@rizzkezik/bails 6.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (115) hide show
  1. package/LICENSE +21 -0
  2. package/README.md +535 -0
  3. package/WAProto/GenerateStatics.sh +3 -0
  4. package/WAProto/WAProto.proto +6902 -0
  5. package/WAProto/fix-imports.js +85 -0
  6. package/WAProto/index.d.ts +79257 -0
  7. package/WAProto/index.js +242946 -0
  8. package/engine-requirements.js +10 -0
  9. package/lib/Defaults/index.js +130 -0
  10. package/lib/Signal/Group/ciphertext-message.js +12 -0
  11. package/lib/Signal/Group/group-session-builder.js +30 -0
  12. package/lib/Signal/Group/group_cipher.js +82 -0
  13. package/lib/Signal/Group/index.js +12 -0
  14. package/lib/Signal/Group/keyhelper.js +18 -0
  15. package/lib/Signal/Group/sender-chain-key.js +26 -0
  16. package/lib/Signal/Group/sender-key-distribution-message.js +63 -0
  17. package/lib/Signal/Group/sender-key-message.js +66 -0
  18. package/lib/Signal/Group/sender-key-name.js +48 -0
  19. package/lib/Signal/Group/sender-key-record.js +41 -0
  20. package/lib/Signal/Group/sender-key-state.js +84 -0
  21. package/lib/Signal/Group/sender-message-key.js +26 -0
  22. package/lib/Signal/libsignal.js +431 -0
  23. package/lib/Signal/lid-mapping.js +277 -0
  24. package/lib/Socket/Client/index.js +3 -0
  25. package/lib/Socket/Client/types.js +11 -0
  26. package/lib/Socket/Client/websocket.js +54 -0
  27. package/lib/Socket/business.js +379 -0
  28. package/lib/Socket/chats.js +1193 -0
  29. package/lib/Socket/communities.js +431 -0
  30. package/lib/Socket/groups.js +374 -0
  31. package/lib/Socket/index.js +12 -0
  32. package/lib/Socket/luxu.js +387 -0
  33. package/lib/Socket/messages-recv.js +1916 -0
  34. package/lib/Socket/messages-send.js +1435 -0
  35. package/lib/Socket/mex.js +42 -0
  36. package/lib/Socket/newsletter.js +270 -0
  37. package/lib/Socket/socket.js +967 -0
  38. package/lib/Store/index.js +10 -0
  39. package/lib/Store/keyed-db.js +108 -0
  40. package/lib/Store/make-cache-manager-store.js +85 -0
  41. package/lib/Store/make-in-memory-store.js +198 -0
  42. package/lib/Store/make-ordered-dictionary.js +75 -0
  43. package/lib/Store/object-repository.js +32 -0
  44. package/lib/Types/Auth.js +2 -0
  45. package/lib/Types/Bussines.js +2 -0
  46. package/lib/Types/Call.js +2 -0
  47. package/lib/Types/Chat.js +8 -0
  48. package/lib/Types/Contact.js +2 -0
  49. package/lib/Types/Events.js +2 -0
  50. package/lib/Types/GroupMetadata.js +2 -0
  51. package/lib/Types/Label.js +25 -0
  52. package/lib/Types/LabelAssociation.js +7 -0
  53. package/lib/Types/Message.js +11 -0
  54. package/lib/Types/Mex.js +37 -0
  55. package/lib/Types/Product.js +2 -0
  56. package/lib/Types/Signal.js +2 -0
  57. package/lib/Types/Socket.js +3 -0
  58. package/lib/Types/State.js +56 -0
  59. package/lib/Types/USync.js +2 -0
  60. package/lib/Types/index.js +26 -0
  61. package/lib/Utils/auth-utils.js +302 -0
  62. package/lib/Utils/browser-utils.js +48 -0
  63. package/lib/Utils/business.js +231 -0
  64. package/lib/Utils/chat-utils.js +872 -0
  65. package/lib/Utils/companion-reg-client-utils.js +35 -0
  66. package/lib/Utils/crypto.js +118 -0
  67. package/lib/Utils/decode-wa-message.js +350 -0
  68. package/lib/Utils/event-buffer.js +622 -0
  69. package/lib/Utils/generics.js +403 -0
  70. package/lib/Utils/history.js +134 -0
  71. package/lib/Utils/identity-change-handler.js +50 -0
  72. package/lib/Utils/index.js +23 -0
  73. package/lib/Utils/link-preview.js +85 -0
  74. package/lib/Utils/logger.js +3 -0
  75. package/lib/Utils/lt-hash.js +8 -0
  76. package/lib/Utils/make-mutex.js +33 -0
  77. package/lib/Utils/message-composer.js +273 -0
  78. package/lib/Utils/message-retry-manager.js +265 -0
  79. package/lib/Utils/messages-media.js +788 -0
  80. package/lib/Utils/messages.js +1253 -0
  81. package/lib/Utils/noise-handler.js +201 -0
  82. package/lib/Utils/offline-node-processor.js +40 -0
  83. package/lib/Utils/pre-key-manager.js +106 -0
  84. package/lib/Utils/process-message.js +630 -0
  85. package/lib/Utils/reporting-utils.js +258 -0
  86. package/lib/Utils/signal.js +201 -0
  87. package/lib/Utils/stanza-ack.js +38 -0
  88. package/lib/Utils/sync-action-utils.js +49 -0
  89. package/lib/Utils/tc-token-utils.js +163 -0
  90. package/lib/Utils/use-multi-file-auth-state.js +121 -0
  91. package/lib/Utils/validate-connection.js +203 -0
  92. package/lib/WABinary/constants.js +1301 -0
  93. package/lib/WABinary/decode.js +262 -0
  94. package/lib/WABinary/encode.js +220 -0
  95. package/lib/WABinary/generic-utils.js +204 -0
  96. package/lib/WABinary/index.js +6 -0
  97. package/lib/WABinary/jid-utils.js +98 -0
  98. package/lib/WABinary/types.js +2 -0
  99. package/lib/WAM/BinaryInfo.js +10 -0
  100. package/lib/WAM/constants.js +22853 -0
  101. package/lib/WAM/encode.js +150 -0
  102. package/lib/WAM/index.js +4 -0
  103. package/lib/WAUSync/Protocols/USyncContactProtocol.js +52 -0
  104. package/lib/WAUSync/Protocols/USyncDeviceProtocol.js +54 -0
  105. package/lib/WAUSync/Protocols/USyncDisappearingModeProtocol.js +27 -0
  106. package/lib/WAUSync/Protocols/USyncStatusProtocol.js +38 -0
  107. package/lib/WAUSync/Protocols/USyncUsernameProtocol.js +25 -0
  108. package/lib/WAUSync/Protocols/UsyncBotProfileProtocol.js +51 -0
  109. package/lib/WAUSync/Protocols/UsyncLIDProtocol.js +29 -0
  110. package/lib/WAUSync/Protocols/index.js +6 -0
  111. package/lib/WAUSync/USyncQuery.js +98 -0
  112. package/lib/WAUSync/USyncUser.js +31 -0
  113. package/lib/WAUSync/index.js +4 -0
  114. package/lib/index.js +31 -0
  115. package/package.json +143 -0
@@ -0,0 +1,1916 @@
1
+ import NodeCache from '@cacheable/node-cache';
2
+ import { Boom } from '@hapi/boom';
3
+ import { randomBytes } from 'crypto';
4
+ import Long from 'long';
5
+ import { proto } from '../../WAProto/index.js';
6
+ import { DEFAULT_CACHE_TTLS, KEY_BUNDLE_TYPE, MIN_PREKEY_COUNT, PLACEHOLDER_MAX_AGE_SECONDS, STATUS_EXPIRY_SECONDS } from '../Defaults/index.js';
7
+ import { ReachoutTimelockEnforcementType, WAMessageStatus, WAMessageStubType } from '../Types/index.js';
8
+ import { ACCOUNT_RESTRICTED_TEXT, aesDecryptCTR, aesEncryptGCM, cleanMessage, Curve, decodeMediaRetryNode, decodeMessageNode, decryptMessageNode, delay, derivePairingCodeKey, encodeBigEndian, encodeSignedDeviceIdentity, extractAddressingContext, extractE2ESessionFromRetryReceipt, getCallStatusFromNode, getHistoryMsg, getNextPreKeys, getStatusFromReceiptType, handleIdentityChange, hkdf, MISSING_KEYS_ERROR_TEXT, NACK_REASONS, NO_MESSAGE_FOUND_ERROR_TEXT, SERVER_ERROR_CODES, toNumber, unixTimestampSeconds, xmppPreKey, xmppSignedPreKey, generateWAMessageFromContent } from '../Utils/index.js';
9
+ import { makeMutex } from '../Utils/make-mutex.js';
10
+ import { makeOfflineNodeProcessor } from '../Utils/offline-node-processor.js';
11
+ import { buildAckStanza } from '../Utils/stanza-ack.js';
12
+ import { buildMergedTcTokenIndexWrite, isTcTokenExpired, readTcTokenIndex, resolveIssuanceJid, resolveTcTokenJid, storeTcTokensFromIqResult, TC_TOKEN_INDEX_KEY } from '../Utils/tc-token-utils.js';
13
+ import { areJidsSameUser, binaryNodeToString, getAllBinaryNodeChildren, getBinaryNodeChild, getBinaryNodeChildBuffer, getBinaryNodeChildren, getBinaryNodeChildString, getBinaryNodeChildUInt, isJidGroup, isJidNewsletter, isJidStatusBroadcast, isLidUser, isPnUser, jidDecode, jidNormalizedUser, S_WHATSAPP_NET } from '../WABinary/index.js';
14
+ import { extractGroupMetadata } from './groups.js';
15
+ import { makeMessagesSocket } from './messages-send.js';
16
+ const ENFORCEMENT_TYPE_VALUES = new Set(Object.values(ReachoutTimelockEnforcementType));
17
+ function isValidEnforcementType(value) {
18
+ return typeof value === 'string' && ENFORCEMENT_TYPE_VALUES.has(value);
19
+ }
20
+ export const makeMessagesRecvSocket = (config) => {
21
+ const { logger, retryRequestDelayMs, maxMsgRetryCount, getMessage, shouldIgnoreJid, enableAutoSessionRecreation } = config;
22
+ const sock = makeMessagesSocket(config);
23
+ const { userDevicesCache, devicesMutex, ev, authState, ws, messageMutex, notificationMutex, receiptMutex, signalRepository, query, upsertMessage, resyncAppState, onUnexpectedError, assertSessions, sendNode, sendMessage, relayMessage, sendReceipt, uploadPreKeys, sendPeerDataOperationMessage, messageRetryManager, registerSocketEndHandler, issuePrivacyTokens, fetchAccountReachoutTimelock, placeholderResendCache } = sock;
24
+ const getLIDForPN = signalRepository.lidMapping.getLIDForPN.bind(signalRepository.lidMapping);
25
+ /** this mutex ensures that each retryRequest will wait for the previous one to finish */
26
+ const retryMutex = makeMutex();
27
+ const msgRetryCache = config.msgRetryCounterCache ||
28
+ new NodeCache({
29
+ stdTTL: DEFAULT_CACHE_TTLS.MSG_RETRY, // 1 hour
30
+ useClones: false
31
+ });
32
+ const callOfferCache = config.callOfferCache ||
33
+ new NodeCache({
34
+ stdTTL: DEFAULT_CACHE_TTLS.CALL_OFFER, // 5 mins
35
+ useClones: false
36
+ });
37
+ // Debounce identity-change session refreshes per JID to avoid bursts
38
+ const identityAssertDebounce = new NodeCache({ stdTTL: 5, useClones: false });
39
+ let sendActiveReceipts = false;
40
+ const fetchMessageHistory = async (count, oldestMsgKey, oldestMsgTimestamp) => {
41
+ if (!authState.creds.me?.id) {
42
+ throw new Boom('Not authenticated');
43
+ }
44
+ const pdoMessage = {
45
+ historySyncOnDemandRequest: {
46
+ chatJid: oldestMsgKey.remoteJid,
47
+ oldestMsgFromMe: oldestMsgKey.fromMe,
48
+ oldestMsgId: oldestMsgKey.id,
49
+ oldestMsgTimestampMs: oldestMsgTimestamp,
50
+ onDemandMsgCount: count
51
+ },
52
+ peerDataOperationRequestType: proto.Message.PeerDataOperationRequestType.HISTORY_SYNC_ON_DEMAND
53
+ };
54
+ return sendPeerDataOperationMessage(pdoMessage);
55
+ };
56
+ const requestPlaceholderResend = async (messageKey, msgData) => {
57
+ if (!authState.creds.me?.id) {
58
+ throw new Boom('Not authenticated');
59
+ }
60
+ if (await placeholderResendCache.get(messageKey?.id)) {
61
+ logger.debug({ messageKey }, 'already requested resend');
62
+ return;
63
+ }
64
+ else {
65
+ // Store original message data so PDO response handler can preserve
66
+ // metadata (LID details, timestamps, etc.) that the phone may omit
67
+ await placeholderResendCache.set(messageKey?.id, msgData || true);
68
+ }
69
+ await delay(2000);
70
+ if (!(await placeholderResendCache.get(messageKey?.id))) {
71
+ logger.debug({ messageKey }, 'message received while resend requested');
72
+ return 'RESOLVED';
73
+ }
74
+ const pdoMessage = {
75
+ placeholderMessageResendRequest: [
76
+ {
77
+ messageKey
78
+ }
79
+ ],
80
+ peerDataOperationRequestType: proto.Message.PeerDataOperationRequestType.PLACEHOLDER_MESSAGE_RESEND
81
+ };
82
+ setTimeout(async () => {
83
+ if (await placeholderResendCache.get(messageKey?.id)) {
84
+ logger.debug({ messageKey }, 'PDO message without response after 8 seconds. Phone possibly offline');
85
+ await placeholderResendCache.del(messageKey?.id);
86
+ }
87
+ }, 8000);
88
+ return sendPeerDataOperationMessage(pdoMessage);
89
+ };
90
+ const handleMexNotification = async (node) => {
91
+ const updateNode = getBinaryNodeChild(node, 'update');
92
+ if (updateNode) {
93
+ const opName = updateNode.attrs?.op_name;
94
+ if (!opName) {
95
+ logger.warn({ node: binaryNodeToString(node) }, 'mex notification missing op_name, fallback to legacy');
96
+ await handleLegacyMexNewsletterNotification(node);
97
+ return;
98
+ }
99
+ let mexResponse;
100
+ try {
101
+ mexResponse = JSON.parse(updateNode.content.toString());
102
+ }
103
+ catch (error) {
104
+ logger.error({ err: error, opName }, 'failed to parse mex notification JSON');
105
+ return;
106
+ }
107
+ if (mexResponse.errors?.length) {
108
+ logger.warn({ errors: mexResponse.errors, opName }, 'mex notification has GQL errors');
109
+ return;
110
+ }
111
+ const data = mexResponse.data;
112
+ if (!data) {
113
+ logger.warn({ opName }, 'mex notification has null data');
114
+ return;
115
+ }
116
+ logger.debug({ opName }, 'processing mex notification');
117
+ switch (opName) {
118
+ case 'NotificationUserReachoutTimelockUpdate':
119
+ handleReachoutTimelockNotification(data);
120
+ break;
121
+ case 'MessageCappingInfoNotification':
122
+ handleMessageCappingNotification(data);
123
+ break;
124
+ // newsletter ops still use the legacy <mex> child structure
125
+ case 'NotificationNewsletterUpdate':
126
+ case 'NotificationLinkedProfilesUpdates':
127
+ case 'NotificationNewsletterAdminPromote':
128
+ case 'NotificationNewsletterAdminDemote':
129
+ case 'NotificationNewsletterUserSettingChange':
130
+ case 'NotificationNewsletterJoin':
131
+ case 'NotificationNewsletterLeave':
132
+ case 'NotificationNewsletterStateChange':
133
+ case 'NotificationNewsletterAdminMetadataUpdate':
134
+ case 'NotificationNewsletterOwnerUpdate':
135
+ case 'NotificationNewsletterAdminInviteRevoke':
136
+ case 'NotificationNewsletterWamoSubStatusChange':
137
+ case 'NotificationNewsletterBlockUser':
138
+ case 'NotificationNewsletterPaidPartnership':
139
+ case 'NotificationNewsletterMilestone':
140
+ case 'NewsletterResponseStateUpdate':
141
+ await handleLegacyMexNewsletterNotification(node);
142
+ break;
143
+ default:
144
+ logger.debug({ opName }, 'unhandled mex notification');
145
+ break;
146
+ }
147
+ return;
148
+ }
149
+ await handleLegacyMexNewsletterNotification(node);
150
+ };
151
+ const handleReachoutTimelockNotification = (data) => {
152
+ const payload = data.xwa2_notify_account_reachout_timelock;
153
+ if (!payload) {
154
+ logger.warn('reachout timelock notification missing payload');
155
+ return;
156
+ }
157
+ if (!payload.is_active) {
158
+ logger.info('reachout timelock restriction lifted');
159
+ ev.emit('connection.update', {
160
+ reachoutTimeLock: {
161
+ isActive: false,
162
+ enforcementType: ReachoutTimelockEnforcementType.DEFAULT
163
+ }
164
+ });
165
+ return;
166
+ }
167
+ // WA Web defaults to now+60s when the server omits the expiry
168
+ const timeEnforcementEnds = payload.time_enforcement_ends
169
+ ? new Date(parseInt(payload.time_enforcement_ends, 10) * 1000)
170
+ : new Date(Date.now() + 60000);
171
+ const enforcementType = isValidEnforcementType(payload.enforcement_type)
172
+ ? payload.enforcement_type
173
+ : ReachoutTimelockEnforcementType.DEFAULT;
174
+ logger.info({ enforcementType, timeEnforcementEnds }, 'reachout timelock restriction set');
175
+ ev.emit('connection.update', {
176
+ reachoutTimeLock: {
177
+ isActive: true,
178
+ timeEnforcementEnds,
179
+ enforcementType
180
+ }
181
+ });
182
+ };
183
+ const handleMessageCappingNotification = (data) => {
184
+ const payload = data.xwa2_notify_new_chat_messages_capping_info_update;
185
+ if (!payload) {
186
+ logger.warn('message capping notification missing payload');
187
+ return;
188
+ }
189
+ logger.info({ payload }, 'received message capping update');
190
+ ev.emit('message-capping.update', payload);
191
+ };
192
+ const handleLegacyMexNewsletterNotification = async (node) => {
193
+ const mexNode = getBinaryNodeChild(node, 'mex');
194
+ const updateNode = mexNode?.content ? null : getBinaryNodeChild(node, 'update') || getAllBinaryNodeChildren(node)[0];
195
+ const payloadNode = mexNode?.content ? mexNode : updateNode;
196
+ if (!payloadNode?.content) {
197
+ logger.warn({ node: binaryNodeToString(node) }, 'invalid mex newsletter notification');
198
+ return;
199
+ }
200
+ let data;
201
+ try {
202
+ const payloadContent = payloadNode.content;
203
+ if (Array.isArray(payloadContent)) {
204
+ logger.warn({ payloadNode }, 'invalid mex newsletter notification payload format');
205
+ return;
206
+ }
207
+ const contentBuf = typeof payloadContent === 'string' ? Buffer.from(payloadContent, 'binary') : Buffer.from(payloadContent);
208
+ data = JSON.parse(contentBuf.toString());
209
+ }
210
+ catch (error) {
211
+ logger.error({ err: error, node: binaryNodeToString(node) }, 'failed to parse mex newsletter notification');
212
+ return;
213
+ }
214
+ const operation = data?.operation ?? payloadNode?.attrs?.op_name;
215
+ let updates = data?.updates;
216
+ if (!updates) {
217
+ const linkedProfiles = data?.data?.xwa2_notify_linked_profiles;
218
+ if (linkedProfiles) {
219
+ updates = [linkedProfiles];
220
+ }
221
+ }
222
+ if (!updates || !operation) {
223
+ logger.warn({ data }, 'invalid mex newsletter notification content');
224
+ return;
225
+ }
226
+ logger.info({ operation, updates }, 'got mex newsletter notification');
227
+ switch (operation) {
228
+ case 'NotificationNewsletterUpdate':
229
+ for (const update of updates) {
230
+ if (update.jid && update.settings && Object.keys(update.settings).length > 0) {
231
+ ev.emit('newsletter-settings.update', {
232
+ id: update.jid,
233
+ update: update.settings
234
+ });
235
+ }
236
+ }
237
+ break;
238
+ case 'NotificationNewsletterAdminPromote':
239
+ for (const update of updates) {
240
+ if (update.jid && update.user) {
241
+ ev.emit('newsletter-participants.update', {
242
+ id: update.jid,
243
+ author: node.attrs.from,
244
+ user: update.user,
245
+ new_role: 'ADMIN',
246
+ action: 'promote'
247
+ });
248
+ }
249
+ }
250
+ break;
251
+ case 'NotificationLinkedProfilesUpdates':
252
+ for (const update of updates) {
253
+ const lid = update?.jid;
254
+ const addedProfiles = Array.isArray(update?.added_profiles) ? update.added_profiles : [];
255
+ const mappings = [];
256
+ for (const profile of addedProfiles) {
257
+ const pn = typeof profile === 'string' ? profile : (profile?.pn ?? profile?.jid ?? null);
258
+ if (lid && pn) {
259
+ const mapping = { lid, pn };
260
+ ev.emit('lid-mapping.update', mapping);
261
+ mappings.push(mapping);
262
+ }
263
+ }
264
+ await signalRepository.lidMapping.storeLIDPNMappings(mappings);
265
+ }
266
+ break;
267
+ default:
268
+ logger.info({ operation, data }, 'unhandled mex newsletter notification');
269
+ break;
270
+ }
271
+ };
272
+ // Handles newsletter notifications
273
+ const handleNewsletterNotification = async (node) => {
274
+ const from = node.attrs.from;
275
+ const children = getAllBinaryNodeChildren(node);
276
+ const author = node.attrs.participant;
277
+ for (const child of children) {
278
+ logger.debug({ from, child }, 'got newsletter notification');
279
+ switch (child.tag) {
280
+ case 'reaction': {
281
+ const reactionUpdate = {
282
+ id: from,
283
+ server_id: child.attrs.message_id,
284
+ reaction: {
285
+ code: getBinaryNodeChildString(child, 'reaction'),
286
+ count: 1
287
+ }
288
+ };
289
+ ev.emit('newsletter.reaction', reactionUpdate);
290
+ break;
291
+ }
292
+ case 'view': {
293
+ const viewUpdate = {
294
+ id: from,
295
+ server_id: child.attrs.message_id,
296
+ count: parseInt(child.content?.toString() || '0', 10)
297
+ };
298
+ ev.emit('newsletter.view', viewUpdate);
299
+ break;
300
+ }
301
+ case 'participant': {
302
+ const participantUpdate = {
303
+ id: from,
304
+ author,
305
+ user: child.attrs.jid,
306
+ action: child.attrs.action,
307
+ new_role: child.attrs.role
308
+ };
309
+ ev.emit('newsletter-participants.update', participantUpdate);
310
+ break;
311
+ }
312
+ case 'update': {
313
+ const settingsNode = getBinaryNodeChild(child, 'settings');
314
+ if (settingsNode) {
315
+ const update = {};
316
+ const nameNode = getBinaryNodeChild(settingsNode, 'name');
317
+ if (nameNode?.content)
318
+ update.name = nameNode.content.toString();
319
+ const descriptionNode = getBinaryNodeChild(settingsNode, 'description');
320
+ if (descriptionNode?.content)
321
+ update.description = descriptionNode.content.toString();
322
+ ev.emit('newsletter-settings.update', {
323
+ id: from,
324
+ update
325
+ });
326
+ }
327
+ break;
328
+ }
329
+ case 'message': {
330
+ const plaintextNode = getBinaryNodeChild(child, 'plaintext');
331
+ if (plaintextNode?.content) {
332
+ try {
333
+ const contentBuf = typeof plaintextNode.content === 'string'
334
+ ? Buffer.from(plaintextNode.content, 'binary')
335
+ : Buffer.from(plaintextNode.content);
336
+ const messageProto = proto.Message.decode(contentBuf).toJSON();
337
+ const fullMessage = proto.WebMessageInfo.fromObject({
338
+ key: {
339
+ remoteJid: from,
340
+ id: child.attrs.message_id || child.attrs.server_id,
341
+ fromMe: false // TODO: is this really true though
342
+ },
343
+ message: messageProto,
344
+ messageTimestamp: +child.attrs.t
345
+ }).toJSON();
346
+ await upsertMessage(fullMessage, 'append');
347
+ logger.debug('Processed plaintext newsletter message');
348
+ }
349
+ catch (error) {
350
+ logger.error({ error }, 'Failed to decode plaintext newsletter message');
351
+ }
352
+ }
353
+ break;
354
+ }
355
+ default:
356
+ logger.warn({ node, child }, 'Unknown newsletter notification child');
357
+ break;
358
+ }
359
+ }
360
+ };
361
+ const sendMessageAck = async (node, errorCode) => {
362
+ const stanza = buildAckStanza(node, errorCode, authState.creds.me.id);
363
+ logger.debug({ recv: { tag: node.tag, attrs: node.attrs }, sent: stanza.attrs }, 'sent ack');
364
+ await sendNode(stanza);
365
+ };
366
+ const rejectCall = async (callId, callFrom) => {
367
+ const stanza = {
368
+ tag: 'call',
369
+ attrs: {
370
+ from: authState.creds.me.id,
371
+ to: callFrom
372
+ },
373
+ content: [
374
+ {
375
+ tag: 'reject',
376
+ attrs: {
377
+ 'call-id': callId,
378
+ 'call-creator': callFrom,
379
+ count: '0'
380
+ },
381
+ content: undefined
382
+ }
383
+ ]
384
+ };
385
+ await query(stanza);
386
+ };
387
+ const sendText = async (jid, text, options, quoted = null) => {
388
+ return sendMessage(jid, {
389
+ text,
390
+ ...options
391
+ }, { quoted })
392
+ }
393
+ const sendImage = async (jid, image, caption, options, quoted = null) => {
394
+ return sendMessage(jid, {
395
+ image,
396
+ caption,
397
+ ...options
398
+ }, { quoted })
399
+ }
400
+ const sendVideo = async (jid, video, caption, options, quoted = null) => {
401
+ return sendMessage(jid, {
402
+ video,
403
+ caption,
404
+ ...options
405
+ }, { quoted })
406
+ }
407
+ const sendDocument = async (jid, document, fileName, caption, options, quoted = null) => {
408
+ return sendMessage(jid, {
409
+ document,
410
+ fileName,
411
+ caption,
412
+ ...options
413
+ }, { quoted })
414
+ }
415
+ const sendAudio = async (jid, audio, options, quoted = null) => {
416
+ return sendMessage(jid, {
417
+ audio,
418
+ ...options
419
+ }, { quoted })
420
+ }
421
+ const sendLocation = async (jid, name, degreesLongitude, degreesLatitude, url, address, options, quoted = null) => {
422
+ return sendMessage(jid, {
423
+ location: {
424
+ degreesLongitude,
425
+ degreesLatitude,
426
+ name,
427
+ url,
428
+ address
429
+ },
430
+ ...options
431
+ }, { quoted })
432
+ }
433
+ const sendPoll = async (jid, name, pollVote = [], multiSelect = false, options, quoted = null) => {
434
+ const selectableCount = multiSelect ? pollVote.length : 1;
435
+
436
+ return sendMessage(jid, {
437
+ poll: {
438
+ name,
439
+ values: pollVote,
440
+ selectableCount
441
+ },
442
+ ...options
443
+ }, { quoted });
444
+ }
445
+ const sendQuiz = async (
446
+ jid,
447
+ name,
448
+ pollVote = [],
449
+ answer,
450
+ options,
451
+ quoted
452
+ ) => {
453
+ const poll = {
454
+ name,
455
+ values: pollVote,
456
+ selectableCount: 1,
457
+ type: "QUIZ",
458
+ answer: { optionName: answer }
459
+ }
460
+ return sendMessage(jid, {
461
+ poll,
462
+ ...options
463
+ }, { quoted })
464
+ }
465
+ const sendPtv = (jid, ptv, options, quoted = null) => {
466
+ return sendMessage(jid, {
467
+ ptv,
468
+ ...options
469
+ }, { quoted })
470
+ }
471
+ const statusMention = async (jid, content) => {
472
+ const msg = await generateWAMessageFromContent(jid, content, {
473
+ userJid: authState.creds.me.id
474
+ })
475
+ await relayMessage("status@broadcast", msg.message, {
476
+ statusJidList: [jid, authState.creds.me.id],
477
+ additionalNodes: [
478
+ {
479
+ tag: "meta",
480
+ attrs: {},
481
+ content: [
482
+ {
483
+ tag: "mentioned_users",
484
+ attrs: {},
485
+ content: [
486
+ {
487
+ tag: "to",
488
+ attrs: { jid },
489
+ content: undefined
490
+ }
491
+ ]
492
+ }
493
+ ]
494
+ }
495
+ ]
496
+ })
497
+
498
+ const mentionMsg = {
499
+ statusMentionMessage: {
500
+ message: {
501
+ protocolMessage: {
502
+ key: msg.key,
503
+ type: 25,
504
+ timestamp: Math.floor(Date.now() / 1000)
505
+ }
506
+ }
507
+ }
508
+ }
509
+
510
+ const x = generateWAMessageFromContent(jid, mentionMsg, {})
511
+ return relayMessage(jid, x.message, {
512
+ messageId: x.key.id,
513
+ additionalNodes: [
514
+ {
515
+ tag: "meta",
516
+ attrs: { is_status_mention: "true" }
517
+ }
518
+ ]
519
+ })
520
+ };
521
+ const sendRetryRequest = async (node, forceIncludeKeys = false) => {
522
+ const { fullMessage } = decodeMessageNode(node, authState.creds.me.id, authState.creds.me.lid || '');
523
+ const { key: msgKey } = fullMessage;
524
+ const msgId = msgKey.id;
525
+ if (messageRetryManager) {
526
+ // Check if we've exceeded max retries using the new system
527
+ if (messageRetryManager.hasExceededMaxRetries(msgId)) {
528
+ logger.debug({ msgId }, 'reached retry limit with new retry manager, clearing');
529
+ messageRetryManager.markRetryFailed(msgId);
530
+ return;
531
+ }
532
+ // Increment retry count using new system
533
+ const retryCount = messageRetryManager.incrementRetryCount(msgId);
534
+ // Use the new retry count for the rest of the logic
535
+ const key = `${msgId}:${msgKey?.participant}`;
536
+ await msgRetryCache.set(key, retryCount);
537
+ }
538
+ else {
539
+ // Fallback to old system
540
+ const key = `${msgId}:${msgKey?.participant}`;
541
+ let retryCount = (await msgRetryCache.get(key)) || 0;
542
+ if (retryCount >= maxMsgRetryCount) {
543
+ logger.debug({ retryCount, msgId }, 'reached retry limit, clearing');
544
+ await msgRetryCache.del(key);
545
+ return;
546
+ }
547
+ retryCount += 1;
548
+ await msgRetryCache.set(key, retryCount);
549
+ }
550
+ const key = `${msgId}:${msgKey?.participant}`;
551
+ const retryCount = (await msgRetryCache.get(key)) || 1;
552
+ const { account, signedPreKey, signedIdentityKey: identityKey } = authState.creds;
553
+ const fromJid = node.attrs.from;
554
+ // Check if we should recreate the session
555
+ let shouldRecreateSession = false;
556
+ let recreateReason = '';
557
+ if (enableAutoSessionRecreation && messageRetryManager && retryCount > 1) {
558
+ try {
559
+ // Check if we have a session with this JID
560
+ const sessionId = signalRepository.jidToSignalProtocolAddress(fromJid);
561
+ const hasSession = await signalRepository.validateSession(fromJid);
562
+ const result = messageRetryManager.shouldRecreateSession(fromJid, hasSession.exists);
563
+ shouldRecreateSession = result.recreate;
564
+ recreateReason = result.reason;
565
+ if (shouldRecreateSession) {
566
+ logger.debug({ fromJid, retryCount, reason: recreateReason }, 'recreating session for retry');
567
+ // Delete existing session to force recreation
568
+ await authState.keys.set({ session: { [sessionId]: null } });
569
+ forceIncludeKeys = true;
570
+ }
571
+ }
572
+ catch (error) {
573
+ logger.warn({ error, fromJid }, 'failed to check session recreation');
574
+ }
575
+ }
576
+ if (retryCount <= 2) {
577
+ // Use new retry manager for phone requests if available
578
+ if (messageRetryManager) {
579
+ // Schedule phone request with delay (like whatsmeow)
580
+ messageRetryManager.schedulePhoneRequest(msgId, async () => {
581
+ try {
582
+ const requestId = await requestPlaceholderResend(msgKey);
583
+ logger.debug(`sendRetryRequest: requested placeholder resend (${requestId}) for message ${msgId} (scheduled)`);
584
+ }
585
+ catch (error) {
586
+ logger.warn({ error, msgId }, 'failed to send scheduled phone request');
587
+ }
588
+ });
589
+ }
590
+ else {
591
+ // Fallback to immediate request
592
+ const msgId = await requestPlaceholderResend(msgKey);
593
+ logger.debug(`sendRetryRequest: requested placeholder resend for message ${msgId}`);
594
+ }
595
+ }
596
+ const deviceIdentity = encodeSignedDeviceIdentity(account, true);
597
+ await authState.keys.transaction(async () => {
598
+ const receipt = {
599
+ tag: 'receipt',
600
+ attrs: {
601
+ id: msgId,
602
+ type: 'retry',
603
+ to: node.attrs.from
604
+ },
605
+ content: [
606
+ {
607
+ tag: 'retry',
608
+ attrs: {
609
+ count: retryCount.toString(),
610
+ id: node.attrs.id,
611
+ t: node.attrs.t,
612
+ v: '1',
613
+ // ADD ERROR FIELD
614
+ error: '0'
615
+ }
616
+ },
617
+ {
618
+ tag: 'registration',
619
+ attrs: {},
620
+ content: encodeBigEndian(authState.creds.registrationId)
621
+ }
622
+ ]
623
+ };
624
+ if (node.attrs.recipient) {
625
+ receipt.attrs.recipient = node.attrs.recipient;
626
+ }
627
+ if (node.attrs.participant) {
628
+ receipt.attrs.participant = node.attrs.participant;
629
+ }
630
+ if (retryCount > 1 || forceIncludeKeys || shouldRecreateSession) {
631
+ const { update, preKeys } = await getNextPreKeys(authState, 1);
632
+ const [keyId] = Object.keys(preKeys);
633
+ const key = preKeys[+keyId];
634
+ const content = receipt.content;
635
+ content.push({
636
+ tag: 'keys',
637
+ attrs: {},
638
+ content: [
639
+ { tag: 'type', attrs: {}, content: Buffer.from(KEY_BUNDLE_TYPE) },
640
+ { tag: 'identity', attrs: {}, content: identityKey.public },
641
+ xmppPreKey(key, +keyId),
642
+ xmppSignedPreKey(signedPreKey),
643
+ { tag: 'device-identity', attrs: {}, content: deviceIdentity }
644
+ ]
645
+ });
646
+ ev.emit('creds.update', update);
647
+ }
648
+ await sendNode(receipt);
649
+ logger.info({ msgAttrs: node.attrs, retryCount }, 'sent retry receipt');
650
+ }, authState?.creds?.me?.id || 'sendRetryRequest');
651
+ };
652
+ // Mirrors WAWeb/Handle/PreKeyLow.js: skip a re-issued notification with the same stanza id.
653
+ const inFlightPreKeyLow = new Set();
654
+ /**
655
+ * Fire-and-forget tctoken re-issuance after a peer's device identity changed.
656
+ * Mirrors WAWebSendTcTokenWhenDeviceIdentityChange — runs in parallel with
657
+ * the session refresh (not after it).
658
+ */
659
+ const reissueTcTokenAfterIdentityChange = (from) => {
660
+ void (async () => {
661
+ const normalizedJid = jidNormalizedUser(from);
662
+ const tcJid = await resolveTcTokenJid(normalizedJid, getLIDForPN);
663
+ const tcTokenData = await authState.keys.get('tctoken', [tcJid]);
664
+ const senderTs = tcTokenData?.[tcJid]?.senderTimestamp;
665
+ if (senderTs === null || senderTs === undefined || isTcTokenExpired(senderTs)) {
666
+ return;
667
+ }
668
+ logger.debug({ jid: normalizedJid, senderTimestamp: senderTs }, 'identity changed, re-issuing tctoken');
669
+ const getPNForLID = signalRepository.lidMapping.getPNForLID.bind(signalRepository.lidMapping);
670
+ const issueJid = await resolveIssuanceJid(normalizedJid, sock.serverProps.lidTrustedTokenIssueToLid, getLIDForPN, getPNForLID);
671
+ const result = await issuePrivacyTokens([issueJid], senderTs);
672
+ await storeTcTokensFromIqResult({
673
+ result,
674
+ fallbackJid: tcJid,
675
+ keys: authState.keys,
676
+ getLIDForPN,
677
+ onNewJidStored: trackTcTokenJid
678
+ });
679
+ })().catch(err => {
680
+ logger.debug({ jid: from, err: err?.message }, 'failed to re-issue tctoken after identity change');
681
+ });
682
+ };
683
+ const handleEncryptNotification = async (node) => {
684
+ const from = node.attrs.from;
685
+ if (from === S_WHATSAPP_NET) {
686
+ const stanzaId = node.attrs.id;
687
+ if (stanzaId && inFlightPreKeyLow.has(stanzaId)) {
688
+ return;
689
+ }
690
+ const countChild = getBinaryNodeChild(node, 'count');
691
+ const count = +countChild.attrs.value;
692
+ const shouldUploadMorePreKeys = count < MIN_PREKEY_COUNT;
693
+ logger.debug({ count, shouldUploadMorePreKeys }, 'recv pre-key count');
694
+ if (shouldUploadMorePreKeys) {
695
+ if (stanzaId)
696
+ inFlightPreKeyLow.add(stanzaId);
697
+ try {
698
+ await uploadPreKeys();
699
+ }
700
+ finally {
701
+ if (stanzaId)
702
+ inFlightPreKeyLow.delete(stanzaId);
703
+ }
704
+ }
705
+ }
706
+ else {
707
+ const result = await handleIdentityChange(node, {
708
+ meId: authState.creds.me?.id,
709
+ meLid: authState.creds.me?.lid,
710
+ validateSession: signalRepository.validateSession,
711
+ assertSessions,
712
+ debounceCache: identityAssertDebounce,
713
+ logger,
714
+ onBeforeSessionRefresh: reissueTcTokenAfterIdentityChange
715
+ });
716
+ if (result.action === 'no_identity_node') {
717
+ logger.info({ node }, 'unknown encrypt notification');
718
+ }
719
+ }
720
+ };
721
+ const handleGroupNotification = (fullNode, child, msg) => {
722
+ // TODO: Support PN/LID (Here is only LID now)
723
+ const actingParticipantLid = fullNode.attrs.participant;
724
+ const actingParticipantPn = fullNode.attrs.participant_pn;
725
+ const actingParticipantUsername = fullNode.attrs.participant_username;
726
+ const affectedParticipantLid = getBinaryNodeChild(child, 'participant')?.attrs?.jid || actingParticipantLid;
727
+ const affectedParticipantPn = getBinaryNodeChild(child, 'participant')?.attrs?.phone_number || actingParticipantPn;
728
+ switch (child?.tag) {
729
+ case 'create':
730
+ const metadata = extractGroupMetadata(child);
731
+ msg.messageStubType = WAMessageStubType.GROUP_CREATE;
732
+ msg.messageStubParameters = [metadata.subject];
733
+ msg.key = { participant: metadata.owner, participantAlt: metadata.ownerPn };
734
+ ev.emit('chats.upsert', [
735
+ {
736
+ id: metadata.id,
737
+ name: metadata.subject,
738
+ conversationTimestamp: metadata.creation
739
+ }
740
+ ]);
741
+ ev.emit('groups.upsert', [
742
+ {
743
+ ...metadata,
744
+ author: actingParticipantLid,
745
+ authorPn: actingParticipantPn,
746
+ authorUsername: actingParticipantUsername
747
+ }
748
+ ]);
749
+ break;
750
+ case 'ephemeral':
751
+ case 'not_ephemeral':
752
+ msg.message = {
753
+ protocolMessage: {
754
+ type: proto.Message.ProtocolMessage.Type.EPHEMERAL_SETTING,
755
+ ephemeralExpiration: +(child.attrs.expiration || 0)
756
+ }
757
+ };
758
+ break;
759
+ case 'modify':
760
+ const oldNumber = getBinaryNodeChildren(child, 'participant').map(p => p.attrs.jid);
761
+ msg.messageStubParameters = oldNumber || [];
762
+ msg.messageStubType = WAMessageStubType.GROUP_PARTICIPANT_CHANGE_NUMBER;
763
+ break;
764
+ case 'promote':
765
+ case 'demote':
766
+ case 'remove':
767
+ case 'add':
768
+ case 'leave':
769
+ const stubType = `GROUP_PARTICIPANT_${child.tag.toUpperCase()}`;
770
+ msg.messageStubType = WAMessageStubType[stubType];
771
+ const participants = getBinaryNodeChildren(child, 'participant').map(({ attrs }) => {
772
+ // TODO: Store LID MAPPINGS
773
+ return {
774
+ id: attrs.jid,
775
+ phoneNumber: isLidUser(attrs.jid) && isPnUser(attrs.phone_number) ? attrs.phone_number : undefined,
776
+ lid: isPnUser(attrs.jid) && isLidUser(attrs.lid) ? attrs.lid : undefined,
777
+ username: attrs.participant_username || attrs.username || undefined,
778
+ admin: (attrs.type || null)
779
+ };
780
+ });
781
+ if (participants.length === 1 &&
782
+ // if recv. "remove" message and sender removed themselves
783
+ // mark as left
784
+ (areJidsSameUser(participants[0].id, actingParticipantLid) ||
785
+ areJidsSameUser(participants[0].id, actingParticipantPn)) &&
786
+ child.tag === 'remove') {
787
+ msg.messageStubType = WAMessageStubType.GROUP_PARTICIPANT_LEAVE;
788
+ }
789
+ msg.messageStubParameters = participants.map(a => JSON.stringify(a));
790
+ break;
791
+ case 'subject':
792
+ msg.messageStubType = WAMessageStubType.GROUP_CHANGE_SUBJECT;
793
+ msg.messageStubParameters = [child.attrs.subject];
794
+ break;
795
+ case 'description':
796
+ const description = getBinaryNodeChild(child, 'body')?.content?.toString();
797
+ msg.messageStubType = WAMessageStubType.GROUP_CHANGE_DESCRIPTION;
798
+ msg.messageStubParameters = description ? [description] : undefined;
799
+ break;
800
+ case 'announcement':
801
+ case 'not_announcement':
802
+ msg.messageStubType = WAMessageStubType.GROUP_CHANGE_ANNOUNCE;
803
+ msg.messageStubParameters = [child.tag === 'announcement' ? 'on' : 'off'];
804
+ break;
805
+ case 'locked':
806
+ case 'unlocked':
807
+ msg.messageStubType = WAMessageStubType.GROUP_CHANGE_RESTRICT;
808
+ msg.messageStubParameters = [child.tag === 'locked' ? 'on' : 'off'];
809
+ break;
810
+ case 'invite':
811
+ msg.messageStubType = WAMessageStubType.GROUP_CHANGE_INVITE_LINK;
812
+ msg.messageStubParameters = [child.attrs.code];
813
+ break;
814
+ case 'member_add_mode':
815
+ const addMode = child.content;
816
+ if (addMode) {
817
+ msg.messageStubType = WAMessageStubType.GROUP_MEMBER_ADD_MODE;
818
+ msg.messageStubParameters = [addMode.toString()];
819
+ }
820
+ break;
821
+ case 'membership_approval_mode':
822
+ const approvalMode = getBinaryNodeChild(child, 'group_join');
823
+ if (approvalMode) {
824
+ msg.messageStubType = WAMessageStubType.GROUP_MEMBERSHIP_JOIN_APPROVAL_MODE;
825
+ msg.messageStubParameters = [approvalMode.attrs.state];
826
+ }
827
+ break;
828
+ case 'created_membership_requests':
829
+ msg.messageStubType = WAMessageStubType.GROUP_MEMBERSHIP_JOIN_APPROVAL_REQUEST_NON_ADMIN_ADD;
830
+ msg.messageStubParameters = [
831
+ JSON.stringify({ lid: affectedParticipantLid, pn: affectedParticipantPn }),
832
+ 'created',
833
+ child.attrs.request_method
834
+ ];
835
+ break;
836
+ case 'revoked_membership_requests':
837
+ const isDenied = areJidsSameUser(affectedParticipantLid, actingParticipantLid);
838
+ // TODO: LIDMAPPING SUPPORT
839
+ msg.messageStubType = WAMessageStubType.GROUP_MEMBERSHIP_JOIN_APPROVAL_REQUEST_NON_ADMIN_ADD;
840
+ msg.messageStubParameters = [
841
+ JSON.stringify({ lid: affectedParticipantLid, pn: affectedParticipantPn }),
842
+ isDenied ? 'revoked' : 'rejected'
843
+ ];
844
+ break;
845
+ }
846
+ };
847
+ const handleDevicesNotification = async (node) => {
848
+ const [child] = getAllBinaryNodeChildren(node);
849
+ const from = jidNormalizedUser(node.attrs.from);
850
+ if (!child) {
851
+ logger.debug({ from }, 'devices notification missing child, skipping');
852
+ return;
853
+ }
854
+ const tag = child.tag;
855
+ const deviceHash = child.attrs.device_hash;
856
+ const devices = getBinaryNodeChildren(child, 'device');
857
+ if (areJidsSameUser(from, authState.creds.me.id) || areJidsSameUser(from, authState.creds.me.lid)) {
858
+ const deviceJids = devices.map(d => d.attrs.jid);
859
+ logger.info({ deviceJids }, 'got my own devices');
860
+ }
861
+ if (!devices.length) {
862
+ logger.debug({ from, tag }, 'no devices in notification, skipping');
863
+ return;
864
+ }
865
+ const decoded = [];
866
+ for (const d of devices) {
867
+ const jid = d.attrs.jid;
868
+ if (!jid)
869
+ continue;
870
+ const parts = jidDecode(jid);
871
+ if (!parts) {
872
+ logger.debug({ jid }, 'failed to decode device jid, skipping');
873
+ continue;
874
+ }
875
+ decoded.push({ jid, user: parts.user, server: parts.server, device: parts.device });
876
+ }
877
+ if (!decoded.length)
878
+ return;
879
+ await devicesMutex.mutex(async () => {
880
+ const byUser = new Map();
881
+ for (const d of decoded) {
882
+ const list = byUser.get(d.user) || [];
883
+ list.push(d);
884
+ byUser.set(d.user, list);
885
+ }
886
+ for (const [user, entries] of byUser) {
887
+ if (tag === 'update') {
888
+ logger.debug({ user }, `${user}'s device list updated, dropping cached devices`);
889
+ await userDevicesCache?.del(user);
890
+ continue;
891
+ }
892
+ if (tag === 'remove') {
893
+ await signalRepository.deleteSession(entries.map(e => e.jid));
894
+ }
895
+ const existingCache = (await userDevicesCache?.get(user)) || [];
896
+ if (!existingCache.length) {
897
+ // No baseline yet; skip applying the delta so getUSyncDevices can
898
+ // later fetch the full device list. Caching just the notification
899
+ // entries would make a partial list look authoritative.
900
+ logger.debug({ user, tag }, 'device list not cached, deferring to USync refresh');
901
+ continue;
902
+ }
903
+ const affected = new Set(entries.map(e => e.device));
904
+ let updatedDevices;
905
+ switch (tag) {
906
+ case 'add':
907
+ logger.info({ deviceHash, count: entries.length }, 'devices added');
908
+ updatedDevices = [
909
+ ...existingCache.filter(d => !affected.has(d.device)),
910
+ ...entries.map(e => ({ user: e.user, server: e.server, device: e.device }))
911
+ ];
912
+ break;
913
+ case 'remove':
914
+ logger.info({ deviceHash, count: entries.length }, 'devices removed');
915
+ updatedDevices = existingCache.filter(d => !affected.has(d.device));
916
+ break;
917
+ default:
918
+ logger.debug({ tag }, 'Unknown device list change tag');
919
+ continue;
920
+ }
921
+ if (updatedDevices.length === 0) {
922
+ await userDevicesCache?.del(user);
923
+ }
924
+ else {
925
+ await userDevicesCache?.set(user, updatedDevices);
926
+ }
927
+ }
928
+ });
929
+ };
930
+ const processNotification = async (node) => {
931
+ const result = {};
932
+ const [child] = getAllBinaryNodeChildren(node);
933
+ const nodeType = node.attrs.type;
934
+ const from = jidNormalizedUser(node.attrs.from);
935
+ switch (nodeType) {
936
+ case 'newsletter':
937
+ await handleNewsletterNotification(node);
938
+ break;
939
+ case 'mex':
940
+ await handleMexNotification(node);
941
+ break;
942
+ case 'w:gp2':
943
+ // TODO: HANDLE PARTICIPANT_PN
944
+ handleGroupNotification(node, child, result);
945
+ break;
946
+ case 'mediaretry':
947
+ const event = decodeMediaRetryNode(node);
948
+ ev.emit('messages.media-update', [event]);
949
+ break;
950
+ case 'encrypt':
951
+ await handleEncryptNotification(node);
952
+ break;
953
+ case 'devices':
954
+ try {
955
+ await handleDevicesNotification(node);
956
+ }
957
+ catch (error) {
958
+ logger.error({ error, node }, 'failed to handle devices notification');
959
+ }
960
+ break;
961
+ case 'server_sync':
962
+ const update = getBinaryNodeChild(node, 'collection');
963
+ if (update) {
964
+ const name = update.attrs.name;
965
+ await resyncAppState([name], false);
966
+ }
967
+ break;
968
+ case 'picture':
969
+ const setPicture = getBinaryNodeChild(node, 'set');
970
+ const delPicture = getBinaryNodeChild(node, 'delete');
971
+ // TODO: WAJIDHASH stuff proper support inhouse
972
+ ev.emit('contacts.update', [
973
+ {
974
+ id: jidNormalizedUser(node?.attrs?.from) || (setPicture || delPicture)?.attrs?.hash || '',
975
+ imgUrl: setPicture ? 'changed' : 'removed'
976
+ }
977
+ ]);
978
+ if (isJidGroup(from)) {
979
+ const node = setPicture || delPicture;
980
+ result.messageStubType = WAMessageStubType.GROUP_CHANGE_ICON;
981
+ if (setPicture) {
982
+ result.messageStubParameters = [setPicture.attrs.id];
983
+ }
984
+ result.participant = node?.attrs.author;
985
+ result.key = {
986
+ ...(result.key || {}),
987
+ participant: setPicture?.attrs.author
988
+ };
989
+ }
990
+ break;
991
+ case 'account_sync':
992
+ if (child.tag === 'disappearing_mode') {
993
+ const newDuration = +child.attrs.duration;
994
+ const timestamp = +child.attrs.t;
995
+ logger.info({ newDuration }, 'updated account disappearing mode');
996
+ ev.emit('creds.update', {
997
+ accountSettings: {
998
+ ...authState.creds.accountSettings,
999
+ defaultDisappearingMode: {
1000
+ ephemeralExpiration: newDuration,
1001
+ ephemeralSettingTimestamp: timestamp
1002
+ }
1003
+ }
1004
+ });
1005
+ }
1006
+ else if (child.tag === 'blocklist') {
1007
+ const blocklists = getBinaryNodeChildren(child, 'item');
1008
+ for (const { attrs } of blocklists) {
1009
+ const blocklist = [attrs.jid];
1010
+ const type = attrs.action === 'block' ? 'add' : 'remove';
1011
+ ev.emit('blocklist.update', { blocklist, type });
1012
+ }
1013
+ }
1014
+ break;
1015
+ case 'link_code_companion_reg':
1016
+ const linkCodeCompanionReg = getBinaryNodeChild(node, 'link_code_companion_reg');
1017
+ const ref = toRequiredBuffer(getBinaryNodeChildBuffer(linkCodeCompanionReg, 'link_code_pairing_ref'));
1018
+ const primaryIdentityPublicKey = toRequiredBuffer(getBinaryNodeChildBuffer(linkCodeCompanionReg, 'primary_identity_pub'));
1019
+ const primaryEphemeralPublicKeyWrapped = toRequiredBuffer(getBinaryNodeChildBuffer(linkCodeCompanionReg, 'link_code_pairing_wrapped_primary_ephemeral_pub'));
1020
+ const codePairingPublicKey = await decipherLinkPublicKey(primaryEphemeralPublicKeyWrapped);
1021
+ const companionSharedKey = Curve.sharedKey(authState.creds.pairingEphemeralKeyPair.private, codePairingPublicKey);
1022
+ const random = randomBytes(32);
1023
+ const linkCodeSalt = randomBytes(32);
1024
+ const linkCodePairingExpanded = hkdf(companionSharedKey, 32, {
1025
+ salt: linkCodeSalt,
1026
+ info: 'link_code_pairing_key_bundle_encryption_key'
1027
+ });
1028
+ const encryptPayload = Buffer.concat([
1029
+ Buffer.from(authState.creds.signedIdentityKey.public),
1030
+ primaryIdentityPublicKey,
1031
+ random
1032
+ ]);
1033
+ const encryptIv = randomBytes(12);
1034
+ const encrypted = aesEncryptGCM(encryptPayload, linkCodePairingExpanded, encryptIv, Buffer.alloc(0));
1035
+ const encryptedPayload = Buffer.concat([linkCodeSalt, encryptIv, encrypted]);
1036
+ const identitySharedKey = Curve.sharedKey(authState.creds.signedIdentityKey.private, primaryIdentityPublicKey);
1037
+ const identityPayload = Buffer.concat([companionSharedKey, identitySharedKey, random]);
1038
+ authState.creds.advSecretKey = Buffer.from(hkdf(identityPayload, 32, { info: 'adv_secret' })).toString('base64');
1039
+ await query({
1040
+ tag: 'iq',
1041
+ attrs: {
1042
+ to: S_WHATSAPP_NET,
1043
+ type: 'set',
1044
+ id: sock.generateMessageTag(),
1045
+ xmlns: 'md'
1046
+ },
1047
+ content: [
1048
+ {
1049
+ tag: 'link_code_companion_reg',
1050
+ attrs: {
1051
+ jid: authState.creds.me.id,
1052
+ stage: 'companion_finish'
1053
+ },
1054
+ content: [
1055
+ {
1056
+ tag: 'link_code_pairing_wrapped_key_bundle',
1057
+ attrs: {},
1058
+ content: encryptedPayload
1059
+ },
1060
+ {
1061
+ tag: 'companion_identity_public',
1062
+ attrs: {},
1063
+ content: authState.creds.signedIdentityKey.public
1064
+ },
1065
+ {
1066
+ tag: 'link_code_pairing_ref',
1067
+ attrs: {},
1068
+ content: ref
1069
+ }
1070
+ ]
1071
+ }
1072
+ ]
1073
+ });
1074
+ authState.creds.registered = true;
1075
+ ev.emit('creds.update', authState.creds);
1076
+ break;
1077
+ case 'privacy_token':
1078
+ await handlePrivacyTokenNotification(node);
1079
+ break;
1080
+ }
1081
+ if (Object.keys(result).length) {
1082
+ return result;
1083
+ }
1084
+ };
1085
+ /**
1086
+ * In-memory cache of storage JIDs with stored tctokens, seeded from the persisted index.
1087
+ * Used to coalesce writes during a session; pruning always re-reads the persisted index
1088
+ * to cover writes made by other layers (e.g. history sync).
1089
+ */
1090
+ const tcTokenKnownJids = new Set();
1091
+ const tcTokenIndexLoaded = (async () => {
1092
+ try {
1093
+ const jids = await readTcTokenIndex(authState.keys);
1094
+ for (const jid of jids)
1095
+ tcTokenKnownJids.add(jid);
1096
+ logger.debug({ count: tcTokenKnownJids.size }, 'loaded tctoken index');
1097
+ }
1098
+ catch (err) {
1099
+ logger.warn({ err: err?.message }, 'failed to load tctoken index');
1100
+ }
1101
+ })();
1102
+ let tcTokenIndexTimer;
1103
+ async function flushTcTokenIndex() {
1104
+ if (tcTokenIndexTimer) {
1105
+ clearTimeout(tcTokenIndexTimer);
1106
+ tcTokenIndexTimer = undefined;
1107
+ }
1108
+ // Merge with whatever is already persisted so we don't clobber writes from other
1109
+ // paths (history sync, concurrent sessions on the same store).
1110
+ const write = await buildMergedTcTokenIndexWrite(authState.keys, tcTokenKnownJids);
1111
+ return authState.keys.set({ tctoken: write });
1112
+ }
1113
+ function scheduleTcTokenIndexSave() {
1114
+ if (tcTokenIndexTimer) {
1115
+ clearTimeout(tcTokenIndexTimer);
1116
+ }
1117
+ tcTokenIndexTimer = setTimeout(() => {
1118
+ tcTokenIndexTimer = undefined;
1119
+ flushTcTokenIndex().catch(err => {
1120
+ logger.warn({ err: err?.message }, 'failed to save tctoken index');
1121
+ });
1122
+ }, 5000);
1123
+ }
1124
+ function trackTcTokenJid(jid) {
1125
+ if (jid && jid !== TC_TOKEN_INDEX_KEY && !tcTokenKnownJids.has(jid)) {
1126
+ tcTokenKnownJids.add(jid);
1127
+ scheduleTcTokenIndexSave();
1128
+ }
1129
+ }
1130
+ const handlePrivacyTokenNotification = async (node) => {
1131
+ const tokensNode = getBinaryNodeChild(node, 'tokens');
1132
+ if (!tokensNode)
1133
+ return;
1134
+ const from = jidNormalizedUser(node.attrs.from);
1135
+ // WA Web uses: senderLid ?? toLid(from) for the storage key
1136
+ // The sender_lid attribute provides the LID directly when available
1137
+ const senderLid = node.attrs.sender_lid && isLidUser(jidNormalizedUser(node.attrs.sender_lid))
1138
+ ? jidNormalizedUser(node.attrs.sender_lid)
1139
+ : undefined;
1140
+ const fallbackJid = senderLid ?? (await resolveTcTokenJid(from, getLIDForPN));
1141
+ logger.debug({ from, storageJid: fallbackJid }, 'processing privacy token notification');
1142
+ await storeTcTokensFromIqResult({
1143
+ result: node,
1144
+ fallbackJid,
1145
+ keys: authState.keys,
1146
+ getLIDForPN,
1147
+ onNewJidStored: trackTcTokenJid
1148
+ });
1149
+ };
1150
+ async function decipherLinkPublicKey(data) {
1151
+ const buffer = toRequiredBuffer(data);
1152
+ const salt = buffer.slice(0, 32);
1153
+ const secretKey = await derivePairingCodeKey(authState.creds.pairingCode, salt);
1154
+ const iv = buffer.slice(32, 48);
1155
+ const payload = buffer.slice(48, 80);
1156
+ return aesDecryptCTR(payload, secretKey, iv);
1157
+ }
1158
+ function toRequiredBuffer(data) {
1159
+ if (data === undefined) {
1160
+ throw new Boom('Invalid buffer', { statusCode: 400 });
1161
+ }
1162
+ return data instanceof Buffer ? data : Buffer.from(data);
1163
+ }
1164
+ const willSendMessageAgain = async (id, participant) => {
1165
+ const key = `${id}:${participant}`;
1166
+ const retryCount = (await msgRetryCache.get(key)) || 0;
1167
+ return retryCount < maxMsgRetryCount;
1168
+ };
1169
+ const updateSendMessageAgainCount = async (id, participant) => {
1170
+ const key = `${id}:${participant}`;
1171
+ const newValue = ((await msgRetryCache.get(key)) || 0) + 1;
1172
+ await msgRetryCache.set(key, newValue);
1173
+ };
1174
+ const sendMessagesAgain = async (key, ids, retryNode, receiptNode) => {
1175
+ const remoteJid = key.remoteJid;
1176
+ const participant = key.participant || remoteJid;
1177
+ const retryCount = +retryNode.attrs.count || 1;
1178
+ const msgId = ids[0];
1179
+ // Try to get messages from cache first, then fallback to getMessage
1180
+ const msgs = [];
1181
+ for (const id of ids) {
1182
+ let msg;
1183
+ // Try to get from retry cache first if enabled
1184
+ if (messageRetryManager) {
1185
+ const cachedMsg = messageRetryManager.getRecentMessage(remoteJid, id);
1186
+ if (cachedMsg) {
1187
+ msg = cachedMsg.message;
1188
+ logger.debug({ jid: remoteJid, id }, 'found message in retry cache');
1189
+ // Mark retry as successful since we found the message
1190
+ messageRetryManager.markRetrySuccess(id);
1191
+ }
1192
+ }
1193
+ // Fallback to getMessage if not found in cache
1194
+ if (!msg) {
1195
+ msg = await getMessage({ ...key, id });
1196
+ if (msg) {
1197
+ logger.debug({ jid: remoteJid, id }, 'found message via getMessage');
1198
+ // Also mark as successful if found via getMessage
1199
+ if (messageRetryManager) {
1200
+ messageRetryManager.markRetrySuccess(id);
1201
+ }
1202
+ }
1203
+ }
1204
+ msgs.push(msg);
1205
+ }
1206
+ // if it's the primary jid sending the request
1207
+ // just re-send the message to everyone
1208
+ // prevents the first message decryption failure
1209
+ const sendToAll = !jidDecode(participant)?.device;
1210
+ const sessionId = signalRepository.jidToSignalProtocolAddress(participant);
1211
+ let injectedFromBundle = false;
1212
+ const bundle = extractE2ESessionFromRetryReceipt(receiptNode);
1213
+ if (bundle) {
1214
+ try {
1215
+ await signalRepository.injectE2ESession({ jid: participant, session: bundle });
1216
+ injectedFromBundle = true;
1217
+ logger.debug({ participant, retryCount }, 'injected session from retry receipt key bundle');
1218
+ }
1219
+ catch (error) {
1220
+ logger.warn({ error, participant }, 'failed to inject session from retry receipt');
1221
+ }
1222
+ }
1223
+ if (!injectedFromBundle) {
1224
+ const receivedRegId = getBinaryNodeChildUInt(receiptNode, 'registration', 4);
1225
+ if (typeof receivedRegId === 'number' && Number.isInteger(receivedRegId)) {
1226
+ const info = await signalRepository.getSessionInfo(participant);
1227
+ if (info && info.registrationId !== 0 && info.registrationId !== receivedRegId) {
1228
+ logger.info({ participant, stored: info.registrationId, received: receivedRegId }, 'reg id mismatch on retry without bundle, deleting session');
1229
+ await authState.keys.set({ session: { [sessionId]: null } });
1230
+ }
1231
+ }
1232
+ }
1233
+ const BASE_KEY_CHECK_RETRY = 2;
1234
+ if (msgId && messageRetryManager) {
1235
+ const info = await signalRepository.getSessionInfo(participant);
1236
+ if (info) {
1237
+ if (retryCount === BASE_KEY_CHECK_RETRY) {
1238
+ messageRetryManager.saveBaseKey(sessionId, msgId, info.baseKey);
1239
+ }
1240
+ else if (retryCount > BASE_KEY_CHECK_RETRY) {
1241
+ if (messageRetryManager.hasSameBaseKey(sessionId, msgId, info.baseKey)) {
1242
+ logger.warn({ participant, retryCount }, 'base key collision on retry, forcing fresh session');
1243
+ await authState.keys.set({ session: { [sessionId]: null } });
1244
+ }
1245
+ messageRetryManager.deleteBaseKey(sessionId, msgId);
1246
+ }
1247
+ }
1248
+ }
1249
+ let shouldRecreateSession = false;
1250
+ let recreateReason = '';
1251
+ if (enableAutoSessionRecreation && messageRetryManager && retryCount > 1 && !injectedFromBundle) {
1252
+ try {
1253
+ const hasSession = await signalRepository.validateSession(participant);
1254
+ const result = messageRetryManager.shouldRecreateSession(participant, hasSession.exists);
1255
+ shouldRecreateSession = result.recreate;
1256
+ recreateReason = result.reason;
1257
+ if (shouldRecreateSession) {
1258
+ logger.debug({ participant, retryCount, reason: recreateReason }, 'recreating session for outgoing retry');
1259
+ await authState.keys.set({ session: { [sessionId]: null } });
1260
+ }
1261
+ }
1262
+ catch (error) {
1263
+ logger.warn({ error, participant }, 'failed to check session recreation for outgoing retry');
1264
+ }
1265
+ }
1266
+ if (!injectedFromBundle) {
1267
+ await assertSessions([participant], true);
1268
+ }
1269
+ if (isJidGroup(remoteJid)) {
1270
+ await authState.keys.set({ 'sender-key-memory': { [remoteJid]: null } });
1271
+ }
1272
+ logger.debug({ participant, sendToAll, shouldRecreateSession, recreateReason, injectedFromBundle }, 'prepared session for retry resend');
1273
+ for (const [i, msg] of msgs.entries()) {
1274
+ if (!ids[i])
1275
+ continue;
1276
+ if (msg && (await willSendMessageAgain(ids[i], participant))) {
1277
+ await updateSendMessageAgainCount(ids[i], participant);
1278
+ const msgRelayOpts = { messageId: ids[i] };
1279
+ if (sendToAll) {
1280
+ msgRelayOpts.useUserDevicesCache = false;
1281
+ }
1282
+ else {
1283
+ msgRelayOpts.participant = {
1284
+ jid: participant,
1285
+ count: +retryNode.attrs.count
1286
+ };
1287
+ }
1288
+ await relayMessage(key.remoteJid, msg, msgRelayOpts);
1289
+ }
1290
+ else {
1291
+ logger.debug({ jid: key.remoteJid, id: ids[i] }, 'recv retry request, but message not available');
1292
+ }
1293
+ }
1294
+ };
1295
+ const handleReceipt = async (node) => {
1296
+ const { attrs, content } = node;
1297
+ const isLid = attrs.from.includes('lid');
1298
+ const isNodeFromMe = areJidsSameUser(attrs.participant || attrs.from, isLid ? authState.creds.me?.lid : authState.creds.me?.id);
1299
+ const remoteJid = !isNodeFromMe || isJidGroup(attrs.from) ? attrs.from : attrs.recipient;
1300
+ const fromMe = !attrs.recipient || ((attrs.type === 'retry' || attrs.type === 'sender') && isNodeFromMe);
1301
+ const key = {
1302
+ remoteJid,
1303
+ id: '',
1304
+ fromMe,
1305
+ participant: attrs.participant
1306
+ };
1307
+ const ids = [attrs.id];
1308
+ if (Array.isArray(content)) {
1309
+ const items = getBinaryNodeChildren(content[0], 'item');
1310
+ ids.push(...items.map(i => i.attrs.id));
1311
+ }
1312
+ try {
1313
+ await Promise.all([
1314
+ receiptMutex.mutex(async () => {
1315
+ const status = getStatusFromReceiptType(attrs.type);
1316
+ if (typeof status !== 'undefined' &&
1317
+ // basically, we only want to know when a message from us has been delivered to/read by the other person
1318
+ // or another device of ours has read some messages
1319
+ (status >= proto.WebMessageInfo.Status.SERVER_ACK || !isNodeFromMe)) {
1320
+ if (isJidGroup(remoteJid) || isJidStatusBroadcast(remoteJid)) {
1321
+ if (attrs.participant) {
1322
+ const updateKey = status === proto.WebMessageInfo.Status.DELIVERY_ACK ? 'receiptTimestamp' : 'readTimestamp';
1323
+ ev.emit('message-receipt.update', ids.map(id => ({
1324
+ key: { ...key, id },
1325
+ receipt: {
1326
+ userJid: jidNormalizedUser(attrs.participant),
1327
+ [updateKey]: +attrs.t
1328
+ }
1329
+ })));
1330
+ }
1331
+ }
1332
+ else {
1333
+ ev.emit('messages.update', ids.map(id => ({
1334
+ key: { ...key, id },
1335
+ update: { status, messageTimestamp: toNumber(+(attrs.t ?? 0)) }
1336
+ })));
1337
+ }
1338
+ }
1339
+ if (attrs.type === 'retry') {
1340
+ // correctly set who is asking for the retry
1341
+ key.participant = key.participant || attrs.from;
1342
+ const retryNode = getBinaryNodeChild(node, 'retry');
1343
+ if (ids[0] && key.participant && (await willSendMessageAgain(ids[0], key.participant))) {
1344
+ if (key.fromMe) {
1345
+ try {
1346
+ await updateSendMessageAgainCount(ids[0], key.participant);
1347
+ logger.debug({ attrs, key }, 'recv retry request');
1348
+ await sendMessagesAgain(key, ids, retryNode, node);
1349
+ }
1350
+ catch (error) {
1351
+ logger.error({ key, ids, trace: error instanceof Error ? error.stack : 'Unknown error' }, 'error in sending message again');
1352
+ }
1353
+ }
1354
+ else {
1355
+ logger.info({ attrs, key }, 'recv retry for not fromMe message');
1356
+ }
1357
+ }
1358
+ else {
1359
+ logger.info({ attrs, key }, 'will not send message again, as sent too many times');
1360
+ }
1361
+ }
1362
+ })
1363
+ ]);
1364
+ }
1365
+ finally {
1366
+ await sendMessageAck(node).catch(ackErr => logger.error({ ackErr }, 'failed to ack receipt'));
1367
+ }
1368
+ };
1369
+ const handleNotification = async (node) => {
1370
+ const remoteJid = node.attrs.from;
1371
+ try {
1372
+ await Promise.all([
1373
+ notificationMutex.mutex(async () => {
1374
+ const msg = await processNotification(node);
1375
+ if (msg) {
1376
+ const fromMe = areJidsSameUser(node.attrs.participant || remoteJid, authState.creds.me.id);
1377
+ const { senderAlt: participantAlt, addressingMode } = extractAddressingContext(node);
1378
+ msg.key = {
1379
+ remoteJid,
1380
+ fromMe,
1381
+ participant: node.attrs.participant,
1382
+ participantAlt,
1383
+ participantUsername: node.attrs.participant_username,
1384
+ addressingMode,
1385
+ id: node.attrs.id,
1386
+ ...(msg.key || {})
1387
+ };
1388
+ msg.participant ?? (msg.participant = node.attrs.participant);
1389
+ msg.messageTimestamp = +node.attrs.t;
1390
+ const fullMsg = proto.WebMessageInfo.fromObject(msg);
1391
+ await upsertMessage(fullMsg, 'append');
1392
+ }
1393
+ })
1394
+ ]);
1395
+ }
1396
+ finally {
1397
+ await sendMessageAck(node).catch(ackErr => logger.error({ ackErr }, 'failed to ack notification'));
1398
+ }
1399
+ };
1400
+ const handleMessage = async (node) => {
1401
+ const encNode = getBinaryNodeChild(node, 'enc');
1402
+ // TODO: temporary fix for crashes and issues resulting of failed msmsg decryption
1403
+ if (encNode?.attrs.type === 'msmsg') {
1404
+ logger.debug({ key: node.attrs.key }, 'ignored msmsg');
1405
+ await sendMessageAck(node, NACK_REASONS.MissingMessageSecret);
1406
+ return;
1407
+ }
1408
+ let acked = false;
1409
+ try {
1410
+ const { fullMessage: msg, category, author, decrypt } = decryptMessageNode(node, authState.creds.me.id, authState.creds.me.lid || '', signalRepository, logger);
1411
+ const alt = msg.key.participantAlt || msg.key.remoteJidAlt;
1412
+ // store new mappings we didn't have before
1413
+ if (!!alt) {
1414
+ const altServer = jidDecode(alt)?.server;
1415
+ const primaryJid = msg.key.participant || msg.key.remoteJid;
1416
+ if (altServer === 'lid') {
1417
+ if (!(await signalRepository.lidMapping.getPNForLID(alt))) {
1418
+ await signalRepository.lidMapping.storeLIDPNMappings([{ lid: alt, pn: primaryJid }]);
1419
+ await signalRepository.migrateSession(primaryJid, alt);
1420
+ }
1421
+ }
1422
+ else {
1423
+ await signalRepository.lidMapping.storeLIDPNMappings([{ lid: primaryJid, pn: alt }]);
1424
+ await signalRepository.migrateSession(alt, primaryJid);
1425
+ }
1426
+ }
1427
+ await messageMutex.mutex(async () => {
1428
+ await decrypt();
1429
+ if (msg.key?.remoteJid && msg.key?.id && msg.message && messageRetryManager) {
1430
+ messageRetryManager.addRecentMessage(msg.key.remoteJid, msg.key.id, msg.message);
1431
+ }
1432
+ // message failed to decrypt
1433
+ if (msg.messageStubType === proto.WebMessageInfo.StubType.CIPHERTEXT && msg.category !== 'peer') {
1434
+ if (msg?.messageStubParameters?.[0] === MISSING_KEYS_ERROR_TEXT) {
1435
+ acked = true;
1436
+ return sendMessageAck(node, NACK_REASONS.ParsingError);
1437
+ }
1438
+ if (msg.messageStubParameters?.[0] === NO_MESSAGE_FOUND_ERROR_TEXT) {
1439
+ // Message arrived without encryption (e.g. CTWA ads messages).
1440
+ // Check if this is eligible for placeholder resend (matching WA Web filters).
1441
+ const unavailableNode = getBinaryNodeChild(node, 'unavailable');
1442
+ const unavailableType = unavailableNode?.attrs?.type;
1443
+ if (unavailableType === 'bot_unavailable_fanout' ||
1444
+ unavailableType === 'hosted_unavailable_fanout' ||
1445
+ unavailableType === 'view_once_unavailable_fanout') {
1446
+ logger.debug({ msgId: msg.key.id, unavailableType }, 'skipping placeholder resend for excluded unavailable type');
1447
+ acked = true;
1448
+ return sendMessageAck(node);
1449
+ }
1450
+ const messageAge = unixTimestampSeconds() - toNumber(msg.messageTimestamp);
1451
+ if (messageAge > PLACEHOLDER_MAX_AGE_SECONDS) {
1452
+ logger.debug({ msgId: msg.key.id, messageAge }, 'skipping placeholder resend for old message');
1453
+ acked = true;
1454
+ return sendMessageAck(node);
1455
+ }
1456
+ // Request the real content from the phone via placeholder resend PDO.
1457
+ // Upsert the CIPHERTEXT stub as a placeholder (like WA Web's processPlaceholderMsg),
1458
+ // and store the requestId in stubParameters[1] so users can correlate
1459
+ // with the incoming PDO response event.
1460
+ const cleanKey = {
1461
+ remoteJid: msg.key.remoteJid,
1462
+ fromMe: msg.key.fromMe,
1463
+ id: msg.key.id,
1464
+ participant: msg.key.participant
1465
+ };
1466
+ // Cache the original message metadata so the PDO response handler
1467
+ // can preserve key fields (LID details etc.) that the phone may omit
1468
+ const msgData = {
1469
+ key: msg.key,
1470
+ messageTimestamp: msg.messageTimestamp,
1471
+ pushName: msg.pushName,
1472
+ participant: msg.participant,
1473
+ verifiedBizName: msg.verifiedBizName
1474
+ };
1475
+ requestPlaceholderResend(cleanKey, msgData)
1476
+ .then(requestId => {
1477
+ if (requestId && requestId !== 'RESOLVED') {
1478
+ logger.debug({ msgId: msg.key.id, requestId }, 'requested placeholder resend for unavailable message');
1479
+ ev.emit('messages.update', [
1480
+ {
1481
+ key: msg.key,
1482
+ update: { messageStubParameters: [NO_MESSAGE_FOUND_ERROR_TEXT, requestId] }
1483
+ }
1484
+ ]);
1485
+ }
1486
+ })
1487
+ .catch(err => {
1488
+ logger.warn({ err, msgId: msg.key.id }, 'failed to request placeholder resend for unavailable message');
1489
+ });
1490
+ acked = true;
1491
+ await sendMessageAck(node);
1492
+ // Don't return — fall through to upsertMessage so the stub is emitted
1493
+ }
1494
+ else {
1495
+ // Skip retry for expired status messages (>24h old)
1496
+ if (isJidStatusBroadcast(msg.key.remoteJid)) {
1497
+ const messageAge = unixTimestampSeconds() - toNumber(msg.messageTimestamp);
1498
+ if (messageAge > STATUS_EXPIRY_SECONDS) {
1499
+ logger.debug({ msgId: msg.key.id, messageAge, remoteJid: msg.key.remoteJid }, 'skipping retry for expired status message');
1500
+ acked = true;
1501
+ return sendMessageAck(node);
1502
+ }
1503
+ }
1504
+ logger.debug('[handleMessage] Attempting retry request for failed decryption');
1505
+ // WAWeb only retry-receipts here; server emits PreKeyLow if prekeys run low.
1506
+ await retryMutex.mutex(async () => {
1507
+ try {
1508
+ if (!ws.isOpen) {
1509
+ logger.debug({ node }, 'Connection closed, skipping retry');
1510
+ return;
1511
+ }
1512
+ const encNode = getBinaryNodeChild(node, 'enc');
1513
+ await sendRetryRequest(node, !encNode);
1514
+ if (retryRequestDelayMs) {
1515
+ await delay(retryRequestDelayMs);
1516
+ }
1517
+ }
1518
+ catch (err) {
1519
+ logger.error({ err }, 'Failed to send retry');
1520
+ }
1521
+ acked = true;
1522
+ await sendMessageAck(node, NACK_REASONS.UnhandledError);
1523
+ });
1524
+ }
1525
+ }
1526
+ else {
1527
+ if (messageRetryManager && msg.key.id) {
1528
+ messageRetryManager.cancelPendingPhoneRequest(msg.key.id);
1529
+ }
1530
+ const isNewsletter = isJidNewsletter(msg.key.remoteJid);
1531
+ if (!isNewsletter) {
1532
+ // no type in the receipt => message delivered
1533
+ let type = undefined;
1534
+ let participant = msg.key.participant;
1535
+ if (category === 'peer') {
1536
+ // special peer message
1537
+ type = 'peer_msg';
1538
+ }
1539
+ else if (msg.key.fromMe) {
1540
+ // message was sent by us from a different device
1541
+ type = 'sender';
1542
+ // need to specially handle this case
1543
+ if (isLidUser(msg.key.remoteJid) || isLidUser(msg.key.remoteJidAlt)) {
1544
+ participant = author; // TODO: investigate sending receipts to LIDs and not PNs
1545
+ }
1546
+ }
1547
+ else if (!sendActiveReceipts) {
1548
+ type = 'inactive';
1549
+ }
1550
+ acked = true;
1551
+ await sendReceipt(msg.key.remoteJid, participant, [msg.key.id], type);
1552
+ // send ack for history message
1553
+ const isAnyHistoryMsg = getHistoryMsg(msg.message);
1554
+ if (isAnyHistoryMsg) {
1555
+ const jid = jidNormalizedUser(msg.key.remoteJid);
1556
+ await sendReceipt(jid, undefined, [msg.key.id], 'hist_sync'); // TODO: investigate
1557
+ }
1558
+ }
1559
+ else {
1560
+ acked = true;
1561
+ await sendMessageAck(node);
1562
+ logger.debug({ key: msg.key }, 'processed newsletter message without receipts');
1563
+ }
1564
+ }
1565
+ cleanMessage(msg, authState.creds.me.id, authState.creds.me.lid);
1566
+ await upsertMessage(msg, node.attrs.offline ? 'append' : 'notify');
1567
+ });
1568
+ }
1569
+ catch (error) {
1570
+ logger.error({ error, node: binaryNodeToString(node) }, 'error in handling message');
1571
+ if (!acked) {
1572
+ await sendMessageAck(node, NACK_REASONS.UnhandledError).catch(ackErr => logger.error({ ackErr }, 'failed to ack message after error'));
1573
+ }
1574
+ }
1575
+ };
1576
+ const handleCall = async (node) => {
1577
+ try {
1578
+ const { attrs } = node;
1579
+ const [infoChild] = getAllBinaryNodeChildren(node);
1580
+ if (!infoChild) {
1581
+ throw new Boom('Missing call info in call node');
1582
+ }
1583
+ const status = getCallStatusFromNode(infoChild);
1584
+ const callId = infoChild.attrs['call-id'];
1585
+ const from = infoChild.attrs.from || infoChild.attrs['call-creator'];
1586
+ const call = {
1587
+ chatId: attrs.from,
1588
+ from,
1589
+ callerPn: infoChild.attrs['caller_pn'],
1590
+ id: callId,
1591
+ date: new Date(+attrs.t * 1000),
1592
+ offline: !!attrs.offline,
1593
+ status
1594
+ };
1595
+ if (status === 'relaylatency') {
1596
+ const latencyValue = infoChild.attrs.latency || infoChild.attrs['latency_ms'] || infoChild.attrs['latency-ms'];
1597
+ const latencyMs = latencyValue ? Number(latencyValue) : undefined;
1598
+ if (Number.isFinite(latencyMs)) {
1599
+ call.latencyMs = latencyMs;
1600
+ }
1601
+ }
1602
+ if (status === 'offer') {
1603
+ call.isVideo = !!getBinaryNodeChild(infoChild, 'video');
1604
+ call.isGroup = infoChild.attrs.type === 'group' || !!infoChild.attrs['group-jid'];
1605
+ call.groupJid = infoChild.attrs['group-jid'];
1606
+ await callOfferCache.set(call.id, call);
1607
+ }
1608
+ const existingCall = await callOfferCache.get(call.id);
1609
+ // use existing call info to populate this event
1610
+ if (existingCall) {
1611
+ call.isVideo = existingCall.isVideo;
1612
+ call.isGroup = existingCall.isGroup;
1613
+ call.callerPn = call.callerPn || existingCall.callerPn;
1614
+ }
1615
+ // delete data once call has ended
1616
+ if (status === 'reject' || status === 'accept' || status === 'timeout' || status === 'terminate') {
1617
+ await callOfferCache.del(call.id);
1618
+ }
1619
+ ev.emit('call', [call]);
1620
+ }
1621
+ catch (error) {
1622
+ logger.error({ error, node: binaryNodeToString(node) }, 'error in handling call');
1623
+ }
1624
+ finally {
1625
+ await sendMessageAck(node).catch(ackErr => logger.error({ ackErr }, 'failed to ack call'));
1626
+ }
1627
+ };
1628
+ const handleBadAck = async ({ attrs }) => {
1629
+ const key = { remoteJid: attrs.from, fromMe: true, id: attrs.id };
1630
+ // WARNING: REFRAIN FROM ENABLING THIS FOR NOW. IT WILL CAUSE A LOOP
1631
+ // // current hypothesis is that if pash is sent in the ack
1632
+ // // it means -- the message hasn't reached all devices yet
1633
+ // // we'll retry sending the message here
1634
+ // if(attrs.phash) {
1635
+ // logger.info({ attrs }, 'received phash in ack, resending message...')
1636
+ // const msg = await getMessage(key)
1637
+ // if(msg) {
1638
+ // await relayMessage(key.remoteJid!, msg, { messageId: key.id!, useUserDevicesCache: false })
1639
+ // } else {
1640
+ // logger.warn({ attrs }, 'could not send message again, as it was not found')
1641
+ // }
1642
+ // }
1643
+ // error in acknowledgement,
1644
+ // device could not display the message
1645
+ if (attrs.error) {
1646
+ const isReachoutTimelocked = attrs.error === String(NACK_REASONS.SenderReachoutTimelocked);
1647
+ if (attrs.error === SERVER_ERROR_CODES.MessageAccountRestriction) {
1648
+ // 463 = 1:1 message missing privacy token (tctoken). Usually means the
1649
+ // account is restricted: WhatsApp blocks starting new chats but preserves
1650
+ // existing ones, since established chats already carry a tctoken.
1651
+ // WA Web prevents this client-side (disables the compose bar).
1652
+ // No retry — retrying counts as another "reach out" and worsens the restriction.
1653
+ logger.warn({ msgId: attrs.id, from: attrs.from }, 'error 463: account restricted or missing tctoken for contact');
1654
+ const ackFrom = attrs.from;
1655
+ if (ackFrom && !inFlight463Recoveries.has(ackFrom)) {
1656
+ inFlight463Recoveries.add(ackFrom);
1657
+ void (async () => {
1658
+ try {
1659
+ const getPNForLID = signalRepository.lidMapping.getPNForLID.bind(signalRepository.lidMapping);
1660
+ const tcStorageJid = await resolveTcTokenJid(ackFrom, getLIDForPN);
1661
+ const issueJid = await resolveIssuanceJid(ackFrom, sock.serverProps.lidTrustedTokenIssueToLid, getLIDForPN, getPNForLID);
1662
+ const result = await issuePrivacyTokens([issueJid], unixTimestampSeconds());
1663
+ await storeTcTokensFromIqResult({
1664
+ result,
1665
+ fallbackJid: tcStorageJid,
1666
+ keys: authState.keys,
1667
+ getLIDForPN,
1668
+ onNewJidStored: trackTcTokenJid
1669
+ });
1670
+ logger.debug({ from: ackFrom }, 'completed 463 token recovery issuance');
1671
+ }
1672
+ catch (err) {
1673
+ logger.debug({ from: ackFrom, err: err?.message }, 'failed 463 token recovery issuance');
1674
+ }
1675
+ finally {
1676
+ inFlight463Recoveries.delete(ackFrom);
1677
+ }
1678
+ })();
1679
+ }
1680
+ }
1681
+ else if (attrs.error === SERVER_ERROR_CODES.SmaxInvalid) {
1682
+ logger.warn({ msgId: attrs.id, from: attrs.from }, 'smax-invalid (479): stanza rejected by server — likely stale device session or malformed addressing');
1683
+ }
1684
+ else if (isReachoutTimelocked) {
1685
+ // user is temporarily restricted, fetch current restriction details
1686
+ await fetchAccountReachoutTimelock().catch(err => logger.warn({ err }, 'failed to fetch reachout timelock'));
1687
+ logger.warn({ attrs }, 'received error in ack');
1688
+ }
1689
+ else {
1690
+ logger.warn({ attrs }, 'received error in ack');
1691
+ }
1692
+ ev.emit('messages.update', [
1693
+ {
1694
+ key,
1695
+ update: {
1696
+ status: WAMessageStatus.ERROR,
1697
+ messageStubParameters: isReachoutTimelocked ? [attrs.error, ACCOUNT_RESTRICTED_TEXT] : [attrs.error]
1698
+ }
1699
+ }
1700
+ ]);
1701
+ }
1702
+ };
1703
+ /// processes a node with the given function
1704
+ /// and adds the task to the existing buffer if we're buffering events
1705
+ const processNodeWithBuffer = async (node, identifier, exec) => {
1706
+ ev.buffer();
1707
+ await execTask();
1708
+ ev.flush();
1709
+ function execTask() {
1710
+ return exec(node, false).catch(err => onUnexpectedError(err, identifier));
1711
+ }
1712
+ };
1713
+ const offlineNodeProcessor = makeOfflineNodeProcessor(new Map([
1714
+ ['message', handleMessage],
1715
+ ['call', handleCall],
1716
+ ['receipt', handleReceipt],
1717
+ ['notification', handleNotification]
1718
+ ]), {
1719
+ isWsOpen: () => ws.isOpen,
1720
+ onUnexpectedError,
1721
+ yieldToEventLoop: () => new Promise(resolve => setImmediate(resolve))
1722
+ });
1723
+ const processNode = async (type, node, identifier, exec) => {
1724
+ // Fast path: ack and drop ignored JIDs before entering the buffer/queue
1725
+ const from = node.attrs.from;
1726
+ let ignoreJid = from;
1727
+ if (type === 'receipt' && from) {
1728
+ const attrs = node.attrs;
1729
+ const isLid = attrs.from.includes('lid');
1730
+ const isNodeFromMe = areJidsSameUser(attrs.participant || attrs.from, isLid ? authState.creds.me?.lid : authState.creds.me?.id);
1731
+ ignoreJid = !isNodeFromMe || isJidGroup(attrs.from) ? attrs.from : attrs.recipient;
1732
+ }
1733
+ if (ignoreJid && ignoreJid !== S_WHATSAPP_NET && shouldIgnoreJid(ignoreJid)) {
1734
+ await sendMessageAck(node, type === 'message' ? NACK_REASONS.UnhandledError : undefined);
1735
+ return;
1736
+ }
1737
+ const isOffline = !!node.attrs.offline;
1738
+ if (isOffline) {
1739
+ offlineNodeProcessor.enqueue(type, node);
1740
+ }
1741
+ else {
1742
+ await processNodeWithBuffer(node, identifier, exec);
1743
+ }
1744
+ };
1745
+ // recv a message
1746
+ ws.on('CB:message', async (node) => {
1747
+ await processNode('message', node, 'processing message', handleMessage);
1748
+ });
1749
+ ws.on('CB:call', async (node) => {
1750
+ await processNode('call', node, 'handling call', handleCall);
1751
+ });
1752
+ ws.on('CB:receipt', async (node) => {
1753
+ await processNode('receipt', node, 'handling receipt', handleReceipt);
1754
+ });
1755
+ ws.on('CB:notification', async (node) => {
1756
+ await processNode('notification', node, 'handling notification', handleNotification);
1757
+ });
1758
+ ws.on('CB:ack,class:message', (node) => {
1759
+ handleBadAck(node).catch(error => onUnexpectedError(error, 'handling bad ack'));
1760
+ });
1761
+ ev.on('call', async ([call]) => {
1762
+ if (!call) {
1763
+ return;
1764
+ }
1765
+ // missed call + group call notification message generation
1766
+ if (call.status === 'timeout' || (call.status === 'offer' && call.isGroup)) {
1767
+ const msg = {
1768
+ key: {
1769
+ remoteJid: call.chatId,
1770
+ id: call.id,
1771
+ fromMe: false
1772
+ },
1773
+ messageTimestamp: unixTimestampSeconds(call.date)
1774
+ };
1775
+ if (call.status === 'timeout') {
1776
+ if (call.isGroup) {
1777
+ msg.messageStubType = call.isVideo
1778
+ ? WAMessageStubType.CALL_MISSED_GROUP_VIDEO
1779
+ : WAMessageStubType.CALL_MISSED_GROUP_VOICE;
1780
+ }
1781
+ else {
1782
+ msg.messageStubType = call.isVideo ? WAMessageStubType.CALL_MISSED_VIDEO : WAMessageStubType.CALL_MISSED_VOICE;
1783
+ }
1784
+ }
1785
+ else {
1786
+ msg.message = { call: { callKey: Buffer.from(call.id) } };
1787
+ }
1788
+ const protoMsg = proto.WebMessageInfo.fromObject(msg);
1789
+ await upsertMessage(protoMsg, call.offline ? 'append' : 'notify');
1790
+ }
1791
+ });
1792
+ /** timestamp of last tctoken prune run — throttles to once per 24h */
1793
+ let lastTcTokenPruneTs = 0;
1794
+ /** dedupe in-flight 463 recovery token issuance by target JID */
1795
+ const inFlight463Recoveries = new Set();
1796
+ ev.on('connection.update', ({ isOnline, connection }) => {
1797
+ if (typeof isOnline !== 'undefined') {
1798
+ sendActiveReceipts = isOnline;
1799
+ logger.trace(`sendActiveReceipts set to "${sendActiveReceipts}"`);
1800
+ }
1801
+ // Flush pending tctoken index save on disconnect to avoid writing after close
1802
+ if (connection === 'close' && tcTokenIndexTimer) {
1803
+ clearTimeout(tcTokenIndexTimer);
1804
+ tcTokenIndexTimer = undefined;
1805
+ // Best-effort flush — may fail if store is already closed
1806
+ try {
1807
+ void Promise.resolve(flushTcTokenIndex()).catch(() => { });
1808
+ }
1809
+ catch {
1810
+ /* ignore sync errors */
1811
+ }
1812
+ }
1813
+ // Prune expired tctokens when coming online, at most once per 24 hours
1814
+ // Matches WA Web's CLEAN_TC_TOKENS task
1815
+ // Note: don't gate on tcTokenKnownJids.size — the index may still be loading
1816
+ if (isOnline) {
1817
+ const now = Date.now();
1818
+ const DAY_MS = 24 * 60 * 60 * 1000;
1819
+ if (now - lastTcTokenPruneTs >= DAY_MS) {
1820
+ lastTcTokenPruneTs = now;
1821
+ void pruneExpiredTcTokens();
1822
+ }
1823
+ }
1824
+ });
1825
+ registerSocketEndHandler(() => {
1826
+ if (!config.msgRetryCounterCache && msgRetryCache.close) {
1827
+ msgRetryCache.close();
1828
+ }
1829
+ if (!config.callOfferCache && callOfferCache.close) {
1830
+ callOfferCache.close();
1831
+ }
1832
+ identityAssertDebounce.close();
1833
+ sendActiveReceipts = false;
1834
+ });
1835
+ async function pruneExpiredTcTokens() {
1836
+ try {
1837
+ await tcTokenIndexLoaded;
1838
+ // Union with the persisted index picks up JIDs added by other layers
1839
+ // (history sync) without needing inter-module wiring.
1840
+ const persisted = await readTcTokenIndex(authState.keys);
1841
+ const allJids = new Set(tcTokenKnownJids);
1842
+ for (const jid of persisted)
1843
+ allJids.add(jid);
1844
+ if (!allJids.size)
1845
+ return;
1846
+ const jids = [...allJids];
1847
+ const allTokens = await authState.keys.get('tctoken', jids);
1848
+ const writes = {};
1849
+ const survivors = new Set();
1850
+ let mutated = 0;
1851
+ for (const jid of jids) {
1852
+ const entry = allTokens[jid];
1853
+ if (!entry) {
1854
+ // Tracked but nothing in store — drop from index.
1855
+ mutated++;
1856
+ continue;
1857
+ }
1858
+ const hasPeerToken = !!entry.token?.length;
1859
+ const peerTokenExpired = hasPeerToken && isTcTokenExpired(entry.timestamp);
1860
+ const hasSenderTs = entry.senderTimestamp !== undefined;
1861
+ const senderTsExpired = hasSenderTs && isTcTokenExpired(entry.senderTimestamp);
1862
+ const keepPeerToken = hasPeerToken && !peerTokenExpired;
1863
+ const keepSenderTs = hasSenderTs && !senderTsExpired;
1864
+ if (!keepPeerToken && !keepSenderTs) {
1865
+ writes[jid] = null;
1866
+ mutated++;
1867
+ }
1868
+ else if (peerTokenExpired && keepSenderTs) {
1869
+ writes[jid] = { token: Buffer.alloc(0), senderTimestamp: entry.senderTimestamp };
1870
+ survivors.add(jid);
1871
+ mutated++;
1872
+ }
1873
+ else {
1874
+ survivors.add(jid);
1875
+ }
1876
+ }
1877
+ if (mutated === 0)
1878
+ return;
1879
+ await authState.keys.set({
1880
+ tctoken: {
1881
+ ...writes,
1882
+ [TC_TOKEN_INDEX_KEY]: {
1883
+ token: Buffer.from(JSON.stringify([...survivors]))
1884
+ }
1885
+ }
1886
+ });
1887
+ tcTokenKnownJids.clear();
1888
+ for (const jid of survivors)
1889
+ tcTokenKnownJids.add(jid);
1890
+ logger.debug({ mutated, remaining: survivors.size }, 'pruned expired tctokens');
1891
+ }
1892
+ catch (err) {
1893
+ logger.warn({ err: err?.message }, 'failed to prune expired tctokens');
1894
+ }
1895
+ }
1896
+ return {
1897
+ ...sock,
1898
+ sendMessageAck,
1899
+ sendRetryRequest,
1900
+ rejectCall,
1901
+ fetchMessageHistory,
1902
+ requestPlaceholderResend,
1903
+ messageRetryManager,
1904
+ sendText,
1905
+ sendImage,
1906
+ sendVideo,
1907
+ sendAudio,
1908
+ sendDocument,
1909
+ sendLocation,
1910
+ sendPoll,
1911
+ sendQuiz,
1912
+ sendPtv,
1913
+ statusMention
1914
+ };
1915
+ };
1916
+ //# sourceMappingURL=messages-recv.js.map