keejef
/
session-desktop
mirror of https://github.com/oxen-io/session-desktop
2
0
Fork 0
Code Issues 8 Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
unstable
feature/update-crowdin-translations
master
audit2
show
audit
v1.9.1
v1.9.0
v1.8.6
v1.8.5
v1.8.4
v1.8.3
v1.8.2
v1.8.1
v1.8.0
v1.7.9
v1.7.8
v1.7.7
v1.7.6
v1.7.5
v1.7.4
v1.7.3
v1.7.2
v1.7.1
v1.7.0
v1.6.9
v1.6.8
v1.6.7
v1.6.6
v1.6.5
v1.6.4
v1.6.3
v1.6.2
v1.6.11
v1.6.10
v1.6.1
v1.6.0
v1.5.5
v1.5.4
v1.5.3
v1.5.2
v1.5.1
v1.5.0
v1.4.9
v1.4.8
v1.4.7
v1.4.6
v1.4.5
v1.4.4
v1.4.3
v1.4.2
v1.4.11
v1.4.10
v1.4.1
v1.4.0
v1.3.1
v1.3.0
v1.2.1
v1.2.0
v1.14.3
v1.14.2
v1.14.1
v1.14.0
v1.13.2
v1.13.1
v1.13.0
v1.12.5
v1.12.4
v1.12.3
v1.12.2
v1.12.1
v1.12.0
v1.11.5
v1.11.4
v1.11.3
v1.11.2
v1.11.1
v1.11.0
v1.10.8
v1.10.7
v1.10.6
v1.10.5
v1.10.4
v1.10.3
v1.10.2
v1.10.1
v1.10.0
v1.1.2
v1.1.1
v1.0.9
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '250e3d0238'
${ noResults }
session-desktop/ts/session/group/closed-group.ts

498 lines
15 KiB
TypeScript
Raw Blame History

import _ from 'lodash';
import { v4 as uuidv4 } from 'uuid';
import { PubKey } from '../types';
import { getMessageQueue } from '..';
import { Data } from '../../data/data';
import { ConversationModel } from '../../models/conversation';
import { ConversationAttributes, ConversationTypeEnum } from '../../models/conversationAttributes';
import { MessageModel } from '../../models/message';
import { SignalService } from '../../protobuf';
import {
addKeyPairToCacheAndDBIfNeeded,
distributingClosedGroupEncryptionKeyPairs,
} from '../../receiver/closedGroups';
import { ECKeyPair } from '../../receiver/keypairs';
import { GetNetworkTime } from '../apis/snode_api/getNetworkTime';
import { SnodeNamespaces } from '../apis/snode_api/namespaces';
import { getConversationController } from '../conversations';
import { generateCurve25519KeyPairWithoutPrefix } from '../crypto';
import { encryptUsingSessionProtocol } from '../crypto/MessageEncrypter';
import { ClosedGroupAddedMembersMessage } from '../messages/outgoing/controlMessage/group/ClosedGroupAddedMembersMessage';
import { ClosedGroupEncryptionPairMessage } from '../messages/outgoing/controlMessage/group/ClosedGroupEncryptionPairMessage';
import { ClosedGroupNameChangeMessage } from '../messages/outgoing/controlMessage/group/ClosedGroupNameChangeMessage';
import { ClosedGroupNewMessage } from '../messages/outgoing/controlMessage/group/ClosedGroupNewMessage';
import { ClosedGroupRemovedMembersMessage } from '../messages/outgoing/controlMessage/group/ClosedGroupRemovedMembersMessage';
import { UserUtils } from '../utils';
import { fromHexToArray, toHex } from '../utils/String';
import {
DisappearAfterSendOnly,
changeToDisappearingMessageType,
setExpirationStartTimestamp,
} from '../../util/expiringMessages';
export type GroupInfo = {
id: string;
name: string;
members: Array<string>;
zombies?: Array<string>;
activeAt?: number;
expirationType?: DisappearAfterSendOnly;
expireTimer?: number;
admins?: Array<string>;
};
export interface GroupDiff extends MemberChanges {
newName?: string;
}
export interface MemberChanges {
joiningMembers?: Array<string>;
leavingMembers?: Array<string>;
kickedMembers?: Array<string>;
}
/**
* This function is only called when the local user makes a change to a group.
* So this function is not called on group updates from the network, even from another of our devices.
*
* @param groupId the conversationID
* @param groupName the new name (or just pass the old one if nothing changed)
* @param members the new members (or just pass the old one if nothing changed)
* @returns nothing
*/
export async function initiateClosedGroupUpdate(
groupId: string,
groupName: string,
members: Array<string>
) {
const isGroupV3 = PubKey.isClosedGroupV3(groupId);
const convo = await getConversationController().getOrCreateAndWait(
groupId,
isGroupV3 ? ConversationTypeEnum.GROUPV3 : ConversationTypeEnum.GROUP
);
const expirationType = changeToDisappearingMessageType(
convo,
convo.get('expireTimer'),
convo.get('expirationMode')
);
if (expirationType === 'deleteAfterRead') {
throw new Error(`Groups cannot be deleteAfterRead. convo id: ${convo.id}`);
}
// do not give an admins field here. We don't want to be able to update admins and
// updateOrCreateClosedGroup() will update them if given the choice.
const groupDetails: GroupInfo = {
id: groupId,
name: groupName,
members,
// remove from the zombies list the zombies not which are not in the group anymore
zombies: convo.get('zombies')?.filter(z => members.includes(z)),
activeAt: Date.now(),
expirationType,
expireTimer: convo.get('expireTimer'),
};
const diff = buildGroupDiff(convo, groupDetails);
await updateOrCreateClosedGroup(groupDetails);
const updateObj: GroupInfo = {
id: groupId,
name: groupName,
members,
admins: convo.get('groupAdmins'),
};
if (diff.newName?.length) {
const nameOnlyDiff: GroupDiff = _.pick(diff, 'newName');
const dbMessageName = await addUpdateMessage(
convo,
nameOnlyDiff,
UserUtils.getOurPubKeyStrFromCache(),
Date.now()
);
await sendNewName(convo, diff.newName, dbMessageName.id as string);
}
if (diff.joiningMembers?.length) {
const joiningOnlyDiff: GroupDiff = _.pick(diff, 'joiningMembers');
const dbMessageAdded = await addUpdateMessage(
convo,
joiningOnlyDiff,
UserUtils.getOurPubKeyStrFromCache(),
Date.now()
);
await sendAddedMembers(convo, diff.joiningMembers, dbMessageAdded.id as string, updateObj);
}
if (diff.leavingMembers?.length) {
const leavingOnlyDiff: GroupDiff = { kickedMembers: diff.leavingMembers };
const dbMessageLeaving = await addUpdateMessage(
convo,
leavingOnlyDiff,
UserUtils.getOurPubKeyStrFromCache(),
Date.now()
);
const stillMembers = members;
await sendRemovedMembers(
convo,
diff.leavingMembers,
stillMembers,
dbMessageLeaving.id as string
);
}
await convo.commit();
}
export async function addUpdateMessage(
convo: ConversationModel,
diff: GroupDiff,
sender: string,
sentAt: number
): Promise<MessageModel> {
const groupUpdate: any = {};
if (diff.newName) {
groupUpdate.name = diff.newName;
}
if (diff.joiningMembers) {
groupUpdate.joined = diff.joiningMembers;
}
if (diff.leavingMembers) {
groupUpdate.left = diff.leavingMembers;
}
if (diff.kickedMembers) {
groupUpdate.kicked = diff.kickedMembers;
}
const expirationMode = convo.get('expirationMode');
const expireTimer = convo.get('expireTimer');
let expirationType;
let expirationStartTimestamp;
if (convo && expirationMode && expireTimer > 0) {
expirationType =
expirationMode !== 'off'
? changeToDisappearingMessageType(convo, convo.get('expireTimer'), expirationMode)
: undefined;
// NOTE Trigger for an incoming message
// TODO legacy messages support will be removed in a future release
if (expirationMode === 'legacy' || expirationMode === 'deleteAfterSend') {
expirationStartTimestamp = setExpirationStartTimestamp(
expirationMode,
sentAt,
'addUpdateMessage'
);
}
}
const msgModel = {
sent_at: sentAt,
group_update: groupUpdate,
expirationType,
expireTimer,
expirationStartTimestamp,
};
if (UserUtils.isUsFromCache(sender)) {
const outgoingMessage = await convo.addSingleOutgoingMessage(msgModel);
return outgoingMessage;
}
const incomingMessage = await convo.addSingleIncomingMessage({
...msgModel,
source: sender,
});
await convo.commit();
return incomingMessage;
}
function buildGroupDiff(convo: ConversationModel, update: GroupInfo): GroupDiff {
const groupDiff: GroupDiff = {};
if (convo.get('displayNameInProfile') !== update.name) {
groupDiff.newName = update.name;
}
const oldMembers = convo.get('members');
const oldZombies = convo.get('zombies');
const oldMembersWithZombies = _.uniq(oldMembers.concat(oldZombies));
const newMembersWithZombiesLeft = _.uniq(update.members.concat(update.zombies || []));
const addedMembers = _.difference(newMembersWithZombiesLeft, oldMembersWithZombies);
if (addedMembers.length > 0) {
groupDiff.joiningMembers = addedMembers;
}
// Check if anyone got kicked:
const removedMembers = _.difference(oldMembersWithZombies, newMembersWithZombiesLeft);
if (removedMembers.length > 0) {
groupDiff.leavingMembers = removedMembers;
}
return groupDiff;
}
export async function updateOrCreateClosedGroup(details: GroupInfo) {
const { id } = details;
const conversation = await getConversationController().getOrCreateAndWait(
id,
ConversationTypeEnum.GROUP
);
const updates: Pick<
ConversationAttributes,
'type' | 'members' | 'displayNameInProfile' | 'active_at' | 'left'
> = {
displayNameInProfile: details.name,
members: details.members,
// Note: legacy group to not support change of admins.
type: ConversationTypeEnum.GROUP,
active_at: details.activeAt ? details.activeAt : 0,
left: !details.activeAt,
};
conversation.set(updates);
await conversation.unhideIfNeeded(false);
if (details.admins?.length) {
await conversation.updateGroupAdmins(details.admins, false);
}
await conversation.commit();
}
async function sendNewName(convo: ConversationModel, name: string, messageId: string) {
if (name.length === 0) {
window?.log?.warn('No name given for group update. Skipping');
return;
}
const groupId = convo.get('id');
// Send the update to the group
const nameChangeMessage = new ClosedGroupNameChangeMessage({
timestamp: Date.now(),
groupId,
identifier: messageId,
name,
});
await getMessageQueue().sendToGroup({
message: nameChangeMessage,
namespace: SnodeNamespaces.ClosedGroupMessage,
});
}
async function sendAddedMembers(
convo: ConversationModel,
addedMembers: Array<string>,
messageId: string,
groupUpdate: GroupInfo
) {
if (!addedMembers?.length) {
window?.log?.warn('No addedMembers given for group update. Skipping');
return;
}
const { id: groupId, members, name: groupName } = groupUpdate;
const admins = groupUpdate.admins || [];
// Check preconditions
const hexEncryptionKeyPair = await Data.getLatestClosedGroupEncryptionKeyPair(groupId);
if (!hexEncryptionKeyPair) {
throw new Error("Couldn't get key pair for closed group");
}
const encryptionKeyPair = ECKeyPair.fromHexKeyPair(hexEncryptionKeyPair);
const expirationMode = convo.get('expirationMode') || 'off';
const existingExpireTimer = convo.get('expireTimer') || 0;
// Send the Added Members message to the group (only members already in the group will get it)
const closedGroupControlMessage = new ClosedGroupAddedMembersMessage({
timestamp: Date.now(),
groupId,
addedMembers,
identifier: messageId,
});
await getMessageQueue().sendToGroup({
message: closedGroupControlMessage,
namespace: SnodeNamespaces.ClosedGroupMessage,
});
// Send closed group update messages to any new members individually
const newClosedGroupUpdate = new ClosedGroupNewMessage({
timestamp: Date.now(),
name: groupName,
groupId,
admins,
members,
keypair: encryptionKeyPair,
identifier: messageId || uuidv4(),
expirationType: changeToDisappearingMessageType(convo, existingExpireTimer, expirationMode),
expireTimer: existingExpireTimer,
});
const promises = addedMembers.map(async m => {
await getConversationController().getOrCreateAndWait(m, ConversationTypeEnum.PRIVATE);
const memberPubKey = PubKey.cast(m);
await getMessageQueue().sendToPubKey(
memberPubKey,
newClosedGroupUpdate,
SnodeNamespaces.UserMessages
);
});
await Promise.all(promises);
}
export async function sendRemovedMembers(
convo: ConversationModel,
removedMembers: Array<string>,
stillMembers: Array<string>,
messageId?: string
) {
if (!removedMembers?.length) {
window?.log?.warn('No removedMembers given for group update. Skipping');
return;
}
const ourNumber = UserUtils.getOurPubKeyFromCache();
const admins = convo.get('groupAdmins') || [];
const groupId = convo.get('id');
const isCurrentUserAdmin = admins.includes(ourNumber.key);
const isUserLeaving = removedMembers.includes(ourNumber.key);
if (isUserLeaving) {
throw new Error('Cannot remove members and leave the group at the same time');
}
if (removedMembers.includes(admins[0]) && stillMembers.length !== 0) {
throw new Error("Can't remove admin from closed group without removing everyone.");
}
// Send the update to the group and generate + distribute a new encryption key pair if needed
const mainClosedGroupControlMessage = new ClosedGroupRemovedMembersMessage({
timestamp: Date.now(),
groupId,
removedMembers,
identifier: messageId,
});
// Send the group update, and only once sent, generate and distribute a new encryption key pair if needed
await getMessageQueue().sendToGroup({
message: mainClosedGroupControlMessage,
namespace: SnodeNamespaces.ClosedGroupMessage,
sentCb: async () => {
if (isCurrentUserAdmin) {
// we send the new encryption key only to members already here before the update
window?.log?.info(
`Sending group update: A user was removed from ${groupId} and we are the admin. Generating and sending a new EncryptionKeyPair`
);
await generateAndSendNewEncryptionKeyPair(groupId, stillMembers);
}
},
});
}
async function generateAndSendNewEncryptionKeyPair(
groupPublicKey: string,
targetMembers: Array<string>
) {
const groupConvo = getConversationController().get(groupPublicKey);
const groupId = fromHexToArray(groupPublicKey);
if (!groupConvo) {
window?.log?.warn(
'generateAndSendNewEncryptionKeyPair: conversation not found',
groupPublicKey
);
return;
}
if (!groupConvo.isClosedGroup()) {
window?.log?.warn(
'generateAndSendNewEncryptionKeyPair: conversation not a closed group',
groupPublicKey
);
return;
}
const ourNumber = UserUtils.getOurPubKeyStrFromCache();
if (!groupConvo.get('groupAdmins')?.includes(ourNumber)) {
window?.log?.warn('generateAndSendNewEncryptionKeyPair: cannot send it as a non admin');
return;
}
// Generate the new encryption key pair
const newKeyPair = await generateCurve25519KeyPairWithoutPrefix();
if (!newKeyPair) {
window?.log?.warn('generateAndSendNewEncryptionKeyPair: failed to generate new keypair');
return;
}
// Distribute it
const wrappers = await buildEncryptionKeyPairWrappers(targetMembers, newKeyPair);
const keypairsMessage = new ClosedGroupEncryptionPairMessage({
groupId: toHex(groupId),
timestamp: GetNetworkTime.getNowWithNetworkOffset(),
encryptedKeyPairs: wrappers,
});
distributingClosedGroupEncryptionKeyPairs.set(toHex(groupId), newKeyPair);
const messageSentCallback = async () => {
window?.log?.info(
`KeyPairMessage for ClosedGroup ${groupPublicKey} is sent. Saving the new encryptionKeyPair.`
);
distributingClosedGroupEncryptionKeyPairs.delete(toHex(groupId));
await addKeyPairToCacheAndDBIfNeeded(toHex(groupId), newKeyPair.toHexKeyPair());
await groupConvo?.commit(); // this makes sure to include the new encryption keypair in the libsession usergroup wrapper
};
// this is to be sent to the group pubkey address
await getMessageQueue().sendToGroup({
message: keypairsMessage,
namespace: SnodeNamespaces.ClosedGroupMessage,
sentCb: messageSentCallback,
});
}
export async function buildEncryptionKeyPairWrappers(
targetMembers: Array<string>,
encryptionKeyPair: ECKeyPair
) {
if (
!encryptionKeyPair ||
!encryptionKeyPair.publicKeyData.length ||
!encryptionKeyPair.privateKeyData.length
) {
throw new Error('buildEncryptionKeyPairWrappers() needs a valid encryptionKeyPair set');
}
const proto = new SignalService.KeyPair({
privateKey: encryptionKeyPair?.privateKeyData,
publicKey: encryptionKeyPair?.publicKeyData,
});
const plaintext = SignalService.KeyPair.encode(proto).finish();
const wrappers = await Promise.all(
targetMembers.map(async pubkey => {
const ciphertext = await encryptUsingSessionProtocol(PubKey.cast(pubkey), plaintext);
return new SignalService.DataMessage.ClosedGroupControlMessage.KeyPairWrapper({
encryptedKeyPair: ciphertext,
publicKey: fromHexToArray(pubkey),
});
})
);
return wrappers;
}
Reference in New Issue View Git Blame Copy Permalink