1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
|
// SPDX-FileCopyrightText: 2022 Melvin Keskin <melvo@olomono.de>
// SPDX-FileCopyrightText: 2022 Linus Jahn <lnj@kaidan.im>
//
// SPDX-License-Identifier: LGPL-2.1-or-later
#ifndef QXMPPOMEMOMANAGER_P_H
#define QXMPPOMEMOMANAGER_P_H
#include "QXmppE2eeMetadata.h"
#include "QXmppOmemoDeviceBundle_p.h"
#include "QXmppOmemoManager.h"
#include "QXmppOmemoStorage.h"
#include "QXmppPubSubManager.h"
#include "OmemoLibWrappers.h"
#include "QcaInitializer_p.h"
#include <QDomElement>
#include <QTimer>
#include <QtCrypto>
#undef max
class QXmppTrustManager;
class QXmppOmemoManager;
class QXmppPubSubManager;
class QXmppPubSubNodeConfig;
class QXmppPubSubPublishOptions;
class QXmppOmemoIq;
class QXmppOmemoEnvelope;
class QXmppOmemoElement;
class QXmppOmemoDeviceListItem;
class QXmppOmemoDeviceBundleItem;
using namespace QXmpp;
using namespace std::chrono_literals;
namespace QXmpp::Omemo::Private {
// XMPP namespaces
constexpr auto ns_omemo_2 = "urn:xmpp:omemo:2";
constexpr auto ns_omemo_2_bundles = "urn:xmpp:omemo:2:bundles";
constexpr auto ns_omemo_2_devices = "urn:xmpp:omemo:2:devices";
// default possible trust levels a key must have to be used for encryption
// The class documentation must be adapted if the trust levels are modified.
constexpr auto ACCEPTED_TRUST_LEVELS = TrustLevel::AutomaticallyTrusted | TrustLevel::ManuallyTrusted | TrustLevel::Authenticated;
// count of unresponded stanzas sent to a device until QXmpp stops encrypting for it
constexpr int UNRESPONDED_STANZAS_UNTIL_ENCRYPTION_IS_STOPPED = 106;
// count of unresponded stanzas received from a device until a heartbeat message is sent to it
constexpr int UNRESPONDED_STANZAS_UNTIL_HEARTBEAT_MESSAGE_IS_SENT = 53;
// size of empty OMEMO message's decryption data
constexpr int EMPTY_MESSAGE_DECRYPTION_DATA_SIZE = 32;
// workaround for PubSub nodes that are not configurable to store 'max' as the value for
// 'pubsub#max_items'
constexpr uint64_t PUBSUB_NODE_MAX_ITEMS_1 = 1000;
constexpr uint64_t PUBSUB_NODE_MAX_ITEMS_2 = 100;
constexpr uint64_t PUBSUB_NODE_MAX_ITEMS_3 = 10;
constexpr uint32_t PRE_KEY_ID_MIN = 1;
constexpr uint32_t SIGNED_PRE_KEY_ID_MIN = 1;
constexpr uint32_t PRE_KEY_ID_MAX = std::numeric_limits<int32_t>::max();
constexpr uint32_t SIGNED_PRE_KEY_ID_MAX = std::numeric_limits<int32_t>::max();
constexpr uint32_t PRE_KEY_INITIAL_CREATION_COUNT = 100;
// maximum count of devices stored per JID
constexpr int DEVICES_PER_JID_MAX = 200;
// maximum count of devices for whom a stanza is encrypted
constexpr int DEVICES_PER_STANZA_MAX = 1000;
// interval to remove old signed pre keys and create new ones
constexpr auto SIGNED_PRE_KEY_RENEWAL_INTERVAL = 24h * 7 * 4;
// interval to check for old signed pre keys
constexpr auto SIGNED_PRE_KEY_RENEWAL_CHECK_INTERVAL = 24h;
// interval to remove devices locally after removal from their servers
constexpr auto DEVICE_REMOVAL_INTERVAL = 24h * 7 * 12;
// interval to check for devices removed from their servers
constexpr auto DEVICE_REMOVAL_CHECK_INTERVAL = 24h;
constexpr auto PAYLOAD_CIPHER_TYPE = "aes256";
constexpr QCA::Cipher::Mode PAYLOAD_CIPHER_MODE = QCA::Cipher::CBC;
constexpr QCA::Cipher::Padding PAYLOAD_CIPHER_PADDING = QCA::Cipher::PKCS7;
constexpr auto HKDF_INFO = "OMEMO Payload";
constexpr int HKDF_KEY_SIZE = 32;
constexpr int HKDF_SALT_SIZE = 32;
constexpr int HKDF_OUTPUT_SIZE = 80;
extern const QString PAYLOAD_MESSAGE_AUTHENTICATION_CODE_TYPE;
constexpr uint32_t PAYLOAD_MESSAGE_AUTHENTICATION_CODE_SIZE = 16;
constexpr int PAYLOAD_KEY_SIZE = 32;
constexpr uint32_t PAYLOAD_INITIALIZATION_VECTOR_SIZE = 16;
constexpr uint32_t PAYLOAD_AUTHENTICATION_KEY_SIZE = 32;
// boundaries for the count of characters in SCE's <rpad/> element
constexpr uint32_t SCE_RPAD_SIZE_MIN = 0;
constexpr uint32_t SCE_RPAD_SIZE_MAX = 200;
struct PayloadEncryptionResult
{
QCA::SecureArray decryptionData;
QByteArray encryptedPayload;
};
struct DecryptionResult
{
QDomElement sceContent;
QXmppE2eeMetadata e2eeMetadata;
};
struct IqDecryptionResult
{
QDomElement iq;
QXmppE2eeMetadata e2eeMetadata;
};
} // namespace QXmpp::Omemo::Private
using namespace QXmpp::Private;
using namespace QXmpp::Omemo::Private;
class QXmppOmemoManagerPrivate
{
public:
using Result = std::variant<QXmpp::Success, QXmppError>;
QXmppOmemoManager *q;
bool isStarted = false;
bool isNewDeviceAutoSessionBuildingEnabled = false;
QXmppOmemoStorage *omemoStorage;
QXmppTrustManager *trustManager = nullptr;
QXmppPubSubManager *pubSubManager = nullptr;
QcaInitializer cryptoLibInitializer;
QTimer signedPreKeyPairsRenewalTimer;
QTimer deviceRemovalTimer;
TrustLevels acceptedSessionBuildingTrustLevels = ACCEPTED_TRUST_LEVELS;
QXmppOmemoStorage::OwnDevice ownDevice;
QHash<uint32_t, QByteArray> preKeyPairs;
QHash<uint32_t, QXmppOmemoStorage::SignedPreKeyPair> signedPreKeyPairs;
QXmppOmemoDeviceBundle deviceBundle;
int maximumDevicesPerJid = DEVICES_PER_JID_MAX;
int maximumDevicesPerStanza = DEVICES_PER_STANZA_MAX;
// recipient JID mapped to device ID mapped to device
QHash<QString, QHash<uint32_t, QXmppOmemoStorage::Device>> devices;
QList<QString> jidsOfManuallySubscribedDevices;
OmemoContextPtr globalContext;
StoreContextPtr storeContext;
QRecursiveMutex mutex;
signal_crypto_provider cryptoProvider;
signal_protocol_identity_key_store identityKeyStore;
signal_protocol_pre_key_store preKeyStore;
signal_protocol_signed_pre_key_store signedPreKeyStore;
signal_protocol_session_store sessionStore;
QXmppOmemoManagerPrivate(QXmppOmemoManager *parent, QXmppOmemoStorage *omemoStorage);
void init();
// exports for unit tests
QXMPP_EXPORT bool initGlobalContext();
QXMPP_EXPORT bool initLocking();
QXMPP_EXPORT bool initCryptoProvider();
void initStores();
signal_protocol_identity_key_store createIdentityKeyStore() const;
signal_protocol_signed_pre_key_store createSignedPreKeyStore() const;
signal_protocol_pre_key_store createPreKeyStore() const;
signal_protocol_session_store createSessionStore() const;
QXmppTask<bool> setUpDeviceId();
std::optional<uint32_t> generateDeviceId();
std::optional<uint32_t> generateDeviceId(const QVector<QString> &existingIds);
bool setUpIdentityKeyPair(ratchet_identity_key_pair **identityKeyPair);
void schedulePeriodicTasks();
void renewSignedPreKeyPairs();
bool updateSignedPreKeyPair(ratchet_identity_key_pair *identityKeyPair);
bool renewPreKeyPairs(uint32_t keyPairBeingRenewed);
bool updatePreKeyPairs(uint32_t count = 1);
void removeDevicesRemovedFromServer();
QXmppTask<QXmppE2eeExtension::MessageEncryptResult> encryptMessageForRecipients(QXmppMessage &&message,
QVector<QString> recipientJids,
TrustLevels acceptedTrustLevels);
template<typename T>
QXmppTask<std::optional<QXmppOmemoElement>> encryptStanza(const T &stanza, const QVector<QString> &recipientJids, TrustLevels acceptedTrustLevels);
std::optional<PayloadEncryptionResult> encryptPayload(const QByteArray &payload) const;
template<typename T>
QByteArray createSceEnvelope(const T &stanza);
QByteArray createOmemoEnvelopeData(const signal_protocol_address &address, const QCA::SecureArray &payloadDecryptionData) const;
QXmppTask<std::optional<QXmppMessage>> decryptMessage(QXmppMessage stanza);
QXmppTask<std::optional<IqDecryptionResult>> decryptIq(const QDomElement &iqElement);
template<typename T>
QXmppTask<std::optional<DecryptionResult>> decryptStanza(T stanza,
const QString &senderJid,
uint32_t senderDeviceId,
const QXmppOmemoEnvelope &omemoEnvelope,
const QByteArray &omemoPayload,
bool isMessageStanza = true);
QXmppTask<QByteArray> extractSceEnvelope(const QString &senderJid,
uint32_t senderDeviceId,
const QXmppOmemoEnvelope &omemoEnvelope,
const QByteArray &omemoPayload,
bool isMessageStanza);
QXmppTask<std::optional<QCA::SecureArray>> extractPayloadDecryptionData(const QString &senderJid,
uint32_t senderDeviceId,
const QXmppOmemoEnvelope &omemoEnvelope,
bool isMessageStanza = true);
QByteArray decryptPayload(const QCA::SecureArray &payloadDecryptionData, const QByteArray &payload) const;
QXmppTask<bool> publishOmemoData();
template<typename Function>
void publishDeviceBundle(bool isDeviceBundlesNodeExistent,
bool arePublishOptionsSupported,
bool isAutomaticCreationSupported,
bool isCreationAndConfigurationSupported,
bool isCreationSupported,
bool isConfigurationSupported,
bool isConfigNodeMaxSupported,
Function continuation);
template<typename Function>
void publishDeviceBundleWithoutOptions(bool isDeviceBundlesNodeExistent,
bool isCreationAndConfigurationSupported,
bool isCreationSupported,
bool isConfigurationSupported,
bool isConfigNodeMaxSupported,
Function continuation);
template<typename Function>
void configureNodeAndPublishDeviceBundle(bool isConfigNodeMaxSupported, Function continuation);
template<typename Function>
void createAndConfigureDeviceBundlesNode(bool isConfigNodeMaxSupported, Function continuation);
template<typename Function>
void createDeviceBundlesNode(Function continuation);
template<typename Function>
void configureDeviceBundlesNode(bool isConfigNodeMaxSupported, Function continuation);
template<typename Function>
void publishDeviceBundleItem(Function continuation);
template<typename Function>
void publishDeviceBundleItemWithOptions(Function continuation);
QXmppOmemoDeviceBundleItem deviceBundleItem() const;
QXmppTask<std::optional<QXmppOmemoDeviceBundle>> requestDeviceBundle(const QString &deviceOwnerJid, uint32_t deviceId) const;
template<typename Function>
void deleteDeviceBundle(Function continuation);
template<typename Function>
void publishDeviceElement(bool isDeviceListNodeExistent,
bool arePublishOptionsSupported,
bool isAutomaticCreationSupported,
bool isCreationAndConfigurationSupported,
bool isCreationSupported,
bool isConfigurationSupported,
Function continuation);
template<typename Function>
void publishDeviceElementWithoutOptions(bool isDeviceListNodeExistent,
bool isCreationAndConfigurationSupported,
bool isCreationSupported,
bool isConfigurationSupported,
Function continuation);
template<typename Function>
void configureNodeAndPublishDeviceElement(Function continuation);
template<typename Function>
void createAndConfigureDeviceListNode(Function continuation);
template<typename Function>
void createDeviceListNode(Function continuation);
template<typename Function>
void configureDeviceListNode(Function continuation);
template<typename Function>
void publishDeviceListItem(bool addOwnDevice, Function continuation);
template<typename Function>
void publishDeviceListItemWithOptions(Function continuation);
QXmppOmemoDeviceListItem deviceListItem(bool addOwnDevice = true);
template<typename Function>
void updateOwnDevicesLocally(bool isDeviceListNodeExistent, Function continuation);
std::optional<QXmppOmemoDeviceListItem> updateContactDevices(const QString &deviceOwnerJid, const QVector<QXmppOmemoDeviceListItem> &deviceListItems);
void updateDevices(const QString &deviceOwnerJid, const QXmppOmemoDeviceListItem &deviceListItem);
void handleIrregularDeviceListChanges(const QString &deviceOwnerJid);
template<typename Function>
void deleteDeviceElement(Function continuation);
template<typename Function>
void createNode(const QString &node, Function continuation);
template<typename Function>
void createNode(const QString &node, const QXmppPubSubNodeConfig &config, Function continuation);
template<typename Function>
void configureNode(const QString &node, const QXmppPubSubNodeConfig &config, Function continuation);
template<typename Function>
void retractItem(const QString &node, uint32_t itemId, Function continuation);
template<typename Function>
void deleteNode(const QString &node, Function continuation);
template<typename T, typename Function>
void publishItem(const QString &node, const T &item, Function continuation);
template<typename T, typename Function>
void publishItem(const QString &node, const T &item, const QXmppPubSubPublishOptions &publishOptions, Function continuation);
template<typename T, typename Function>
void runPubSubQueryWithContinuation(QXmppTask<T> future, const QString &errorMessage, Function continuation);
QXmppTask<bool> changeDeviceLabel(const QString &deviceLabel);
QXmppTask<QXmppPubSubManager::ItemResult<QXmppOmemoDeviceListItem>> requestDeviceList(const QString &jid);
void subscribeToNewDeviceLists(const QString &jid, uint32_t deviceId);
QXmppTask<Result> subscribeToDeviceList(const QString &jid);
QXmppTask<QVector<QXmppOmemoManager::DevicesResult>> unsubscribeFromDeviceLists(const QList<QString> &jids);
QXmppTask<Result> unsubscribeFromDeviceList(const QString &jid);
QXmppTask<bool> resetOwnDevice();
QXmppTask<bool> resetAll();
QXmppTask<bool> buildSessionForNewDevice(const QString &jid, uint32_t deviceId, QXmppOmemoStorage::Device &device);
QXmppTask<bool> buildSessionWithDeviceBundle(const QString &jid, uint32_t deviceId, QXmppOmemoStorage::Device &device);
bool buildSession(signal_protocol_address address, const QXmppOmemoDeviceBundle &deviceBundle);
bool createSessionBundle(session_pre_key_bundle **sessionBundle,
const QByteArray &serializedPublicIdentityKey,
const QByteArray &serializedSignedPublicPreKey,
uint32_t signedPublicPreKeyId,
const QByteArray &serializedSignedPublicPreKeySignature,
const QByteArray &serializedPublicPreKey,
uint32_t publicPreKeyId);
bool deserializeIdentityKeyPair(ratchet_identity_key_pair **identityKeyPair) const;
bool deserializePrivateIdentityKey(ec_private_key **privateIdentityKey, const QByteArray &serializedPrivateIdentityKey) const;
bool deserializePublicIdentityKey(ec_public_key **publicIdentityKey, const QByteArray &serializedPublicIdentityKey) const;
bool deserializeSignedPublicPreKey(ec_public_key **signedPublicPreKey, const QByteArray &serializedSignedPublicPreKey) const;
bool deserializePublicPreKey(ec_public_key **publicPreKey, const QByteArray &serializedPublicPreKey) const;
QXmppTask<QXmpp::SendResult> sendEmptyMessage(const QString &recipientJid, uint32_t recipientDeviceId, bool isKeyExchange = false) const;
QXmppTask<void> storeOwnKey() const;
QXmppTask<TrustLevel> storeKeyDependingOnSecurityPolicy(const QString &keyOwnerJid, const QByteArray &key);
QXmppTask<TrustLevel> storeKey(const QString &keyOwnerJid, const QByteArray &key, TrustLevel trustLevel = TrustLevel::AutomaticallyDistrusted) const;
QString ownBareJid() const;
QString ownFullJid() const;
QHash<uint32_t, QXmppOmemoStorage::Device> otherOwnDevices();
void warning(const QString &msg) const;
};
#endif // QXMPPOMEMOMANAGER_P_H
|
