keejef
/
session-desktop
mirror of https://github.com/oxen-io/session-desktop
2
0
Fork 0
Code Issues 8 Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
unstable
feature/update-crowdin-translations
master
audit2
show
audit
v1.9.1
v1.9.0
v1.8.6
v1.8.5
v1.8.4
v1.8.3
v1.8.2
v1.8.1
v1.8.0
v1.7.9
v1.7.8
v1.7.7
v1.7.6
v1.7.5
v1.7.4
v1.7.3
v1.7.2
v1.7.1
v1.7.0
v1.6.9
v1.6.8
v1.6.7
v1.6.6
v1.6.5
v1.6.4
v1.6.3
v1.6.2
v1.6.11
v1.6.10
v1.6.1
v1.6.0
v1.5.5
v1.5.4
v1.5.3
v1.5.2
v1.5.1
v1.5.0
v1.4.9
v1.4.8
v1.4.7
v1.4.6
v1.4.5
v1.4.4
v1.4.3
v1.4.2
v1.4.11
v1.4.10
v1.4.1
v1.4.0
v1.3.1
v1.3.0
v1.2.1
v1.2.0
v1.14.3
v1.14.2
v1.14.1
v1.14.0
v1.13.2
v1.13.1
v1.13.0
v1.12.5
v1.12.4
v1.12.3
v1.12.2
v1.12.1
v1.12.0
v1.11.5
v1.11.4
v1.11.3
v1.11.2
v1.11.1
v1.11.0
v1.10.8
v1.10.7
v1.10.6
v1.10.5
v1.10.4
v1.10.3
v1.10.2
v1.10.1
v1.10.0
v1.1.2
v1.1.1
v1.0.9
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b8876ebbfe'
${ noResults }
session-desktop/ts/session/apis/snode_api/signature/groupSignature.ts

226 lines
6.9 KiB
TypeScript
Raw Blame History

import {
GroupMemberGet,
GroupPubkeyType,
Uint8ArrayLen100,
Uint8ArrayLen64,
UserGroupsGet,
} from 'libsession_util_nodejs';
import { compact, isEmpty } from 'lodash';
import { MetaGroupWrapperActions } from '../../../../webworker/workers/browser/libsession_worker_interface';
import { getSodiumRenderer } from '../../../crypto/MessageEncrypter';
import { GroupUpdateInviteMessage } from '../../../messages/outgoing/controlMessage/group_v2/to_user/GroupUpdateInviteMessage';
import { StringUtils, UserUtils } from '../../../utils';
import { fromUInt8ArrayToBase64 } from '../../../utils/String';
import { PreConditionFailed } from '../../../utils/errors';
import { GetNetworkTime } from '../getNetworkTime';
import { SnodeNamespacesGroup } from '../namespaces';
import { WithMessagesHashes, WithShortenOrExtend, WithTimestamp } from '../types';
import { SignatureShared } from './signatureShared';
import { SnodeSignatureResult } from './snodeSignatures';
async function getGroupInvitesMessages({
groupName,
membersFromWrapper,
secretKey,
groupPk,
}: {
membersFromWrapper: Array<GroupMemberGet>;
groupName: string;
secretKey: Uint8ArrayLen64; // len 64
groupPk: GroupPubkeyType;
}) {
const sodium = await getSodiumRenderer();
const timestamp = GetNetworkTime.getNowWithNetworkOffset();
const inviteDetails = compact(
await Promise.all(
membersFromWrapper.map(async ({ pubkeyHex: member }) => {
if (UserUtils.isUsFromCache(member)) {
return null;
}
const tosign = `INVITE${member}${timestamp}`;
// Note: as the signature is built with the timestamp here, we cannot override the timestamp later on the sending pipeline
const adminSignature = sodium.crypto_sign_detached(tosign, secretKey);
const memberAuthData = await MetaGroupWrapperActions.makeSwarmSubAccount(groupPk, member);
const invite = new GroupUpdateInviteMessage({
groupName,
groupPk,
timestamp,
adminSignature,
memberAuthData,
});
return { member, invite };
})
)
);
return inviteDetails;
}
type ParamsShared = {
groupPk: GroupPubkeyType;
namespace: SnodeNamespacesGroup;
method: 'retrieve' | 'store';
};
type SigParamsAdmin = ParamsShared & {
groupIdentityPrivKey: Uint8ArrayLen64;
};
type SigParamsSubaccount = ParamsShared & {
authData: Uint8ArrayLen100;
};
export type SigResultAdmin = Pick<SnodeSignatureResult, 'signature' | 'timestamp'> & {
pubkey: GroupPubkeyType; // this is the 03 pubkey of the corresponding group
};
export type SigResultSubAccount = SigResultAdmin & {
subaccount: string;
subaccount_sig: string;
};
async function getSnodeGroupSignatureParams(params: SigParamsAdmin): Promise<SigResultAdmin>;
async function getSnodeGroupSignatureParams(
params: SigParamsSubaccount
): Promise<SigResultSubAccount>;
async function getSnodeGroupSignatureParams(
params: SigParamsAdmin | SigParamsSubaccount
): Promise<SigResultSubAccount | SigResultAdmin> {
if ('groupIdentityPrivKey' in params) {
return getSnodeGroupAdminSignatureParams(params);
}
return getSnodeGroupSubAccountSignatureParams(params);
}
async function getSnodeGroupSubAccountSignatureParams(
params: SigParamsSubaccount
): Promise<SigResultSubAccount> {
const { signatureTimestamp, toSign } =
SignatureShared.getVerificationDataForStoreRetrieve(params);
const sigResult = await MetaGroupWrapperActions.swarmSubaccountSign(
params.groupPk,
toSign,
params.authData
);
return {
...sigResult,
timestamp: signatureTimestamp,
pubkey: params.groupPk,
};
}
async function getSnodeGroupAdminSignatureParams(params: SigParamsAdmin): Promise<SigResultAdmin> {
const sigData = await SignatureShared.getSnodeSignatureShared({
pubKey: params.groupPk,
method: params.method,
namespace: params.namespace,
privKey: params.groupIdentityPrivKey,
});
return { ...sigData, pubkey: params.groupPk };
}
type GroupDetailsNeededForSignature = Pick<UserGroupsGet, 'pubkeyHex' | 'authData' | 'secretKey'>;
async function getSnodeGroupSignature({
group,
method,
namespace,
}: {
group: GroupDetailsNeededForSignature | null;
method: 'store' | 'retrieve';
namespace: SnodeNamespacesGroup;
}) {
if (!group) {
throw new Error(`getSnodeGroupSignature: did not find group in wrapper`);
}
const { pubkeyHex: groupPk, secretKey, authData } = group;
const groupSecretKey = secretKey && !isEmpty(secretKey) ? secretKey : null;
const groupAuthData = authData && !isEmpty(authData) ? authData : null;
if (groupSecretKey) {
return getSnodeGroupSignatureParams({
method,
namespace,
groupPk,
groupIdentityPrivKey: groupSecretKey,
});
}
if (groupAuthData) {
const subAccountSign = await getSnodeGroupSignatureParams({
groupPk,
method,
namespace,
authData: groupAuthData,
});
return subAccountSign;
}
throw new Error(`getSnodeGroupSignature: needs either groupSecretKey or authData`);
}
// this is kind of duplicated with `generateUpdateExpirySignature`, but needs to use the authData when secretKey is not available
async function generateUpdateExpiryGroupSignature({
shortenOrExtend,
timestamp,
messagesHashes,
group,
}: WithMessagesHashes &
WithShortenOrExtend &
WithTimestamp & {
group: GroupDetailsNeededForSignature | null;
}) {
if (!group || isEmpty(group.pubkeyHex)) {
throw new PreConditionFailed('generateUpdateExpiryGroupSignature groupPk is empty');
}
// "expire" || ShortenOrExtend || expiry || messages[0] || ... || messages[N]
const verificationString = `expire${shortenOrExtend}${timestamp}${messagesHashes.join('')}`;
const verificationData = StringUtils.encode(verificationString, 'utf8');
const message = new Uint8Array(verificationData);
if (!group) {
throw new Error('generateUpdateExpiryGroupSignature group was not found');
}
const { pubkeyHex: groupPk, secretKey, authData } = group;
const groupSecretKey = secretKey && !isEmpty(secretKey) ? secretKey : null;
const groupAuthData = authData && !isEmpty(authData) ? authData : null;
if (!groupSecretKey && !groupAuthData) {
throw new Error(`retrieveRequestForGroup: needs either groupSecretKey or authData`);
}
const sodium = await getSodiumRenderer();
const shared = { timestamp, pubkey: groupPk };
if (groupSecretKey) {
return {
signature: fromUInt8ArrayToBase64(sodium.crypto_sign_detached(message, groupSecretKey)),
...shared,
};
}
if (groupAuthData) {
const subaccountSign = await MetaGroupWrapperActions.swarmSubaccountSign(
groupPk,
message,
groupAuthData
);
return {
...subaccountSign,
...shared,
};
}
throw new Error(`generateUpdateExpiryGroupSignature: needs either groupSecretKey or authData`);
}
export const SnodeGroupSignature = {
generateUpdateExpiryGroupSignature,
getGroupInvitesMessages,
getSnodeGroupSignature,
};
Reference in New Issue View Git Blame Copy Permalink