Update libsignal-protocol v0.5.0

Renames libsignal.util to libsignal.KeyHelper.

// FREEBIE
This commit is contained in:
lilia 2016-04-28 15:07:34 -07:00
parent b762a847da
commit 92293f9da9
5 changed files with 202 additions and 220 deletions

View file

@ -34023,6 +34023,13 @@ var Internal = Internal || {};
Internal.crypto = function() { Internal.crypto = function() {
'use strict'; 'use strict';
var crypto = window.crypto;
if (!crypto || !crypto.subtle || typeof crypto.getRandomValues !== 'function') {
throw new Error('WebCrypto not found');
}
var validatePubKeyFormat = function(pubKey) { var validatePubKeyFormat = function(pubKey) {
if (pubKey === undefined || ((pubKey.byteLength != 33 || new Uint8Array(pubKey)[0] != 5) && pubKey.byteLength != 32)) if (pubKey === undefined || ((pubKey.byteLength != 33 || new Uint8Array(pubKey)[0] != 5) && pubKey.byteLength != 32))
throw new Error("Invalid public key"); throw new Error("Invalid public key");
@ -34037,22 +34044,22 @@ Internal.crypto = function() {
return { return {
getRandomBytes: function(size) { getRandomBytes: function(size) {
var array = new Uint8Array(size); var array = new Uint8Array(size);
window.crypto.getRandomValues(array); crypto.getRandomValues(array);
return array.buffer; return array.buffer;
}, },
encrypt: function(key, data, iv) { encrypt: function(key, data, iv) {
return window.crypto.subtle.importKey('raw', key, {name: 'AES-CBC'}, false, ['encrypt']).then(function(key) { return crypto.subtle.importKey('raw', key, {name: 'AES-CBC'}, false, ['encrypt']).then(function(key) {
return window.crypto.subtle.encrypt({name: 'AES-CBC', iv: new Uint8Array(iv)}, key, data); return crypto.subtle.encrypt({name: 'AES-CBC', iv: new Uint8Array(iv)}, key, data);
}); });
}, },
decrypt: function(key, data, iv) { decrypt: function(key, data, iv) {
return window.crypto.subtle.importKey('raw', key, {name: 'AES-CBC'}, false, ['decrypt']).then(function(key) { return crypto.subtle.importKey('raw', key, {name: 'AES-CBC'}, false, ['decrypt']).then(function(key) {
return window.crypto.subtle.decrypt({name: 'AES-CBC', iv: new Uint8Array(iv)}, key, data); return crypto.subtle.decrypt({name: 'AES-CBC', iv: new Uint8Array(iv)}, key, data);
}); });
}, },
sign: function(key, data) { sign: function(key, data) {
return window.crypto.subtle.importKey('raw', key, {name: 'HMAC', hash: {name: 'SHA-256'}}, false, ['sign']).then(function(key) { return crypto.subtle.importKey('raw', key, {name: 'HMAC', hash: {name: 'SHA-256'}}, false, ['sign']).then(function(key) {
return window.crypto.subtle.sign( {name: 'HMAC', hash: 'SHA-256'}, key, data); return crypto.subtle.sign( {name: 'HMAC', hash: 'SHA-256'}, key, data);
}); });
}, },
@ -34260,57 +34267,8 @@ var util = (function() {
'use strict'; 'use strict';
window.libsignal = window.libsignal || {}; window.libsignal = window.libsignal || {};
function isNonNegativeInteger(n) {
return (typeof n === 'number' && (n % 1) === 0 && n >= 0);
}
libsignal.util = { libsignal.protocol = function(storage_interface) {
generateIdentityKeyPair: function() {
return Internal.crypto.createKeyPair();
},
generateRegistrationId: function() {
var registrationId = new Uint16Array(Internal.crypto.getRandomBytes(2))[0];
return registrationId & 0x3fff;
},
generateSignedPreKey: function (identityKeyPair, signedKeyId) {
if (!(identityKeyPair.privKey instanceof ArrayBuffer) ||
identityKeyPair.privKey.byteLength != 32 ||
!(identityKeyPair.pubKey instanceof ArrayBuffer) ||
identityKeyPair.pubKey.byteLength != 33) {
throw new TypeError('Invalid argument for identityKeyPair');
}
if (!isNonNegativeInteger(signedKeyId)) {
throw new TypeError(
'Invalid argument for signedKeyId: ' + signedKeyId
);
}
return Internal.crypto.createKeyPair().then(function(keyPair) {
return Internal.crypto.Ed25519Sign(identityKeyPair.privKey, keyPair.pubKey).then(function(sig) {
return {
keyId : signedKeyId,
keyPair : keyPair,
signature : sig
};
});
});
},
generatePreKey: function(keyId) {
if (!isNonNegativeInteger(keyId)) {
throw new TypeError('Invalid argument for keyId: ' + keyId);
}
return Internal.crypto.createKeyPair().then(function(keyPair) {
return { keyId: keyId, keyPair: keyPair };
});
},
};
window.libsignal.protocol = function(storage_interface) {
var self = {}; var self = {};
/*************************** /***************************
@ -34380,44 +34338,16 @@ window.libsignal.protocol = function(storage_interface) {
self.closeOpenSessionForDevice = function(encodedNumber) { self.closeOpenSessionForDevice = function(encodedNumber) {
return getRecord(encodedNumber).then(function(record) { return getRecord(encodedNumber).then(function(record) {
if (record !== undefined) { if (record !== undefined) {
var session = record.getOpenSession(); if (record.getOpenSession() === undefined) {
if (session === undefined)
return; return;
}
record.closeSession(session); record.archiveCurrentState();
record.updateSessionState(session);
return storage_interface.storeSession(encodedNumber, record.serialize()); return storage_interface.storeSession(encodedNumber, record.serialize());
} }
}); });
} }
/*************************
*** Public crypto API ***
*************************/
//TODO: SHARP EDGE HERE
//XXX: Also, you MUST call the session close function before processing another message....except its a promise...so you literally cant!
// returns decrypted plaintext and a function that must be called if the message indicates session close
self.decryptWhisperMessage = function(encodedNumber, messageBytes) {
var address = SignalProtocolAddress.fromString(encodedNumber);
var sessionCipher = new SessionCipher(storage_interface, address);
return sessionCipher.decryptWhisperMessage(util.toArrayBuffer(messageBytes));
};
// Inits a session (maybe) and then decrypts the message
self.handlePreKeyWhisperMessage = function(encodedNumber, encodedMessage, encoding) {
var address = SignalProtocolAddress.fromString(encodedNumber);
var sessionCipher = new SessionCipher(storage_interface, address);
return sessionCipher.decryptPreKeyWhisperMessage(encodedMessage, encoding);
};
// return Promise(encoded [PreKey]WhisperMessage)
self.encryptMessageFor = function(deviceObject, plaintext) {
var address = SignalProtocolAddress.fromString(deviceObject.encodedNumber);
var sessionCipher = new SessionCipher(storage_interface, address);
return sessionCipher.encrypt(plaintext);
};
self.createIdentityKeyRecvSocket = function() { self.createIdentityKeyRecvSocket = function() {
var socketInfo = {}; var socketInfo = {};
var keyPair; var keyPair;
@ -34493,6 +34423,57 @@ window.libsignal.protocol = function(storage_interface) {
})(); })();
function isNonNegativeInteger(n) {
return (typeof n === 'number' && (n % 1) === 0 && n >= 0);
}
var KeyHelper = {
generateIdentityKeyPair: function() {
return Internal.crypto.createKeyPair();
},
generateRegistrationId: function() {
var registrationId = new Uint16Array(Internal.crypto.getRandomBytes(2))[0];
return registrationId & 0x3fff;
},
generateSignedPreKey: function (identityKeyPair, signedKeyId) {
if (!(identityKeyPair.privKey instanceof ArrayBuffer) ||
identityKeyPair.privKey.byteLength != 32 ||
!(identityKeyPair.pubKey instanceof ArrayBuffer) ||
identityKeyPair.pubKey.byteLength != 33) {
throw new TypeError('Invalid argument for identityKeyPair');
}
if (!isNonNegativeInteger(signedKeyId)) {
throw new TypeError(
'Invalid argument for signedKeyId: ' + signedKeyId
);
}
return Internal.crypto.createKeyPair().then(function(keyPair) {
return Internal.crypto.Ed25519Sign(identityKeyPair.privKey, keyPair.pubKey).then(function(sig) {
return {
keyId : signedKeyId,
keyPair : keyPair,
signature : sig
};
});
});
},
generatePreKey: function(keyId) {
if (!isNonNegativeInteger(keyId)) {
throw new TypeError('Invalid argument for keyId: ' + keyId);
}
return Internal.crypto.createKeyPair().then(function(keyPair) {
return { keyId: keyId, keyPair: keyPair };
});
}
};
libsignal.KeyHelper = KeyHelper;
var Internal = Internal || {}; var Internal = Internal || {};
Internal.protoText = function() { Internal.protoText = function() {
@ -34785,6 +34766,13 @@ Internal.SessionRecord = function() {
else if (this.registrationId === null) else if (this.registrationId === null)
throw new Error("Had open sessions on a record that had no registrationId set"); throw new Error("Had open sessions on a record that had no registrationId set");
}, },
archiveCurrentState: function() {
var open_session = this.getOpenSession();
if (open_session !== undefined) {
this.closeSession(open_session);
this.updateSessionState(open_session);
}
},
closeSession: function(session) { closeSession: function(session) {
if (session.indexInfo.closed > -1) { if (session.indexInfo.closed > -1) {
return; return;
@ -34853,16 +34841,22 @@ SignalProtocolAddress.prototype = {
} }
}; };
SignalProtocolAddress.fromString = function(encodedAddress) { libsignal.SignalProtocolAddress = function(name, deviceId) {
var address = new SignalProtocolAddress(name, deviceId);
['getName', 'getDeviceId', 'toString', 'equals'].forEach(function(method) {
this[method] = address[method].bind(address);
}.bind(this));
}
libsignal.SignalProtocolAddress.fromString = function(encodedAddress) {
if (typeof encodedAddress !== 'string' || !encodedAddress.match(/.*\.\d+/)) { if (typeof encodedAddress !== 'string' || !encodedAddress.match(/.*\.\d+/)) {
throw new Error('Invalid SignalProtocolAddress string'); throw new Error('Invalid SignalProtocolAddress string');
} }
var parts = encodedAddress.split('.'); var parts = encodedAddress.split('.');
return new SignalProtocolAddress(parts[0], parseInt(parts[1])); return new libsignal.SignalProtocolAddress(parts[0], parseInt(parts[1]));
}; };
libsignal.SignalProtocolAddress = SignalProtocolAddress;
function SessionBuilder(storage, remoteAddress) { function SessionBuilder(storage, remoteAddress) {
this.remoteAddress = remoteAddress; this.remoteAddress = remoteAddress;
this.storage = storage; this.storage = storage;
@ -34906,12 +34900,7 @@ SessionBuilder.prototype = {
record = new Internal.SessionRecord(device.identityKey, device.registrationId); record = new Internal.SessionRecord(device.identityKey, device.registrationId);
} }
var open_session = record.getOpenSession(); record.archiveCurrentState();
if (open_session) {
record.closeSession(open_session);
record.updateSessionState(open_session);
}
record.updateSessionState(session, device.registrationId); record.updateSessionState(session, device.registrationId);
return Promise.all([ return Promise.all([
this.storage.storeSession(address, record.serialize()), this.storage.storeSession(address, record.serialize()),
@ -34923,7 +34912,6 @@ SessionBuilder.prototype = {
processV3: function(record, message) { processV3: function(record, message) {
var preKeyPair, signedPreKeyPair; var preKeyPair, signedPreKeyPair;
var session = record.getSessionOrIdentityKeyByBaseKey(message.baseKey); var session = record.getSessionOrIdentityKeyByBaseKey(message.baseKey);
var open_session = record.getOpenSession();
return Promise.all([ return Promise.all([
this.storage.loadPreKey(message.preKeyId), this.storage.loadPreKey(message.preKeyId),
this.storage.loadSignedPreKey(message.signedPreKeyId), this.storage.loadSignedPreKey(message.signedPreKeyId),
@ -34951,11 +34939,7 @@ SessionBuilder.prototype = {
if (util.isEqual(session.indexInfo.remoteIdentityKey, message.identityKey)) { if (util.isEqual(session.indexInfo.remoteIdentityKey, message.identityKey)) {
// If the identity key matches the previous one, close the // If the identity key matches the previous one, close the
// previous one and use the new one // previous one and use the new one
if (open_session !== undefined) { record.archiveCurrentState();
// To be returned and saved later
record.closeSession(open_session);
record.updateSessionState(open_session);
}
} else { } else {
// ...otherwise create an error that the UI will pick up // ...otherwise create an error that the UI will pick up
// and ask the user if they want to re-negotiate // and ask the user if they want to re-negotiate
@ -35398,10 +35382,17 @@ SessionCipher.prototype = {
libsignal.SessionCipher = function(storage, remoteAddress) { libsignal.SessionCipher = function(storage, remoteAddress) {
var cipher = new SessionCipher(storage, remoteAddress); var cipher = new SessionCipher(storage, remoteAddress);
// return Promise that resolves
this.encrypt = cipher.encrypt.bind(cipher); this.encrypt = cipher.encrypt.bind(cipher);
// returns a Promise that inits a session if necessary and resolves
// to a decrypted plaintext array buffer
this.decryptPreKeyWhisperMessage = cipher.decryptPreKeyWhisperMessage.bind(cipher); this.decryptPreKeyWhisperMessage = cipher.decryptPreKeyWhisperMessage.bind(cipher);
// returns a Promise that resolves to decrypted plaintext array buffer
this.decryptWhisperMessage = cipher.decryptWhisperMessage.bind(cipher); this.decryptWhisperMessage = cipher.decryptWhisperMessage.bind(cipher);
} };
})(); })();
/* /*
@ -36827,7 +36818,7 @@ var TextSecureServer = (function() {
var registerKeys = this.server.registerKeys.bind(this.server); var registerKeys = this.server.registerKeys.bind(this.server);
var createAccount = this.createAccount.bind(this); var createAccount = this.createAccount.bind(this);
var generateKeys = this.generateKeys.bind(this, 100); var generateKeys = this.generateKeys.bind(this, 100);
return libsignal.util.generateIdentityKeyPair().then(function(identityKeyPair) { return libsignal.KeyHelper.generateIdentityKeyPair().then(function(identityKeyPair) {
return createAccount(number, verificationCode, identityKeyPair). return createAccount(number, verificationCode, identityKeyPair).
then(generateKeys). then(generateKeys).
then(registerKeys). then(registerKeys).
@ -36897,7 +36888,7 @@ var TextSecureServer = (function() {
var signalingKey = textsecure.crypto.getRandomBytes(32 + 20); var signalingKey = textsecure.crypto.getRandomBytes(32 + 20);
var password = btoa(getString(textsecure.crypto.getRandomBytes(16))); var password = btoa(getString(textsecure.crypto.getRandomBytes(16)));
password = password.substring(0, password.length - 2); password = password.substring(0, password.length - 2);
var registrationId = libsignal.util.generateRegistrationId(); var registrationId = libsignal.KeyHelper.generateRegistrationId();
return this.server.confirmCode( return this.server.confirmCode(
number, verificationCode, password, signalingKey, registrationId, deviceName number, verificationCode, password, signalingKey, registrationId, deviceName
@ -36951,7 +36942,7 @@ var TextSecureServer = (function() {
for (var keyId = startId; keyId < startId+count; ++keyId) { for (var keyId = startId; keyId < startId+count; ++keyId) {
promises.push( promises.push(
libsignal.util.generatePreKey(keyId).then(function(res) { libsignal.KeyHelper.generatePreKey(keyId).then(function(res) {
store.storePreKey(res.keyId, res.keyPair); store.storePreKey(res.keyId, res.keyPair);
result.preKeys.push({ result.preKeys.push({
keyId : res.keyId, keyId : res.keyId,
@ -36963,7 +36954,7 @@ var TextSecureServer = (function() {
} }
promises.push( promises.push(
libsignal.util.generateSignedPreKey(identityKey, signedKeyId).then(function(res) { libsignal.KeyHelper.generateSignedPreKey(identityKey, signedKeyId).then(function(res) {
store.storeSignedPreKey(res.keyId, res.keyPair); store.storeSignedPreKey(res.keyId, res.keyPair);
result.signedPreKey = { result.signedPreKey = {
keyId : res.keyId, keyId : res.keyId,

View file

@ -23,7 +23,7 @@
var registerKeys = this.server.registerKeys.bind(this.server); var registerKeys = this.server.registerKeys.bind(this.server);
var createAccount = this.createAccount.bind(this); var createAccount = this.createAccount.bind(this);
var generateKeys = this.generateKeys.bind(this, 100); var generateKeys = this.generateKeys.bind(this, 100);
return libsignal.util.generateIdentityKeyPair().then(function(identityKeyPair) { return libsignal.KeyHelper.generateIdentityKeyPair().then(function(identityKeyPair) {
return createAccount(number, verificationCode, identityKeyPair). return createAccount(number, verificationCode, identityKeyPair).
then(generateKeys). then(generateKeys).
then(registerKeys). then(registerKeys).
@ -93,7 +93,7 @@
var signalingKey = textsecure.crypto.getRandomBytes(32 + 20); var signalingKey = textsecure.crypto.getRandomBytes(32 + 20);
var password = btoa(getString(textsecure.crypto.getRandomBytes(16))); var password = btoa(getString(textsecure.crypto.getRandomBytes(16)));
password = password.substring(0, password.length - 2); password = password.substring(0, password.length - 2);
var registrationId = libsignal.util.generateRegistrationId(); var registrationId = libsignal.KeyHelper.generateRegistrationId();
return this.server.confirmCode( return this.server.confirmCode(
number, verificationCode, password, signalingKey, registrationId, deviceName number, verificationCode, password, signalingKey, registrationId, deviceName
@ -147,7 +147,7 @@
for (var keyId = startId; keyId < startId+count; ++keyId) { for (var keyId = startId; keyId < startId+count; ++keyId) {
promises.push( promises.push(
libsignal.util.generatePreKey(keyId).then(function(res) { libsignal.KeyHelper.generatePreKey(keyId).then(function(res) {
store.storePreKey(res.keyId, res.keyPair); store.storePreKey(res.keyId, res.keyPair);
result.preKeys.push({ result.preKeys.push({
keyId : res.keyId, keyId : res.keyId,
@ -159,7 +159,7 @@
} }
promises.push( promises.push(
libsignal.util.generateSignedPreKey(identityKey, signedKeyId).then(function(res) { libsignal.KeyHelper.generateSignedPreKey(identityKey, signedKeyId).then(function(res) {
store.storeSignedPreKey(res.keyId, res.keyPair); store.storeSignedPreKey(res.keyId, res.keyPair);
result.signedPreKey = { result.signedPreKey = {
keyId : res.keyId, keyId : res.keyId,

View file

@ -33909,6 +33909,13 @@ var Internal = Internal || {};
Internal.crypto = function() { Internal.crypto = function() {
'use strict'; 'use strict';
var crypto = window.crypto;
if (!crypto || !crypto.subtle || typeof crypto.getRandomValues !== 'function') {
throw new Error('WebCrypto not found');
}
var validatePubKeyFormat = function(pubKey) { var validatePubKeyFormat = function(pubKey) {
if (pubKey === undefined || ((pubKey.byteLength != 33 || new Uint8Array(pubKey)[0] != 5) && pubKey.byteLength != 32)) if (pubKey === undefined || ((pubKey.byteLength != 33 || new Uint8Array(pubKey)[0] != 5) && pubKey.byteLength != 32))
throw new Error("Invalid public key"); throw new Error("Invalid public key");
@ -33923,22 +33930,22 @@ Internal.crypto = function() {
return { return {
getRandomBytes: function(size) { getRandomBytes: function(size) {
var array = new Uint8Array(size); var array = new Uint8Array(size);
window.crypto.getRandomValues(array); crypto.getRandomValues(array);
return array.buffer; return array.buffer;
}, },
encrypt: function(key, data, iv) { encrypt: function(key, data, iv) {
return window.crypto.subtle.importKey('raw', key, {name: 'AES-CBC'}, false, ['encrypt']).then(function(key) { return crypto.subtle.importKey('raw', key, {name: 'AES-CBC'}, false, ['encrypt']).then(function(key) {
return window.crypto.subtle.encrypt({name: 'AES-CBC', iv: new Uint8Array(iv)}, key, data); return crypto.subtle.encrypt({name: 'AES-CBC', iv: new Uint8Array(iv)}, key, data);
}); });
}, },
decrypt: function(key, data, iv) { decrypt: function(key, data, iv) {
return window.crypto.subtle.importKey('raw', key, {name: 'AES-CBC'}, false, ['decrypt']).then(function(key) { return crypto.subtle.importKey('raw', key, {name: 'AES-CBC'}, false, ['decrypt']).then(function(key) {
return window.crypto.subtle.decrypt({name: 'AES-CBC', iv: new Uint8Array(iv)}, key, data); return crypto.subtle.decrypt({name: 'AES-CBC', iv: new Uint8Array(iv)}, key, data);
}); });
}, },
sign: function(key, data) { sign: function(key, data) {
return window.crypto.subtle.importKey('raw', key, {name: 'HMAC', hash: {name: 'SHA-256'}}, false, ['sign']).then(function(key) { return crypto.subtle.importKey('raw', key, {name: 'HMAC', hash: {name: 'SHA-256'}}, false, ['sign']).then(function(key) {
return window.crypto.subtle.sign( {name: 'HMAC', hash: 'SHA-256'}, key, data); return crypto.subtle.sign( {name: 'HMAC', hash: 'SHA-256'}, key, data);
}); });
}, },
@ -34146,57 +34153,8 @@ var util = (function() {
'use strict'; 'use strict';
window.libsignal = window.libsignal || {}; window.libsignal = window.libsignal || {};
function isNonNegativeInteger(n) {
return (typeof n === 'number' && (n % 1) === 0 && n >= 0);
}
libsignal.util = { libsignal.protocol = function(storage_interface) {
generateIdentityKeyPair: function() {
return Internal.crypto.createKeyPair();
},
generateRegistrationId: function() {
var registrationId = new Uint16Array(Internal.crypto.getRandomBytes(2))[0];
return registrationId & 0x3fff;
},
generateSignedPreKey: function (identityKeyPair, signedKeyId) {
if (!(identityKeyPair.privKey instanceof ArrayBuffer) ||
identityKeyPair.privKey.byteLength != 32 ||
!(identityKeyPair.pubKey instanceof ArrayBuffer) ||
identityKeyPair.pubKey.byteLength != 33) {
throw new TypeError('Invalid argument for identityKeyPair');
}
if (!isNonNegativeInteger(signedKeyId)) {
throw new TypeError(
'Invalid argument for signedKeyId: ' + signedKeyId
);
}
return Internal.crypto.createKeyPair().then(function(keyPair) {
return Internal.crypto.Ed25519Sign(identityKeyPair.privKey, keyPair.pubKey).then(function(sig) {
return {
keyId : signedKeyId,
keyPair : keyPair,
signature : sig
};
});
});
},
generatePreKey: function(keyId) {
if (!isNonNegativeInteger(keyId)) {
throw new TypeError('Invalid argument for keyId: ' + keyId);
}
return Internal.crypto.createKeyPair().then(function(keyPair) {
return { keyId: keyId, keyPair: keyPair };
});
},
};
window.libsignal.protocol = function(storage_interface) {
var self = {}; var self = {};
/*************************** /***************************
@ -34266,44 +34224,16 @@ window.libsignal.protocol = function(storage_interface) {
self.closeOpenSessionForDevice = function(encodedNumber) { self.closeOpenSessionForDevice = function(encodedNumber) {
return getRecord(encodedNumber).then(function(record) { return getRecord(encodedNumber).then(function(record) {
if (record !== undefined) { if (record !== undefined) {
var session = record.getOpenSession(); if (record.getOpenSession() === undefined) {
if (session === undefined)
return; return;
}
record.closeSession(session); record.archiveCurrentState();
record.updateSessionState(session);
return storage_interface.storeSession(encodedNumber, record.serialize()); return storage_interface.storeSession(encodedNumber, record.serialize());
} }
}); });
} }
/*************************
*** Public crypto API ***
*************************/
//TODO: SHARP EDGE HERE
//XXX: Also, you MUST call the session close function before processing another message....except its a promise...so you literally cant!
// returns decrypted plaintext and a function that must be called if the message indicates session close
self.decryptWhisperMessage = function(encodedNumber, messageBytes) {
var address = SignalProtocolAddress.fromString(encodedNumber);
var sessionCipher = new SessionCipher(storage_interface, address);
return sessionCipher.decryptWhisperMessage(util.toArrayBuffer(messageBytes));
};
// Inits a session (maybe) and then decrypts the message
self.handlePreKeyWhisperMessage = function(encodedNumber, encodedMessage, encoding) {
var address = SignalProtocolAddress.fromString(encodedNumber);
var sessionCipher = new SessionCipher(storage_interface, address);
return sessionCipher.decryptPreKeyWhisperMessage(encodedMessage, encoding);
};
// return Promise(encoded [PreKey]WhisperMessage)
self.encryptMessageFor = function(deviceObject, plaintext) {
var address = SignalProtocolAddress.fromString(deviceObject.encodedNumber);
var sessionCipher = new SessionCipher(storage_interface, address);
return sessionCipher.encrypt(plaintext);
};
self.createIdentityKeyRecvSocket = function() { self.createIdentityKeyRecvSocket = function() {
var socketInfo = {}; var socketInfo = {};
var keyPair; var keyPair;
@ -34379,6 +34309,57 @@ window.libsignal.protocol = function(storage_interface) {
})(); })();
function isNonNegativeInteger(n) {
return (typeof n === 'number' && (n % 1) === 0 && n >= 0);
}
var KeyHelper = {
generateIdentityKeyPair: function() {
return Internal.crypto.createKeyPair();
},
generateRegistrationId: function() {
var registrationId = new Uint16Array(Internal.crypto.getRandomBytes(2))[0];
return registrationId & 0x3fff;
},
generateSignedPreKey: function (identityKeyPair, signedKeyId) {
if (!(identityKeyPair.privKey instanceof ArrayBuffer) ||
identityKeyPair.privKey.byteLength != 32 ||
!(identityKeyPair.pubKey instanceof ArrayBuffer) ||
identityKeyPair.pubKey.byteLength != 33) {
throw new TypeError('Invalid argument for identityKeyPair');
}
if (!isNonNegativeInteger(signedKeyId)) {
throw new TypeError(
'Invalid argument for signedKeyId: ' + signedKeyId
);
}
return Internal.crypto.createKeyPair().then(function(keyPair) {
return Internal.crypto.Ed25519Sign(identityKeyPair.privKey, keyPair.pubKey).then(function(sig) {
return {
keyId : signedKeyId,
keyPair : keyPair,
signature : sig
};
});
});
},
generatePreKey: function(keyId) {
if (!isNonNegativeInteger(keyId)) {
throw new TypeError('Invalid argument for keyId: ' + keyId);
}
return Internal.crypto.createKeyPair().then(function(keyPair) {
return { keyId: keyId, keyPair: keyPair };
});
}
};
libsignal.KeyHelper = KeyHelper;
var Internal = Internal || {}; var Internal = Internal || {};
Internal.protoText = function() { Internal.protoText = function() {
@ -34671,6 +34652,13 @@ Internal.SessionRecord = function() {
else if (this.registrationId === null) else if (this.registrationId === null)
throw new Error("Had open sessions on a record that had no registrationId set"); throw new Error("Had open sessions on a record that had no registrationId set");
}, },
archiveCurrentState: function() {
var open_session = this.getOpenSession();
if (open_session !== undefined) {
this.closeSession(open_session);
this.updateSessionState(open_session);
}
},
closeSession: function(session) { closeSession: function(session) {
if (session.indexInfo.closed > -1) { if (session.indexInfo.closed > -1) {
return; return;
@ -34739,16 +34727,22 @@ SignalProtocolAddress.prototype = {
} }
}; };
SignalProtocolAddress.fromString = function(encodedAddress) { libsignal.SignalProtocolAddress = function(name, deviceId) {
var address = new SignalProtocolAddress(name, deviceId);
['getName', 'getDeviceId', 'toString', 'equals'].forEach(function(method) {
this[method] = address[method].bind(address);
}.bind(this));
}
libsignal.SignalProtocolAddress.fromString = function(encodedAddress) {
if (typeof encodedAddress !== 'string' || !encodedAddress.match(/.*\.\d+/)) { if (typeof encodedAddress !== 'string' || !encodedAddress.match(/.*\.\d+/)) {
throw new Error('Invalid SignalProtocolAddress string'); throw new Error('Invalid SignalProtocolAddress string');
} }
var parts = encodedAddress.split('.'); var parts = encodedAddress.split('.');
return new SignalProtocolAddress(parts[0], parseInt(parts[1])); return new libsignal.SignalProtocolAddress(parts[0], parseInt(parts[1]));
}; };
libsignal.SignalProtocolAddress = SignalProtocolAddress;
function SessionBuilder(storage, remoteAddress) { function SessionBuilder(storage, remoteAddress) {
this.remoteAddress = remoteAddress; this.remoteAddress = remoteAddress;
this.storage = storage; this.storage = storage;
@ -34792,12 +34786,7 @@ SessionBuilder.prototype = {
record = new Internal.SessionRecord(device.identityKey, device.registrationId); record = new Internal.SessionRecord(device.identityKey, device.registrationId);
} }
var open_session = record.getOpenSession(); record.archiveCurrentState();
if (open_session) {
record.closeSession(open_session);
record.updateSessionState(open_session);
}
record.updateSessionState(session, device.registrationId); record.updateSessionState(session, device.registrationId);
return Promise.all([ return Promise.all([
this.storage.storeSession(address, record.serialize()), this.storage.storeSession(address, record.serialize()),
@ -34809,7 +34798,6 @@ SessionBuilder.prototype = {
processV3: function(record, message) { processV3: function(record, message) {
var preKeyPair, signedPreKeyPair; var preKeyPair, signedPreKeyPair;
var session = record.getSessionOrIdentityKeyByBaseKey(message.baseKey); var session = record.getSessionOrIdentityKeyByBaseKey(message.baseKey);
var open_session = record.getOpenSession();
return Promise.all([ return Promise.all([
this.storage.loadPreKey(message.preKeyId), this.storage.loadPreKey(message.preKeyId),
this.storage.loadSignedPreKey(message.signedPreKeyId), this.storage.loadSignedPreKey(message.signedPreKeyId),
@ -34837,11 +34825,7 @@ SessionBuilder.prototype = {
if (util.isEqual(session.indexInfo.remoteIdentityKey, message.identityKey)) { if (util.isEqual(session.indexInfo.remoteIdentityKey, message.identityKey)) {
// If the identity key matches the previous one, close the // If the identity key matches the previous one, close the
// previous one and use the new one // previous one and use the new one
if (open_session !== undefined) { record.archiveCurrentState();
// To be returned and saved later
record.closeSession(open_session);
record.updateSessionState(open_session);
}
} else { } else {
// ...otherwise create an error that the UI will pick up // ...otherwise create an error that the UI will pick up
// and ask the user if they want to re-negotiate // and ask the user if they want to re-negotiate
@ -35284,9 +35268,16 @@ SessionCipher.prototype = {
libsignal.SessionCipher = function(storage, remoteAddress) { libsignal.SessionCipher = function(storage, remoteAddress) {
var cipher = new SessionCipher(storage, remoteAddress); var cipher = new SessionCipher(storage, remoteAddress);
// return Promise that resolves
this.encrypt = cipher.encrypt.bind(cipher); this.encrypt = cipher.encrypt.bind(cipher);
// returns a Promise that inits a session if necessary and resolves
// to a decrypted plaintext array buffer
this.decryptPreKeyWhisperMessage = cipher.decryptPreKeyWhisperMessage.bind(cipher); this.decryptPreKeyWhisperMessage = cipher.decryptPreKeyWhisperMessage.bind(cipher);
// returns a Promise that resolves to decrypted plaintext array buffer
this.decryptWhisperMessage = cipher.decryptWhisperMessage.bind(cipher); this.decryptWhisperMessage = cipher.decryptWhisperMessage.bind(cipher);
} };
})(); })();

View file

@ -44,7 +44,7 @@ describe("Key generation", function() {
before(function(done) { before(function(done) {
localStorage.clear(); localStorage.clear();
libsignal.util.generateIdentityKeyPair().then(function(keyPair) { libsignal.KeyHelper.generateIdentityKeyPair().then(function(keyPair) {
return textsecure.storage.protocol.put('identityKey', keyPair); return textsecure.storage.protocol.put('identityKey', keyPair);
}).then(done, done); }).then(done, done);
}); });

View file

@ -12,7 +12,7 @@ describe('Protocol Wrapper', function() {
this.timeout(5000); this.timeout(5000);
before(function(done) { before(function(done) {
localStorage.clear(); localStorage.clear();
libsignal.util.generateIdentityKeyPair().then(function(identityKey) { libsignal.KeyHelper.generateIdentityKeyPair().then(function(identityKey) {
return textsecure.storage.protocol.putIdentityKey(identifier, identityKey); return textsecure.storage.protocol.putIdentityKey(identifier, identityKey);
}).then(done); }).then(done);
}); });