signal-desktop/js/signal_protocol_store.js

1001 lines
30 KiB
JavaScript
Raw Normal View History

2018-10-18 01:01:21 +00:00
/* global
dcodeIO, Backbone, _, libsignal, textsecure, ConversationController, stringObject */
/* eslint-disable no-proto */
// eslint-disable-next-line func-names
2018-04-27 21:25:04 +00:00
(function() {
'use strict';
const TIMESTAMP_THRESHOLD = 5 * 1000; // 5 seconds
const Direction = {
2018-04-27 21:25:04 +00:00
SENDING: 1,
RECEIVING: 2,
};
const VerifiedStatus = {
2018-04-27 21:25:04 +00:00
DEFAULT: 0,
VERIFIED: 1,
UNVERIFIED: 2,
};
function validateVerifiedStatus(status) {
if (
status === VerifiedStatus.DEFAULT ||
status === VerifiedStatus.VERIFIED ||
status === VerifiedStatus.UNVERIFIED
) {
return true;
}
2018-04-27 21:25:04 +00:00
return false;
}
const StaticByteBufferProto = new dcodeIO.ByteBuffer().__proto__;
const StaticArrayBufferProto = new ArrayBuffer().__proto__;
const StaticUint8ArrayProto = new Uint8Array().__proto__;
2018-04-27 21:25:04 +00:00
function isStringable(thing) {
return (
thing === Object(thing) &&
(thing.__proto__ === StaticArrayBufferProto ||
thing.__proto__ === StaticUint8ArrayProto ||
thing.__proto__ === StaticByteBufferProto)
2018-04-27 21:25:04 +00:00
);
}
function convertToArrayBuffer(thing) {
if (thing === undefined) {
return undefined;
}
if (thing === Object(thing)) {
if (thing.__proto__ === StaticArrayBufferProto) {
2018-04-27 21:25:04 +00:00
return thing;
}
// TODO: Several more cases here...
}
2018-04-27 21:25:04 +00:00
if (thing instanceof Array) {
// Assuming Uint16Array from curve25519
const res = new ArrayBuffer(thing.length * 2);
const uint = new Uint16Array(res);
for (let i = 0; i < thing.length; i += 1) {
2018-04-27 21:25:04 +00:00
uint[i] = thing[i];
}
return res;
}
let str;
2018-04-27 21:25:04 +00:00
if (isStringable(thing)) {
str = stringObject(thing);
} else if (typeof thing === 'string') {
2018-04-27 21:25:04 +00:00
str = thing;
} else {
throw new Error(
`Tried to convert a non-stringable thing of type ${typeof thing} to an array buffer`
2018-04-27 21:25:04 +00:00
);
}
const res = new ArrayBuffer(str.length);
const uint = new Uint8Array(res);
for (let i = 0; i < str.length; i += 1) {
2018-04-27 21:25:04 +00:00
uint[i] = str.charCodeAt(i);
}
2018-04-27 21:25:04 +00:00
return res;
}
2018-04-27 21:25:04 +00:00
function equalArrayBuffers(ab1, ab2) {
if (!(ab1 instanceof ArrayBuffer && ab2 instanceof ArrayBuffer)) {
return false;
}
if (ab1.byteLength !== ab2.byteLength) {
return false;
}
let result = 0;
const ta1 = new Uint8Array(ab1);
const ta2 = new Uint8Array(ab2);
for (let i = 0; i < ab1.byteLength; i += 1) {
// eslint-disable-next-line no-bitwise
result |= ta1[i] ^ ta2[i];
2018-04-27 21:25:04 +00:00
}
return result === 0;
}
2018-10-18 01:01:21 +00:00
const IdentityRecord = Backbone.Model.extend({
2018-04-27 21:25:04 +00:00
storeName: 'identityKeys',
validAttributes: [
'id',
'publicKey',
'firstUse',
'timestamp',
'verified',
'nonblockingApproval',
],
validate(attrs) {
const attributeNames = _.keys(attrs);
const { validAttributes } = this;
const allValid = _.all(attributeNames, attributeName =>
_.contains(validAttributes, attributeName)
);
2018-04-27 21:25:04 +00:00
if (!allValid) {
return new Error('Invalid identity key attribute names');
}
const allPresent = _.all(validAttributes, attributeName =>
_.contains(attributeNames, attributeName)
);
2018-04-27 21:25:04 +00:00
if (!allPresent) {
return new Error('Missing identity key attributes');
}
2018-04-27 21:25:04 +00:00
if (typeof attrs.id !== 'string') {
return new Error('Invalid identity key id');
}
if (!(attrs.publicKey instanceof ArrayBuffer)) {
return new Error('Invalid identity key publicKey');
}
if (typeof attrs.firstUse !== 'boolean') {
return new Error('Invalid identity key firstUse');
}
if (typeof attrs.timestamp !== 'number' || !(attrs.timestamp >= 0)) {
return new Error('Invalid identity key timestamp');
}
if (!validateVerifiedStatus(attrs.verified)) {
return new Error('Invalid identity key verified');
}
2018-04-27 21:25:04 +00:00
if (typeof attrs.nonblockingApproval !== 'boolean') {
return new Error('Invalid identity key nonblockingApproval');
}
return null;
2018-04-27 21:25:04 +00:00
},
});
async function normalizeEncodedAddress(encodedAddress) {
const [identifier, deviceId] = textsecure.utils.unencodeNumber(
encodedAddress
);
try {
const conv = await ConversationController.getOrCreateAndWait(
identifier,
'private'
);
return `${conv.get('id')}.${deviceId}`;
} catch (e) {
window.log.error(
`could not get conversation for identifier ${identifier}`
);
throw e;
}
}
2019-09-26 19:56:31 +00:00
function SignalProtocolStore() {
this.sessionUpdateBatcher = window.Signal.Util.createBatcher({
wait: 500,
maxSize: 20,
processBatch: async items => {
// We only care about the most recent update for each session
const byId = _.groupBy(items, item => item.id);
const ids = Object.keys(byId);
const mostRecent = ids.map(id => _.last(byId[id]));
2019-09-26 19:56:31 +00:00
await window.Signal.Data.createOrUpdateSessions(mostRecent);
},
});
}
async function _hydrateCache(object, field, itemsPromise, idField) {
const items = await itemsPromise;
const cache = Object.create(null);
for (let i = 0, max = items.length; i < max; i += 1) {
const item = items[i];
const id = item[idField];
cache[id] = item;
}
window.log.info(`SignalProtocolStore: Finished caching ${field} data`);
// eslint-disable-next-line no-param-reassign
object[field] = cache;
}
2018-04-27 21:25:04 +00:00
SignalProtocolStore.prototype = {
constructor: SignalProtocolStore,
async hydrateCaches() {
await Promise.all([
2019-09-26 19:56:31 +00:00
(async () => {
const item = await window.Signal.Data.getItemById('identityKey');
this.ourIdentityKey = item ? item.value : undefined;
})(),
(async () => {
const item = await window.Signal.Data.getItemById('registrationId');
this.ourRegistrationId = item ? item.value : undefined;
})(),
_hydrateCache(
this,
'identityKeys',
2019-09-26 19:56:31 +00:00
window.Signal.Data.getAllIdentityKeys(),
'id'
),
_hydrateCache(
this,
'sessions',
await window.Signal.Data.getAllSessions(),
'id'
),
_hydrateCache(
this,
'preKeys',
2019-09-26 19:56:31 +00:00
window.Signal.Data.getAllPreKeys(),
'id'
),
_hydrateCache(
this,
'signedPreKeys',
2019-09-26 19:56:31 +00:00
window.Signal.Data.getAllSignedPreKeys(),
'id'
),
]);
},
2018-10-18 01:01:21 +00:00
async getIdentityKeyPair() {
2019-09-26 19:56:31 +00:00
return this.ourIdentityKey;
2018-04-27 21:25:04 +00:00
},
2018-10-18 01:01:21 +00:00
async getLocalRegistrationId() {
2019-09-26 19:56:31 +00:00
return this.ourRegistrationId;
2018-04-27 21:25:04 +00:00
},
// PreKeys
2018-10-18 01:01:21 +00:00
async loadPreKey(keyId) {
const key = this.preKeys[keyId];
2018-10-18 01:01:21 +00:00
if (key) {
window.log.info('Successfully fetched prekey:', keyId);
return {
pubKey: key.publicKey,
privKey: key.privateKey,
};
}
window.log.error('Failed to fetch prekey:', keyId);
return undefined;
2018-04-27 21:25:04 +00:00
},
2018-10-18 01:01:21 +00:00
async storePreKey(keyId, keyPair) {
const data = {
2018-04-27 21:25:04 +00:00
id: keyId,
publicKey: keyPair.pubKey,
privateKey: keyPair.privKey,
2018-10-18 01:01:21 +00:00
};
2018-04-27 21:25:04 +00:00
this.preKeys[keyId] = data;
2018-10-18 01:01:21 +00:00
await window.Signal.Data.createOrUpdatePreKey(data);
},
async removePreKey(keyId) {
try {
this.trigger('removePreKey');
} catch (error) {
window.log.error(
'removePreKey error triggering removePreKey:',
error && error.stack ? error.stack : error
);
}
2018-04-27 21:25:04 +00:00
delete this.preKeys[keyId];
2018-10-18 01:01:21 +00:00
await window.Signal.Data.removePreKeyById(keyId);
2018-04-27 21:25:04 +00:00
},
2018-10-18 01:01:21 +00:00
async clearPreKeyStore() {
this.preKeys = Object.create(null);
2018-10-18 01:01:21 +00:00
await window.Signal.Data.removeAllPreKeys();
2018-04-27 21:25:04 +00:00
},
// Signed PreKeys
2018-10-18 01:01:21 +00:00
async loadSignedPreKey(keyId) {
const key = this.signedPreKeys[keyId];
2018-10-18 01:01:21 +00:00
if (key) {
window.log.info('Successfully fetched signed prekey:', key.id);
return {
pubKey: key.publicKey,
privKey: key.privateKey,
created_at: key.created_at,
keyId: key.id,
confirmed: key.confirmed,
};
}
window.log.error('Failed to fetch signed prekey:', keyId);
return undefined;
2018-04-27 21:25:04 +00:00
},
2018-10-18 01:01:21 +00:00
async loadSignedPreKeys() {
2018-04-27 21:25:04 +00:00
if (arguments.length > 0) {
2018-10-18 01:01:21 +00:00
throw new Error('loadSignedPreKeys takes no arguments');
2018-04-27 21:25:04 +00:00
}
2018-10-18 01:01:21 +00:00
const keys = Object.values(this.signedPreKeys);
2018-10-18 01:01:21 +00:00
return keys.map(prekey => ({
pubKey: prekey.publicKey,
privKey: prekey.privateKey,
created_at: prekey.created_at,
keyId: prekey.id,
confirmed: prekey.confirmed,
}));
2018-04-27 21:25:04 +00:00
},
2018-10-18 01:01:21 +00:00
async storeSignedPreKey(keyId, keyPair, confirmed) {
const data = {
2018-04-27 21:25:04 +00:00
id: keyId,
publicKey: keyPair.pubKey,
privateKey: keyPair.privKey,
created_at: Date.now(),
confirmed: Boolean(confirmed),
2018-10-18 01:01:21 +00:00
};
this.signedPreKeys[keyId] = data;
await window.Signal.Data.createOrUpdateSignedPreKey(data);
2018-04-27 21:25:04 +00:00
},
2018-10-18 01:01:21 +00:00
async removeSignedPreKey(keyId) {
delete this.signedPreKeys[keyId];
2018-10-18 01:01:21 +00:00
await window.Signal.Data.removeSignedPreKeyById(keyId);
2018-04-27 21:25:04 +00:00
},
2018-10-18 01:01:21 +00:00
async clearSignedPreKeysStore() {
this.signedPreKeys = Object.create(null);
2018-10-18 01:01:21 +00:00
await window.Signal.Data.removeAllSignedPreKeys();
2018-04-27 21:25:04 +00:00
},
// Sessions
async loadSession(encodedAddress) {
if (encodedAddress === null || encodedAddress === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to get session for undefined/null number');
}
2018-10-18 01:01:21 +00:00
try {
const id = await normalizeEncodedAddress(encodedAddress);
const session = this.sessions[id];
if (session) {
return session.record;
}
} catch (e) {
window.log.error(`could not load session ${encodedAddress}`);
2018-10-18 01:01:21 +00:00
}
return undefined;
2018-04-27 21:25:04 +00:00
},
async storeSession(encodedAddress, record) {
if (encodedAddress === null || encodedAddress === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to put session for undefined/null number');
}
const unencoded = textsecure.utils.unencodeNumber(encodedAddress);
2018-10-18 01:01:21 +00:00
const deviceId = parseInt(unencoded[1], 10);
2018-04-27 21:25:04 +00:00
try {
const id = await normalizeEncodedAddress(encodedAddress);
const data = {
id,
conversationId: textsecure.utils.unencodeNumber(id)[0],
deviceId,
record,
};
2018-10-18 01:01:21 +00:00
this.sessions[id] = data;
2019-09-26 19:56:31 +00:00
// Note: Because these are cached in memory, we batch and make these database
// updates out of band.
this.sessionUpdateBatcher.add(data);
} catch (e) {
window.log.error(`could not store session for ${encodedAddress}`);
}
2018-04-27 21:25:04 +00:00
},
async getDeviceIds(identifier) {
if (identifier === null || identifier === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to get device ids for undefined/null number');
}
2018-10-18 01:01:21 +00:00
try {
const id = ConversationController.getConversationId(identifier);
const allSessions = Object.values(this.sessions);
const sessions = allSessions.filter(
session => session.conversationId === id
);
return _.pluck(sessions, 'deviceId');
} catch (e) {
window.log.error(
`could not get device ids for identifier ${identifier}`
);
}
return [];
2018-04-27 21:25:04 +00:00
},
async removeSession(encodedAddress) {
window.log.info('deleting session for ', encodedAddress);
try {
const id = await normalizeEncodedAddress(encodedAddress);
delete this.sessions[id];
await window.Signal.Data.removeSessionById(id);
} catch (e) {
window.log.error(`could not delete session for ${encodedAddress}`);
}
2018-04-27 21:25:04 +00:00
},
async removeAllSessions(identifier) {
if (identifier === null || identifier === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to remove sessions for undefined/null number');
}
2018-10-18 01:01:21 +00:00
const id = ConversationController.getConversationId(identifier);
const allSessions = Object.values(this.sessions);
for (let i = 0, max = allSessions.length; i < max; i += 1) {
const session = allSessions[i];
if (session.conversationId === id) {
delete this.sessions[session.id];
}
}
await window.Signal.Data.removeSessionsByConversation(identifier);
2018-04-27 21:25:04 +00:00
},
2018-10-18 01:01:21 +00:00
async archiveSiblingSessions(identifier) {
const address = libsignal.SignalProtocolAddress.fromString(identifier);
2018-10-18 01:01:21 +00:00
const deviceIds = await this.getDeviceIds(address.getName());
const siblings = _.without(deviceIds, address.getDeviceId());
await Promise.all(
siblings.map(async deviceId => {
const sibling = new libsignal.SignalProtocolAddress(
address.getName(),
deviceId
);
window.log.info('closing session for', sibling.toString());
const sessionCipher = new libsignal.SessionCipher(
textsecure.storage.protocol,
sibling
);
await sessionCipher.closeOpenSessionForDevice();
})
);
2018-04-27 21:25:04 +00:00
},
async archiveAllSessions(identifier) {
const deviceIds = await this.getDeviceIds(identifier);
2018-10-18 01:01:21 +00:00
await Promise.all(
deviceIds.map(async deviceId => {
const address = new libsignal.SignalProtocolAddress(
identifier,
deviceId
);
2018-10-18 01:01:21 +00:00
window.log.info('closing session for', address.toString());
const sessionCipher = new libsignal.SessionCipher(
textsecure.storage.protocol,
address
);
await sessionCipher.closeOpenSessionForDevice();
})
);
2018-04-27 21:25:04 +00:00
},
2018-10-18 01:01:21 +00:00
async clearSessionStore() {
this.sessions = Object.create(null);
2018-10-18 01:01:21 +00:00
window.Signal.Data.removeAllSessions();
2018-04-27 21:25:04 +00:00
},
// Identity Keys
getIdentityRecord(identifier) {
try {
const id = ConversationController.getConversationId(identifier);
const record = this.identityKeys[id];
if (record) {
return record;
}
} catch (e) {
window.log.error(
`could not get identity record for identifier ${identifier}`
);
}
return undefined;
},
async isTrustedIdentity(encodedAddress, publicKey, direction) {
if (encodedAddress === null || encodedAddress === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to get identity key for undefined/null key');
}
const identifier = textsecure.utils.unencodeNumber(encodedAddress)[0];
const ourNumber = textsecure.storage.user.getNumber();
const ourUuid = textsecure.storage.user.getUuid();
const isOurIdentifier =
(ourNumber && identifier === ourNumber) ||
(ourUuid && identifier === ourUuid);
const identityRecord = this.getIdentityRecord(identifier);
2018-10-18 01:01:21 +00:00
if (isOurIdentifier) {
2018-10-18 01:01:21 +00:00
const existing = identityRecord ? identityRecord.publicKey : null;
return equalArrayBuffers(existing, publicKey);
}
switch (direction) {
case Direction.SENDING:
return this.isTrustedForSending(publicKey, identityRecord);
case Direction.RECEIVING:
return true;
default:
throw new Error(`Unknown direction: ${direction}`);
}
2018-04-27 21:25:04 +00:00
},
isTrustedForSending(publicKey, identityRecord) {
2018-10-18 01:01:21 +00:00
if (!identityRecord) {
window.log.info(
'isTrustedForSending: No previous record, returning true...'
);
return true;
}
const existing = identityRecord.publicKey;
2018-04-27 21:25:04 +00:00
if (!existing) {
window.log.info('isTrustedForSending: Nothing here, returning true...');
2018-04-27 21:25:04 +00:00
return true;
}
if (!equalArrayBuffers(existing, publicKey)) {
window.log.info("isTrustedForSending: Identity keys don't match...");
2018-04-27 21:25:04 +00:00
return false;
}
2018-10-18 01:01:21 +00:00
if (identityRecord.verified === VerifiedStatus.UNVERIFIED) {
window.log.error('Needs unverified approval!');
2018-04-27 21:25:04 +00:00
return false;
}
if (this.isNonBlockingApprovalRequired(identityRecord)) {
window.log.error('isTrustedForSending: Needs non-blocking approval!');
2018-04-27 21:25:04 +00:00
return false;
}
return true;
},
2018-10-18 01:01:21 +00:00
async loadIdentityKey(identifier) {
2018-04-27 21:25:04 +00:00
if (identifier === null || identifier === undefined) {
throw new Error('Tried to get identity key for undefined/null key');
}
const id = textsecure.utils.unencodeNumber(identifier)[0];
const identityRecord = this.getIdentityRecord(id);
2018-10-18 01:01:21 +00:00
if (identityRecord) {
return identityRecord.publicKey;
}
return undefined;
2018-04-27 21:25:04 +00:00
},
async _saveIdentityKey(data) {
const { id } = data;
this.identityKeys[id] = data;
await window.Signal.Data.createOrUpdateIdentityKey(data);
},
async saveIdentity(encodedAddress, publicKey, nonblockingApproval) {
if (encodedAddress === null || encodedAddress === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to put identity key for undefined/null key');
}
if (!(publicKey instanceof ArrayBuffer)) {
// eslint-disable-next-line no-param-reassign
2018-04-27 21:25:04 +00:00
publicKey = convertToArrayBuffer(publicKey);
}
if (typeof nonblockingApproval !== 'boolean') {
// eslint-disable-next-line no-param-reassign
2018-04-27 21:25:04 +00:00
nonblockingApproval = false;
}
2018-10-18 01:01:21 +00:00
const identifier = textsecure.utils.unencodeNumber(encodedAddress)[0];
const identityRecord = this.getIdentityRecord(identifier);
const id = ConversationController.getConversationId(identifier);
2018-10-18 01:01:21 +00:00
if (!identityRecord || !identityRecord.publicKey) {
// Lookup failed, or the current key was removed, so save this one.
window.log.info('Saving new identity...');
await this._saveIdentityKey({
id,
2018-10-18 01:01:21 +00:00
publicKey,
firstUse: true,
timestamp: Date.now(),
verified: VerifiedStatus.DEFAULT,
nonblockingApproval,
});
2018-10-18 01:01:21 +00:00
return false;
}
const oldpublicKey = identityRecord.publicKey;
if (!equalArrayBuffers(oldpublicKey, publicKey)) {
window.log.info('Replacing existing identity...');
const previousStatus = identityRecord.verified;
let verifiedStatus;
if (
previousStatus === VerifiedStatus.VERIFIED ||
previousStatus === VerifiedStatus.UNVERIFIED
) {
verifiedStatus = VerifiedStatus.UNVERIFIED;
} else {
verifiedStatus = VerifiedStatus.DEFAULT;
}
await this._saveIdentityKey({
id,
2018-10-18 01:01:21 +00:00
publicKey,
firstUse: false,
timestamp: Date.now(),
verified: verifiedStatus,
nonblockingApproval,
});
try {
this.trigger('keychange', identifier);
2018-10-18 01:01:21 +00:00
} catch (error) {
window.log.error(
'saveIdentity error triggering keychange:',
error && error.stack ? error.stack : error
);
}
await this.archiveSiblingSessions(encodedAddress);
2018-10-18 01:01:21 +00:00
return true;
} else if (this.isNonBlockingApprovalRequired(identityRecord)) {
window.log.info('Setting approval status...');
identityRecord.nonblockingApproval = nonblockingApproval;
await this._saveIdentityKey(identityRecord);
2018-10-18 01:01:21 +00:00
return false;
}
return false;
2018-04-27 21:25:04 +00:00
},
isNonBlockingApprovalRequired(identityRecord) {
2018-04-27 21:25:04 +00:00
return (
2018-10-18 01:01:21 +00:00
!identityRecord.firstUse &&
Date.now() - identityRecord.timestamp < TIMESTAMP_THRESHOLD &&
!identityRecord.nonblockingApproval
2018-04-27 21:25:04 +00:00
);
},
async saveIdentityWithAttributes(encodedAddress, attributes) {
if (encodedAddress === null || encodedAddress === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to put identity key for undefined/null key');
}
2018-10-18 01:01:21 +00:00
const identifier = textsecure.utils.unencodeNumber(encodedAddress)[0];
const identityRecord = this.getIdentityRecord(identifier);
const conv = await ConversationController.getOrCreateAndWait(
identifier,
'private'
);
const id = conv.get('id');
2018-10-18 01:01:21 +00:00
const updates = {
id,
2018-10-18 01:01:21 +00:00
...identityRecord,
...attributes,
};
const model = new IdentityRecord(updates);
if (model.isValid()) {
await this._saveIdentityKey(updates);
2018-10-18 01:01:21 +00:00
} else {
throw model.validationError;
}
2018-04-27 21:25:04 +00:00
},
async setApproval(encodedAddress, nonblockingApproval) {
if (encodedAddress === null || encodedAddress === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to set approval for undefined/null identifier');
}
if (typeof nonblockingApproval !== 'boolean') {
throw new Error('Invalid approval status');
}
2018-10-18 01:01:21 +00:00
const identifier = textsecure.utils.unencodeNumber(encodedAddress)[0];
const identityRecord = this.getIdentityRecord(identifier);
2018-10-18 01:01:21 +00:00
if (!identityRecord) {
throw new Error(`No identity record for ${identifier}`);
2018-10-18 01:01:21 +00:00
}
identityRecord.nonblockingApproval = nonblockingApproval;
await this._saveIdentityKey(identityRecord);
2018-04-27 21:25:04 +00:00
},
async setVerified(encodedAddress, verifiedStatus, publicKey) {
if (encodedAddress === null || encodedAddress === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to set verified for undefined/null key');
}
if (!validateVerifiedStatus(verifiedStatus)) {
throw new Error('Invalid verified status');
}
if (arguments.length > 2 && !(publicKey instanceof ArrayBuffer)) {
throw new Error('Invalid public key');
}
2018-10-18 01:01:21 +00:00
const identityRecord = this.getIdentityRecord(encodedAddress);
2018-10-18 01:01:21 +00:00
if (!identityRecord) {
throw new Error(`No identity record for ${encodedAddress}`);
2018-10-18 01:01:21 +00:00
}
if (
!publicKey ||
equalArrayBuffers(identityRecord.publicKey, publicKey)
) {
identityRecord.verified = verifiedStatus;
const model = new IdentityRecord(identityRecord);
if (model.isValid()) {
await this._saveIdentityKey(identityRecord);
2018-10-18 01:01:21 +00:00
} else {
throw identityRecord.validationError;
}
} else {
window.log.info('No identity record for specified publicKey');
}
2018-04-27 21:25:04 +00:00
},
async getVerified(identifier) {
if (identifier === null || identifier === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to set verified for undefined/null key');
}
2018-10-18 01:01:21 +00:00
const identityRecord = this.getIdentityRecord(identifier);
2018-10-18 01:01:21 +00:00
if (!identityRecord) {
throw new Error(`No identity record for ${identifier}`);
2018-10-18 01:01:21 +00:00
}
const verifiedStatus = identityRecord.verified;
if (validateVerifiedStatus(verifiedStatus)) {
return verifiedStatus;
}
return VerifiedStatus.DEFAULT;
2018-04-27 21:25:04 +00:00
},
// Resolves to true if a new identity key was saved
processContactSyncVerificationState(identifier, verifiedStatus, publicKey) {
2018-04-27 21:25:04 +00:00
if (verifiedStatus === VerifiedStatus.UNVERIFIED) {
return this.processUnverifiedMessage(
identifier,
verifiedStatus,
publicKey
);
}
return this.processVerifiedMessage(identifier, verifiedStatus, publicKey);
2018-04-27 21:25:04 +00:00
},
// This function encapsulates the non-Java behavior, since the mobile apps don't
// currently receive contact syncs and therefore will see a verify sync with
// UNVERIFIED status
async processUnverifiedMessage(identifier, verifiedStatus, publicKey) {
if (identifier === null || identifier === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to set verified for undefined/null key');
}
if (publicKey !== undefined && !(publicKey instanceof ArrayBuffer)) {
throw new Error('Invalid public key');
}
2018-10-18 01:01:21 +00:00
const identityRecord = this.getIdentityRecord(identifier);
2018-10-18 01:01:21 +00:00
const isPresent = Boolean(identityRecord);
let isEqual = false;
if (isPresent && publicKey) {
isEqual = equalArrayBuffers(publicKey, identityRecord.publicKey);
}
if (
isPresent &&
isEqual &&
identityRecord.verified !== VerifiedStatus.UNVERIFIED
) {
await textsecure.storage.protocol.setVerified(
identifier,
2018-10-18 01:01:21 +00:00
verifiedStatus,
publicKey
);
return false;
}
if (!isPresent || !isEqual) {
await textsecure.storage.protocol.saveIdentityWithAttributes(
identifier,
{
publicKey,
verified: verifiedStatus,
firstUse: false,
timestamp: Date.now(),
nonblockingApproval: true,
}
);
2018-10-18 01:01:21 +00:00
if (isPresent && !isEqual) {
try {
this.trigger('keychange', identifier);
2018-10-18 01:01:21 +00:00
} catch (error) {
window.log.error(
'processUnverifiedMessage error triggering keychange:',
error && error.stack ? error.stack : error
);
}
await this.archiveAllSessions(identifier);
2018-10-18 01:01:21 +00:00
return true;
}
}
// The situation which could get us here is:
// 1. had a previous key
// 2. new key is the same
// 3. desired new status is same as what we had before
return false;
2018-04-27 21:25:04 +00:00
},
// This matches the Java method as of
// https://github.com/signalapp/Signal-Android/blob/d0bb68e1378f689e4d10ac6a46014164992ca4e4/src/org/thoughtcrime/securesms/util/IdentityUtil.java#L188
async processVerifiedMessage(identifier, verifiedStatus, publicKey) {
if (identifier === null || identifier === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to set verified for undefined/null key');
}
if (!validateVerifiedStatus(verifiedStatus)) {
throw new Error('Invalid verified status');
}
if (publicKey !== undefined && !(publicKey instanceof ArrayBuffer)) {
throw new Error('Invalid public key');
}
2018-10-18 01:01:21 +00:00
const identityRecord = this.getIdentityRecord(identifier);
2018-10-18 01:01:21 +00:00
const isPresent = Boolean(identityRecord);
let isEqual = false;
if (isPresent && publicKey) {
isEqual = equalArrayBuffers(publicKey, identityRecord.publicKey);
}
if (!isPresent && verifiedStatus === VerifiedStatus.DEFAULT) {
window.log.info('No existing record for default status');
return false;
}
if (
isPresent &&
isEqual &&
identityRecord.verified !== VerifiedStatus.DEFAULT &&
verifiedStatus === VerifiedStatus.DEFAULT
) {
await textsecure.storage.protocol.setVerified(
identifier,
2018-10-18 01:01:21 +00:00
verifiedStatus,
publicKey
);
return false;
}
if (
verifiedStatus === VerifiedStatus.VERIFIED &&
(!isPresent ||
(isPresent && !isEqual) ||
(isPresent && identityRecord.verified !== VerifiedStatus.VERIFIED))
) {
await textsecure.storage.protocol.saveIdentityWithAttributes(
identifier,
{
publicKey,
verified: verifiedStatus,
firstUse: false,
timestamp: Date.now(),
nonblockingApproval: true,
}
);
2018-10-18 01:01:21 +00:00
if (isPresent && !isEqual) {
try {
this.trigger('keychange', identifier);
2018-10-18 01:01:21 +00:00
} catch (error) {
window.log.error(
'processVerifiedMessage error triggering keychange:',
error && error.stack ? error.stack : error
);
}
await this.archiveAllSessions(identifier);
2018-10-18 01:01:21 +00:00
// true signifies that we overwrote a previous key with a new one
return true;
}
}
// We get here if we got a new key and the status is DEFAULT. If the
// message is out of date, we don't want to lose whatever more-secure
// state we had before.
return false;
2018-04-27 21:25:04 +00:00
},
async isUntrusted(identifier) {
if (identifier === null || identifier === undefined) {
2018-04-27 21:25:04 +00:00
throw new Error('Tried to set verified for undefined/null key');
}
2018-10-18 01:01:21 +00:00
const identityRecord = this.getIdentityRecord(identifier);
2018-10-18 01:01:21 +00:00
if (!identityRecord) {
throw new Error(`No identity record for ${identifier}`);
2018-10-18 01:01:21 +00:00
}
if (
Date.now() - identityRecord.timestamp < TIMESTAMP_THRESHOLD &&
!identityRecord.nonblockingApproval &&
!identityRecord.firstUse
) {
return true;
}
return false;
2018-04-27 21:25:04 +00:00
},
async removeIdentityKey(identifier) {
const id = ConversationController.getConversationId(identifier);
if (id) {
delete this.identityKeys[id];
await window.Signal.Data.removeIdentityKeyById(id);
await textsecure.storage.protocol.removeAllSessions(id);
}
2018-04-27 21:25:04 +00:00
},
2018-04-27 21:25:04 +00:00
// Not yet processed messages - for resiliency
getUnprocessedCount() {
return window.Signal.Data.getUnprocessedCount();
},
getAllUnprocessed() {
return window.Signal.Data.getAllUnprocessed();
2018-04-27 21:25:04 +00:00
},
getUnprocessedById(id) {
return window.Signal.Data.getUnprocessedById(id);
},
addUnprocessed(data) {
// We need to pass forceSave because the data has an id already, which will cause
// an update instead of an insert.
return window.Signal.Data.saveUnprocessed(data, {
forceSave: true,
});
2018-04-27 21:25:04 +00:00
},
2019-09-26 19:56:31 +00:00
addMultipleUnprocessed(array) {
// We need to pass forceSave because the data has an id already, which will cause
// an update instead of an insert.
return window.Signal.Data.saveUnprocesseds(array, {
forceSave: true,
});
},
updateUnprocessedAttempts(id, attempts) {
return window.Signal.Data.updateUnprocessedAttempts(id, attempts);
},
updateUnprocessedWithData(id, data) {
return window.Signal.Data.updateUnprocessedWithData(id, data);
2018-04-27 21:25:04 +00:00
},
2019-09-26 19:56:31 +00:00
updateUnprocessedsWithData(items) {
return window.Signal.Data.updateUnprocessedsWithData(items);
},
removeUnprocessed(idOrArray) {
return window.Signal.Data.removeUnprocessed(idOrArray);
2018-04-27 21:25:04 +00:00
},
removeAllUnprocessed() {
return window.Signal.Data.removeAllUnprocessed();
},
async removeAllData() {
2018-10-18 01:01:21 +00:00
await window.Signal.Data.removeAll();
await this.hydrateCaches();
2018-04-27 21:25:04 +00:00
2018-10-18 01:01:21 +00:00
window.storage.reset();
await window.storage.fetch();
2018-10-18 01:01:21 +00:00
ConversationController.reset();
await ConversationController.load();
2018-04-27 21:25:04 +00:00
},
async removeAllConfiguration() {
2018-10-18 01:01:21 +00:00
await window.Signal.Data.removeAllConfiguration();
await this.hydrateCaches();
2018-04-27 21:25:04 +00:00
2018-10-18 01:01:21 +00:00
window.storage.reset();
await window.storage.fetch();
2018-04-27 21:25:04 +00:00
},
};
_.extend(SignalProtocolStore.prototype, Backbone.Events);
2018-04-27 21:25:04 +00:00
window.SignalProtocolStore = SignalProtocolStore;
window.SignalProtocolStore.prototype.Direction = Direction;
window.SignalProtocolStore.prototype.VerifiedStatus = VerifiedStatus;
})();