mirror of
https://github.com/vanitasvitae/Smack.git
synced 2024-06-16 16:44:48 +02:00
Paul Schaub
1f731f6318
Changes:
Rework integration tests
New structure of base integration test classes
bump dependency on signal-protocol-java from 2.4.0 to 2.6.2
Introduced CachingOmemoStore implementations
Use CachingOmemoStore classes in integration tests
Removed OmemoSession classes (replaced with more logical OmemoRatchet classes)
Consequently also removed load/storeOmemoSession methods from OmemoStore
Removed some clutter from KeyUtil classes
Moved trust decision related code from OmemoStore to TrustCallback
Require authenticated connection for many functions
Add async initialization function in OmemoStore
Refactor omemo test package (/java/org/jivesoftware/smack/omemo -> /java/org/jivesoftware/smackx)
Remove OmemoStore method isFreshInstallation() as well as defaultDeviceId related stuff
FileBasedOmemoStore: Add cleaner methods to store/load base data types (Using tryWithResource, only for future releases, once Android API gets bumped)
Attempt to make OmemoManager thread safe
new logic for getInstanceFor() deviceId determination
OmemoManagers encrypt methods now don't throw exceptions when encryption for some devices fails. Instead message gets encrypted when possible and more information about failures gets returned alongside the message itself
Added OmemoMessage class for that purpose
Reworked entire OmemoService class
Use safer logic for creating trust-ignoring messages (like ratchet-update messages)
Restructure elements/provider in order to prepare for OMEMO namespace bumps
Remove OmemoManager.regenerate() methods in favor of getInstanceFor(connection, randomDeviceId)
Removed some unnecessary configuration options
Prepare for support of more AES message key types
Simplify session creation
Where possible, avoid side effects in methods
Add UntrustedOmemoIdentityException
Add TrustState enum
More improved tests
163 lines
7.4 KiB
Java
163 lines
7.4 KiB
Java
/**
|
|
*
|
|
* Copyright 2017 Paul Schaub
|
|
*
|
|
* This file is part of smack-omemo-signal.
|
|
*
|
|
* smack-omemo-signal is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software Foundation,
|
|
* Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
|
|
*/
|
|
package org.jivesoftware.smackx.omemo.signal;
|
|
|
|
import java.util.logging.Level;
|
|
import java.util.logging.Logger;
|
|
|
|
import org.jivesoftware.smackx.omemo.OmemoManager;
|
|
import org.jivesoftware.smackx.omemo.OmemoRatchet;
|
|
import org.jivesoftware.smackx.omemo.OmemoStore;
|
|
import org.jivesoftware.smackx.omemo.element.OmemoElement;
|
|
import org.jivesoftware.smackx.omemo.exceptions.CorruptedOmemoKeyException;
|
|
import org.jivesoftware.smackx.omemo.exceptions.CryptoFailedException;
|
|
import org.jivesoftware.smackx.omemo.exceptions.NoRawSessionException;
|
|
import org.jivesoftware.smackx.omemo.exceptions.UntrustedOmemoIdentityException;
|
|
import org.jivesoftware.smackx.omemo.internal.CiphertextTuple;
|
|
import org.jivesoftware.smackx.omemo.internal.OmemoDevice;
|
|
|
|
import org.whispersystems.libsignal.DuplicateMessageException;
|
|
import org.whispersystems.libsignal.IdentityKey;
|
|
import org.whispersystems.libsignal.IdentityKeyPair;
|
|
import org.whispersystems.libsignal.InvalidKeyException;
|
|
import org.whispersystems.libsignal.InvalidKeyIdException;
|
|
import org.whispersystems.libsignal.InvalidMessageException;
|
|
import org.whispersystems.libsignal.InvalidVersionException;
|
|
import org.whispersystems.libsignal.LegacyMessageException;
|
|
import org.whispersystems.libsignal.NoSessionException;
|
|
import org.whispersystems.libsignal.SessionCipher;
|
|
import org.whispersystems.libsignal.SignalProtocolAddress;
|
|
import org.whispersystems.libsignal.UntrustedIdentityException;
|
|
import org.whispersystems.libsignal.ecc.ECPublicKey;
|
|
import org.whispersystems.libsignal.protocol.CiphertextMessage;
|
|
import org.whispersystems.libsignal.protocol.PreKeySignalMessage;
|
|
import org.whispersystems.libsignal.protocol.SignalMessage;
|
|
import org.whispersystems.libsignal.state.PreKeyBundle;
|
|
import org.whispersystems.libsignal.state.PreKeyRecord;
|
|
import org.whispersystems.libsignal.state.SessionRecord;
|
|
import org.whispersystems.libsignal.state.SignedPreKeyRecord;
|
|
|
|
public class SignalOmemoRatchet
|
|
extends OmemoRatchet<IdentityKeyPair, IdentityKey, PreKeyRecord, SignedPreKeyRecord, SessionRecord,
|
|
SignalProtocolAddress, ECPublicKey, PreKeyBundle, SessionCipher> {
|
|
|
|
private static final Logger LOGGER = Logger.getLogger(OmemoRatchet.class.getName());
|
|
private final SignalOmemoStoreConnector storeConnector;
|
|
|
|
SignalOmemoRatchet(OmemoManager omemoManager,
|
|
OmemoStore<IdentityKeyPair, IdentityKey, PreKeyRecord, SignedPreKeyRecord,
|
|
SessionRecord, SignalProtocolAddress, ECPublicKey, PreKeyBundle,
|
|
SessionCipher> store) {
|
|
super(omemoManager, store);
|
|
this.storeConnector = new SignalOmemoStoreConnector(omemoManager, store);
|
|
}
|
|
|
|
@Override
|
|
public byte[] doubleRatchetDecrypt(OmemoDevice sender, byte[] encryptedKey)
|
|
throws CorruptedOmemoKeyException, NoRawSessionException, CryptoFailedException,
|
|
UntrustedOmemoIdentityException {
|
|
|
|
SessionCipher cipher = getCipher(sender);
|
|
byte[] decryptedKey;
|
|
|
|
// Try to handle the message as a PreKeySignalMessage...
|
|
try {
|
|
PreKeySignalMessage preKeyMessage = new PreKeySignalMessage(encryptedKey);
|
|
|
|
if (!preKeyMessage.getPreKeyId().isPresent()) {
|
|
throw new CryptoFailedException("PreKeyMessage did not contain a preKeyId.");
|
|
}
|
|
|
|
IdentityKey messageIdentityKey = preKeyMessage.getIdentityKey();
|
|
IdentityKey previousIdentityKey = store.loadOmemoIdentityKey(storeConnector.getOurDevice(), sender);
|
|
|
|
if (previousIdentityKey != null &&
|
|
!previousIdentityKey.getFingerprint().equals(messageIdentityKey.getFingerprint())) {
|
|
throw new UntrustedOmemoIdentityException(sender,
|
|
store.keyUtil().getFingerprintOfIdentityKey(previousIdentityKey),
|
|
store.keyUtil().getFingerprintOfIdentityKey(messageIdentityKey));
|
|
}
|
|
|
|
try {
|
|
decryptedKey = cipher.decrypt(preKeyMessage);
|
|
}
|
|
catch (UntrustedIdentityException e) {
|
|
throw new AssertionError("Signals trust management MUST be disabled.");
|
|
}
|
|
catch (LegacyMessageException | InvalidKeyException e) {
|
|
throw new CryptoFailedException(e);
|
|
}
|
|
catch (InvalidKeyIdException e) {
|
|
throw new NoRawSessionException(sender, e);
|
|
}
|
|
catch (DuplicateMessageException e) {
|
|
LOGGER.log(Level.INFO, "Decryption of PreKeyMessage from " + sender +
|
|
" failed, since the message has been decrypted before.");
|
|
return null;
|
|
}
|
|
|
|
} catch (InvalidVersionException | InvalidMessageException noPreKeyMessage) {
|
|
// ...if that fails, handle it as a SignalMessage
|
|
try {
|
|
SignalMessage message = new SignalMessage(encryptedKey);
|
|
decryptedKey = getCipher(sender).decrypt(message);
|
|
}
|
|
catch (UntrustedIdentityException e) {
|
|
throw new AssertionError("Signals trust management MUST be disabled.");
|
|
}
|
|
catch (InvalidMessageException | NoSessionException e) {
|
|
throw new NoRawSessionException(sender, e);
|
|
}
|
|
catch (LegacyMessageException e) {
|
|
throw new CryptoFailedException(e);
|
|
}
|
|
catch (DuplicateMessageException e1) {
|
|
LOGGER.log(Level.INFO, "Decryption of SignalMessage from " + sender +
|
|
" failed, since the message has been decrypted before.");
|
|
return null;
|
|
}
|
|
}
|
|
|
|
return decryptedKey;
|
|
}
|
|
|
|
@Override
|
|
public CiphertextTuple doubleRatchetEncrypt(OmemoDevice recipient, byte[] messageKey) {
|
|
CiphertextMessage ciphertextMessage;
|
|
try {
|
|
ciphertextMessage = getCipher(recipient).encrypt(messageKey);
|
|
} catch (UntrustedIdentityException e) {
|
|
throw new AssertionError("Signals trust management MUST be disabled.");
|
|
}
|
|
|
|
// TODO: Figure out, if this is enough...
|
|
int type = (ciphertextMessage.getType() == CiphertextMessage.PREKEY_TYPE ?
|
|
OmemoElement.TYPE_OMEMO_PREKEY_MESSAGE : OmemoElement.TYPE_OMEMO_MESSAGE);
|
|
|
|
return new CiphertextTuple(ciphertextMessage.serialize(), type);
|
|
}
|
|
|
|
private SessionCipher getCipher(OmemoDevice device) {
|
|
return new SessionCipher(storeConnector, storeConnector, storeConnector, storeConnector,
|
|
SignalOmemoStoreConnector.asAddress(device));
|
|
}
|
|
}
|