keejef
/
session-ios
mirror of https://github.com/oxen-io/session-ios
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
dev
voice-calls-2
voice-calls
authentication
2.5.0
2.4.5
2.4.4
2.4.3
2.4.2
2.4.1
2.4.0
2.3.2
2.3.1
2.3.0
2.2.14
2.2.13
2.2.12
2.2.11
2.2.10
2.2.9
2.2.6
2.2.4
2.2.2
2.2.1
2.2.0
2.1.1
2.0.3
2.0.2
2.0.1
2.0.0
1.0.0-alpha.1
audit-2
audit
2.8.0
2.7.4
2.7.3
2.7.2
2.7.1
2.7.0
2.6.3
2.6.2
2.6.1
2.6.0
2.2.8
2.2.7
2.2.5
2.2.3
2.1.0
1.9.7
1.9.6
1.9.5
1.9.4
1.9.3
1.9.1
1.9.0
1.8.3
1.8.2
1.8.1
1.8.0
1.7.8
1.7.7
1.7.6
1.7.5
1.7.4
1.7.3
1.7.2
1.7.0
1.6.5
1.6.4
1.6.3
1.6.2
1.6.1
1.6.0
1.5.3
1.5.2
1.5.1-beta
1.5.0-beta
1.5.0
1.4.7
1.4.6
1.4.5
1.4.4
1.4.3
1.4.2
1.4.0-beta
1.4.0
1.3.0-alpha.1
1.3.0
1.2.6
1.2.5
1.2.4
1.2.3
1.2.1
1.2.0-alpha.2
1.2.0-alpha.1
1.2.0
1.13.0
1.12.9
1.12.8
1.12.7
1.12.6
1.12.5
1.12.4
1.12.2
1.12.1
1.11.9
1.11.8
1.11.7
1.11.6
1.11.5
1.11.4
1.11.3
1.11.24
1.11.23
1.11.22
1.11.21
1.11.20
1.11.2
1.11.19
1.11.18
1.11.17
1.11.16
1.11.15
1.11.14
1.11.13
1.11.12
1.11.11
1.11.10
1.11.1
1.11.0
1.10.2
1.10.1
1.10.0
1.1.0-alpha.4
1.1.0-alpha.3
1.1.0-alpha.2
1.1.0-alpha.1
1.1.0
1.0.8
1.0.7
1.0.6
1.0.5
1.0.4
1.0.3
1.0.2
1.0.1
1.0.0-alpha.3
1.0.0-alpha.2
1.0.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '8622b0303d'
${ noResults }
session-ios/SessionMessagingKit/LibSession/Config Handling/LibSession+GroupKeys.swift

182 lines
7.6 KiB
Swift
Raw Blame History

// Copyright © 2023 Rangeproof Pty Ltd. All rights reserved.
import Foundation
import GRDB
import SessionUtil
import SessionUtilitiesKit
// MARK: - Size Restrictions
public extension LibSession {
static var sizeAuthDataBytes: Int { 100 }
static var sizeSubaccountBytes: Int { 36 }
static var sizeSubaccountSigBytes: Int { 64 }
static var sizeSubaccountSignatureBytes: Int { 64 }
}
// MARK: - Group Keys Handling
internal extension LibSession {
/// `libSession` manages keys entirely so there is no need for a DB presence
static let columnsRelatedToGroupKeys: [ColumnExpression] = []
}
// MARK: - Incoming Changes
internal extension LibSessionCacheType {
func handleGroupKeysUpdate(
_ db: Database,
in config: LibSession.Config?,
groupSessionId: SessionId
) throws {
guard case .groupKeys(let conf, let infoConf, let membersConf) = config else {
throw LibSessionError.invalidConfigObject
}
/// If the group had been flagged as "expired" (because it got no config messages when initially polling) then receiving a config
/// message means the group is no longer expired, so update it's state
let groupFlaggedAsExpired: Bool = (try? ClosedGroup
.filter(id: groupSessionId.hexString)
.select(.expired)
.asRequest(of: Bool.self)
.fetchOne(db))
.defaulting(to: false)
if groupFlaggedAsExpired {
try ClosedGroup
.filter(id: groupSessionId.hexString)
.updateAllAndConfig(
db,
ClosedGroup.Columns.expired.set(to: false),
using: dependencies
)
}
/// If two admins rekeyed for different member changes at the same time then there is a "key collision" and the "needs rekey" function
/// will return true to indicate that a 3rd `rekey` needs to be made to have a final set of keys which includes all members
///
/// **Note:** We don't check `needsDump` in this case because the local state _could_ be persisted yet still require a `rekey`
/// so we should rely solely on `groups_keys_needs_rekey`
guard groups_keys_needs_rekey(conf) else { return }
// Performing a `rekey` returns the updated key data which we don't use directly, this updated
// key will now be returned by `groups_keys_pending_config` which the `ConfigurationSyncJob` uses
// when generating pending changes for group keys so we don't need to push it directly
var pushResult: UnsafePointer<UInt8>? = nil
var pushResultLen: Int = 0
guard groups_keys_rekey(conf, infoConf, membersConf, &pushResult, &pushResultLen) else {
throw LibSessionError.failedToRekeyGroup
}
}
}
// MARK: - Outgoing Changes
internal extension LibSession {
static func rekey(
_ db: Database,
groupSessionId: SessionId,
using dependencies: Dependencies
) throws {
try dependencies.mutate(cache: .libSession) { cache in
try cache.performAndPushChange(db, for: .groupKeys, sessionId: groupSessionId) { config in
guard case .groupKeys(let conf, let infoConf, let membersConf) = config else {
throw LibSessionError.invalidConfigObject
}
// Performing a `rekey` returns the updated key data which we don't use directly, this updated
// key will now be returned by `groups_keys_pending_config` which the `ConfigurationSyncJob` uses
// when generating pending changes for group keys so we don't need to push it directly
var pushResult: UnsafePointer<UInt8>? = nil
var pushResultLen: Int = 0
guard groups_keys_rekey(conf, infoConf, membersConf, &pushResult, &pushResultLen) else {
throw LibSessionError.failedToRekeyGroup
}
}
}
}
static func keySupplement(
_ db: Database,
groupSessionId: SessionId,
memberIds: Set<String>,
using dependencies: Dependencies
) throws -> Data {
return try dependencies.mutate(cache: .libSession) { cache in
guard case .groupKeys(let conf, _, _) = cache.config(for: .groupKeys, sessionId: groupSessionId) else {
throw LibSessionError.invalidConfigObject
}
return try memberIds.withUnsafeCStrArray { cMemberIds in
/// Performing a `key_supplement` returns the supplemental key changes, since our state doesn't care about the
/// `GROUP_KEYS` needed for other members this change won't result in the `GROUP_KEYS` config going into a pending
/// state or the `ConfigurationSyncJob` getting triggered so return the data so that the caller can push it directly
var cSupplementData: UnsafeMutablePointer<UInt8>!
var cSupplementDataLen: Int = 0
guard
groups_keys_key_supplement(conf, cMemberIds.baseAddress, cMemberIds.count, &cSupplementData, &cSupplementDataLen),
let cSupplementData: UnsafeMutablePointer<UInt8> = cSupplementData
else { throw LibSessionError.failedToKeySupplementGroup }
// Must deallocate on success
let supplementData: Data = Data(
bytes: cSupplementData,
count: cSupplementDataLen
)
cSupplementData.deallocate()
return supplementData
}
}
}
static func loadAdminKey(
_ db: Database,
groupIdentitySeed: Data,
groupSessionId: SessionId,
using dependencies: Dependencies
) throws {
try dependencies.mutate(cache: .libSession) { cache in
/// Disable the admin check because we are about to convert the user to being an admin and it's guaranteed to fail
try cache.withCustomBehaviour(.skipGroupAdminCheck, for: groupSessionId) {
try cache.performAndPushChange(db, for: .groupKeys, sessionId: groupSessionId) { config in
guard case .groupKeys(let conf, let infoConf, let membersConf) = config else {
throw LibSessionError.invalidConfigObject
}
var identitySeed: [UInt8] = Array(groupIdentitySeed)
groups_keys_load_admin_key(conf, &identitySeed, infoConf, membersConf)
try LibSessionError.throwIfNeeded(conf)
}
}
}
}
static func numKeys(
groupSessionId: SessionId,
using dependencies: Dependencies
) throws -> Int {
return try dependencies.mutate(cache: .libSession) { cache in
guard case .groupKeys(let conf, _, _) = cache.config(for: .groupKeys, sessionId: groupSessionId) else {
throw LibSessionError.invalidConfigObject
}
return Int(groups_keys_size(conf))
}
}
static func currentGeneration(
groupSessionId: SessionId,
using dependencies: Dependencies
) throws -> Int {
return try dependencies.mutate(cache: .libSession) { cache in
guard case .groupKeys(let conf, _, _) = cache.config(for: .groupKeys, sessionId: groupSessionId) else {
throw LibSessionError.invalidConfigObject
}
return Int(groups_keys_current_generation(conf))
}
}
}
Reference in New Issue View Git Blame Copy Permalink