact.e164) {`
			`log.error(`
			`${logId}: Attempted to generate security number for contact with no e164`
			`);`
			`return [];`
			`}`

			`assertDev(ourNumber, 'Should have our number');`
			`securityNumber = generateSecurityNumber(`
			`ourNumber,`
			`ourKey,`
			`contact.e164,`
			`theirKey`
First-class profile name rendering 2020-07-24 01:35:32 +00:00			`);`
Simplify redux ducks and avoid reexport 2023-04-07 17:46:00 +00:00			`} else if (identifierType === SecurityNumberIdentifierType.UUIDIdentifier) {`
			`assertDev(theirUuid, 'Should have their uuid');`
			`securityNumber = generateSecurityNumber(`
			`ourUuid.toString(),`
			`ourKey,`
			`theirUuid.toString(),`
			`theirKey`
			`);`
			`} else {`
			`throw missingCaseError(identifierType);`
First-class profile name rendering 2020-07-24 01:35:32 +00:00			`}`

Update safety number change warning dialog 2020-06-26 00:08:58 +00:00			`const chunks = [];`
			`for (let i = 0; i < securityNumber.length; i += 5) {`
			`chunks.push(securityNumber.substring(i, i + 5));`
			`}`

			`return chunks;`
			`}`