session-ios/SessionUtilitiesKit/Database/Models/Identity.swift

// Copyright © 2022 Rangeproof Pty Ltd. All rights reserved.

import Foundation
import GRDB
import Sodium
import Curve25519Kit
import CryptoSwift

public struct Identity: Codable, Identifiable, FetchableRecord, PersistableRecord, TableRecord, ColumnExpressible {
    public static var databaseTableName: String { "identity" }
    
    public typealias Columns = CodingKeys
    public enum CodingKeys: String, CodingKey, ColumnExpression {
        case variant
        case data
    }
    
    public enum Variant: String, Codable, CaseIterable, DatabaseValueConvertible {
        case seed
        case ed25519SecretKey
        case ed25519PublicKey
        case x25519PrivateKey
        case x25519PublicKey
    }
    
    public var id: Variant { variant }
    
    let variant: Variant
    let data: Data
}

// MARK: - Convenience

extension ECKeyPair {
    func toData() -> Data {
        var targetValue: ECKeyPair = self

        return Data(bytes: &targetValue, count: MemoryLayout.size(ofValue: targetValue))
    }
}

// MARK: - GRDB Interactions

public extension Identity {
    static func generate(from seed: Data) throws -> (ed25519KeyPair: Sign.KeyPair, x25519KeyPair: ECKeyPair) {
        assert(seed.count == 16)
        let padding = Data(repeating: 0, count: 16)
        
        guard
            let ed25519KeyPair = Sodium().sign.keyPair(seed: (seed + padding).bytes),
            let x25519PublicKey = Sodium().sign.toX25519(ed25519PublicKey: ed25519KeyPair.publicKey),
            let x25519SecretKey = Sodium().sign.toX25519(ed25519SecretKey: ed25519KeyPair.secretKey)
        else {
            throw GeneralError.keyGenerationFailed
        }
        
        let x25519KeyPair = try ECKeyPair(publicKeyData: Data(x25519PublicKey), privateKeyData: Data(x25519SecretKey))
        
        return (ed25519KeyPair: ed25519KeyPair, x25519KeyPair: x25519KeyPair)
    }

    static func store(seed: Data, ed25519KeyPair: Sign.KeyPair, x25519KeyPair: ECKeyPair) {
        GRDBStorage.shared.write { db in
            try Identity(variant: .seed, data: seed).save(db)
            try Identity(variant: .ed25519SecretKey, data: Data(ed25519KeyPair.secretKey)).save(db)
            try Identity(variant: .ed25519PublicKey, data: Data(ed25519KeyPair.publicKey)).save(db)
            try Identity(variant: .x25519PrivateKey, data: x25519KeyPair.privateKey).save(db)
            try Identity(variant: .x25519PublicKey, data: x25519KeyPair.publicKey).save(db)
        }
    }
    
    static func userExists(_ db: Database? = nil) -> Bool {
        let userExists: (Database) -> Bool = { db in
            return (
                (try? Identity.fetchOne(db, id: .x25519PublicKey)) != nil &&
                (try? Identity.fetchOne(db, id: .x25519PrivateKey)) != nil
            )
        }
        
        if let db: Database = db {
            return userExists(db)
        }
        
        return GRDBStorage.shared
            .read { db -> Bool in userExists(db) }
            .defaulting(to: false)
    }
    
    static func fetchUserPublicKey(_ db: Database? = nil) -> Data? {
        if let db: Database = db {
            return try? Identity.fetchOne(db, id: .x25519PublicKey)?.data
        }
        
        return GRDBStorage.shared.read { db -> Data? in
            try Identity.fetchOne(db, id: .x25519PublicKey)?.data
        }
    }
    
    static func fetchUserPrivateKey(_ db: Database? = nil) -> Data? {
        if let db: Database = db {
            return try? Identity.fetchOne(db, id: .x25519PrivateKey)?.data
        }
        
        return GRDBStorage.shared.read { db -> Data? in
            try Identity.fetchOne(db, id: .x25519PrivateKey)?.data
        }
    }
    
    static func fetchUserKeyPair(_ db: Database? = nil) -> Box.KeyPair? {
        let fetchKeys: (Database) -> Box.KeyPair? = { db in
            guard
                let publicKey: Identity = try? Identity.fetchOne(db, id: .x25519PublicKey),
                let privateKey: Identity = try? Identity.fetchOne(db, id: .x25519PrivateKey)
            else {
                return nil
            }
            
            return Box.KeyPair(
                publicKey: publicKey.data.bytes,
                secretKey: privateKey.data.bytes
            )
        }
        
        if let db: Database = db {
            return fetchKeys(db)
        }
        
        return GRDBStorage.shared.read { db -> Box.KeyPair? in
            return fetchKeys(db)
        }
    }
    
    static func fetchUserEd25519KeyPair() -> Box.KeyPair? {
        return GRDBStorage.shared.read { db -> Box.KeyPair? in
            guard
                let publicKey: Identity = try? Identity.fetchOne(db, id: .ed25519PublicKey),
                let secretKey: Identity = try? Identity.fetchOne(db, id: .ed25519SecretKey)
            else {
                return nil
            }
            
            return Box.KeyPair(
                publicKey: publicKey.data.bytes,
                secretKey: secretKey.data.bytes
            )
        }
    }
    
    static func fetchHexEncodedSeed() -> String? {
        return GRDBStorage.shared.read { db in
            guard let value: Identity = try? Identity.fetchOne(db, id: .seed) else {
                return nil
            }
            
            return value.data.toHexString()
        }
    }
    
    static func clearAll() {
        GRDBStorage.shared.write { db in
            try Identity.deleteAll(db)
        }
    }
}

@objc(SUKIdentity)
public class objc_Identity: NSObject {
    @objc(clearAll)
    public static func objc_clearAll() {
        Identity.clearAll()
    }
}
Migrated the SessionSnodeKit from YapDatabase to GRDB Changed the min OS version to iOS 13.0 (support for 'Identifiable') Removed the alternate approaches to fetching the userKeyPair and userPublicKeyHexString (no consistently routed through the caching method) Migrated the 'OWSIdentityManager' logic to use the new 'Identity' type Added the 'Setting' table and got the pattern working fairly nicely (unfortunately there isn't a good way to avoid key collision without proper enums) Updated the SessionSnodeKit to migration it's data from YDB to GRDB Updated the SessionSnodeKit to use GRDB throughout it's logic 3 years ago			`// Copyright © 2022 Rangeproof Pty Ltd. All rights reserved.`

			`import Foundation`
			`import GRDB`
			`import Sodium`
			`import Curve25519Kit`
			`import CryptoSwift`

			`public struct Identity: Codable, Identifiable, FetchableRecord, PersistableRecord, TableRecord, ColumnExpressible {`
			`public static var databaseTableName: String { "identity" }`

			`public typealias Columns = CodingKeys`
			`public enum CodingKeys: String, CodingKey, ColumnExpression {`
			`case variant`
			`case data`
			`}`

Further work on SessionMessagingKit migrations Added migrations for contacts and started working through thread migration (have contact and closed group threads migrating) Deprecated usage of ECKeyPair in the migrations (want to be able to remove Curve25519Kit in the future) 3 years ago			`public enum Variant: String, Codable, CaseIterable, DatabaseValueConvertible {`
Migrated the SessionSnodeKit from YapDatabase to GRDB Changed the min OS version to iOS 13.0 (support for 'Identifiable') Removed the alternate approaches to fetching the userKeyPair and userPublicKeyHexString (no consistently routed through the caching method) Migrated the 'OWSIdentityManager' logic to use the new 'Identity' type Added the 'Setting' table and got the pattern working fairly nicely (unfortunately there isn't a good way to avoid key collision without proper enums) Updated the SessionSnodeKit to migration it's data from YDB to GRDB Updated the SessionSnodeKit to use GRDB throughout it's logic 3 years ago			`case seed`
			`case ed25519SecretKey`
			`case ed25519PublicKey`
			`case x25519PrivateKey`
			`case x25519PublicKey`
			`}`

			`public var id: Variant { variant }`

			`let variant: Variant`
			`let data: Data`
			`}`

			`// MARK: - Convenience`

			`extension ECKeyPair {`
			`func toData() -> Data {`
			`var targetValue: ECKeyPair = self`

			`return Data(bytes: &targetValue, count: MemoryLayout.size(ofValue: targetValue))`
			`}`
			`}`

Further work on SessionMessagingKit migrations Added migrations for contacts and started working through thread migration (have contact and closed group threads migrating) Deprecated usage of ECKeyPair in the migrations (want to be able to remove Curve25519Kit in the future) 3 years ago			`// MARK: - GRDB Interactions`
Migrated the SessionSnodeKit from YapDatabase to GRDB Changed the min OS version to iOS 13.0 (support for 'Identifiable') Removed the alternate approaches to fetching the userKeyPair and userPublicKeyHexString (no consistently routed through the caching method) Migrated the 'OWSIdentityManager' logic to use the new 'Identity' type Added the 'Setting' table and got the pattern working fairly nicely (unfortunately there isn't a good way to avoid key collision without proper enums) Updated the SessionSnodeKit to migration it's data from YDB to GRDB Updated the SessionSnodeKit to use GRDB throughout it's logic 3 years ago
			`public extension Identity {`
			`static func generate(from seed: Data) throws -> (ed25519KeyPair: Sign.KeyPair, x25519KeyPair: ECKeyPair) {`
			`assert(seed.count == 16)`
			`let padding = Data(repeating: 0, count: 16)`

			`guard`
			`let ed25519KeyPair = Sodium().sign.keyPair(seed: (seed + padding).bytes),`
			`let x25519PublicKey = Sodium().sign.toX25519(ed25519PublicKey: ed25519KeyPair.publicKey),`
			`let x25519SecretKey = Sodium().sign.toX25519(ed25519SecretKey: ed25519KeyPair.secretKey)`
			`else {`
			`throw GeneralError.keyGenerationFailed`
			`}`

			`let x25519KeyPair = try ECKeyPair(publicKeyData: Data(x25519PublicKey), privateKeyData: Data(x25519SecretKey))`

			`return (ed25519KeyPair: ed25519KeyPair, x25519KeyPair: x25519KeyPair)`
			`}`

			`static func store(seed: Data, ed25519KeyPair: Sign.KeyPair, x25519KeyPair: ECKeyPair) {`
			`GRDBStorage.shared.write { db in`
			`try Identity(variant: .seed, data: seed).save(db)`
			`try Identity(variant: .ed25519SecretKey, data: Data(ed25519KeyPair.secretKey)).save(db)`
			`try Identity(variant: .ed25519PublicKey, data: Data(ed25519KeyPair.publicKey)).save(db)`
			`try Identity(variant: .x25519PrivateKey, data: x25519KeyPair.privateKey).save(db)`
			`try Identity(variant: .x25519PublicKey, data: x25519KeyPair.publicKey).save(db)`
			`}`
			`}`

Further work on SessionMessagingKit migrations Added migrations for contacts and started working through thread migration (have contact and closed group threads migrating) Deprecated usage of ECKeyPair in the migrations (want to be able to remove Curve25519Kit in the future) 3 years ago			`static func userExists(_ db: Database? = nil) -> Bool {`
			`let userExists: (Database) -> Bool = { db in`
			`return (`
			`(try? Identity.fetchOne(db, id: .x25519PublicKey)) != nil &&`
			`(try? Identity.fetchOne(db, id: .x25519PrivateKey)) != nil`
			`)`
			`}`

			`if let db: Database = db {`
			`return userExists(db)`
			`}`

			`return GRDBStorage.shared`
			`.read { db -> Bool in userExists(db) }`
			`.defaulting(to: false)`
			`}`

			`static func fetchUserPublicKey(_ db: Database? = nil) -> Data? {`
			`if let db: Database = db {`
			`return try? Identity.fetchOne(db, id: .x25519PublicKey)?.data`
			`}`

			`return GRDBStorage.shared.read { db -> Data? in`
			`try Identity.fetchOne(db, id: .x25519PublicKey)?.data`
			`}`
			`}`

			`static func fetchUserPrivateKey(_ db: Database? = nil) -> Data? {`
			`if let db: Database = db {`
			`return try? Identity.fetchOne(db, id: .x25519PrivateKey)?.data`
			`}`

			`return GRDBStorage.shared.read { db -> Data? in`
			`try Identity.fetchOne(db, id: .x25519PrivateKey)?.data`
			`}`
			`}`

			`static func fetchUserKeyPair(_ db: Database? = nil) -> Box.KeyPair? {`
			`let fetchKeys: (Database) -> Box.KeyPair? = { db in`
Migrated the SessionSnodeKit from YapDatabase to GRDB Changed the min OS version to iOS 13.0 (support for 'Identifiable') Removed the alternate approaches to fetching the userKeyPair and userPublicKeyHexString (no consistently routed through the caching method) Migrated the 'OWSIdentityManager' logic to use the new 'Identity' type Added the 'Setting' table and got the pattern working fairly nicely (unfortunately there isn't a good way to avoid key collision without proper enums) Updated the SessionSnodeKit to migration it's data from YDB to GRDB Updated the SessionSnodeKit to use GRDB throughout it's logic 3 years ago			`guard`
			`let publicKey: Identity = try? Identity.fetchOne(db, id: .x25519PublicKey),`
			`let privateKey: Identity = try? Identity.fetchOne(db, id: .x25519PrivateKey)`
			`else {`
			`return nil`
			`}`

Further work on migrations and message pipeline refactoring Refactored the AppDelegate from Objective C to Swift Updated the HomeVC to use GRDB Refactored a number of the Job types to be driven via GRDB and the new JobRunner Fixed a bug where the LinkPreviewView wouldn't render correctly in dark mode 3 years ago			`return Box.KeyPair(`
Further work on SessionMessagingKit migrations Added migrations for contacts and started working through thread migration (have contact and closed group threads migrating) Deprecated usage of ECKeyPair in the migrations (want to be able to remove Curve25519Kit in the future) 3 years ago			`publicKey: publicKey.data.bytes,`
			`secretKey: privateKey.data.bytes`
Migrated the SessionSnodeKit from YapDatabase to GRDB Changed the min OS version to iOS 13.0 (support for 'Identifiable') Removed the alternate approaches to fetching the userKeyPair and userPublicKeyHexString (no consistently routed through the caching method) Migrated the 'OWSIdentityManager' logic to use the new 'Identity' type Added the 'Setting' table and got the pattern working fairly nicely (unfortunately there isn't a good way to avoid key collision without proper enums) Updated the SessionSnodeKit to migration it's data from YDB to GRDB Updated the SessionSnodeKit to use GRDB throughout it's logic 3 years ago			`)`
			`}`
Started adding migration logic for contacts Updated the getUserHexEncodedPublicKey to take an optional db value so we can retrieve it during the initial migration 3 years ago
			`if let db: Database = db {`
			`return fetchKeys(db)`
			`}`

Further work on SessionMessagingKit migrations Added migrations for contacts and started working through thread migration (have contact and closed group threads migrating) Deprecated usage of ECKeyPair in the migrations (want to be able to remove Curve25519Kit in the future) 3 years ago			`return GRDBStorage.shared.read { db -> Box.KeyPair? in`
Started adding migration logic for contacts Updated the getUserHexEncodedPublicKey to take an optional db value so we can retrieve it during the initial migration 3 years ago			`return fetchKeys(db)`
			`}`
Migrated the SessionSnodeKit from YapDatabase to GRDB Changed the min OS version to iOS 13.0 (support for 'Identifiable') Removed the alternate approaches to fetching the userKeyPair and userPublicKeyHexString (no consistently routed through the caching method) Migrated the 'OWSIdentityManager' logic to use the new 'Identity' type Added the 'Setting' table and got the pattern working fairly nicely (unfortunately there isn't a good way to avoid key collision without proper enums) Updated the SessionSnodeKit to migration it's data from YDB to GRDB Updated the SessionSnodeKit to use GRDB throughout it's logic 3 years ago			`}`

			`static func fetchUserEd25519KeyPair() -> Box.KeyPair? {`
			`return GRDBStorage.shared.read { db -> Box.KeyPair? in`
			`guard`
			`let publicKey: Identity = try? Identity.fetchOne(db, id: .ed25519PublicKey),`
			`let secretKey: Identity = try? Identity.fetchOne(db, id: .ed25519SecretKey)`
			`else {`
			`return nil`
			`}`

			`return Box.KeyPair(`
			`publicKey: publicKey.data.bytes,`
			`secretKey: secretKey.data.bytes`
			`)`
			`}`
			`}`

			`static func fetchHexEncodedSeed() -> String? {`
			`return GRDBStorage.shared.read { db in`
			`guard let value: Identity = try? Identity.fetchOne(db, id: .seed) else {`
			`return nil`
			`}`

			`return value.data.toHexString()`
			`}`
			`}`

Further work on migrations and message pipeline refactoring Refactored the AppDelegate from Objective C to Swift Updated the HomeVC to use GRDB Refactored a number of the Job types to be driven via GRDB and the new JobRunner Fixed a bug where the LinkPreviewView wouldn't render correctly in dark mode 3 years ago			`static func clearAll() {`
Migrated the SessionSnodeKit from YapDatabase to GRDB Changed the min OS version to iOS 13.0 (support for 'Identifiable') Removed the alternate approaches to fetching the userKeyPair and userPublicKeyHexString (no consistently routed through the caching method) Migrated the 'OWSIdentityManager' logic to use the new 'Identity' type Added the 'Setting' table and got the pattern working fairly nicely (unfortunately there isn't a good way to avoid key collision without proper enums) Updated the SessionSnodeKit to migration it's data from YDB to GRDB Updated the SessionSnodeKit to use GRDB throughout it's logic 3 years ago			`GRDBStorage.shared.write { db in`
Updated the Identity type to clear everything instead of just the x25519 pair 3 years ago			`try Identity.deleteAll(db)`
Migrated the SessionSnodeKit from YapDatabase to GRDB Changed the min OS version to iOS 13.0 (support for 'Identifiable') Removed the alternate approaches to fetching the userKeyPair and userPublicKeyHexString (no consistently routed through the caching method) Migrated the 'OWSIdentityManager' logic to use the new 'Identity' type Added the 'Setting' table and got the pattern working fairly nicely (unfortunately there isn't a good way to avoid key collision without proper enums) Updated the SessionSnodeKit to migration it's data from YDB to GRDB Updated the SessionSnodeKit to use GRDB throughout it's logic 3 years ago			`}`
			`}`
			`}`

			`@objc(SUKIdentity)`
			`public class objc_Identity: NSObject {`
Further work on migrations and message pipeline refactoring Refactored the AppDelegate from Objective C to Swift Updated the HomeVC to use GRDB Refactored a number of the Job types to be driven via GRDB and the new JobRunner Fixed a bug where the LinkPreviewView wouldn't render correctly in dark mode 3 years ago			`@objc(clearAll)`
			`public static func objc_clearAll() {`
			`Identity.clearAll()`
Migrated the SessionSnodeKit from YapDatabase to GRDB Changed the min OS version to iOS 13.0 (support for 'Identifiable') Removed the alternate approaches to fetching the userKeyPair and userPublicKeyHexString (no consistently routed through the caching method) Migrated the 'OWSIdentityManager' logic to use the new 'Identity' type Added the 'Setting' table and got the pattern working fairly nicely (unfortunately there isn't a good way to avoid key collision without proper enums) Updated the SessionSnodeKit to migration it's data from YDB to GRDB Updated the SessionSnodeKit to use GRDB throughout it's logic 3 years ago			`}`
			`}`