mirror of
https://github.com/signalapp/libsignal.git
synced 2026-05-10 00:52:18 +02:00
97a2ded3f6
Exceptions: - Buffers decoding from strings (usually for tests) - Buffer.concat, if immediately fed into libsignal, which we know won't rely on the diverging behavior of slice() - Encoding GroupIdentifier to base64 Everywhere else, Uint8Array was nearly a drop-in replacement. Places where it wasn't: - For tests, use assertArrayEquals more, which converts to hex first (better diffs anyway) - Use TextEncoder and TextDecoder for going back and forth between strings and UTF-8 buffers *not* in the tests
277 lines
8.6 KiB
TypeScript
277 lines
8.6 KiB
TypeScript
//
|
|
// Copyright 2025 Signal Messenger, LLC.
|
|
// SPDX-License-Identifier: AGPL-3.0-only
|
|
//
|
|
|
|
import * as Native from '../../Native';
|
|
import { Aci } from '../Address';
|
|
import { PublicKey } from '../EcKeys';
|
|
import { Environment, type TokioAsyncContext } from '../net';
|
|
|
|
// For JSDoc references
|
|
import { type UnauthenticatedChatConnection } from './Chat';
|
|
import {
|
|
type KeyTransparencyError,
|
|
type KeyTransparencyVerificationFailed,
|
|
type ChatServiceInactive,
|
|
type IoError,
|
|
} from '../Errors';
|
|
|
|
/**
|
|
* Interface of a local persistent key transparency data store.
|
|
*
|
|
* Contents of the store are opaque to the client and are only supposed to be
|
|
* used by the {@link Client}.
|
|
*/
|
|
export interface Store {
|
|
getLastDistinguishedTreeHead(): Promise<Uint8Array | null>;
|
|
setLastDistinguishedTreeHead(
|
|
bytes: Readonly<Uint8Array> | null
|
|
): Promise<void>;
|
|
|
|
getAccountData(aci: Aci): Promise<Uint8Array | null>;
|
|
setAccountData(aci: Aci, bytes: Readonly<Uint8Array>): Promise<void>;
|
|
}
|
|
|
|
/**
|
|
* Options that are accepted by all {@link Client} APIs.
|
|
*
|
|
* abortSignal, if present, can be used to cancel long-running network IO.
|
|
*/
|
|
export type Options = { abortSignal?: AbortSignal };
|
|
|
|
/**
|
|
* ACI descriptor for key transparency requests.
|
|
*/
|
|
export type AciInfo = { aci: Aci; identityKey: PublicKey };
|
|
/**
|
|
* E.164 descriptor for key transparency requests.
|
|
*/
|
|
export type E164Info = {
|
|
e164: string;
|
|
unidentifiedAccessKey: Readonly<Uint8Array>;
|
|
};
|
|
|
|
/**
|
|
* Key transparency client request
|
|
*
|
|
*/
|
|
export type Request = {
|
|
/** ACI and ACI Identity Key for the account. Required. */
|
|
aciInfo: AciInfo;
|
|
/** Unidentified access key associated with the account. Optional. */
|
|
e164Info?: E164Info;
|
|
/* Hash of the username associated with the account. Optional. */
|
|
usernameHash?: Readonly<Uint8Array>;
|
|
};
|
|
|
|
/**
|
|
* Typed API to access the key transparency subsystem using an existing
|
|
* unauthenticated chat connection.
|
|
*
|
|
* Unlike {@link UnauthenticatedChatConnection}, the client does
|
|
* not export "raw" send/receive APIs, and instead uses them internally to
|
|
* implement high-level key transparency operations.
|
|
*
|
|
* See {@link ClientImpl} for the implementation details.
|
|
*
|
|
* Instances should be obtained by calling {@link UnauthenticatedChatConnection.keyTransparencyClient}
|
|
*
|
|
* Example usage:
|
|
*
|
|
* @example
|
|
* ```ts
|
|
* const network = new Net({
|
|
* localTestServer: false,
|
|
* env: Environment.Staging,
|
|
* userAgent: 'key-transparency-example'
|
|
* });
|
|
*
|
|
* const chat = await network.connectUnauthenticatedChat({
|
|
* onConnectionInterrupted: (_cause) => {}
|
|
* });
|
|
*
|
|
* const kt = chat.keyTransparencyClient();
|
|
*
|
|
* // Promise fulfillment means the operation succeeded with no further steps required.
|
|
* await kt.search({ aciInfo: { aci: myACI, identityKey: myAciIdentityKey } }, store);
|
|
* ```
|
|
*
|
|
*/
|
|
export interface Client {
|
|
/**
|
|
* Search for account information in the key transparency tree.
|
|
*
|
|
*
|
|
* @param request - Key transparency client {@link Request}.
|
|
* @param store - Local key transparency storage. It will be queried for both
|
|
* the account data and the latest distinguished tree head before sending the
|
|
* server request and, if the request succeeds, will be updated with the
|
|
* search operation results.
|
|
* @param options - options for the asynchronous operation. Optional.
|
|
*
|
|
* @returns A promise that resolves if the search succeeds and the local state has been updated
|
|
* to reflect the latest changes. If the promise is rejected, the UI should be updated to notify
|
|
* the user of the failure.
|
|
*
|
|
* @throws {KeyTransparencyError} for errors related to key transparency logic, which
|
|
* includes missing required fields in the serialized data. Retrying the search without
|
|
* changing any of the arguments (including the state of the store) is unlikely to yield a
|
|
* different result.
|
|
* @throws {KeyTransparencyVerificationFailed} when it fails to
|
|
* verify the data in key transparency server response, such as an incorrect proof or a
|
|
* wrong signature.
|
|
* @throws {ChatServiceInactive} if the chat connection has been closed.
|
|
* @throws {IoError} if an error occurred while commuicating with the
|
|
* server.
|
|
* */
|
|
search(
|
|
request: Request,
|
|
store: Store,
|
|
options?: Readonly<Options>
|
|
): Promise<void>;
|
|
|
|
/**
|
|
* Perform a monitor operation for an account previously searched for.
|
|
*
|
|
* If the monitor request discovers that the client has changed their username
|
|
* or phone number, the search request will be performed instead.
|
|
*
|
|
* @param request - Key transparency client {@link Request}.
|
|
* @param store - Local key transparency storage. It will be queried for both
|
|
* the account data and the latest distinguished tree head before sending the
|
|
* server request and, if the request succeeds, will be updated with the
|
|
* search operation results.
|
|
* @param options - options for the asynchronous operation. Optional.
|
|
*
|
|
* @returns A promise that resolves if the monitor succeeds and the local state has been updated
|
|
* to reflect the latest changes. If the promise is rejected, the UI should be updated to notify
|
|
* the user of the failure.
|
|
*
|
|
* @throws {KeyTransparencyError} for errors related to key transparency logic, which
|
|
* includes missing required fields in the serialized data. Retrying the search without
|
|
* changing any of the arguments (including the state of the store) is unlikely to yield a
|
|
* different result.
|
|
* @throws {KeyTransparencyVerificationFailed} when it fails to
|
|
* verify the data in key transparency server response, such as an incorrect proof or a
|
|
* wrong signature.
|
|
* @throws {ChatServiceInactive} if the chat connection has been closed.
|
|
* @throws {IoError} if an error occurred while commuicating with the
|
|
* server.
|
|
*/
|
|
monitor(
|
|
request: Request,
|
|
store: Store,
|
|
options?: Readonly<Options>
|
|
): Promise<void>;
|
|
}
|
|
|
|
export class ClientImpl implements Client {
|
|
constructor(
|
|
private readonly asyncContext: TokioAsyncContext,
|
|
private readonly chatService: Native.Wrapper<Native.UnauthenticatedChatConnection>,
|
|
private readonly env: Environment
|
|
) {}
|
|
|
|
async search(
|
|
request: Request,
|
|
store: Store,
|
|
options?: Readonly<Options>
|
|
): Promise<void> {
|
|
const distinguished = await this.getLatestDistinguished(
|
|
store,
|
|
options ?? {}
|
|
);
|
|
const { abortSignal } = options ?? {};
|
|
const {
|
|
aciInfo: { aci, identityKey: aciIdentityKey },
|
|
e164Info,
|
|
usernameHash,
|
|
} = request;
|
|
const { e164, unidentifiedAccessKey } = e164Info ?? {
|
|
e164: null,
|
|
unidentifiedAccessKey: null,
|
|
};
|
|
const accountData = await this.asyncContext.makeCancellable(
|
|
abortSignal,
|
|
Native.KeyTransparency_Search(
|
|
this.asyncContext,
|
|
this.env,
|
|
this.chatService,
|
|
aci.getServiceIdFixedWidthBinary(),
|
|
aciIdentityKey,
|
|
e164,
|
|
unidentifiedAccessKey,
|
|
usernameHash ?? null,
|
|
await store.getAccountData(aci),
|
|
distinguished
|
|
)
|
|
);
|
|
await store.setAccountData(aci, accountData);
|
|
}
|
|
|
|
async monitor(
|
|
request: Request,
|
|
store: Store,
|
|
options?: Readonly<Options>
|
|
): Promise<void> {
|
|
const distinguished = await this.getLatestDistinguished(
|
|
store,
|
|
options ?? {}
|
|
);
|
|
const { abortSignal } = options ?? {};
|
|
const {
|
|
aciInfo: { aci, identityKey: aciIdentityKey },
|
|
e164Info,
|
|
usernameHash,
|
|
} = request;
|
|
const { e164, unidentifiedAccessKey } = e164Info ?? {
|
|
e164: null,
|
|
unidentifiedAccessKey: null,
|
|
};
|
|
const accountData = await this.asyncContext.makeCancellable(
|
|
abortSignal,
|
|
Native.KeyTransparency_Monitor(
|
|
this.asyncContext,
|
|
this.env,
|
|
this.chatService,
|
|
aci.getServiceIdFixedWidthBinary(),
|
|
aciIdentityKey,
|
|
e164,
|
|
unidentifiedAccessKey,
|
|
usernameHash ?? null,
|
|
await store.getAccountData(aci),
|
|
distinguished
|
|
)
|
|
);
|
|
await store.setAccountData(aci, accountData);
|
|
}
|
|
|
|
private async updateDistinguished(
|
|
store: Store,
|
|
{ abortSignal }: Readonly<Options>
|
|
): Promise<Uint8Array> {
|
|
const bytes = await this.asyncContext.makeCancellable(
|
|
abortSignal,
|
|
Native.KeyTransparency_Distinguished(
|
|
this.asyncContext,
|
|
this.env,
|
|
this.chatService,
|
|
await store.getLastDistinguishedTreeHead()
|
|
)
|
|
);
|
|
await store.setLastDistinguishedTreeHead(bytes);
|
|
return bytes;
|
|
}
|
|
|
|
private async getLatestDistinguished(
|
|
store: Store,
|
|
options: Readonly<Options>
|
|
): Promise<Uint8Array> {
|
|
return (
|
|
(await store.getLastDistinguishedTreeHead()) ??
|
|
(await this.updateDistinguished(store, options))
|
|
);
|
|
}
|
|
}
|