keejef
/
session-desktop
mirror of https://github.com/oxen-io/session-desktop
2
0
Fork 0
Code Issues 8 Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
unstable
feature/update-crowdin-translations
master
audit2
show
audit
v1.9.1
v1.9.0
v1.8.6
v1.8.5
v1.8.4
v1.8.3
v1.8.2
v1.8.1
v1.8.0
v1.7.9
v1.7.8
v1.7.7
v1.7.6
v1.7.5
v1.7.4
v1.7.3
v1.7.2
v1.7.1
v1.7.0
v1.6.9
v1.6.8
v1.6.7
v1.6.6
v1.6.5
v1.6.4
v1.6.3
v1.6.2
v1.6.11
v1.6.10
v1.6.1
v1.6.0
v1.5.5
v1.5.4
v1.5.3
v1.5.2
v1.5.1
v1.5.0
v1.4.9
v1.4.8
v1.4.7
v1.4.6
v1.4.5
v1.4.4
v1.4.3
v1.4.2
v1.4.11
v1.4.10
v1.4.1
v1.4.0
v1.3.1
v1.3.0
v1.2.1
v1.2.0
v1.14.3
v1.14.2
v1.14.1
v1.14.0
v1.13.2
v1.13.1
v1.13.0
v1.12.5
v1.12.4
v1.12.3
v1.12.2
v1.12.1
v1.12.0
v1.11.5
v1.11.4
v1.11.3
v1.11.2
v1.11.1
v1.11.0
v1.10.8
v1.10.7
v1.10.6
v1.10.5
v1.10.4
v1.10.3
v1.10.2
v1.10.1
v1.10.0
v1.1.2
v1.1.1
v1.0.9
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9400ec9e1c'
${ noResults }
session-desktop/ts/session/group/index.ts

724 lines
21 KiB
TypeScript
Raw Blame History

import { PubKey } from '../types';
import * as Data from '../../../js/modules/data';
import _ from 'lodash';
import { fromHex, fromHexToArray, toHex } from '../utils/String';
import { MessageModel, MessageModelType } from '../../../js/models/messages';
import { ConversationModel } from '../../../js/models/conversations';
import { BlockedNumberController } from '../../util/blockedNumberController';
import { ConversationController } from '../conversations';
import { updateOpenGroup } from '../../receiver/openGroups';
import { getMessageQueue } from '../instance';
import {
ClosedGroupEncryptionPairMessage,
ClosedGroupNewMessage,
ExpirationTimerUpdateMessage,
} from '../messages/outgoing';
import uuid from 'uuid';
import { SignalService } from '../../protobuf';
import { generateCurve25519KeyPairWithoutPrefix } from '../crypto';
import { encryptUsingSessionProtocol } from '../crypto/MessageEncrypter';
import { ECKeyPair } from '../../receiver/keypairs';
import { UserUtils } from '../utils';
import { ClosedGroupMemberLeftMessage } from '../messages/outgoing/content/data/group/ClosedGroupMemberLeftMessage';
import {
ClosedGroupAddedMembersMessage,
ClosedGroupNameChangeMessage,
ClosedGroupRemovedMembersMessage,
ClosedGroupUpdateMessage,
} from '../messages/outgoing/content/data/group';
export interface GroupInfo {
id: string;
name: string;
members: Array<string>; // Primary keys
active?: boolean;
expireTimer?: number | null;
avatar?: any;
color?: any; // what is this???
blocked?: boolean;
admins?: Array<string>;
secretKey?: Uint8Array;
}
interface UpdatableGroupState {
name: string;
members: Array<string>;
}
export interface GroupDiff extends MemberChanges {
newName?: string;
}
export interface MemberChanges {
joiningMembers?: Array<string>;
leavingMembers?: Array<string>;
}
export async function getGroupSecretKey(groupId: string): Promise<Uint8Array> {
const groupIdentity = await Data.getIdentityKeyById(groupId);
if (!groupIdentity) {
throw new Error(`Could not load secret key for group ${groupId}`);
}
const secretKey = groupIdentity.secretKey;
if (!secretKey) {
throw new Error(
`Secret key not found in identity key record for group ${groupId}`
);
}
return new Uint8Array(fromHex(secretKey));
}
// Secondary devices are not expected to already have the group, so
// we send messages of type NEW
export async function syncMediumGroups(groups: Array<ConversationModel>) {
// await Promise.all(groups.map(syncMediumGroup));
}
// tslint:disable: max-func-body-length
// tslint:disable: cyclomatic-complexity
export async function initiateGroupUpdate(
groupId: string,
groupName: string,
members: Array<string>,
avatar: any
) {
const convo = await ConversationController.getInstance().getOrCreateAndWait(
groupId,
'group'
);
if (convo.isPublic()) {
await updateOpenGroup(convo, groupName, avatar);
return;
}
const isMediumGroup = convo.isMediumGroup();
if (!isMediumGroup) {
throw new Error('Legacy group are not supported anymore.');
}
const groupDetails = {
id: groupId,
name: groupName,
members,
active: true,
expireTimer: convo.get('expireTimer'),
avatar,
};
const diff = buildGroupDiff(convo, groupDetails);
await updateOrCreateClosedGroup(groupDetails);
const updateObj: GroupInfo = {
id: groupId,
name: groupName,
members,
admins: convo.get('groupAdmins'),
expireTimer: convo.get('expireTimer'),
};
if (!window.lokiFeatureFlags.useExplicitGroupUpdatesSending) {
// we still don't send any explicit group updates for now - only the receiving side is enabled
const dbMessageAdded = await addUpdateMessage(convo, diff, 'outgoing');
window.getMessageController().register(dbMessageAdded.id, dbMessageAdded);
// Check preconditions
const hexEncryptionKeyPair = await Data.getLatestClosedGroupEncryptionKeyPair(
groupId
);
if (!hexEncryptionKeyPair) {
throw new Error("Couldn't get key pair for closed group");
}
const encryptionKeyPair = ECKeyPair.fromHexKeyPair(hexEncryptionKeyPair);
const removedMembers = diff.leavingMembers || [];
const newMembers = diff.joiningMembers || []; // joining members
const wasAnyUserRemoved = removedMembers.length > 0;
const ourPrimary = await UserUtils.getOurNumber();
const isUserLeaving = removedMembers.includes(ourPrimary.key);
const isCurrentUserAdmin = convo
.get('groupAdmins')
?.includes(ourPrimary.key);
const expireTimerToShare = groupDetails.expireTimer || 0;
const admins = convo.get('groupAdmins') || [];
if (removedMembers.includes(admins[0]) && newMembers.length !== 0) {
throw new Error(
"Can't remove admin from closed group without removing everyone."
); // Error.invalidClosedGroupUpdate
}
if (isUserLeaving && newMembers.length !== 0) {
if (removedMembers.length !== 1 || newMembers.length !== 0) {
throw new Error(
"Can't remove self and add or remove others simultaneously."
);
}
}
// Send the update to the group
const mainClosedGroupUpdate = new ClosedGroupUpdateMessage({
timestamp: Date.now(),
groupId,
name: groupName,
members,
identifier: dbMessageAdded.id || uuid(),
expireTimer: expireTimerToShare,
});
if (isUserLeaving) {
window.log.info(
`We are leaving the group ${groupId}. Sending our leaving message.`
);
// sent the message to the group and once done, remove everything related to this group
window.SwarmPolling.removePubkey(groupId);
await getMessageQueue().sendToGroup(mainClosedGroupUpdate, async () => {
window.log.info(
`Leaving message sent ${groupId}. Removing everything related to this group.`
);
await Data.removeAllClosedGroupEncryptionKeyPairs(groupId);
});
} else {
// Send the group update, and only once sent, generate and distribute a new encryption key pair if needed
await getMessageQueue().sendToGroup(mainClosedGroupUpdate, async () => {
if (wasAnyUserRemoved && isCurrentUserAdmin) {
// we send the new encryption key only to members already here before the update
const membersNotNew = members.filter(m => !newMembers.includes(m));
window.log.info(
`Sending group update: A user was removed from ${groupId} and we are the admin. Generating and sending a new EncryptionKeyPair`
);
await generateAndSendNewEncryptionKeyPair(groupId, membersNotNew);
}
});
if (newMembers.length) {
// Send closed group update messages to any new members individually
const newClosedGroupUpdate = new ClosedGroupNewMessage({
timestamp: Date.now(),
name: groupName,
groupId,
admins,
members,
keypair: encryptionKeyPair,
identifier: dbMessageAdded.id || uuid(),
expireTimer: expireTimerToShare,
});
const promises = newMembers.map(async m => {
await ConversationController.getInstance().getOrCreateAndWait(
m,
'private'
);
const memberPubKey = PubKey.cast(m);
await getMessageQueue().sendToPubKey(
memberPubKey,
newClosedGroupUpdate
);
});
await Promise.all(promises);
}
}
return;
}
if (diff.newName?.length) {
const nameOnlyDiff: GroupDiff = { newName: diff.newName };
const dbMessageName = await addUpdateMessage(
convo,
nameOnlyDiff,
'outgoing'
);
window.getMessageController().register(dbMessageName.id, dbMessageName);
await sendNewName(convo, diff.newName, dbMessageName.id);
}
if (diff.joiningMembers?.length) {
const joiningOnlyDiff: GroupDiff = { joiningMembers: diff.joiningMembers };
const dbMessageAdded = await addUpdateMessage(
convo,
joiningOnlyDiff,
'outgoing'
);
window.getMessageController().register(dbMessageAdded.id, dbMessageAdded);
await sendAddedMembers(
convo,
diff.joiningMembers,
dbMessageAdded.id,
updateObj
);
}
if (diff.leavingMembers?.length) {
const leavingOnlyDiff: GroupDiff = { leavingMembers: diff.leavingMembers };
const dbMessageLeaving = await addUpdateMessage(
convo,
leavingOnlyDiff,
'outgoing'
);
window
.getMessageController()
.register(dbMessageLeaving.id, dbMessageLeaving);
const stillMembers = members;
await sendRemovedMembers(
convo,
diff.leavingMembers,
dbMessageLeaving.id,
stillMembers
);
}
}
export async function addUpdateMessage(
convo: ConversationModel,
diff: GroupDiff,
type: MessageModelType
): Promise<MessageModel> {
const groupUpdate: any = {};
if (diff.newName) {
groupUpdate.name = diff.newName;
}
if (diff.joiningMembers) {
groupUpdate.joined = diff.joiningMembers;
}
if (diff.leavingMembers) {
groupUpdate.left = diff.leavingMembers;
}
const now = Date.now();
const unread = type === 'incoming';
const message = await convo.addMessage({
conversationId: convo.get('id'),
type,
sent_at: now,
received_at: now,
group_update: groupUpdate,
unread,
});
if (unread) {
// update the unreadCount for this convo
const unreadCount = await convo.getUnreadCount();
convo.set({
unreadCount,
});
await convo.commit();
}
return message;
}
export function buildGroupDiff(
convo: ConversationModel,
update: UpdatableGroupState
): GroupDiff {
const groupDiff: GroupDiff = {};
if (convo.get('name') !== update.name) {
groupDiff.newName = update.name;
}
const oldMembers = convo.get('members');
const addedMembers = _.difference(update.members, oldMembers);
if (addedMembers.length > 0) {
groupDiff.joiningMembers = addedMembers;
}
// Check if anyone got kicked:
const removedMembers = _.difference(oldMembers, update.members);
if (removedMembers.length > 0) {
groupDiff.leavingMembers = removedMembers;
}
return groupDiff;
}
export async function updateOrCreateClosedGroup(details: GroupInfo) {
const { id } = details;
const conversation = await ConversationController.getInstance().getOrCreateAndWait(
id,
'group'
);
const updates: any = {
name: details.name,
members: details.members,
color: details.color,
type: 'group',
is_medium_group: true,
};
if (details.active) {
const activeAt = conversation.get('active_at');
// The idea is to make any new group show up in the left pane. If
// activeAt is null, then this group has been purposefully hidden.
if (activeAt !== null) {
updates.active_at = activeAt || Date.now();
updates.timestamp = updates.active_at;
}
updates.left = false;
updates.lastJoinedTimestamp = updates.active_at;
} else {
updates.left = true;
}
conversation.set(updates);
// Update the conversation avatar only if new avatar exists and hash differs
const { avatar } = details;
if (avatar && avatar.data) {
const newAttributes = await window.Signal.Types.Conversation.maybeUpdateAvatar(
conversation.attributes,
avatar.data,
{
writeNewAttachmentData: window.Signal.writeNewAttachmentData,
deleteAttachmentData: window.Signal.deleteAttachmentData,
}
);
conversation.set(newAttributes);
}
const isBlocked = details.blocked || false;
if (conversation.isClosedGroup() || conversation.isMediumGroup()) {
await BlockedNumberController.setGroupBlocked(conversation.id, isBlocked);
}
if (details.admins?.length) {
await conversation.updateGroupAdmins(details.admins);
}
await conversation.commit();
const { expireTimer } = details;
if (expireTimer === undefined || typeof expireTimer !== 'number') {
return;
}
const source = await UserUtils.getCurrentDevicePubKey();
await conversation.updateExpirationTimer(expireTimer, source, Date.now(), {
fromSync: true,
});
}
export async function leaveClosedGroup(groupId: string) {
const convo = ConversationController.getInstance().get(groupId);
if (!convo) {
window.log.error('Cannot leave non-existing group');
return;
}
const ourNumber = await UserUtils.getOurNumber();
const isCurrentUserAdmin = convo.get('groupAdmins')?.includes(ourNumber.key);
const now = Date.now();
let members: Array<string> = [];
let admins: Array<string> = [];
// if we are the admin, the group must be destroyed for every members
if (isCurrentUserAdmin) {
window.log.info('Admin left a closed group. We need to destroy it');
convo.set({ left: true });
members = [];
admins = [];
} else {
// otherwise, just the exclude ourself from the members and trigger an update with this
convo.set({ left: true });
members = convo.get('members').filter(m => m !== ourNumber.key);
admins = convo.get('groupAdmins') || [];
}
convo.set({ members });
convo.set({ groupAdmins: admins });
await convo.commit();
const dbMessage = await convo.addMessage({
group_update: { left: 'You' },
conversationId: groupId,
type: 'outgoing',
sent_at: now,
received_at: now,
});
window.getMessageController().register(dbMessage.id, dbMessage);
const existingExpireTimer = convo.get('expireTimer') || 0;
// Send the update to the group
let ourLeavingMessage;
if (window.lokiFeatureFlags.useExplicitGroupUpdatesSending) {
ourLeavingMessage = new ClosedGroupMemberLeftMessage({
timestamp: Date.now(),
groupId,
identifier: dbMessage.id,
expireTimer: existingExpireTimer,
});
} else {
const ourPubkey = await UserUtils.getOurNumber();
ourLeavingMessage = new ClosedGroupUpdateMessage({
timestamp: Date.now(),
groupId,
identifier: dbMessage.id,
expireTimer: existingExpireTimer,
name: convo.get('name'),
members: convo.get('members').filter(m => m !== ourPubkey.key),
});
}
window.log.info(
`We are leaving the group ${groupId}. Sending our leaving message.`
);
// sent the message to the group and once done, remove everything related to this group
window.SwarmPolling.removePubkey(groupId);
await getMessageQueue().sendToGroup(ourLeavingMessage, async () => {
window.log.info(
`Leaving message sent ${groupId}. Removing everything related to this group.`
);
await Data.removeAllClosedGroupEncryptionKeyPairs(groupId);
});
}
async function sendNewName(
convo: ConversationModel,
name: string,
messageId: string
) {
if (name.length === 0) {
window.log.warn('No name given for group update. Skipping');
return;
}
const groupId = convo.get('id');
// Send the update to the group
const nameChangeMessage = new ClosedGroupNameChangeMessage({
timestamp: Date.now(),
groupId,
identifier: messageId,
expireTimer: 0,
name,
});
await getMessageQueue().sendToGroup(nameChangeMessage);
}
async function sendAddedMembers(
convo: ConversationModel,
addedMembers: Array<string>,
messageId: string,
groupUpdate: GroupInfo
) {
if (!addedMembers?.length) {
window.log.warn('No addedMembers given for group update. Skipping');
return;
}
const { id: groupId, members, name: groupName } = groupUpdate;
const admins = groupUpdate.admins || [];
// Check preconditions
const hexEncryptionKeyPair = await Data.getLatestClosedGroupEncryptionKeyPair(
groupId
);
if (!hexEncryptionKeyPair) {
throw new Error("Couldn't get key pair for closed group");
}
const encryptionKeyPair = ECKeyPair.fromHexKeyPair(hexEncryptionKeyPair);
const expireTimer = convo.get('expireTimer') || 0;
// Send the Added Members message to the group (only members already in the group will get it)
const closedGroupControlMessage = new ClosedGroupAddedMembersMessage({
timestamp: Date.now(),
groupId,
addedMembers,
identifier: messageId,
expireTimer,
});
await getMessageQueue().sendToGroup(closedGroupControlMessage);
// Send closed group update messages to any new members individually
const newClosedGroupUpdate = new ClosedGroupNewMessage({
timestamp: Date.now(),
name: groupName,
groupId,
admins,
members,
keypair: encryptionKeyPair,
identifier: messageId || uuid(),
expireTimer,
});
// if an expire timer is set, we have to send it to the joining members
let expirationTimerMessage: ExpirationTimerUpdateMessage | undefined;
if (expireTimer && expireTimer > 0) {
const expireUpdate = {
timestamp: Date.now(),
expireTimer,
groupId: groupId,
};
expirationTimerMessage = new ExpirationTimerUpdateMessage(expireUpdate);
}
const promises = addedMembers.map(async m => {
await ConversationController.getInstance().getOrCreateAndWait(m, 'private');
const memberPubKey = PubKey.cast(m);
await getMessageQueue().sendToPubKey(memberPubKey, newClosedGroupUpdate);
if (expirationTimerMessage) {
await getMessageQueue().sendToPubKey(
memberPubKey,
expirationTimerMessage
);
}
});
await Promise.all(promises);
}
async function sendRemovedMembers(
convo: ConversationModel,
removedMembers: Array<string>,
messageId: string,
stillMembers: Array<string>
) {
if (!removedMembers?.length) {
window.log.warn('No removedMembers given for group update. Skipping');
return;
}
const ourNumber = await UserUtils.getOurNumber();
const admins = convo.get('groupAdmins') || [];
const groupId = convo.get('id');
const isCurrentUserAdmin = admins.includes(ourNumber.key);
const isUserLeaving = removedMembers.includes(ourNumber.key);
if (isUserLeaving) {
throw new Error(
'Cannot remove members and leave the group at the same time'
);
}
if (removedMembers.includes(admins[0]) && stillMembers.length !== 0) {
throw new Error(
"Can't remove admin from closed group without removing everyone."
);
}
const expireTimer = convo.get('expireTimer') || 0;
// Send the update to the group and generate + distribute a new encryption key pair if needed
const mainClosedGroupControlMessage = new ClosedGroupRemovedMembersMessage({
timestamp: Date.now(),
groupId,
removedMembers,
identifier: messageId,
expireTimer,
});
// Send the group update, and only once sent, generate and distribute a new encryption key pair if needed
await getMessageQueue().sendToGroup(
mainClosedGroupControlMessage,
async () => {
if (isCurrentUserAdmin) {
// we send the new encryption key only to members already here before the update
window.log.info(
`Sending group update: A user was removed from ${groupId} and we are the admin. Generating and sending a new EncryptionKeyPair`
);
await generateAndSendNewEncryptionKeyPair(groupId, stillMembers);
}
}
);
}
export async function generateAndSendNewEncryptionKeyPair(
groupPublicKey: string,
targetMembers: Array<string>
) {
const groupConvo = ConversationController.getInstance().get(groupPublicKey);
const groupId = fromHexToArray(groupPublicKey);
if (!groupConvo) {
window.log.warn(
'generateAndSendNewEncryptionKeyPair: conversation not found',
groupPublicKey
);
return;
}
if (!groupConvo.isMediumGroup()) {
window.log.warn(
'generateAndSendNewEncryptionKeyPair: conversation not a closed group',
groupPublicKey
);
return;
}
const ourNumber = await UserUtils.getOurNumber();
if (!groupConvo.get('groupAdmins')?.includes(ourNumber.key)) {
window.log.warn(
'generateAndSendNewEncryptionKeyPair: cannot send it as a non admin'
);
return;
}
// Generate the new encryption key pair
const newKeyPair = await generateCurve25519KeyPairWithoutPrefix();
if (!newKeyPair) {
window.log.warn(
'generateAndSendNewEncryptionKeyPair: failed to generate new keypair'
);
return;
}
const proto = new SignalService.DataMessage.ClosedGroupControlMessage.KeyPair(
{
privateKey: newKeyPair?.privateKeyData,
publicKey: newKeyPair?.publicKeyData,
}
);
const plaintext = SignalService.DataMessage.ClosedGroupControlMessage.KeyPair.encode(
proto
).finish();
// Distribute it
const wrappers = await Promise.all(
targetMembers.map(async pubkey => {
const ciphertext = await encryptUsingSessionProtocol(
PubKey.cast(pubkey),
plaintext
);
return new SignalService.DataMessage.ClosedGroupControlMessage.KeyPairWrapper(
{
encryptedKeyPair: ciphertext,
publicKey: fromHexToArray(pubkey),
}
);
})
);
const expireTimer = groupConvo.get('expireTimer') || 0;
const keypairsMessage = new ClosedGroupEncryptionPairMessage({
groupId: toHex(groupId),
timestamp: Date.now(),
encryptedKeyPairs: wrappers,
expireTimer,
});
const messageSentCallback = async () => {
window.log.info(
`KeyPairMessage for ClosedGroup ${groupPublicKey} is sent. Saving the new encryptionKeyPair.`
);
await Data.addClosedGroupEncryptionKeyPair(
toHex(groupId),
newKeyPair.toHexKeyPair()
);
};
await getMessageQueue().sendToGroup(keypairsMessage, messageSentCallback);
}
Reference in New Issue View Git Blame Copy Permalink