Session Desktop - Onion routing based messenger

anonimity messenger otr private signal-protocol

You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

Go to file

Daniel Gasienica a1ac810343 Security: Replace Unicode order overrides in attachment names As a user, when I receive a file attachment, I want to have confidence that the filename I see in the Signal Desktop app is the same as it will be on disk. To prevent user confusion when receiving files with Unicode order override characters, e.g. `test<LTRO>fig.exe` appearing as `testexe.gif`, we replace all occurrences of order overrides (`U+202D` and `U+202E`) with `U+FFFD`. Changes - [x] Bump `Attachment` `schemaVersion` to 2. - [x] Replace all Unicode order overrides in `attachment.filename`: `Attachment.replaceUnicodeOrderOverrides`. - [x] Add tests for existing `Attachment.upgradeSchema` - [x] Add tests for existing `Attachment.withSchemaVersion` - [x] Add tests for `Attachment.replaceUnicodeOrderOverrides` positives. - [x] Add `testcheck` generative property-based testing library (based on QuickCheck) to ensure valid filenames are preserved. --- commit 855bdbc7e647e44f73b9e1f5e6d64f734c61169a Author: Daniel Gasienica <daniel@gasienica.ch> Date: Thu Feb 22 13:02:01 2018 -0500 Log error stack in case of error commit 6e053ed66aee136f186568fa88aacd4814b2ab07 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Thu Feb 22 12:30:28 2018 -0500 Improve `upgradeStep` error handling commit 8c226a2523b701cb578b2137832c3eaf3475bb2b Author: Daniel Gasienica <daniel@gasienica.ch> Date: Thu Feb 22 12:30:08 2018 -0500 Check for expected version before upgrade Prevents out of order upgrade steps. commit 28b0675591e782169128f75429b7bab2a22307fa Author: Daniel Gasienica <daniel@gasienica.ch> Date: Thu Feb 22 12:29:52 2018 -0500 Reject invalid attachments commit 41f4f457dae9416dae66dc2fa2079483d1f127a9 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Thu Feb 22 12:29:36 2018 -0500 Fix upgrade pipeline order commit 3935629e91c49b8d96c1e02bd37b1b31d1180720 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Thu Feb 22 12:28:25 2018 -0500 Avoid `_.isPlainObject` Attachments are deserialized from a protocol buffer and can have a non-plain-object constructor. commit 39f6e7f622ff4885e2ccafa354e0edb5864c55d8 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Thu Feb 22 12:19:07 2018 -0500 Define basic attachment validity commit adcf7e3243cd90866cc35990c558ff7829019037 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Thu Feb 22 12:18:54 2018 -0500 Add tests for attachment upgrade pipeline commit 82fc4644d7e654eea9f348518b086497be2b0cb4 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Wed Feb 21 12:20:24 2018 -0500 Favor `async` / `await` over `then` commit 8fe49e3c40e78ced0b8f2eb0b678f4bae842855d Author: Daniel Gasienica <daniel@gasienica.ch> Date: Wed Feb 21 12:19:59 2018 -0500 Add `eslint-more` plugin This will enable us to disallow `then` in favor of `async` / `await`. commit 020beefb25f508ae96cf3fc099599fbbca98802b Author: Daniel Gasienica <daniel@gasienica.ch> Date: Wed Feb 21 11:31:49 2018 -0500 Remove unnecessary `async` modifiers commit 177090c5f5ad9836f0ca0a5c2f298779519e3692 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Wed Feb 21 11:30:55 2018 -0500 Document `operator-linebreak` ESLint rule commit 25622b7c59291cb672ae057c47e7327a564cca40 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Wed Feb 21 11:14:15 2018 -0500 Prefix internal function with `_` commit 6aa3cf5098df71e9b710064739ec49d74f81b7bf Author: Daniel Gasienica <daniel@gasienica.ch> Date: Fri Feb 16 19:00:07 2018 -0500 Replace all Unicode order override occurrences commit fd6e23b0a519bce3c12c5b9ac676bcd198034fed Author: Daniel Gasienica <daniel@gasienica.ch> Date: Fri Feb 16 17:48:41 2018 -0500 Whitelist `testcheck` `check` and `gen` globals commit 400bae9fac5078821813bc0ca17a5d7a72900161 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Fri Feb 16 17:46:57 2018 -0500 🎨 Fix lint errors commit da53d3960aa7aa36b7cc1fcff414c9e929c0d9fc Author: Daniel Gasienica <daniel@gasienica.ch> Date: Fri Feb 16 17:42:42 2018 -0500 Add tests for `Attachment.withSchemaVersion` commit ec203444239d9e3c443ba88cab7ef4672151072d Author: Daniel Gasienica <daniel@gasienica.ch> Date: Fri Feb 16 17:42:17 2018 -0500 Add test for `Attachment.upgradeSchema` commit 4540d5bdf7a4279f49d2e4c6ee03f47b93df46bf Author: Daniel Gasienica <daniel@gasienica.ch> Date: Fri Feb 16 17:05:29 2018 -0500 Rename `setSchemaVersion` --> `withSchemaVersion` Put the schema version first for better readability. commit e379cf919feda31d1fa96d406c30fd38e159a11d Author: Daniel Gasienica <daniel@gasienica.ch> Date: Fri Feb 16 17:03:22 2018 -0500 Add filename sanitization to upgrade pipeline commit 1e344a0d15926fc3e17be20cd90bfa882b65f337 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Fri Feb 16 17:01:55 2018 -0500 Test that we preserve non-suspicious filenames commit a2452bfc98f93f82bed48b438757af2e66a6af82 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Fri Feb 16 17:00:56 2018 -0500 Add `testcheck` dependency Allows for generative property-based testing similar to Haskell’s QuickCheck. See: https://medium.com/javascript-inside/f91432247c27 commit ceb5bfd2484a77689fdb8e9edd18d4a7b093a486 Author: Daniel Gasienica <daniel@gasienica.ch> Date: Fri Feb 16 16:15:33 2018 -0500 Replace Unicode order override characters Prevents users from being tricked into clicking a file named `testexe.fig` that appears as `testexe.gif` due to a Unicode order override character. See: - http://unicode.org/reports/tr36/#Bidirectional_Text_Spoofing - https://krebsonsecurity.com/2011/09/right-to-left-override-aids-email-attacks/ commit bc605afb1c6af3a5ebc31a4c1523ff170eb96ffe Author: Daniel Gasienica <daniel@gasienica.ch> Date: Fri Feb 16 16:12:29 2018 -0500 Remove `CURRENT_PROCESS_VERSION` Reintroduce this whenever we need it. We currently only deal with schema version numbers within this module.		7 years ago
.github	Fix typo in issue template (#2020 )	7 years ago
.tx	Transifex config specific to electron, updated translations (#1478 )	8 years ago
_locales	'Restart' -> 'Restart Signal' button in update dialog (#2024 )	7 years ago
app	Security: Replace Unicode order overrides in attachment names	7 years ago
audio	Fix audio notifications on linux (#1526 )	8 years ago
build	Bypass often-corrupt node_modules/.bin/grunt.cmd on windows (#1481 )	8 years ago
components	Update libphonenumber (#1598 )	8 years ago
config	Save prekeys optimistically, track confirms, new clean behavior (#1846 )	7 years ago
fonts	Add fonts so we don't have to hit googlefonts	10 years ago
images	Add badge for unread messages to the tray icon (#1934 )	7 years ago
js	Security: Replace Unicode order overrides in attachment names	7 years ago
libtextsecure	Auto-orient image attachments based on EXIF metadata	7 years ago
protos	Sync Protocol Buffers with `libsignal-service-java` (#2046 )	7 years ago
stylesheets	Remove built assets from repo, updates to docs + GH templates (#1955 )	7 years ago
test	Security: Replace Unicode order overrides in attachment names	7 years ago
.aptly.conf	Setup publishing to s3	8 years ago
.bowerrc	Rename bower_components	11 years ago
.editorconfig	Auto-orient image attachments based on EXIF metadata	7 years ago
.eslintignore	Auto-orient image attachments based on EXIF metadata	7 years ago
.eslintrc.js	Security: Replace Unicode order overrides in attachment names	7 years ago
.gitignore	Remove built assets from repo, updates to docs + GH templates (#1955 )	7 years ago
.jscsrc	Fix minor style errors	9 years ago
.jshintrc	jshint: Turn on ES6 mode, fix a few issues in new logging file	8 years ago
.nvmrc	Clean logs on start - and eslint/mocha with code coverage (#1945 )	7 years ago
.travis.yml	Remove built assets from repo, updates to docs + GH templates (#1955 )	7 years ago
.yarnclean	Clean logs on start - and eslint/mocha with code coverage (#1945 )	7 years ago
CONTRIBUTING.md	Big update to new signal branding (#2018 )	7 years ago
Gruntfile.js	Auto-orient image attachments based on EXIF metadata	7 years ago
LICENSE	Add GPLv3 LICENSE file (#1309 )	8 years ago
README.md	Big update to new signal branding (#2018 )	7 years ago
about.html	Merge branch 'master' into development	7 years ago
appveyor.yml	Remove built assets from repo, updates to docs + GH templates (#1955 )	7 years ago
aptly.sh	aptly.sh: Fix broken switch commands - distro and config fix	7 years ago
background.html	Auto-orient image attachments based on EXIF metadata	7 years ago
bower.json	Auto-orient image attachments based on EXIF metadata	7 years ago
dev-app-update.yml.sample	Show dialog box when there's an update for download	8 years ago
find_broken_perms.sh	Add two scripts to handle broken permissions in release dir	8 years ago
fix_broken_perms.sh	Beta builds: A few updates required for successful release (#1739 )	8 years ago
index.html	App loading screen: show messages processed so far	8 years ago
main.js	Security: Replace Unicode order overrides in attachment names	7 years ago
package.json	Security: Replace Unicode order overrides in attachment names	7 years ago
preload.js	Auto-orient image attachments based on EXIF metadata	7 years ago
prepare_build.js	Clean logs on start - and eslint/mocha with code coverage (#1945 )	7 years ago
travis.sh	Remove built assets from repo, updates to docs + GH templates (#1955 )	7 years ago
yarn.lock	Security: Replace Unicode order overrides in attachment names	7 years ago

README.md

Signal Desktop

Signal Desktop is an Electron application that links with your Signal Android or Signal iOS app.

Install production version: https://signal.org/download/

Install the beta

You can install it on a computer which already has the production version installed. It uses different data and install locations.

Windows: You can find the most recent build here: https://updates.signal.org/desktop/beta.yml
Mac: You can find the most recent build here: https://updates.signal.org/desktop/beta-mac.yml
Linux: same instructions as the production install steps linked above, but run apt-get signal-desktop-beta instead

Got a question?

You can find a number of frequently asked questions here https://support.signal.org/. The discussion groups are another good place for questions: https://whispersystems.discoursehosting.net/.

Found a Bug? Have a feature request?

Please search the existing issues for your bug and create a new one if the issue is not yet tracked!

https://github.com/signalapp/Signal-Desktop/issues

Contributing Translations

Interested in helping to translate Signal? Contribute here:

https://www.transifex.com/projects/p/signal-desktop

Contributing Code

Please see CONTRIBUTING.md for setup instructions and contributor guidelines. And don't forget to sign the CLA.

Contributing Funds

You can donate to Signal development through the Freedom of the Press Foundation.

Cryptography Notice

This distribution includes cryptographic software. The country in which you currently reside may have restrictions on the import, possession, use, and/or re-export to another country, of encryption software. BEFORE using any encryption software, please check your country's laws, regulations and policies concerning the import, possession, or use, and re-export of encryption software, to see if this is permitted. See http://www.wassenaar.org/ for more information.

The U.S. Government Department of Commerce, Bureau of Industry and Security (BIS), has classified this software as Export Commodity Control Number (ECCN) 5D002.C.1, which includes information security software using or performing cryptographic functions with asymmetric algorithms. The form and manner of this distribution makes it eligible for export under the License Exception ENC Technology Software Unrestricted (TSU) exception (see the BIS Export Administration Regulations, Section 740.13) for both object code and source code.

License

Licensed under the GPLv3: http://www.gnu.org/licenses/gpl-3.0.html