signal-desktop/libtextsecure/ProvisioningCipher.js

/* global libsignal, textsecure */

/* eslint-disable more/no-then */

// eslint-disable-next-line func-names
(function() {
  function ProvisioningCipher() {}

  ProvisioningCipher.prototype = {
    decrypt(provisionEnvelope) {
      const masterEphemeral = provisionEnvelope.publicKey.toArrayBuffer();
      const message = provisionEnvelope.body.toArrayBuffer();
      if (new Uint8Array(message)[0] !== 1) {
        throw new Error('Bad version number on ProvisioningMessage');
      }

      const iv = message.slice(1, 16 + 1);
      const mac = message.slice(message.byteLength - 32, message.byteLength);
      const ivAndCiphertext = message.slice(0, message.byteLength - 32);
      const ciphertext = message.slice(16 + 1, message.byteLength - 32);

      return libsignal.Curve.async
        .calculateAgreement(masterEphemeral, this.keyPair.privKey)
        .then(ecRes =>
          libsignal.HKDF.deriveSecrets(
            ecRes,
            new ArrayBuffer(32),
            'TextSecure Provisioning Message'
          )
        )
        .then(keys =>
          libsignal.crypto
            .verifyMAC(ivAndCiphertext, keys[1], mac, 32)
            .then(() => libsignal.crypto.decrypt(keys[0], ciphertext, iv))
        )
        .then(plaintext => {
          const provisionMessage = textsecure.protobuf.ProvisionMessage.decode(
            plaintext
          );
          const privKey = provisionMessage.identityKeyPrivate.toArrayBuffer();

          return libsignal.Curve.async.createKeyPair(privKey).then(keyPair => {
            const ret = {
              identityKeyPair: keyPair,
              number: provisionMessage.number,
              provisioningCode: provisionMessage.provisioningCode,
              userAgent: provisionMessage.userAgent,
              readReceipts: provisionMessage.readReceipts,
            };
            if (provisionMessage.profileKey) {
              ret.profileKey = provisionMessage.profileKey.toArrayBuffer();
            }
            return ret;
          });
        });
    },
    getPublicKey() {
      return Promise.resolve()
        .then(() => {
          if (!this.keyPair) {
            return libsignal.Curve.async.generateKeyPair().then(keyPair => {
              this.keyPair = keyPair;
            });
          }

          return null;
        })
        .then(() => this.keyPair.pubKey);
    },
  };

  libsignal.ProvisioningCipher = function ProvisioningCipherWrapper() {
    const cipher = new ProvisioningCipher();

    this.decrypt = cipher.decrypt.bind(cipher);
    this.getPublicKey = cipher.getPublicKey.bind(cipher);
  };
})();
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`/* global libsignal, textsecure */`

			`/* eslint-disable more/no-then */`
Update libsignal-protocol v0.9.0 * Exposes crypto APIs. * Move worker methods to libsigna.worker. * Move ProvisioningCipher to libtextsecure. 2016-05-02 05:31:44 +00:00
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`// eslint-disable-next-line func-names`
			`(function() {`
Now we've got everything prettified! 2018-05-02 16:51:22 +00:00			`function ProvisioningCipher() {}`
Update libsignal-protocol v0.9.0 * Exposes crypto APIs. * Move worker methods to libsigna.worker. * Move ProvisioningCipher to libtextsecure. 2016-05-02 05:31:44 +00:00
Now we've got everything prettified! 2018-05-02 16:51:22 +00:00			`ProvisioningCipher.prototype = {`
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`decrypt(provisionEnvelope) {`
			`const masterEphemeral = provisionEnvelope.publicKey.toArrayBuffer();`
			`const message = provisionEnvelope.body.toArrayBuffer();`
			`if (new Uint8Array(message)[0] !== 1) {`
Now we've got everything prettified! 2018-05-02 16:51:22 +00:00			`throw new Error('Bad version number on ProvisioningMessage');`
			`}`
Update libsignal-protocol v0.9.0 * Exposes crypto APIs. * Move worker methods to libsigna.worker. * Move ProvisioningCipher to libtextsecure. 2016-05-02 05:31:44 +00:00
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`const iv = message.slice(1, 16 + 1);`
			`const mac = message.slice(message.byteLength - 32, message.byteLength);`
			`const ivAndCiphertext = message.slice(0, message.byteLength - 32);`
			`const ciphertext = message.slice(16 + 1, message.byteLength - 32);`
Update libsignal-protocol v0.9.0 * Exposes crypto APIs. * Move worker methods to libsigna.worker. * Move ProvisioningCipher to libtextsecure. 2016-05-02 05:31:44 +00:00
Now we've got everything prettified! 2018-05-02 16:51:22 +00:00			`return libsignal.Curve.async`
			`.calculateAgreement(masterEphemeral, this.keyPair.privKey)`
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`.then(ecRes =>`
			`libsignal.HKDF.deriveSecrets(`
Now we've got everything prettified! 2018-05-02 16:51:22 +00:00			`ecRes,`
			`new ArrayBuffer(32),`
			`'TextSecure Provisioning Message'`
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`)`
			`)`
			`.then(keys =>`
			`libsignal.crypto`
Now we've got everything prettified! 2018-05-02 16:51:22 +00:00			`.verifyMAC(ivAndCiphertext, keys[1], mac, 32)`
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`.then(() => libsignal.crypto.decrypt(keys[0], ciphertext, iv))`
			`)`
			`.then(plaintext => {`
			`const provisionMessage = textsecure.protobuf.ProvisionMessage.decode(`
Now we've got everything prettified! 2018-05-02 16:51:22 +00:00			`plaintext`
			`);`
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`const privKey = provisionMessage.identityKeyPrivate.toArrayBuffer();`
Update libsignal-protocol v0.9.0 * Exposes crypto APIs. * Move worker methods to libsigna.worker. * Move ProvisioningCipher to libtextsecure. 2016-05-02 05:31:44 +00:00
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`return libsignal.Curve.async.createKeyPair(privKey).then(keyPair => {`
			`const ret = {`
			`identityKeyPair: keyPair,`
			`number: provisionMessage.number,`
			`provisioningCode: provisionMessage.provisioningCode,`
			`userAgent: provisionMessage.userAgent,`
			`readReceipts: provisionMessage.readReceipts,`
			`};`
			`if (provisionMessage.profileKey) {`
			`ret.profileKey = provisionMessage.profileKey.toArrayBuffer();`
			`}`
			`return ret;`
			`});`
Update libsignal-protocol v0.9.0 * Exposes crypto APIs. * Move worker methods to libsigna.worker. * Move ProvisioningCipher to libtextsecure. 2016-05-02 05:31:44 +00:00			`});`
			`},`
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`getPublicKey() {`
Now we've got everything prettified! 2018-05-02 16:51:22 +00:00			`return Promise.resolve()`
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`.then(() => {`
			`if (!this.keyPair) {`
			`return libsignal.Curve.async.generateKeyPair().then(keyPair => {`
			`this.keyPair = keyPair;`
			`});`
			`}`

			`return null;`
			`})`
			`.then(() => this.keyPair.pubKey);`
Now we've got everything prettified! 2018-05-02 16:51:22 +00:00			`},`
			`};`
Update libsignal-protocol v0.9.0 * Exposes crypto APIs. * Move worker methods to libsigna.worker. * Move ProvisioningCipher to libtextsecure. 2016-05-02 05:31:44 +00:00
Eslintify all of libtextsecure 2018-07-21 21:51:20 +00:00			`libsignal.ProvisioningCipher = function ProvisioningCipherWrapper() {`
			`const cipher = new ProvisioningCipher();`
Update libsignal-protocol v0.9.0 * Exposes crypto APIs. * Move worker methods to libsigna.worker. * Move ProvisioningCipher to libtextsecure. 2016-05-02 05:31:44 +00:00
Now we've got everything prettified! 2018-05-02 16:51:22 +00:00			`this.decrypt = cipher.decrypt.bind(cipher);`
Update libsignal-protocol v0.9.0 * Exposes crypto APIs. * Move worker methods to libsigna.worker. * Move ProvisioningCipher to libtextsecure. 2016-05-02 05:31:44 +00:00			`this.getPublicKey = cipher.getPublicKey.bind(cipher);`
Now we've got everything prettified! 2018-05-02 16:51:22 +00:00			`};`
Update libsignal-protocol v0.9.0 * Exposes crypto APIs. * Move worker methods to libsigna.worker. * Move ProvisioningCipher to libtextsecure. 2016-05-02 05:31:44 +00:00			`})();`