Handle Safety Number changes while sending a story

2022-08-19 14:05:31 -04:00 · 2022-08-19 14:05:31 -04:00 · 0fb45f045d
commit 0fb45f045d
parent d036803df9
13 changed files with 392 additions and 44 deletions
--- a/ts/util/verifyStoryListMembers.ts
+++ b/ts/util/verifyStoryListMembers.ts
@ -0,0 +1,55 @@
+// Copyright 2022 Signal Messenger, LLC
+// SPDX-License-Identifier: AGPL-3.0-only
+
+import { UUID } from '../types/UUID';
+import * as log from '../logging/log';
+import { isNotNil } from './isNotNil';
+import { updateIdentityKey } from '../services/profiles';
+
+export async function verifyStoryListMembers(
+  uuids: Array<string>
+): Promise<{ untrustedUuids: Set<string>; verifiedUuids: Set<string> }> {
+  const { server } = window.textsecure;
+  if (!server) {
+    throw new Error('verifyStoryListMembers: server not available');
+  }
+
+  const verifiedUuids = new Set<string>();
+  const untrustedUuids = new Set<string>();
+
+  const elements = await Promise.all(
+    uuids.map(async aci => {
+      const uuid = new UUID(aci);
+      const fingerprint =
+        await window.textsecure.storage.protocol.getFingerprint(uuid);
+
+      if (!fingerprint) {
+        log.warn('verifyStoryListMembers: no fingerprint found for uuid=', aci);
+        untrustedUuids.add(aci);
+        return;
+      }
+
+      verifiedUuids.add(aci);
+      return { aci, fingerprint };
+    })
+  );
+
+  const { elements: unverifiedACI } = await server.postBatchIdentityCheck(
+    elements.filter(isNotNil)
+  );
+
+  await Promise.all(
+    unverifiedACI.map(async ({ aci, identityKey }) => {
+      untrustedUuids.add(aci);
+      verifiedUuids.delete(aci);
+
+      if (identityKey) {
+        await updateIdentityKey(identityKey, new UUID(aci));
+      } else {
+        await window.ConversationController.get(aci)?.getProfiles();
+      }
+    })
+  );
+
+  return { untrustedUuids, verifiedUuids };
+}