@freesignal/protocol 0.2.11 → 0.3.0

package/double-ratchet.d.ts

@@ -20,56 +20,34 @@ import { LocalStorage } from "@freesignal/interfaces";
 import { EncryptedData } from "./types";
 export interface ExportedKeySession {
     secretKey: string;
-    remoteKey: string;
-    rootKey: string;
-    sendingChain: string;
-    receivingChain: string;
-    sendingCount: number;
-    receivingCount: number;
-    previousCount: number;
-    previousKeys: [number, Uint8Array][];
+    rootKey?: string;
+    sendingChain?: ExportedKeyChain;
+    receivingChain?: ExportedKeyChain;
+    previousKeys: [string, Uint8Array][];
 }
 /**
  * Represents a secure Double Ratchet session.
  * Used for forward-secure encryption and decryption of messages.
  */
 export declare class KeySession {
-    private static readonly skipLimit;
+    static readonly keyLength = 32;
     static readonly version = 1;
-    static readonly rootKeyLength: number;
+    static readonly info: string;
     readonly id: string;
+    private readonly mutex;
+    private readonly storage;
     private keyPair;
-    private _remoteKey?;
     private rootKey?;
     private sendingChain?;
-    private sendingCount;
-    private previousCount;
     private receivingChain?;
-    private receivingCount;
     private previousKeys;
-    private readonly storage;
     constructor(storage: LocalStorage<string, ExportedKeySession>, opts?: {
         id?: string;
         secretKey?: Uint8Array;
         remoteKey?: Uint8Array;
         rootKey?: Uint8Array;
     });
-    /**
-     * Whether both the sending and receiving chains are initialized.
-     */
-    get handshaked(): boolean;
-    /**
-     * The public key of this session.
-     */
-    get publicKey(): Uint8Array;
-    /**
-     * The last known remote public key.
-     */
-    get remoteKey(): Uint8Array | undefined;
-    private setRemoteKey;
-    private ratchetKeys;
-    private getSendingKey;
-    private getReceivingKey;
+    private getChain;
     private save;
     /**
      * Encrypts a message payload using the current sending chain.
@@ -84,7 +62,15 @@ export declare class KeySession {
      * @param payload - The received encrypted message.
      * @returns The decrypted message as a Uint8Array, or undefined if decryption fails.
      */
-    decrypt(payload: Uint8Array | EncryptedData): Promise<Uint8Array | undefined>;
+    decrypt(payload: Uint8Array | EncryptedData): Promise<Uint8Array>;
+    /**
+     * Whether both the sending and receiving chains are initialized.
+     */
+    get handshaked(): boolean;
+    /**
+     * The public key of this session.
+     */
+    get publicKey(): Uint8Array;
     /**
      * Export the state of the session;
      */
@@ -96,12 +82,13 @@ export declare class KeySession {
      * @returns session with the state parsed.
      */
     static from(data: ExportedKeySession, storage: LocalStorage<string, ExportedKeySession>): KeySession;
-    /**
-     * The fixed key length (in bytes) used throughout the Double Ratchet session.
-     * Typically 32 bytes (256 bits) for symmetric keys.
-     */
-    static readonly keyLength = 32;
-    private static symmetricRatchet;
+}
+interface ExportedKeyChain {
+    publicKey: string;
+    remoteKey: string;
+    chainKey: string;
+    count: number;
+    previousCount: number;
 }
 export declare class EncryptedDataConstructor implements EncryptedData {
     static readonly secretKeyLength: number;
@@ -131,3 +118,4 @@ export declare class EncryptedDataConstructor implements EncryptedData {
         ciphertext: string;
     };
 }
+export {};

package/double-ratchet.js

@@ -26,6 +26,58 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
+var __addDisposableResource = (this && this.__addDisposableResource) || function (env, value, async) {
+    if (value !== null && value !== void 0) {
+        if (typeof value !== "object" && typeof value !== "function") throw new TypeError("Object expected.");
+        var dispose, inner;
+        if (async) {
+            if (!Symbol.asyncDispose) throw new TypeError("Symbol.asyncDispose is not defined.");
+            dispose = value[Symbol.asyncDispose];
+        }
+        if (dispose === void 0) {
+            if (!Symbol.dispose) throw new TypeError("Symbol.dispose is not defined.");
+            dispose = value[Symbol.dispose];
+            if (async) inner = dispose;
+        }
+        if (typeof dispose !== "function") throw new TypeError("Object not disposable.");
+        if (inner) dispose = function() { try { inner.call(this); } catch (e) { return Promise.reject(e); } };
+        env.stack.push({ value: value, dispose: dispose, async: async });
+    }
+    else if (async) {
+        env.stack.push({ async: true });
+    }
+    return value;
+};
+var __disposeResources = (this && this.__disposeResources) || (function (SuppressedError) {
+    return function (env) {
+        function fail(e) {
+            env.error = env.hasError ? new SuppressedError(e, env.error, "An error was suppressed during disposal.") : e;
+            env.hasError = true;
+        }
+        var r, s = 0;
+        function next() {
+            while (r = env.stack.pop()) {
+                try {
+                    if (!r.async && s === 1) return s = 0, env.stack.push(r), Promise.resolve().then(next);
+                    if (r.dispose) {
+                        var result = r.dispose.call(r.value);
+                        if (r.async) return s |= 2, Promise.resolve(result).then(next, function(e) { fail(e); return next(); });
+                    }
+                    else s |= 1;
+                }
+                catch (e) {
+                    fail(e);
+                }
+            }
+            if (s === 1) return env.hasError ? Promise.reject(env.error) : Promise.resolve();
+            if (env.hasError) throw env.error;
+        }
+        return next();
+    };
+})(typeof SuppressedError === "function" ? SuppressedError : function (error, suppressed, message) {
+    var e = new Error(message);
+    return e.name = "SuppressedError", e.error = error, e.suppressed = suppressed, e;
+});
 var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
@@ -34,6 +86,7 @@ exports.EncryptedDataConstructor = exports.KeySession = void 0;
 const crypto_1 = __importDefault(require("@freesignal/crypto"));
 const utils_1 = require("@freesignal/utils");
 const types_1 = require("./types");
+const semaphore_ts_1 = require("semaphore.ts");
 /**
  * Represents a secure Double Ratchet session.
  * Used for forward-secure encryption and decryption of messages.
@@ -41,70 +94,25 @@ const types_1 = require("./types");
 class KeySession {
     constructor(storage, opts = {}) {
         var _a;
-        this.sendingCount = 0;
-        this.previousCount = 0;
-        this.receivingCount = 0;
+        this.mutex = new semaphore_ts_1.AsyncMutex();
         this.previousKeys = new KeyMap();
         this.id = (_a = opts.id) !== null && _a !== void 0 ? _a : crypto_1.default.UUID.generate().toString();
         this.keyPair = crypto_1.default.ECDH.keyPair(opts.secretKey);
         if (opts.rootKey)
             this.rootKey = opts.rootKey;
         if (opts.remoteKey) {
-            this._remoteKey = opts.remoteKey;
-            this.sendingChain = this.ratchetKeys();
+            this.sendingChain = this.getChain(opts.remoteKey);
         }
         this.storage = storage;
-        this.storage.set(this.id, this.toJSON());
-    }
-    /**
-     * Whether both the sending and receiving chains are initialized.
-     */
-    get handshaked() { return this.sendingChain && this.receivingChain ? true : false; }
-    /**
-     * The public key of this session.
-     */
-    get publicKey() { return this.keyPair.publicKey; }
-    /**
-     * The last known remote public key.
-     */
-    get remoteKey() { return this._remoteKey; }
-    setRemoteKey(key) {
-        this._remoteKey = key;
-        this.receivingChain = this.ratchetKeys();
-        if (this.receivingCount > (EncryptedDataConstructor.maxCount - KeySession.skipLimit * 2))
-            this.receivingCount = 0;
-        this.previousCount = this.sendingCount;
-        this.keyPair = crypto_1.default.ECDH.keyPair();
-        this.sendingChain = this.ratchetKeys();
-        if (this.sendingCount > (EncryptedDataConstructor.maxCount - KeySession.skipLimit * 2))
-            this.sendingCount = 0;
-        return this;
+        this.save();
     }
-    ratchetKeys(info) {
-        if (!this._remoteKey)
-            throw new Error();
-        const sharedKey = crypto_1.default.ECDH.scalarMult(this.keyPair.secretKey, this._remoteKey);
+    getChain(remoteKey, previousCount) {
+        const sharedKey = crypto_1.default.ECDH.scalarMult(this.keyPair.secretKey, remoteKey);
         if (!this.rootKey)
             this.rootKey = crypto_1.default.hash(sharedKey);
-        const hashkey = crypto_1.default.hkdf(sharedKey, this.rootKey, info, KeySession.keyLength * 2);
-        this.rootKey = hashkey.slice(0, KeySession.keyLength);
-        return hashkey.slice(KeySession.keyLength);
-    }
-    getSendingKey() {
-        if (!this.sendingChain)
-            throw new Error;
-        const { chainKey, sharedKey } = KeySession.symmetricRatchet(this.sendingChain);
-        this.sendingChain = chainKey;
-        this.sendingCount++;
-        return sharedKey;
-    }
-    getReceivingKey() {
-        if (!this.receivingChain)
-            throw new Error();
-        const { chainKey, sharedKey } = KeySession.symmetricRatchet(this.receivingChain);
-        this.receivingChain = chainKey;
-        this.receivingCount++;
-        return sharedKey;
+        const hashkey = crypto_1.default.hkdf(sharedKey, this.rootKey, KeySession.info, KeySession.keyLength * 2);
+        this.rootKey = hashkey.subarray(0, KeySession.keyLength);
+        return new KeyChain(this.publicKey, remoteKey, hashkey.subarray(KeySession.keyLength), previousCount);
     }
     save() {
         return this.storage.set(this.id, this.toJSON());
@@ -117,13 +125,24 @@ class KeySession {
      */
     encrypt(message) {
         return __awaiter(this, void 0, void 0, function* () {
-            const key = this.getSendingKey();
-            if (this.sendingCount >= EncryptedDataConstructor.maxCount || this.previousCount >= EncryptedDataConstructor.maxCount)
-                throw new Error();
-            const nonce = crypto_1.default.randomBytes(EncryptedDataConstructor.nonceLength);
-            const ciphertext = crypto_1.default.box.encrypt(message, nonce, key);
-            yield this.save();
-            return new EncryptedDataConstructor(this.sendingCount, this.previousCount, this.keyPair.publicKey, nonce, ciphertext);
+            const env_1 = { stack: [], error: void 0, hasError: false };
+            try {
+                const lock = __addDisposableResource(env_1, yield this.mutex.acquire(), false);
+                if (!this.sendingChain)
+                    throw new Error("SendingChain not initialized");
+                const key = this.sendingChain.getKey();
+                const nonce = crypto_1.default.randomBytes(EncryptedDataConstructor.nonceLength);
+                const ciphertext = crypto_1.default.box.encrypt(message, nonce, key);
+                yield this.save();
+                return new EncryptedDataConstructor(this.sendingChain.count, this.sendingChain.previousCount, this.keyPair.publicKey, nonce, ciphertext);
+            }
+            catch (e_1) {
+                env_1.error = e_1;
+                env_1.hasError = true;
+            }
+            finally {
+                __disposeResources(env_1);
+            }
         });
     }
     /**
@@ -134,44 +153,62 @@ class KeySession {
      */
     decrypt(payload) {
         return __awaiter(this, void 0, void 0, function* () {
-            const encrypted = types_1.EncryptedData.from(payload);
-            const publicKey = encrypted.publicKey;
-            if (this._remoteKey && !(0, utils_1.verifyArrays)(publicKey, this._remoteKey))
-                while (this.receivingCount < encrypted.previous)
-                    this.previousKeys.set(this.receivingCount, this.getReceivingKey());
-            this.setRemoteKey(publicKey);
-            let key;
-            const count = encrypted.count;
-            if (this.receivingCount < count) {
-                let i = 0;
-                while (this.receivingCount < count - 1 && i < KeySession.skipLimit) {
-                    this.previousKeys.set(this.receivingCount, this.getReceivingKey());
+            var _a, _b, _c;
+            const env_2 = { stack: [], error: void 0, hasError: false };
+            try {
+                const lock = __addDisposableResource(env_2, yield this.mutex.acquire(), false);
+                const encrypted = types_1.EncryptedData.from(payload);
+                if (!(0, utils_1.verifyArrays)(encrypted.publicKey, (_b = (_a = this.receivingChain) === null || _a === void 0 ? void 0 : _a.remoteKey) !== null && _b !== void 0 ? _b : new Uint8Array())) {
+                    while (this.receivingChain && this.receivingChain.count < encrypted.previous) {
+                        const key = this.receivingChain.getKey();
+                        this.previousKeys.set((0, utils_1.decodeBase64)(this.receivingChain.remoteKey) + this.receivingChain.count.toString(), key);
+                    }
+                    this.receivingChain = this.getChain(encrypted.publicKey);
+                    this.keyPair = crypto_1.default.ECDH.keyPair();
+                    this.sendingChain = this.getChain(encrypted.publicKey, (_c = this.sendingChain) === null || _c === void 0 ? void 0 : _c.count);
                 }
-                key = this.getReceivingKey();
+                if (!this.receivingChain)
+                    throw new Error("Error initializing receivingChain");
+                while (this.receivingChain.count < encrypted.count) {
+                    const key = this.receivingChain.getKey();
+                    this.previousKeys.set((0, utils_1.decodeBase64)(this.receivingChain.remoteKey) + this.receivingChain.count.toString(), key);
+                }
+                const key = this.previousKeys.get((0, utils_1.decodeBase64)(encrypted.publicKey) + encrypted.count.toString());
+                if (!key)
+                    throw new Error("Error calculating key");
+                yield this.save();
+                const cleartext = crypto_1.default.box.decrypt(encrypted.ciphertext, encrypted.nonce, key);
+                if (!cleartext)
+                    throw new Error("Error decrypting ciphertext");
+                return cleartext;
+            }
+            catch (e_2) {
+                env_2.error = e_2;
+                env_2.hasError = true;
             }
-            else {
-                key = this.previousKeys.get(count);
+            finally {
+                __disposeResources(env_2);
             }
-            if (!key)
-                return undefined;
-            yield this.save();
-            return crypto_1.default.box.decrypt(encrypted.ciphertext, encrypted.nonce, key);
         });
     }
+    /**
+     * Whether both the sending and receiving chains are initialized.
+     */
+    get handshaked() { return this.sendingChain && this.receivingChain ? true : false; }
+    /**
+     * The public key of this session.
+     */
+    get publicKey() { return this.keyPair.publicKey; }
     /**
      * Export the state of the session;
      */
     toJSON() {
-        var _a, _b, _c, _d;
+        var _a, _b;
         return {
-            secretKey: (0, utils_1.decodeBase64)((0, utils_1.concatArrays)(this.keyPair.secretKey)),
-            remoteKey: (0, utils_1.decodeBase64)((_a = this._remoteKey) !== null && _a !== void 0 ? _a : new Uint8Array()),
-            rootKey: (0, utils_1.decodeBase64)((_b = this.rootKey) !== null && _b !== void 0 ? _b : new Uint8Array()),
-            sendingChain: (0, utils_1.decodeBase64)((_c = this.sendingChain) !== null && _c !== void 0 ? _c : new Uint8Array()),
-            receivingChain: (0, utils_1.decodeBase64)((_d = this.receivingChain) !== null && _d !== void 0 ? _d : new Uint8Array()),
-            sendingCount: this.sendingCount,
-            receivingCount: this.receivingCount,
-            previousCount: this.previousCount,
+            secretKey: (0, utils_1.decodeBase64)(this.keyPair.secretKey),
+            rootKey: this.rootKey ? (0, utils_1.decodeBase64)(this.rootKey) : undefined,
+            sendingChain: (_a = this.sendingChain) === null || _a === void 0 ? void 0 : _a.toJSON(),
+            receivingChain: (_b = this.receivingChain) === null || _b === void 0 ? void 0 : _b.toJSON(),
             previousKeys: Array.from(this.previousKeys.entries())
         };
     }
@@ -182,34 +219,55 @@ class KeySession {
      * @returns session with the state parsed.
      */
     static from(data, storage) {
-        const session = new KeySession(storage, { secretKey: (0, utils_1.encodeBase64)(data.secretKey), rootKey: (0, utils_1.encodeBase64)(data.rootKey) });
-        session._remoteKey = (0, utils_1.encodeBase64)(data.remoteKey);
-        session.sendingChain = (0, utils_1.encodeBase64)(data.sendingChain);
-        session.receivingChain = (0, utils_1.encodeBase64)(data.receivingChain);
-        session.sendingCount = data.sendingCount;
-        session.receivingCount = data.receivingCount;
-        session.previousCount = data.previousCount;
+        const session = new KeySession(storage, { secretKey: (0, utils_1.encodeBase64)(data.secretKey), rootKey: data.rootKey ? (0, utils_1.encodeBase64)(data.rootKey) : undefined });
+        //session._remoteKey = data.remoteKey ? encodeBase64(data.remoteKey) : undefined;
+        session.sendingChain = data.sendingChain ? KeyChain.from(data.sendingChain) : undefined;
+        session.receivingChain = data.receivingChain ? KeyChain.from(data.receivingChain) : undefined;
         session.previousKeys = new KeyMap(data.previousKeys);
         session.save();
         return session;
     }
-    static symmetricRatchet(chain, salt, info) {
-        const hash = crypto_1.default.hkdf(chain, salt !== null && salt !== void 0 ? salt : new Uint8Array(), info, KeySession.keyLength * 2);
+}
+exports.KeySession = KeySession;
+KeySession.keyLength = 32;
+KeySession.version = 1;
+KeySession.info = "/freesignal/double-ratchet/v0." + KeySession.version;
+class KeyChain {
+    constructor(publicKey, remoteKey, chainKey, previousCount = 0) {
+        this.publicKey = publicKey;
+        this.remoteKey = remoteKey;
+        this.chainKey = chainKey;
+        this.previousCount = previousCount;
+        this._count = 0;
+    }
+    getKey() {
+        if (++this._count >= EncryptedDataConstructor.maxCount)
+            throw new Error("SendingChain count too big");
+        const hash = crypto_1.default.hkdf(this.chainKey, new Uint8Array(KeySession.keyLength).fill(0), KeySession.info, KeySession.keyLength * 2);
+        this.chainKey = hash.subarray(0, KeySession.keyLength);
+        return hash.subarray(KeySession.keyLength);
+    }
+    toString() {
+        return "[object KeyChain]";
+    }
+    get count() {
+        return this._count;
+    }
+    toJSON() {
         return {
-            chainKey: new Uint8Array(hash.buffer, 0, KeySession.keyLength),
-            sharedKey: new Uint8Array(hash.buffer, KeySession.keyLength)
+            publicKey: (0, utils_1.decodeBase64)(this.publicKey),
+            remoteKey: (0, utils_1.decodeBase64)(this.remoteKey),
+            chainKey: (0, utils_1.decodeBase64)(this.chainKey),
+            count: this.count,
+            previousCount: this.previousCount
         };
     }
+    static from(obj) {
+        const chain = new KeyChain((0, utils_1.encodeBase64)(obj.publicKey), (0, utils_1.encodeBase64)(obj.remoteKey), (0, utils_1.encodeBase64)(obj.chainKey), obj.previousCount);
+        chain._count = obj.count;
+        return chain;
+    }
 }
-exports.KeySession = KeySession;
-KeySession.skipLimit = 1000;
-KeySession.version = 1;
-KeySession.rootKeyLength = crypto_1.default.box.keyLength;
-/**
- * The fixed key length (in bytes) used throughout the Double Ratchet session.
- * Typically 32 bytes (256 bits) for symmetric keys.
- */
-KeySession.keyLength = 32;
 class EncryptedDataConstructor {
     constructor(...arrays) {
         arrays = arrays.filter(value => value !== undefined);

package/index.d.ts

@@ -16,10 +16,10 @@
  * You should have received a copy of the GNU General Public License
  * along with this program.  If not, see <https://www.gnu.org/licenses/>
  */
-import { LocalStorage, Crypto } from "@freesignal/interfaces";
-import { ExportedKeySession, KeySession } from "./double-ratchet";
-import { KeyExchange } from "./x3dh";
-import { PrivateIdentityKey } from "./types";
+import { LocalStorage, Crypto, Database } from "@freesignal/interfaces";
+import { ExportedKeySession } from "./double-ratchet";
+import { IdentityKey, PrivateIdentityKey } from "./types";
+import { FreeSignalNode } from "./node";
 /**
  * Creates a new Double Ratchet session for secure message exchange.
  *
@@ -29,21 +29,12 @@ import { PrivateIdentityKey } from "./types";
  * @param opts.rootKey - An optional root key to initialize the session.
  * @returns A new instance of {@link KeySession}.
  */
-export declare function createKeySession(storage: LocalStorage<string, ExportedKeySession>, opts?: {
-    secretKey?: Uint8Array;
-    remoteKey?: Uint8Array;
-    rootKey?: Uint8Array;
-}): KeySession;
 /**
  * Creates a new X3DH (Extended Triple Diffie-Hellman) key exchange session.
  *
  * @param storage - Local storage for keys.
  * @returns A new instance of {@link KeyExchange}.
  */
-export declare function createKeyExchange(storage: {
-    keys: LocalStorage<string, Crypto.KeyPair>;
-    sessions: LocalStorage<string, ExportedKeySession>;
-}, privateIdentityKey?: PrivateIdentityKey): KeyExchange;
 /**
  * Generates identity key
  *
@@ -51,4 +42,10 @@ export declare function createKeyExchange(storage: {
  * @returns An object containing readonly signing and box key pairs.
  */
 export declare function createIdentity(seed?: Uint8Array): PrivateIdentityKey;
+/** */
+export declare function createNode(storage: Database<{
+    sessions: LocalStorage<string, ExportedKeySession>;
+    keyExchange: LocalStorage<string, Crypto.KeyPair>;
+    users: LocalStorage<string, IdentityKey>;
+}>, privateIdentityKey?: PrivateIdentityKey): FreeSignalNode;
 export * from "./types";

package/index.js

@@ -35,13 +35,11 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.createKeySession = createKeySession;
-exports.createKeyExchange = createKeyExchange;
 exports.createIdentity = createIdentity;
+exports.createNode = createNode;
 const crypto_1 = __importDefault(require("@freesignal/crypto"));
-const double_ratchet_1 = require("./double-ratchet");
-const x3dh_1 = require("./x3dh");
 const types_1 = require("./types");
+const node_1 = require("./node");
 /**
  * Creates a new Double Ratchet session for secure message exchange.
  *
@@ -51,18 +49,18 @@ const types_1 = require("./types");
  * @param opts.rootKey - An optional root key to initialize the session.
  * @returns A new instance of {@link KeySession}.
  */
-function createKeySession(storage, opts) {
-    return new double_ratchet_1.KeySession(storage, opts);
-}
+/*export function createKeySession(storage: LocalStorage<string, ExportedKeySession>, opts?: { secretKey?: Uint8Array, remoteKey?: Uint8Array, rootKey?: Uint8Array }): KeySession {
+    return new KeySession(storage, opts);
+}*/
 /**
  * Creates a new X3DH (Extended Triple Diffie-Hellman) key exchange session.
  *
  * @param storage - Local storage for keys.
  * @returns A new instance of {@link KeyExchange}.
  */
-function createKeyExchange(storage, privateIdentityKey) {
-    return new x3dh_1.KeyExchange(storage, privateIdentityKey);
-}
+/*export function createKeyExchange(storage: { keys: LocalStorage<string, Crypto.KeyPair>, sessions: LocalStorage<string, ExportedKeySession> }, privateIdentityKey?: PrivateIdentityKey): KeyExchange {
+    return new KeyExchange(storage, privateIdentityKey);
+}*/
 /**
  * Generates identity key
  *
@@ -77,4 +75,8 @@ function createIdentity(seed) {
     const exchangeKeyPair = crypto_1.default.ECDH.keyPair(exchangeSeed);
     return types_1.PrivateIdentityKey.from(signatureKeyPair.secretKey, exchangeKeyPair.secretKey);
 }
+/** */
+function createNode(storage, privateIdentityKey) {
+    return new node_1.FreeSignalNode(storage, privateIdentityKey);
+}
 __exportStar(require("./types"), exports);

package/node.d.ts

@@ -4,8 +4,7 @@ import { KeyExchange } from "./x3dh";
 import { ExportedKeySession, KeySession } from "./double-ratchet";
 export declare class FreeSignalNode {
     protected readonly privateIdentityKey: PrivateIdentityKey;
-    protected readonly sessions: Map<string, KeySession>;
-    protected readonly sessionsData: LocalStorage<string, ExportedKeySession>;
+    protected readonly sessions: SessionMap;
     protected readonly users: LocalStorage<string, IdentityKey>;
     protected readonly keyExchange: KeyExchange;
     constructor(storage: Database<{
@@ -25,3 +24,15 @@ export declare class FreeSignalNode {
     decrypt(datagram: Datagram): Promise<Uint8Array>;
     receive<T extends Uint8Array | UserId | Datagram | UserId | void>(datagram: Datagram | Uint8Array): Promise<T>;
 }
+declare class SessionMap implements LocalStorage<string, KeySession> {
+    readonly storage: LocalStorage<string, ExportedKeySession>;
+    readonly maxSize: number;
+    private readonly cache;
+    constructor(storage: LocalStorage<string, ExportedKeySession>, maxSize?: number);
+    set(key: string, value: KeySession): Promise<void>;
+    get(key: string): Promise<KeySession | undefined>;
+    has(key: string): Promise<boolean>;
+    delete(key: string): Promise<boolean>;
+    clear(): Promise<void>;
+}
+export {};

package/node.js

@@ -12,18 +12,15 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.FreeSignalNode = void 0;
 const types_1 = require("./types");
 const x3dh_1 = require("./x3dh");
+const double_ratchet_1 = require("./double-ratchet");
 const _1 = require(".");
 const utils_1 = require("@freesignal/utils");
 class FreeSignalNode {
     constructor(storage, privateIdentityKey) {
-        this.sessions = new Map();
         this.privateIdentityKey = privateIdentityKey !== null && privateIdentityKey !== void 0 ? privateIdentityKey : (0, _1.createIdentity)();
-        this.sessionsData = storage.sessions;
+        this.sessions = new SessionMap(storage.sessions);
         this.keyExchange = new x3dh_1.KeyExchange({ keys: storage.keyExchange, sessions: storage.sessions }, this.privateIdentityKey);
         this.users = storage.users;
-        /*Array.from(this.sessionsData.entries()).forEach(([userId, sessionData]) => {
-            this.sessions.set(userId, KeySession.from(sessionData, this.sessionsData));
-        });*/
     }
     get userId() {
         return types_1.UserId.fromKey(this.privateIdentityKey.identityKey);
@@ -41,7 +38,7 @@ class FreeSignalNode {
     ;
     encrypt(receiverId, protocol, data) {
         return __awaiter(this, void 0, void 0, function* () {
-            const session = this.sessions.get(receiverId);
+            const session = yield this.sessions.get(receiverId);
             if (!session)
                 throw new Error("Session not found for user: " + receiverId);
             return new types_1.Datagram(this.userId.toString(), receiverId, protocol, yield session.encrypt(data));
@@ -67,7 +64,7 @@ class FreeSignalNode {
     decrypt(datagram) {
         return __awaiter(this, void 0, void 0, function* () {
             const userId = datagram.sender;
-            const session = this.sessions.get(userId);
+            const session = yield this.sessions.get(userId);
             if (!session)
                 throw new Error("Session not found for user: " + userId);
             if (!datagram.payload)
@@ -103,3 +100,40 @@ class FreeSignalNode {
     }
 }
 exports.FreeSignalNode = FreeSignalNode;
+class SessionMap {
+    constructor(storage, maxSize = 50) {
+        this.storage = storage;
+        this.maxSize = maxSize;
+        this.cache = new Map();
+    }
+    set(key, value) {
+        this.cache.set(key, value);
+        return this.storage.set(key, value.toJSON());
+    }
+    get(key) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const session = this.cache.get(key);
+            if (!session) {
+                const sessionData = yield this.storage.get(key);
+                if (!sessionData)
+                    return undefined;
+                return double_ratchet_1.KeySession.from(sessionData, this.storage);
+            }
+            return session;
+        });
+    }
+    has(key) {
+        return __awaiter(this, void 0, void 0, function* () {
+            return this.cache.has(key) || (yield this.storage.has(key));
+        });
+    }
+    delete(key) {
+        return __awaiter(this, void 0, void 0, function* () {
+            return this.cache.delete(key) || (yield this.storage.delete(key));
+        });
+    }
+    clear() {
+        this.cache.clear();
+        return this.storage.clear();
+    }
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@freesignal/protocol",
-  "version": "0.2.11",
+  "version": "0.3.0",
   "description": "Signal Protocol implementation in javascript",
   "license": "GPL-3.0-or-later",
   "author": "Christian Braghette",
@@ -13,7 +13,8 @@
   "dependencies": {
     "@freesignal/crypto": "^0.3.0",
     "@freesignal/interfaces": "^0.2.0",
-    "@freesignal/utils": "^1.3.0"
+    "@freesignal/utils": "^1.3.0",
+    "semaphore.ts": "^0.2.0"
   },
   "devDependencies": {
     "@types/node": "^24.2.1"

package/test.js

@@ -11,15 +11,18 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
 Object.defineProperty(exports, "__esModule", { value: true });
 const utils_1 = require("@freesignal/utils");
 const _1 = require(".");
-const node_1 = require("./node");
-const bob = new node_1.FreeSignalNode({ keyExchange: new _1.AsyncMap(), sessions: new _1.AsyncMap(), users: new _1.AsyncMap() });
-const alice = new node_1.FreeSignalNode({ keyExchange: new _1.AsyncMap(), sessions: new _1.AsyncMap(), users: new _1.AsyncMap() });
+const bob = (0, _1.createNode)({ keyExchange: new _1.AsyncMap(), sessions: new _1.AsyncMap(), users: new _1.AsyncMap() });
+const alice = (0, _1.createNode)({ keyExchange: new _1.AsyncMap(), sessions: new _1.AsyncMap(), users: new _1.AsyncMap() });
 setImmediate(() => __awaiter(void 0, void 0, void 0, function* () {
     const aliceHandshake = yield alice.sendHandshake(yield bob.generateKeyData());
     yield bob.receive(aliceHandshake);
     console.log("Session established successfully between Alice and Bob.");
-    const data = (yield bob.encrypt(alice.userId.toString(), _1.Protocols.MESSAGE, (0, utils_1.encodeData)("Hi Alice!"))).toBytes();
-    console.log((0, utils_1.decodeData)(yield alice.receive(data)));
-    const longmsg = yield alice.sendData(bob.userId.toString(), new Uint8Array(1000000).fill(33).map(val => val + Math.floor(Math.random() * 93)));
-    console.log(longmsg.toBytes().length);
+    const first = (yield bob.sendData(alice.userId.toString(), (0, utils_1.encodeData)("Hi Alice!"))).toBytes();
+    console.log("Bob: ", (0, utils_1.decodeData)(yield alice.receive(first)));
+    const second = yield alice.sendData(bob.userId.toString(), (0, utils_1.encodeData)("Hi Bob!"));
+    console.log("Alice: ", (0, utils_1.decodeData)(yield bob.receive(second)));
+    const third = yield Promise.all(["How are you?", "How are this days?", "For me it's a good time"].map(msg => bob.sendData(alice.userId.toString(), (0, utils_1.encodeData)(msg))));
+    third.forEach((value) => __awaiter(void 0, void 0, void 0, function* () {
+        console.log("Bob: ", (0, utils_1.decodeData)(yield alice.receive(value)));
+    }));
 }));

package/types.js

@@ -53,7 +53,7 @@ class UserId {
             identityKey = (0, utils_1.encodeBase64)(identityKey);
         else if (IdentityKey.isIdentityKeys(identityKey))
             identityKey = identityKey.toBytes();
-        return new UserId(crypto_1.default.hash(identityKey));
+        return new UserId(crypto_1.default.hkdf(identityKey, new Uint8Array(32).fill(0), "/freesignal/userid"));
     }
     static from(userId) {
         if (typeof userId === 'string')

package/x3dh.js

@@ -98,9 +98,9 @@ class KeyExchange {
                 ...crypto_1.default.ECDH.scalarMult(ephemeralKey.secretKey, identityKey.exchangeKey),
                 ...crypto_1.default.ECDH.scalarMult(ephemeralKey.secretKey, signedPreKey),
                 ...onetimePreKey ? crypto_1.default.ECDH.scalarMult(ephemeralKey.secretKey, onetimePreKey) : new Uint8Array()
-            ]), new Uint8Array(double_ratchet_1.KeySession.rootKeyLength).fill(0), KeyExchange.hkdfInfo, double_ratchet_1.KeySession.rootKeyLength);
+            ]), new Uint8Array(double_ratchet_1.KeySession.keyLength).fill(0), KeyExchange.hkdfInfo, double_ratchet_1.KeySession.keyLength);
             const session = new double_ratchet_1.KeySession(this.sessions, { remoteKey: identityKey.exchangeKey, rootKey });
-            const cyphertext = yield session.encrypt((0, utils_1.concatArrays)(crypto_1.default.hash(this.identityKey.exchangeKey), crypto_1.default.hash(identityKey.exchangeKey)));
+            const cyphertext = yield session.encrypt((0, utils_1.concatArrays)(crypto_1.default.hash(this.identityKey.toBytes()), crypto_1.default.hash(identityKey.toBytes())));
             if (!cyphertext)
                 throw new Error("Decryption error");
             return {
@@ -133,12 +133,12 @@ class KeyExchange {
                 ...crypto_1.default.ECDH.scalarMult(this.privateIdentityKey.exchangeKey, ephemeralKey),
                 ...crypto_1.default.ECDH.scalarMult(signedPreKey.secretKey, ephemeralKey),
                 ...onetimePreKey ? crypto_1.default.ECDH.scalarMult(onetimePreKey.secretKey, ephemeralKey) : new Uint8Array()
-            ]), new Uint8Array(double_ratchet_1.KeySession.rootKeyLength).fill(0), KeyExchange.hkdfInfo, double_ratchet_1.KeySession.rootKeyLength);
+            ]), new Uint8Array(double_ratchet_1.KeySession.keyLength).fill(0), KeyExchange.hkdfInfo, double_ratchet_1.KeySession.keyLength);
             const session = new double_ratchet_1.KeySession(this.sessions, { secretKey: this.privateIdentityKey.exchangeKey, rootKey });
             const cleartext = yield session.decrypt((0, utils_1.encodeBase64)(message.associatedData));
             if (!cleartext)
                 throw new Error("Error decrypting ACK message");
-            if (!(0, utils_1.verifyArrays)(cleartext, (0, utils_1.concatArrays)(crypto_1.default.hash(identityKey.exchangeKey), crypto_1.default.hash(this.identityKey.exchangeKey))))
+            if (!(0, utils_1.verifyArrays)(cleartext, (0, utils_1.concatArrays)(crypto_1.default.hash(identityKey.toBytes()), crypto_1.default.hash(this.identityKey.toBytes()))))
                 throw new Error("Error verifing Associated Data");
             return {
                 session,
@@ -149,5 +149,5 @@ class KeyExchange {
 }
 exports.KeyExchange = KeyExchange;
 KeyExchange.version = 1;
-KeyExchange.hkdfInfo = (0, utils_1.encodeUTF8)("freesignal/x3dh/" + KeyExchange.version);
+KeyExchange.hkdfInfo = "freesignal/x3dh/" + KeyExchange.version;
 KeyExchange.maxOPK = 10;