@textrp/briij-js-sdk 41.0.1 → 43.0.0

package/lib/rendezvous/channels/MSC4108SecureChannel.js

@@ -1,30 +1,30 @@
 import _asyncToGenerator from "@babel/runtime/helpers/asyncToGenerator";
 import _defineProperty from "@babel/runtime/helpers/defineProperty";
-/*
-Copyright 2024 The Matrix.org Foundation C.I.C.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
+/*
+Copyright 2024 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
 */
 
 import { Ecies, QrCodeData, QrCodeMode } from "@matrix-org/matrix-sdk-crypto-wasm";
 import { ClientRendezvousFailureReason, MSC4108FailureReason, RendezvousError } from "../index.js";
 import { logger } from "../../logger.js";
 
-/**
- * Prototype of the unstable [MSC4108](https://github.com/matrix-org/matrix-spec-proposals/pull/4108)
- * secure rendezvous session protocol.
- * @experimental Note that this is UNSTABLE and may have breaking changes without notice.
- * Imports @matrix-org/matrix-sdk-crypto-wasm so should be async-imported to avoid bundling the WASM into the main bundle.
+/**
+ * Prototype of the unstable [MSC4108](https://github.com/matrix-org/matrix-spec-proposals/pull/4108)
+ * secure rendezvous session protocol.
+ * @experimental Note that this is UNSTABLE and may have breaking changes without notice.
+ * Imports @matrix-org/matrix-sdk-crypto-wasm so should be async-imported to avoid bundling the WASM into the main bundle.
  */
 export class MSC4108SecureChannel {
   constructor(rendezvousSession, theirPublicKey, onFailure) {
@@ -37,10 +37,10 @@ export class MSC4108SecureChannel {
     this.secureChannel = new Ecies();
   }
 
-  /**
-   * Generate a QR code for the current session.
-   * @param mode the mode to generate the QR code in, either `Login` or `Reciprocate`.
-   * @param serverName the name of the homeserver to connect to, as defined by server discovery in the spec, required for `Reciprocate` mode.
+  /**
+   * Generate a QR code for the current session.
+   * @param mode the mode to generate the QR code in, either `Login` or `Reciprocate`.
+   * @param serverName the name of the homeserver to connect to, as defined by server discovery in the spec, required for `Reciprocate` mode.
    */
 
   generateCode(mode, serverName) {
@@ -56,8 +56,8 @@ export class MSC4108SecureChannel {
     })();
   }
 
-  /**
-   * Returns the check code for the secure channel or undefined if not generated yet.
+  /**
+   * Returns the check code for the secure channel or undefined if not generated yet.
    */
   getCheckCode() {
     var _this$establishedChan;
@@ -68,8 +68,8 @@ export class MSC4108SecureChannel {
     return Array.from(x.as_bytes()).map(b => "".concat(b % 10)).join("");
   }
 
-  /**
-   * Connects and establishes a secure channel with the other device.
+  /**
+   * Connects and establishes a secure channel with the other device.
    */
   connect() {
     var _this2 = this;
@@ -82,28 +82,28 @@ export class MSC4108SecureChannel {
         var result = _this2.secureChannel.establish_outbound_channel(_this2.theirPublicKey, "MATRIX_QR_CODE_LOGIN_INITIATE");
         _this2.establishedChannel = result.channel;
 
-        /*
-         Secure Channel step 4. Device S sends the initial message
-           Nonce := 0
-         SH := ECDH(Ss, Gp)
-         EncKey := HKDF_SHA256(SH, "MATRIX_QR_CODE_LOGIN|" || Gp || "|" || Sp, 0, 32)
-         TaggedCiphertext := ChaCha20Poly1305_Encrypt(EncKey, Nonce, "MATRIX_QR_CODE_LOGIN_INITIATE")
-         Nonce := Nonce + 2
-         LoginInitiateMessage := UnpaddedBase64(TaggedCiphertext) || "|" || UnpaddedBase64(Sp)
+        /*
+         Secure Channel step 4. Device S sends the initial message
+          Nonce := 0
+         SH := ECDH(Ss, Gp)
+         EncKey := HKDF_SHA256(SH, "MATRIX_QR_CODE_LOGIN|" || Gp || "|" || Sp, 0, 32)
+         TaggedCiphertext := ChaCha20Poly1305_Encrypt(EncKey, Nonce, "MATRIX_QR_CODE_LOGIN_INITIATE")
+         Nonce := Nonce + 2
+         LoginInitiateMessage := UnpaddedBase64(TaggedCiphertext) || "|" || UnpaddedBase64(Sp)
          */
         {
           logger.info("Sending LoginInitiateMessage");
           yield _this2.rendezvousSession.send(result.initial_message);
         }
 
-        /*
-        Secure Channel step 6. Verification by Device S
-          Nonce_G := 1
-        (TaggedCiphertext, Sp) := Unpack(Message)
-        Plaintext := ChaCha20Poly1305_Decrypt(EncKey, Nonce_G, TaggedCiphertext)
-        Nonce_G := Nonce_G + 2
-          unless Plaintext == "MATRIX_QR_CODE_LOGIN_OK":
-            FAIL
+        /*
+        Secure Channel step 6. Verification by Device S
+         Nonce_G := 1
+        (TaggedCiphertext, Sp) := Unpack(Message)
+        Plaintext := ChaCha20Poly1305_Decrypt(EncKey, Nonce_G, TaggedCiphertext)
+        Nonce_G := Nonce_G + 2
+         unless Plaintext == "MATRIX_QR_CODE_LOGIN_OK":
+            FAIL
          */
         {
           logger.info("Waiting for LoginOkMessage");
@@ -119,14 +119,14 @@ export class MSC4108SecureChannel {
           // Step 6 is now complete. We trust the channel
         }
       } else {
-        /*
-        Secure Channel step 5. Device G confirms
-          Nonce_S := 0
-        (TaggedCiphertext, Sp) := Unpack(LoginInitiateMessage)
-        SH := ECDH(Gs, Sp)
-        EncKey := HKDF_SHA256(SH, "MATRIX_QR_CODE_LOGIN|" || Gp || "|" || Sp, 0, 32)
-        Plaintext := ChaCha20Poly1305_Decrypt(EncKey, Nonce_S, TaggedCiphertext)
-        Nonce_S := Nonce_S + 2
+        /*
+        Secure Channel step 5. Device G confirms
+         Nonce_S := 0
+        (TaggedCiphertext, Sp) := Unpack(LoginInitiateMessage)
+        SH := ECDH(Gs, Sp)
+        EncKey := HKDF_SHA256(SH, "MATRIX_QR_CODE_LOGIN|" || Gp || "|" || Sp, 0, 32)
+        Plaintext := ChaCha20Poly1305_Decrypt(EncKey, Nonce_S, TaggedCiphertext)
+        Nonce_S := Nonce_S + 2
          */
         // wait for the other side to send us their public key
         logger.info("Waiting for LoginInitiateMessage");
@@ -173,9 +173,9 @@ export class MSC4108SecureChannel {
     })();
   }
 
-  /**
-   * Sends a payload securely to the other device.
-   * @param payload the payload to encrypt and send
+  /**
+   * Sends a payload securely to the other device.
+   * @param payload the payload to encrypt and send
    */
   secureSend(payload) {
     var _this5 = this;
@@ -189,8 +189,8 @@ export class MSC4108SecureChannel {
     })();
   }
 
-  /**
-   * Receives an encrypted payload from the other device and decrypts it.
+  /**
+   * Receives an encrypted payload from the other device and decrypts it.
    */
   secureReceive() {
     var _this6 = this;
@@ -209,8 +209,8 @@ export class MSC4108SecureChannel {
     })();
   }
 
-  /**
-   * Closes the secure channel.
+  /**
+   * Closes the secure channel.
    */
   close() {
     var _this7 = this;
@@ -219,9 +219,9 @@ export class MSC4108SecureChannel {
     })();
   }
 
-  /**
-   * Cancels the secure channel.
-   * @param reason the reason for the cancellation
+  /**
+   * Cancels the secure channel.
+   * @param reason the reason for the cancellation
    */
   cancel(reason) {
     var _this8 = this;
@@ -236,8 +236,8 @@ export class MSC4108SecureChannel {
     })();
   }
 
-  /**
-   * Returns whether the rendezvous session has been cancelled.
+  /**
+   * Returns whether the rendezvous session has been cancelled.
    */
   get cancelled() {
     return this.rendezvousSession.cancelled;

package/lib/rendezvous/channels/MSC4108SecureChannel.js.map

@@ -1 +1 @@
-{"version":3,"file":"MSC4108SecureChannel.js","names":["Ecies","QrCodeData","QrCodeMode","ClientRendezvousFailureReason","MSC4108FailureReason","RendezvousError","logger","MSC4108SecureChannel","constructor","rendezvousSession","theirPublicKey","onFailure","_defineProperty","secureChannel","generateCode","mode","serverName","_this","_asyncToGenerator","url","Error","public_key","Reciprocate","undefined","toBytes","getCheckCode","_this$establishedChan","x","establishedChannel","check_code","Array","from","as_bytes","map","b","concat","join","connect","_this2","connected","result","establish_outbound_channel","channel","info","send","initial_message","ciphertext","receive","UnexpectedMessageReceived","candidateLoginOkMessage","decrypt","InsecureChannelDetected","loginInitiateMessage","message","candidateLoginInitiateMessage","establish_inbound_channel","loginOkMessage","encrypt","_this3","plaintext","_this4","secureSend","payload","_this5","stringifiedPayload","JSON","stringify","debug","type","secureReceive","_this6","json","parse","close","_this7","cancel","reason","_this8","_this8$onFailure","call","cancelled"],"sources":["../../../src/rendezvous/channels/MSC4108SecureChannel.ts"],"sourcesContent":["/*\r\nCopyright 2024 The Matrix.org Foundation C.I.C.\r\n\r\nLicensed under the Apache License, Version 2.0 (the \"License\");\r\nyou may not use this file except in compliance with the License.\r\nYou may obtain a copy of the License at\r\n\r\n    http://www.apache.org/licenses/LICENSE-2.0\r\n\r\nUnless required by applicable law or agreed to in writing, software\r\ndistributed under the License is distributed on an \"AS IS\" BASIS,\r\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r\nSee the License for the specific language governing permissions and\r\nlimitations under the License.\r\n*/\r\n\r\nimport {\r\n    type Curve25519PublicKey,\r\n    Ecies,\r\n    type EstablishedEcies,\r\n    QrCodeData,\r\n    QrCodeMode,\r\n} from \"@matrix-org/matrix-sdk-crypto-wasm\";\r\n\r\nimport {\r\n    ClientRendezvousFailureReason,\r\n    MSC4108FailureReason,\r\n    type MSC4108Payload,\r\n    RendezvousError,\r\n    type RendezvousFailureListener,\r\n} from \"../index.ts\";\r\nimport { type MSC4108RendezvousSession } from \"../transports/MSC4108RendezvousSession.ts\";\r\nimport { logger } from \"../../logger.ts\";\r\n\r\n/**\r\n * Prototype of the unstable [MSC4108](https://github.com/matrix-org/matrix-spec-proposals/pull/4108)\r\n * secure rendezvous session protocol.\r\n * @experimental Note that this is UNSTABLE and may have breaking changes without notice.\r\n * Imports @matrix-org/matrix-sdk-crypto-wasm so should be async-imported to avoid bundling the WASM into the main bundle.\r\n */\r\nexport class MSC4108SecureChannel {\r\n    private readonly secureChannel: Ecies;\r\n    private establishedChannel?: EstablishedEcies;\r\n    private connected = false;\r\n\r\n    public constructor(\r\n        private rendezvousSession: MSC4108RendezvousSession,\r\n        private theirPublicKey?: Curve25519PublicKey,\r\n        public onFailure?: RendezvousFailureListener,\r\n    ) {\r\n        this.secureChannel = new Ecies();\r\n    }\r\n\r\n    /**\r\n     * Generate a QR code for the current session.\r\n     * @param mode the mode to generate the QR code in, either `Login` or `Reciprocate`.\r\n     * @param serverName the name of the homeserver to connect to, as defined by server discovery in the spec, required for `Reciprocate` mode.\r\n     */\r\n    public async generateCode(mode: QrCodeMode.Login): Promise<Uint8Array>;\r\n    public async generateCode(mode: QrCodeMode.Reciprocate, serverName: string): Promise<Uint8Array>;\r\n    public async generateCode(mode: QrCodeMode, serverName?: string): Promise<Uint8Array> {\r\n        const { url } = this.rendezvousSession;\r\n\r\n        if (!url) {\r\n            throw new Error(\"No rendezvous session URL\");\r\n        }\r\n\r\n        return new QrCodeData(\r\n            this.secureChannel.public_key(),\r\n            url,\r\n            mode === QrCodeMode.Reciprocate ? serverName : undefined,\r\n        ).toBytes();\r\n    }\r\n\r\n    /**\r\n     * Returns the check code for the secure channel or undefined if not generated yet.\r\n     */\r\n    public getCheckCode(): string | undefined {\r\n        const x = this.establishedChannel?.check_code();\r\n\r\n        if (!x) {\r\n            return undefined;\r\n        }\r\n        return Array.from(x.as_bytes())\r\n            .map((b) => `${b % 10}`)\r\n            .join(\"\");\r\n    }\r\n\r\n    /**\r\n     * Connects and establishes a secure channel with the other device.\r\n     */\r\n    public async connect(): Promise<void> {\r\n        if (this.connected) {\r\n            throw new Error(\"Channel already connected\");\r\n        }\r\n\r\n        if (this.theirPublicKey) {\r\n            // We are the scanning device\r\n            const result = this.secureChannel.establish_outbound_channel(\r\n                this.theirPublicKey,\r\n                \"MATRIX_QR_CODE_LOGIN_INITIATE\",\r\n            );\r\n            this.establishedChannel = result.channel;\r\n\r\n            /*\r\n             Secure Channel step 4. Device S sends the initial message\r\n\r\n             Nonce := 0\r\n             SH := ECDH(Ss, Gp)\r\n             EncKey := HKDF_SHA256(SH, \"MATRIX_QR_CODE_LOGIN|\" || Gp || \"|\" || Sp, 0, 32)\r\n             TaggedCiphertext := ChaCha20Poly1305_Encrypt(EncKey, Nonce, \"MATRIX_QR_CODE_LOGIN_INITIATE\")\r\n             Nonce := Nonce + 2\r\n             LoginInitiateMessage := UnpaddedBase64(TaggedCiphertext) || \"|\" || UnpaddedBase64(Sp)\r\n             */\r\n            {\r\n                logger.info(\"Sending LoginInitiateMessage\");\r\n                await this.rendezvousSession.send(result.initial_message);\r\n            }\r\n\r\n            /*\r\n            Secure Channel step 6. Verification by Device S\r\n\r\n            Nonce_G := 1\r\n            (TaggedCiphertext, Sp) := Unpack(Message)\r\n            Plaintext := ChaCha20Poly1305_Decrypt(EncKey, Nonce_G, TaggedCiphertext)\r\n            Nonce_G := Nonce_G + 2\r\n\r\n            unless Plaintext == \"MATRIX_QR_CODE_LOGIN_OK\":\r\n                FAIL\r\n             */\r\n            {\r\n                logger.info(\"Waiting for LoginOkMessage\");\r\n                const ciphertext = await this.rendezvousSession.receive();\r\n\r\n                if (!ciphertext) {\r\n                    throw new RendezvousError(\r\n                        \"No response from other device\",\r\n                        MSC4108FailureReason.UnexpectedMessageReceived,\r\n                    );\r\n                }\r\n                const candidateLoginOkMessage = await this.decrypt(ciphertext);\r\n\r\n                if (candidateLoginOkMessage !== \"MATRIX_QR_CODE_LOGIN_OK\") {\r\n                    throw new RendezvousError(\r\n                        \"Invalid response from other device\",\r\n                        ClientRendezvousFailureReason.InsecureChannelDetected,\r\n                    );\r\n                }\r\n\r\n                // Step 6 is now complete. We trust the channel\r\n            }\r\n        } else {\r\n            /*\r\n            Secure Channel step 5. Device G confirms\r\n\r\n            Nonce_S := 0\r\n            (TaggedCiphertext, Sp) := Unpack(LoginInitiateMessage)\r\n            SH := ECDH(Gs, Sp)\r\n            EncKey := HKDF_SHA256(SH, \"MATRIX_QR_CODE_LOGIN|\" || Gp || \"|\" || Sp, 0, 32)\r\n            Plaintext := ChaCha20Poly1305_Decrypt(EncKey, Nonce_S, TaggedCiphertext)\r\n            Nonce_S := Nonce_S + 2\r\n             */\r\n            // wait for the other side to send us their public key\r\n            logger.info(\"Waiting for LoginInitiateMessage\");\r\n            const loginInitiateMessage = await this.rendezvousSession.receive();\r\n            if (!loginInitiateMessage) {\r\n                throw new Error(\"No response from other device\");\r\n            }\r\n\r\n            const { channel, message: candidateLoginInitiateMessage } =\r\n                this.secureChannel.establish_inbound_channel(loginInitiateMessage);\r\n            this.establishedChannel = channel;\r\n\r\n            if (candidateLoginInitiateMessage !== \"MATRIX_QR_CODE_LOGIN_INITIATE\") {\r\n                throw new RendezvousError(\r\n                    \"Invalid response from other device\",\r\n                    ClientRendezvousFailureReason.InsecureChannelDetected,\r\n                );\r\n            }\r\n            logger.info(\"LoginInitiateMessage received\");\r\n\r\n            logger.info(\"Sending LoginOkMessage\");\r\n            const loginOkMessage = await this.encrypt(\"MATRIX_QR_CODE_LOGIN_OK\");\r\n            await this.rendezvousSession.send(loginOkMessage);\r\n\r\n            // Step 5 is complete. We don't yet trust the channel\r\n\r\n            // next step will be for the user to confirm the check code on the other device\r\n        }\r\n\r\n        this.connected = true;\r\n    }\r\n\r\n    private async decrypt(ciphertext: string): Promise<string> {\r\n        if (!this.establishedChannel) {\r\n            throw new Error(\"Channel closed\");\r\n        }\r\n\r\n        return this.establishedChannel.decrypt(ciphertext);\r\n    }\r\n\r\n    private async encrypt(plaintext: string): Promise<string> {\r\n        if (!this.establishedChannel) {\r\n            throw new Error(\"Channel closed\");\r\n        }\r\n\r\n        return this.establishedChannel.encrypt(plaintext);\r\n    }\r\n\r\n    /**\r\n     * Sends a payload securely to the other device.\r\n     * @param payload the payload to encrypt and send\r\n     */\r\n    public async secureSend<T extends MSC4108Payload>(payload: T): Promise<void> {\r\n        if (!this.connected) {\r\n            throw new Error(\"Channel closed\");\r\n        }\r\n\r\n        const stringifiedPayload = JSON.stringify(payload);\r\n        logger.debug(`=> {\"type\": ${JSON.stringify(payload.type)}, ...}`);\r\n\r\n        await this.rendezvousSession.send(await this.encrypt(stringifiedPayload));\r\n    }\r\n\r\n    /**\r\n     * Receives an encrypted payload from the other device and decrypts it.\r\n     */\r\n    public async secureReceive<T extends MSC4108Payload>(): Promise<Partial<T> | undefined> {\r\n        if (!this.establishedChannel) {\r\n            throw new Error(\"Channel closed\");\r\n        }\r\n\r\n        const ciphertext = await this.rendezvousSession.receive();\r\n        if (!ciphertext) {\r\n            return undefined;\r\n        }\r\n        const plaintext = await this.decrypt(ciphertext);\r\n        const json = JSON.parse(plaintext);\r\n\r\n        logger.debug(`<= {\"type\": ${JSON.stringify(json.type)}, ...}`);\r\n        return json as Partial<T> | undefined;\r\n    }\r\n\r\n    /**\r\n     * Closes the secure channel.\r\n     */\r\n    public async close(): Promise<void> {\r\n        await this.rendezvousSession.close();\r\n    }\r\n\r\n    /**\r\n     * Cancels the secure channel.\r\n     * @param reason the reason for the cancellation\r\n     */\r\n    public async cancel(reason: MSC4108FailureReason | ClientRendezvousFailureReason): Promise<void> {\r\n        try {\r\n            await this.rendezvousSession.cancel(reason);\r\n            this.onFailure?.(reason);\r\n        } finally {\r\n            await this.close();\r\n        }\r\n    }\r\n\r\n    /**\r\n     * Returns whether the rendezvous session has been cancelled.\r\n     */\r\n    public get cancelled(): boolean {\r\n        return this.rendezvousSession.cancelled;\r\n    }\r\n}\r\n"],"mappings":";;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,SAEIA,KAAK,EAELC,UAAU,EACVC,UAAU,QACP,oCAAoC;AAE3C,SACIC,6BAA6B,EAC7BC,oBAAoB,EAEpBC,eAAe,QAEZ,aAAa;AAEpB,SAASC,MAAM,QAAQ,iBAAiB;;AAExC;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,oBAAoB,CAAC;EAKvBC,WAAWA,CACNC,iBAA2C,EAC3CC,cAAoC,EACrCC,SAAqC,EAC9C;IAAA,KAHUF,iBAA2C,GAA3CA,iBAA2C;IAAA,KAC3CC,cAAoC,GAApCA,cAAoC;IAAA,KACrCC,SAAqC,GAArCA,SAAqC;IAAAC,eAAA;IAAAA,eAAA;IAAAA,eAAA,oBAL5B,KAAK;IAOrB,IAAI,CAACC,aAAa,GAAG,IAAIb,KAAK,CAAC,CAAC;EACpC;;EAEA;AACJ;AACA;AACA;AACA;;EAGiBc,YAAYA,CAACC,IAAgB,EAAEC,UAAmB,EAAuB;IAAA,IAAAC,KAAA;IAAA,OAAAC,iBAAA;MAClF,IAAM;QAAEC;MAAI,CAAC,GAAGF,KAAI,CAACR,iBAAiB;MAEtC,IAAI,CAACU,GAAG,EAAE;QACN,MAAM,IAAIC,KAAK,CAAC,2BAA2B,CAAC;MAChD;MAEA,OAAO,IAAInB,UAAU,CACjBgB,KAAI,CAACJ,aAAa,CAACQ,UAAU,CAAC,CAAC,EAC/BF,GAAG,EACHJ,IAAI,KAAKb,UAAU,CAACoB,WAAW,GAAGN,UAAU,GAAGO,SACnD,CAAC,CAACC,OAAO,CAAC,CAAC;IAAC;EAChB;;EAEA;AACJ;AACA;EACWC,YAAYA,CAAA,EAAuB;IAAA,IAAAC,qBAAA;IACtC,IAAMC,CAAC,IAAAD,qBAAA,GAAG,IAAI,CAACE,kBAAkB,cAAAF,qBAAA,uBAAvBA,qBAAA,CAAyBG,UAAU,CAAC,CAAC;IAE/C,IAAI,CAACF,CAAC,EAAE;MACJ,OAAOJ,SAAS;IACpB;IACA,OAAOO,KAAK,CAACC,IAAI,CAACJ,CAAC,CAACK,QAAQ,CAAC,CAAC,CAAC,CAC1BC,GAAG,CAAEC,CAAC,OAAAC,MAAA,CAAQD,CAAC,GAAG,EAAE,CAAE,CAAC,CACvBE,IAAI,CAAC,EAAE,CAAC;EACjB;;EAEA;AACJ;AACA;EACiBC,OAAOA,CAAA,EAAkB;IAAA,IAAAC,MAAA;IAAA,OAAApB,iBAAA;MAClC,IAAIoB,MAAI,CAACC,SAAS,EAAE;QAChB,MAAM,IAAInB,KAAK,CAAC,2BAA2B,CAAC;MAChD;MAEA,IAAIkB,MAAI,CAAC5B,cAAc,EAAE;QACrB;QACA,IAAM8B,MAAM,GAAGF,MAAI,CAACzB,aAAa,CAAC4B,0BAA0B,CACxDH,MAAI,CAAC5B,cAAc,EACnB,+BACJ,CAAC;QACD4B,MAAI,CAACV,kBAAkB,GAAGY,MAAM,CAACE,OAAO;;QAExC;AACZ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;QAEY;UACIpC,MAAM,CAACqC,IAAI,CAAC,8BAA8B,CAAC;UAC3C,MAAML,MAAI,CAAC7B,iBAAiB,CAACmC,IAAI,CAACJ,MAAM,CAACK,eAAe,CAAC;QAC7D;;QAEA;AACZ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;QAGY;UACIvC,MAAM,CAACqC,IAAI,CAAC,4BAA4B,CAAC;UACzC,IAAMG,UAAU,SAASR,MAAI,CAAC7B,iBAAiB,CAACsC,OAAO,CAAC,CAAC;UAEzD,IAAI,CAACD,UAAU,EAAE;YACb,MAAM,IAAIzC,eAAe,CACrB,+BAA+B,EAC/BD,oBAAoB,CAAC4C,yBACzB,CAAC;UACL;UACA,IAAMC,uBAAuB,SAASX,MAAI,CAACY,OAAO,CAACJ,UAAU,CAAC;UAE9D,IAAIG,uBAAuB,KAAK,yBAAyB,EAAE;YACvD,MAAM,IAAI5C,eAAe,CACrB,oCAAoC,EACpCF,6BAA6B,CAACgD,uBAClC,CAAC;UACL;;UAEA;QACJ;MACJ,CAAC,MAAM;QACH;AACZ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;QAEY;QACA7C,MAAM,CAACqC,IAAI,CAAC,kCAAkC,CAAC;QAC/C,IAAMS,oBAAoB,SAASd,MAAI,CAAC7B,iBAAiB,CAACsC,OAAO,CAAC,CAAC;QACnE,IAAI,CAACK,oBAAoB,EAAE;UACvB,MAAM,IAAIhC,KAAK,CAAC,+BAA+B,CAAC;QACpD;QAEA,IAAM;UAAEsB,OAAO;UAAEW,OAAO,EAAEC;QAA8B,CAAC,GACrDhB,MAAI,CAACzB,aAAa,CAAC0C,yBAAyB,CAACH,oBAAoB,CAAC;QACtEd,MAAI,CAACV,kBAAkB,GAAGc,OAAO;QAEjC,IAAIY,6BAA6B,KAAK,+BAA+B,EAAE;UACnE,MAAM,IAAIjD,eAAe,CACrB,oCAAoC,EACpCF,6BAA6B,CAACgD,uBAClC,CAAC;QACL;QACA7C,MAAM,CAACqC,IAAI,CAAC,+BAA+B,CAAC;QAE5CrC,MAAM,CAACqC,IAAI,CAAC,wBAAwB,CAAC;QACrC,IAAMa,cAAc,SAASlB,MAAI,CAACmB,OAAO,CAAC,yBAAyB,CAAC;QACpE,MAAMnB,MAAI,CAAC7B,iBAAiB,CAACmC,IAAI,CAACY,cAAc,CAAC;;QAEjD;;QAEA;MACJ;MAEAlB,MAAI,CAACC,SAAS,GAAG,IAAI;IAAC;EAC1B;EAEcW,OAAOA,CAACJ,UAAkB,EAAmB;IAAA,IAAAY,MAAA;IAAA,OAAAxC,iBAAA;MACvD,IAAI,CAACwC,MAAI,CAAC9B,kBAAkB,EAAE;QAC1B,MAAM,IAAIR,KAAK,CAAC,gBAAgB,CAAC;MACrC;MAEA,OAAOsC,MAAI,CAAC9B,kBAAkB,CAACsB,OAAO,CAACJ,UAAU,CAAC;IAAC;EACvD;EAEcW,OAAOA,CAACE,SAAiB,EAAmB;IAAA,IAAAC,MAAA;IAAA,OAAA1C,iBAAA;MACtD,IAAI,CAAC0C,MAAI,CAAChC,kBAAkB,EAAE;QAC1B,MAAM,IAAIR,KAAK,CAAC,gBAAgB,CAAC;MACrC;MAEA,OAAOwC,MAAI,CAAChC,kBAAkB,CAAC6B,OAAO,CAACE,SAAS,CAAC;IAAC;EACtD;;EAEA;AACJ;AACA;AACA;EACiBE,UAAUA,CAA2BC,OAAU,EAAiB;IAAA,IAAAC,MAAA;IAAA,OAAA7C,iBAAA;MACzE,IAAI,CAAC6C,MAAI,CAACxB,SAAS,EAAE;QACjB,MAAM,IAAInB,KAAK,CAAC,gBAAgB,CAAC;MACrC;MAEA,IAAM4C,kBAAkB,GAAGC,IAAI,CAACC,SAAS,CAACJ,OAAO,CAAC;MAClDxD,MAAM,CAAC6D,KAAK,kBAAAhC,MAAA,CAAgB8B,IAAI,CAACC,SAAS,CAACJ,OAAO,CAACM,IAAI,CAAC,WAAQ,CAAC;MAEjE,MAAML,MAAI,CAACtD,iBAAiB,CAACmC,IAAI,OAAOmB,MAAI,CAACN,OAAO,CAACO,kBAAkB,CAAC,CAAC;IAAC;EAC9E;;EAEA;AACJ;AACA;EACiBK,aAAaA,CAAA,EAA8D;IAAA,IAAAC,MAAA;IAAA,OAAApD,iBAAA;MACpF,IAAI,CAACoD,MAAI,CAAC1C,kBAAkB,EAAE;QAC1B,MAAM,IAAIR,KAAK,CAAC,gBAAgB,CAAC;MACrC;MAEA,IAAM0B,UAAU,SAASwB,MAAI,CAAC7D,iBAAiB,CAACsC,OAAO,CAAC,CAAC;MACzD,IAAI,CAACD,UAAU,EAAE;QACb,OAAOvB,SAAS;MACpB;MACA,IAAMoC,SAAS,SAASW,MAAI,CAACpB,OAAO,CAACJ,UAAU,CAAC;MAChD,IAAMyB,IAAI,GAAGN,IAAI,CAACO,KAAK,CAACb,SAAS,CAAC;MAElCrD,MAAM,CAAC6D,KAAK,kBAAAhC,MAAA,CAAgB8B,IAAI,CAACC,SAAS,CAACK,IAAI,CAACH,IAAI,CAAC,WAAQ,CAAC;MAC9D,OAAOG,IAAI;IAA2B;EAC1C;;EAEA;AACJ;AACA;EACiBE,KAAKA,CAAA,EAAkB;IAAA,IAAAC,MAAA;IAAA,OAAAxD,iBAAA;MAChC,MAAMwD,MAAI,CAACjE,iBAAiB,CAACgE,KAAK,CAAC,CAAC;IAAC;EACzC;;EAEA;AACJ;AACA;AACA;EACiBE,MAAMA,CAACC,MAA4D,EAAiB;IAAA,IAAAC,MAAA;IAAA,OAAA3D,iBAAA;MAC7F,IAAI;QAAA,IAAA4D,gBAAA;QACA,MAAMD,MAAI,CAACpE,iBAAiB,CAACkE,MAAM,CAACC,MAAM,CAAC;QAC3C,CAAAE,gBAAA,GAAAD,MAAI,CAAClE,SAAS,cAAAmE,gBAAA,eAAdA,gBAAA,CAAAC,IAAA,CAAAF,MAAI,EAAaD,MAAM,CAAC;MAC5B,CAAC,SAAS;QACN,MAAMC,MAAI,CAACJ,KAAK,CAAC,CAAC;MACtB;IAAC;EACL;;EAEA;AACJ;AACA;EACI,IAAWO,SAASA,CAAA,EAAY;IAC5B,OAAO,IAAI,CAACvE,iBAAiB,CAACuE,SAAS;EAC3C;AACJ","ignoreList":[]}
+{"version":3,"file":"MSC4108SecureChannel.js","names":["Ecies","QrCodeData","QrCodeMode","ClientRendezvousFailureReason","MSC4108FailureReason","RendezvousError","logger","MSC4108SecureChannel","constructor","rendezvousSession","theirPublicKey","onFailure","_defineProperty","secureChannel","generateCode","mode","serverName","_this","_asyncToGenerator","url","Error","public_key","Reciprocate","undefined","toBytes","getCheckCode","_this$establishedChan","x","establishedChannel","check_code","Array","from","as_bytes","map","b","concat","join","connect","_this2","connected","result","establish_outbound_channel","channel","info","send","initial_message","ciphertext","receive","UnexpectedMessageReceived","candidateLoginOkMessage","decrypt","InsecureChannelDetected","loginInitiateMessage","message","candidateLoginInitiateMessage","establish_inbound_channel","loginOkMessage","encrypt","_this3","plaintext","_this4","secureSend","payload","_this5","stringifiedPayload","JSON","stringify","debug","type","secureReceive","_this6","json","parse","close","_this7","cancel","reason","_this8","_this8$onFailure","call","cancelled"],"sources":["../../../src/rendezvous/channels/MSC4108SecureChannel.ts"],"sourcesContent":["/*\nCopyright 2024 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nimport {\n    type Curve25519PublicKey,\n    Ecies,\n    type EstablishedEcies,\n    QrCodeData,\n    QrCodeMode,\n} from \"@matrix-org/matrix-sdk-crypto-wasm\";\n\nimport {\n    ClientRendezvousFailureReason,\n    MSC4108FailureReason,\n    type MSC4108Payload,\n    RendezvousError,\n    type RendezvousFailureListener,\n} from \"../index.ts\";\nimport { type MSC4108RendezvousSession } from \"../transports/MSC4108RendezvousSession.ts\";\nimport { logger } from \"../../logger.ts\";\n\n/**\n * Prototype of the unstable [MSC4108](https://github.com/matrix-org/matrix-spec-proposals/pull/4108)\n * secure rendezvous session protocol.\n * @experimental Note that this is UNSTABLE and may have breaking changes without notice.\n * Imports @matrix-org/matrix-sdk-crypto-wasm so should be async-imported to avoid bundling the WASM into the main bundle.\n */\nexport class MSC4108SecureChannel {\n    private readonly secureChannel: Ecies;\n    private establishedChannel?: EstablishedEcies;\n    private connected = false;\n\n    public constructor(\n        private rendezvousSession: MSC4108RendezvousSession,\n        private theirPublicKey?: Curve25519PublicKey,\n        public onFailure?: RendezvousFailureListener,\n    ) {\n        this.secureChannel = new Ecies();\n    }\n\n    /**\n     * Generate a QR code for the current session.\n     * @param mode the mode to generate the QR code in, either `Login` or `Reciprocate`.\n     * @param serverName the name of the homeserver to connect to, as defined by server discovery in the spec, required for `Reciprocate` mode.\n     */\n    public async generateCode(mode: QrCodeMode.Login): Promise<Uint8Array>;\n    public async generateCode(mode: QrCodeMode.Reciprocate, serverName: string): Promise<Uint8Array>;\n    public async generateCode(mode: QrCodeMode, serverName?: string): Promise<Uint8Array> {\n        const { url } = this.rendezvousSession;\n\n        if (!url) {\n            throw new Error(\"No rendezvous session URL\");\n        }\n\n        return new QrCodeData(\n            this.secureChannel.public_key(),\n            url,\n            mode === QrCodeMode.Reciprocate ? serverName : undefined,\n        ).toBytes();\n    }\n\n    /**\n     * Returns the check code for the secure channel or undefined if not generated yet.\n     */\n    public getCheckCode(): string | undefined {\n        const x = this.establishedChannel?.check_code();\n\n        if (!x) {\n            return undefined;\n        }\n        return Array.from(x.as_bytes())\n            .map((b) => `${b % 10}`)\n            .join(\"\");\n    }\n\n    /**\n     * Connects and establishes a secure channel with the other device.\n     */\n    public async connect(): Promise<void> {\n        if (this.connected) {\n            throw new Error(\"Channel already connected\");\n        }\n\n        if (this.theirPublicKey) {\n            // We are the scanning device\n            const result = this.secureChannel.establish_outbound_channel(\n                this.theirPublicKey,\n                \"MATRIX_QR_CODE_LOGIN_INITIATE\",\n            );\n            this.establishedChannel = result.channel;\n\n            /*\n             Secure Channel step 4. Device S sends the initial message\n\n             Nonce := 0\n             SH := ECDH(Ss, Gp)\n             EncKey := HKDF_SHA256(SH, \"MATRIX_QR_CODE_LOGIN|\" || Gp || \"|\" || Sp, 0, 32)\n             TaggedCiphertext := ChaCha20Poly1305_Encrypt(EncKey, Nonce, \"MATRIX_QR_CODE_LOGIN_INITIATE\")\n             Nonce := Nonce + 2\n             LoginInitiateMessage := UnpaddedBase64(TaggedCiphertext) || \"|\" || UnpaddedBase64(Sp)\n             */\n            {\n                logger.info(\"Sending LoginInitiateMessage\");\n                await this.rendezvousSession.send(result.initial_message);\n            }\n\n            /*\n            Secure Channel step 6. Verification by Device S\n\n            Nonce_G := 1\n            (TaggedCiphertext, Sp) := Unpack(Message)\n            Plaintext := ChaCha20Poly1305_Decrypt(EncKey, Nonce_G, TaggedCiphertext)\n            Nonce_G := Nonce_G + 2\n\n            unless Plaintext == \"MATRIX_QR_CODE_LOGIN_OK\":\n                FAIL\n             */\n            {\n                logger.info(\"Waiting for LoginOkMessage\");\n                const ciphertext = await this.rendezvousSession.receive();\n\n                if (!ciphertext) {\n                    throw new RendezvousError(\n                        \"No response from other device\",\n                        MSC4108FailureReason.UnexpectedMessageReceived,\n                    );\n                }\n                const candidateLoginOkMessage = await this.decrypt(ciphertext);\n\n                if (candidateLoginOkMessage !== \"MATRIX_QR_CODE_LOGIN_OK\") {\n                    throw new RendezvousError(\n                        \"Invalid response from other device\",\n                        ClientRendezvousFailureReason.InsecureChannelDetected,\n                    );\n                }\n\n                // Step 6 is now complete. We trust the channel\n            }\n        } else {\n            /*\n            Secure Channel step 5. Device G confirms\n\n            Nonce_S := 0\n            (TaggedCiphertext, Sp) := Unpack(LoginInitiateMessage)\n            SH := ECDH(Gs, Sp)\n            EncKey := HKDF_SHA256(SH, \"MATRIX_QR_CODE_LOGIN|\" || Gp || \"|\" || Sp, 0, 32)\n            Plaintext := ChaCha20Poly1305_Decrypt(EncKey, Nonce_S, TaggedCiphertext)\n            Nonce_S := Nonce_S + 2\n             */\n            // wait for the other side to send us their public key\n            logger.info(\"Waiting for LoginInitiateMessage\");\n            const loginInitiateMessage = await this.rendezvousSession.receive();\n            if (!loginInitiateMessage) {\n                throw new Error(\"No response from other device\");\n            }\n\n            const { channel, message: candidateLoginInitiateMessage } =\n                this.secureChannel.establish_inbound_channel(loginInitiateMessage);\n            this.establishedChannel = channel;\n\n            if (candidateLoginInitiateMessage !== \"MATRIX_QR_CODE_LOGIN_INITIATE\") {\n                throw new RendezvousError(\n                    \"Invalid response from other device\",\n                    ClientRendezvousFailureReason.InsecureChannelDetected,\n                );\n            }\n            logger.info(\"LoginInitiateMessage received\");\n\n            logger.info(\"Sending LoginOkMessage\");\n            const loginOkMessage = await this.encrypt(\"MATRIX_QR_CODE_LOGIN_OK\");\n            await this.rendezvousSession.send(loginOkMessage);\n\n            // Step 5 is complete. We don't yet trust the channel\n\n            // next step will be for the user to confirm the check code on the other device\n        }\n\n        this.connected = true;\n    }\n\n    private async decrypt(ciphertext: string): Promise<string> {\n        if (!this.establishedChannel) {\n            throw new Error(\"Channel closed\");\n        }\n\n        return this.establishedChannel.decrypt(ciphertext);\n    }\n\n    private async encrypt(plaintext: string): Promise<string> {\n        if (!this.establishedChannel) {\n            throw new Error(\"Channel closed\");\n        }\n\n        return this.establishedChannel.encrypt(plaintext);\n    }\n\n    /**\n     * Sends a payload securely to the other device.\n     * @param payload the payload to encrypt and send\n     */\n    public async secureSend<T extends MSC4108Payload>(payload: T): Promise<void> {\n        if (!this.connected) {\n            throw new Error(\"Channel closed\");\n        }\n\n        const stringifiedPayload = JSON.stringify(payload);\n        logger.debug(`=> {\"type\": ${JSON.stringify(payload.type)}, ...}`);\n\n        await this.rendezvousSession.send(await this.encrypt(stringifiedPayload));\n    }\n\n    /**\n     * Receives an encrypted payload from the other device and decrypts it.\n     */\n    public async secureReceive<T extends MSC4108Payload>(): Promise<Partial<T> | undefined> {\n        if (!this.establishedChannel) {\n            throw new Error(\"Channel closed\");\n        }\n\n        const ciphertext = await this.rendezvousSession.receive();\n        if (!ciphertext) {\n            return undefined;\n        }\n        const plaintext = await this.decrypt(ciphertext);\n        const json = JSON.parse(plaintext);\n\n        logger.debug(`<= {\"type\": ${JSON.stringify(json.type)}, ...}`);\n        return json as Partial<T> | undefined;\n    }\n\n    /**\n     * Closes the secure channel.\n     */\n    public async close(): Promise<void> {\n        await this.rendezvousSession.close();\n    }\n\n    /**\n     * Cancels the secure channel.\n     * @param reason the reason for the cancellation\n     */\n    public async cancel(reason: MSC4108FailureReason | ClientRendezvousFailureReason): Promise<void> {\n        try {\n            await this.rendezvousSession.cancel(reason);\n            this.onFailure?.(reason);\n        } finally {\n            await this.close();\n        }\n    }\n\n    /**\n     * Returns whether the rendezvous session has been cancelled.\n     */\n    public get cancelled(): boolean {\n        return this.rendezvousSession.cancelled;\n    }\n}\n"],"mappings":";;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,SAEIA,KAAK,EAELC,UAAU,EACVC,UAAU,QACP,oCAAoC;AAE3C,SACIC,6BAA6B,EAC7BC,oBAAoB,EAEpBC,eAAe,QAEZ,aAAa;AAEpB,SAASC,MAAM,QAAQ,iBAAiB;;AAExC;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,oBAAoB,CAAC;EAKvBC,WAAWA,CACNC,iBAA2C,EAC3CC,cAAoC,EACrCC,SAAqC,EAC9C;IAAA,KAHUF,iBAA2C,GAA3CA,iBAA2C;IAAA,KAC3CC,cAAoC,GAApCA,cAAoC;IAAA,KACrCC,SAAqC,GAArCA,SAAqC;IAAAC,eAAA;IAAAA,eAAA;IAAAA,eAAA,oBAL5B,KAAK;IAOrB,IAAI,CAACC,aAAa,GAAG,IAAIb,KAAK,CAAC,CAAC;EACpC;;EAEA;AACJ;AACA;AACA;AACA;;EAGiBc,YAAYA,CAACC,IAAgB,EAAEC,UAAmB,EAAuB;IAAA,IAAAC,KAAA;IAAA,OAAAC,iBAAA;MAClF,IAAM;QAAEC;MAAI,CAAC,GAAGF,KAAI,CAACR,iBAAiB;MAEtC,IAAI,CAACU,GAAG,EAAE;QACN,MAAM,IAAIC,KAAK,CAAC,2BAA2B,CAAC;MAChD;MAEA,OAAO,IAAInB,UAAU,CACjBgB,KAAI,CAACJ,aAAa,CAACQ,UAAU,CAAC,CAAC,EAC/BF,GAAG,EACHJ,IAAI,KAAKb,UAAU,CAACoB,WAAW,GAAGN,UAAU,GAAGO,SACnD,CAAC,CAACC,OAAO,CAAC,CAAC;IAAC;EAChB;;EAEA;AACJ;AACA;EACWC,YAAYA,CAAA,EAAuB;IAAA,IAAAC,qBAAA;IACtC,IAAMC,CAAC,IAAAD,qBAAA,GAAG,IAAI,CAACE,kBAAkB,cAAAF,qBAAA,uBAAvBA,qBAAA,CAAyBG,UAAU,CAAC,CAAC;IAE/C,IAAI,CAACF,CAAC,EAAE;MACJ,OAAOJ,SAAS;IACpB;IACA,OAAOO,KAAK,CAACC,IAAI,CAACJ,CAAC,CAACK,QAAQ,CAAC,CAAC,CAAC,CAC1BC,GAAG,CAAEC,CAAC,OAAAC,MAAA,CAAQD,CAAC,GAAG,EAAE,CAAE,CAAC,CACvBE,IAAI,CAAC,EAAE,CAAC;EACjB;;EAEA;AACJ;AACA;EACiBC,OAAOA,CAAA,EAAkB;IAAA,IAAAC,MAAA;IAAA,OAAApB,iBAAA;MAClC,IAAIoB,MAAI,CAACC,SAAS,EAAE;QAChB,MAAM,IAAInB,KAAK,CAAC,2BAA2B,CAAC;MAChD;MAEA,IAAIkB,MAAI,CAAC5B,cAAc,EAAE;QACrB;QACA,IAAM8B,MAAM,GAAGF,MAAI,CAACzB,aAAa,CAAC4B,0BAA0B,CACxDH,MAAI,CAAC5B,cAAc,EACnB,+BACJ,CAAC;QACD4B,MAAI,CAACV,kBAAkB,GAAGY,MAAM,CAACE,OAAO;;QAExC;AACZ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;QAEY;UACIpC,MAAM,CAACqC,IAAI,CAAC,8BAA8B,CAAC;UAC3C,MAAML,MAAI,CAAC7B,iBAAiB,CAACmC,IAAI,CAACJ,MAAM,CAACK,eAAe,CAAC;QAC7D;;QAEA;AACZ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;QAGY;UACIvC,MAAM,CAACqC,IAAI,CAAC,4BAA4B,CAAC;UACzC,IAAMG,UAAU,SAASR,MAAI,CAAC7B,iBAAiB,CAACsC,OAAO,CAAC,CAAC;UAEzD,IAAI,CAACD,UAAU,EAAE;YACb,MAAM,IAAIzC,eAAe,CACrB,+BAA+B,EAC/BD,oBAAoB,CAAC4C,yBACzB,CAAC;UACL;UACA,IAAMC,uBAAuB,SAASX,MAAI,CAACY,OAAO,CAACJ,UAAU,CAAC;UAE9D,IAAIG,uBAAuB,KAAK,yBAAyB,EAAE;YACvD,MAAM,IAAI5C,eAAe,CACrB,oCAAoC,EACpCF,6BAA6B,CAACgD,uBAClC,CAAC;UACL;;UAEA;QACJ;MACJ,CAAC,MAAM;QACH;AACZ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;QAEY;QACA7C,MAAM,CAACqC,IAAI,CAAC,kCAAkC,CAAC;QAC/C,IAAMS,oBAAoB,SAASd,MAAI,CAAC7B,iBAAiB,CAACsC,OAAO,CAAC,CAAC;QACnE,IAAI,CAACK,oBAAoB,EAAE;UACvB,MAAM,IAAIhC,KAAK,CAAC,+BAA+B,CAAC;QACpD;QAEA,IAAM;UAAEsB,OAAO;UAAEW,OAAO,EAAEC;QAA8B,CAAC,GACrDhB,MAAI,CAACzB,aAAa,CAAC0C,yBAAyB,CAACH,oBAAoB,CAAC;QACtEd,MAAI,CAACV,kBAAkB,GAAGc,OAAO;QAEjC,IAAIY,6BAA6B,KAAK,+BAA+B,EAAE;UACnE,MAAM,IAAIjD,eAAe,CACrB,oCAAoC,EACpCF,6BAA6B,CAACgD,uBAClC,CAAC;QACL;QACA7C,MAAM,CAACqC,IAAI,CAAC,+BAA+B,CAAC;QAE5CrC,MAAM,CAACqC,IAAI,CAAC,wBAAwB,CAAC;QACrC,IAAMa,cAAc,SAASlB,MAAI,CAACmB,OAAO,CAAC,yBAAyB,CAAC;QACpE,MAAMnB,MAAI,CAAC7B,iBAAiB,CAACmC,IAAI,CAACY,cAAc,CAAC;;QAEjD;;QAEA;MACJ;MAEAlB,MAAI,CAACC,SAAS,GAAG,IAAI;IAAC;EAC1B;EAEcW,OAAOA,CAACJ,UAAkB,EAAmB;IAAA,IAAAY,MAAA;IAAA,OAAAxC,iBAAA;MACvD,IAAI,CAACwC,MAAI,CAAC9B,kBAAkB,EAAE;QAC1B,MAAM,IAAIR,KAAK,CAAC,gBAAgB,CAAC;MACrC;MAEA,OAAOsC,MAAI,CAAC9B,kBAAkB,CAACsB,OAAO,CAACJ,UAAU,CAAC;IAAC;EACvD;EAEcW,OAAOA,CAACE,SAAiB,EAAmB;IAAA,IAAAC,MAAA;IAAA,OAAA1C,iBAAA;MACtD,IAAI,CAAC0C,MAAI,CAAChC,kBAAkB,EAAE;QAC1B,MAAM,IAAIR,KAAK,CAAC,gBAAgB,CAAC;MACrC;MAEA,OAAOwC,MAAI,CAAChC,kBAAkB,CAAC6B,OAAO,CAACE,SAAS,CAAC;IAAC;EACtD;;EAEA;AACJ;AACA;AACA;EACiBE,UAAUA,CAA2BC,OAAU,EAAiB;IAAA,IAAAC,MAAA;IAAA,OAAA7C,iBAAA;MACzE,IAAI,CAAC6C,MAAI,CAACxB,SAAS,EAAE;QACjB,MAAM,IAAInB,KAAK,CAAC,gBAAgB,CAAC;MACrC;MAEA,IAAM4C,kBAAkB,GAAGC,IAAI,CAACC,SAAS,CAACJ,OAAO,CAAC;MAClDxD,MAAM,CAAC6D,KAAK,kBAAAhC,MAAA,CAAgB8B,IAAI,CAACC,SAAS,CAACJ,OAAO,CAACM,IAAI,CAAC,WAAQ,CAAC;MAEjE,MAAML,MAAI,CAACtD,iBAAiB,CAACmC,IAAI,OAAOmB,MAAI,CAACN,OAAO,CAACO,kBAAkB,CAAC,CAAC;IAAC;EAC9E;;EAEA;AACJ;AACA;EACiBK,aAAaA,CAAA,EAA8D;IAAA,IAAAC,MAAA;IAAA,OAAApD,iBAAA;MACpF,IAAI,CAACoD,MAAI,CAAC1C,kBAAkB,EAAE;QAC1B,MAAM,IAAIR,KAAK,CAAC,gBAAgB,CAAC;MACrC;MAEA,IAAM0B,UAAU,SAASwB,MAAI,CAAC7D,iBAAiB,CAACsC,OAAO,CAAC,CAAC;MACzD,IAAI,CAACD,UAAU,EAAE;QACb,OAAOvB,SAAS;MACpB;MACA,IAAMoC,SAAS,SAASW,MAAI,CAACpB,OAAO,CAACJ,UAAU,CAAC;MAChD,IAAMyB,IAAI,GAAGN,IAAI,CAACO,KAAK,CAACb,SAAS,CAAC;MAElCrD,MAAM,CAAC6D,KAAK,kBAAAhC,MAAA,CAAgB8B,IAAI,CAACC,SAAS,CAACK,IAAI,CAACH,IAAI,CAAC,WAAQ,CAAC;MAC9D,OAAOG,IAAI;IAA2B;EAC1C;;EAEA;AACJ;AACA;EACiBE,KAAKA,CAAA,EAAkB;IAAA,IAAAC,MAAA;IAAA,OAAAxD,iBAAA;MAChC,MAAMwD,MAAI,CAACjE,iBAAiB,CAACgE,KAAK,CAAC,CAAC;IAAC;EACzC;;EAEA;AACJ;AACA;AACA;EACiBE,MAAMA,CAACC,MAA4D,EAAiB;IAAA,IAAAC,MAAA;IAAA,OAAA3D,iBAAA;MAC7F,IAAI;QAAA,IAAA4D,gBAAA;QACA,MAAMD,MAAI,CAACpE,iBAAiB,CAACkE,MAAM,CAACC,MAAM,CAAC;QAC3C,CAAAE,gBAAA,GAAAD,MAAI,CAAClE,SAAS,cAAAmE,gBAAA,eAAdA,gBAAA,CAAAC,IAAA,CAAAF,MAAI,EAAaD,MAAM,CAAC;MAC5B,CAAC,SAAS;QACN,MAAMC,MAAI,CAACJ,KAAK,CAAC,CAAC;MACtB;IAAC;EACL;;EAEA;AACJ;AACA;EACI,IAAWO,SAASA,CAAA,EAAY;IAC5B,OAAO,IAAI,CAACvE,iBAAiB,CAACuE,SAAS;EAC3C;AACJ","ignoreList":[]}

package/lib/rendezvous/channels/index.js

@@ -1,17 +1,17 @@
-/*
-Copyright 2022 The Matrix.org Foundation C.I.C.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
 */
 
 export * from "./MSC4108SecureChannel.js";

package/lib/rendezvous/channels/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","names":[],"sources":["../../../src/rendezvous/channels/index.ts"],"sourcesContent":["/*\r\nCopyright 2022 The Matrix.org Foundation C.I.C.\r\n\r\nLicensed under the Apache License, Version 2.0 (the \"License\");\r\nyou may not use this file except in compliance with the License.\r\nYou may obtain a copy of the License at\r\n\r\n    http://www.apache.org/licenses/LICENSE-2.0\r\n\r\nUnless required by applicable law or agreed to in writing, software\r\ndistributed under the License is distributed on an \"AS IS\" BASIS,\r\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r\nSee the License for the specific language governing permissions and\r\nlimitations under the License.\r\n*/\r\n\r\nexport * from \"./MSC4108SecureChannel.ts\";\r\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,cAAc,2BAA2B","ignoreList":[]}
+{"version":3,"file":"index.js","names":[],"sources":["../../../src/rendezvous/channels/index.ts"],"sourcesContent":["/*\nCopyright 2022 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nexport * from \"./MSC4108SecureChannel.ts\";\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,cAAc,2BAA2B","ignoreList":[]}

package/lib/rendezvous/index.js

@@ -1,17 +1,17 @@
-/*
-Copyright 2022 The Matrix.org Foundation C.I.C.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
 */
 
 export * from "./MSC4108SignInWithQR.js";

package/lib/rendezvous/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","names":[],"sources":["../../src/rendezvous/index.ts"],"sourcesContent":["/*\r\nCopyright 2022 The Matrix.org Foundation C.I.C.\r\n\r\nLicensed under the Apache License, Version 2.0 (the \"License\");\r\nyou may not use this file except in compliance with the License.\r\nYou may obtain a copy of the License at\r\n\r\n    http://www.apache.org/licenses/LICENSE-2.0\r\n\r\nUnless required by applicable law or agreed to in writing, software\r\ndistributed under the License is distributed on an \"AS IS\" BASIS,\r\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r\nSee the License for the specific language governing permissions and\r\nlimitations under the License.\r\n*/\r\n\r\nexport * from \"./MSC4108SignInWithQR.ts\";\r\nexport type * from \"./RendezvousChannel.ts\";\r\nexport type * from \"./RendezvousCode.ts\";\r\nexport * from \"./RendezvousError.ts\";\r\nexport * from \"./RendezvousFailureReason.ts\";\r\nexport * from \"./RendezvousIntent.ts\";\r\nexport type * from \"./RendezvousTransport.ts\";\r\nexport * from \"./transports/index.ts\";\r\nexport * from \"./channels/index.ts\";\r\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,cAAc,0BAA0B;AAGxC,cAAc,sBAAsB;AACpC,cAAc,8BAA8B;AAC5C,cAAc,uBAAuB;AAErC,cAAc,uBAAuB;AACrC,cAAc,qBAAqB","ignoreList":[]}
+{"version":3,"file":"index.js","names":[],"sources":["../../src/rendezvous/index.ts"],"sourcesContent":["/*\nCopyright 2022 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nexport * from \"./MSC4108SignInWithQR.ts\";\nexport type * from \"./RendezvousChannel.ts\";\nexport type * from \"./RendezvousCode.ts\";\nexport * from \"./RendezvousError.ts\";\nexport * from \"./RendezvousFailureReason.ts\";\nexport * from \"./RendezvousIntent.ts\";\nexport type * from \"./RendezvousTransport.ts\";\nexport * from \"./transports/index.ts\";\nexport * from \"./channels/index.ts\";\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,cAAc,0BAA0B;AAGxC,cAAc,sBAAsB;AACpC,cAAc,8BAA8B;AAC5C,cAAc,uBAAuB;AAErC,cAAc,uBAAuB;AACrC,cAAc,qBAAqB","ignoreList":[]}

package/lib/rendezvous/transports/index.js

@@ -1,17 +1,17 @@
-/*
-Copyright 2022 The Matrix.org Foundation C.I.C.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
 */
 
 export * from "./MSC4108RendezvousSession.js";

package/lib/rendezvous/transports/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","names":[],"sources":["../../../src/rendezvous/transports/index.ts"],"sourcesContent":["/*\r\nCopyright 2022 The Matrix.org Foundation C.I.C.\r\n\r\nLicensed under the Apache License, Version 2.0 (the \"License\");\r\nyou may not use this file except in compliance with the License.\r\nYou may obtain a copy of the License at\r\n\r\n    http://www.apache.org/licenses/LICENSE-2.0\r\n\r\nUnless required by applicable law or agreed to in writing, software\r\ndistributed under the License is distributed on an \"AS IS\" BASIS,\r\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r\nSee the License for the specific language governing permissions and\r\nlimitations under the License.\r\n*/\r\n\r\nexport * from \"./MSC4108RendezvousSession.ts\";\r\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,cAAc,+BAA+B","ignoreList":[]}
+{"version":3,"file":"index.js","names":[],"sources":["../../../src/rendezvous/transports/index.ts"],"sourcesContent":["/*\nCopyright 2022 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nexport * from \"./MSC4108RendezvousSession.ts\";\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA,cAAc,+BAA+B","ignoreList":[]}

package/lib/rust-crypto/CrossSigningIdentity.js

@@ -1,23 +1,23 @@
 import _asyncToGenerator from "@babel/runtime/helpers/asyncToGenerator";
-/*
-Copyright 2023 The Matrix.org Foundation C.I.C.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
+/*
+Copyright 2023 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
 */
 
-/** Manages the cross-signing keys for our own user.
- *
- * @internal
+/** Manages the cross-signing keys for our own user.
+ *
+ * @internal
  */
 export class CrossSigningIdentity {
   constructor(logger, olmMachine, outgoingRequestProcessor, secretStorage) {
@@ -27,8 +27,8 @@ export class CrossSigningIdentity {
     this.secretStorage = secretStorage;
   }
 
-  /**
-   * Initialise our cross-signing keys by creating new keys if they do not exist, and uploading to the server
+  /**
+   * Initialise our cross-signing keys by creating new keys if they do not exist, and uploading to the server
    */
   bootstrapCrossSigning(opts) {
     var _this = this;
@@ -98,12 +98,12 @@ export class CrossSigningIdentity {
     })();
   }
 
-  /** Reset our cross-signing keys
-   *
-   * This method will:
-   *   * Tell the OlmMachine to create new keys
-   *   * Upload the new public keys and the device signature to the server
-   *   * Upload the private keys to SSSS, if it is set up
+  /** Reset our cross-signing keys
+   *
+   * This method will:
+   *   * Tell the OlmMachine to create new keys
+   *   * Upload the new public keys and the device signature to the server
+   *   * Upload the private keys to SSSS, if it is set up
    */
   resetCrossSigning(authUploadDeviceSigningKeys) {
     var _this2 = this;
@@ -132,10 +132,10 @@ export class CrossSigningIdentity {
     })();
   }
 
-  /**
-   * Extract the cross-signing keys from the olm machine and save them to secret storage, if it is configured
-   *
-   * (If secret storage is *not* configured, we assume that the export will happen when it is set up)
+  /**
+   * Extract the cross-signing keys from the olm machine and save them to secret storage, if it is configured
+   *
+   * (If secret storage is *not* configured, we assume that the export will happen when it is set up)
    */
   exportCrossSigningKeysToStorage() {
     var _this3 = this;

package/lib/rust-crypto/CrossSigningIdentity.js.map

@@ -1 +1 @@
-{"version":3,"file":"CrossSigningIdentity.js","names":["CrossSigningIdentity","constructor","logger","olmMachine","outgoingRequestProcessor","secretStorage","bootstrapCrossSigning","opts","_this","_asyncToGenerator","setupNewCrossSigning","resetCrossSigning","authUploadDeviceSigningKeys","olmDeviceStatus","crossSigningStatus","masterKeyFromSecretStorage","get","selfSigningKeyFromSecretStorage","userSigningKeyFromSecretStorage","privateKeysInSecretStorage","Boolean","olmDeviceHasKeys","hasMaster","hasUserSigning","hasSelfSigning","debug","olmDeviceHasMaster","olmDeviceHasUserSigning","olmDeviceHasSelfSigning","hasKey","warn","exportCrossSigningKeysToStorage","status","importCrossSigningKeys","Error","device","getDevice","userId","deviceId","request","verify","makeOutgoingRequest","free","_this2","outgoingRequests","req","uploadKeysRequest","uploadSigningKeysRequest","uploadSignaturesRequest","_this3","exported","exportCrossSigningKeys","masterKey","store","error","self_signing_key","userSigningKey"],"sources":["../../src/rust-crypto/CrossSigningIdentity.ts"],"sourcesContent":["/*\r\nCopyright 2023 The Matrix.org Foundation C.I.C.\r\n\r\nLicensed under the Apache License, Version 2.0 (the \"License\");\r\nyou may not use this file except in compliance with the License.\r\nYou may obtain a copy of the License at\r\n\r\n    http://www.apache.org/licenses/LICENSE-2.0\r\n\r\nUnless required by applicable law or agreed to in writing, software\r\ndistributed under the License is distributed on an \"AS IS\" BASIS,\r\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\r\nSee the License for the specific language governing permissions and\r\nlimitations under the License.\r\n*/\r\n\r\nimport {\r\n    type OlmMachine,\r\n    type CrossSigningStatus,\r\n    type CrossSigningBootstrapRequests,\r\n} from \"@matrix-org/matrix-sdk-crypto-wasm\";\r\n\r\nimport type * as RustSdkCryptoJs from \"@matrix-org/matrix-sdk-crypto-wasm\";\r\nimport { type BootstrapCrossSigningOpts } from \"../crypto-api/index.ts\";\r\nimport { type Logger } from \"../logger.ts\";\r\nimport { type OutgoingRequestProcessor } from \"./OutgoingRequestProcessor.ts\";\r\nimport { type UIAuthCallback } from \"../interactive-auth.ts\";\r\nimport { type ServerSideSecretStorage } from \"../secret-storage.ts\";\r\n\r\n/** Manages the cross-signing keys for our own user.\r\n *\r\n * @internal\r\n */\r\nexport class CrossSigningIdentity {\r\n    public constructor(\r\n        private readonly logger: Logger,\r\n        private readonly olmMachine: OlmMachine,\r\n        private readonly outgoingRequestProcessor: OutgoingRequestProcessor,\r\n        private readonly secretStorage: ServerSideSecretStorage,\r\n    ) {}\r\n\r\n    /**\r\n     * Initialise our cross-signing keys by creating new keys if they do not exist, and uploading to the server\r\n     */\r\n    public async bootstrapCrossSigning(opts: BootstrapCrossSigningOpts): Promise<void> {\r\n        if (opts.setupNewCrossSigning) {\r\n            await this.resetCrossSigning(opts.authUploadDeviceSigningKeys);\r\n            return;\r\n        }\r\n\r\n        const olmDeviceStatus: CrossSigningStatus = await this.olmMachine.crossSigningStatus();\r\n\r\n        // Try to fetch cross signing keys from the secret storage\r\n        const masterKeyFromSecretStorage = await this.secretStorage.get(\"m.cross_signing.master\");\r\n        const selfSigningKeyFromSecretStorage = await this.secretStorage.get(\"m.cross_signing.self_signing\");\r\n        const userSigningKeyFromSecretStorage = await this.secretStorage.get(\"m.cross_signing.user_signing\");\r\n        const privateKeysInSecretStorage = Boolean(\r\n            masterKeyFromSecretStorage && selfSigningKeyFromSecretStorage && userSigningKeyFromSecretStorage,\r\n        );\r\n\r\n        const olmDeviceHasKeys =\r\n            olmDeviceStatus.hasMaster && olmDeviceStatus.hasUserSigning && olmDeviceStatus.hasSelfSigning;\r\n\r\n        // Log all relevant state for easier parsing of debug logs.\r\n        this.logger.debug(\"bootstrapCrossSigning: starting\", {\r\n            setupNewCrossSigning: opts.setupNewCrossSigning,\r\n            olmDeviceHasMaster: olmDeviceStatus.hasMaster,\r\n            olmDeviceHasUserSigning: olmDeviceStatus.hasUserSigning,\r\n            olmDeviceHasSelfSigning: olmDeviceStatus.hasSelfSigning,\r\n            privateKeysInSecretStorage,\r\n        });\r\n\r\n        if (olmDeviceHasKeys) {\r\n            if (!(await this.secretStorage.hasKey())) {\r\n                this.logger.warn(\r\n                    \"bootstrapCrossSigning: Olm device has private keys, but secret storage is not yet set up; doing nothing for now.\",\r\n                );\r\n                // the keys should get uploaded to 4S once that is set up.\r\n            } else if (!privateKeysInSecretStorage) {\r\n                // the device has the keys but they are not in 4S, so update it\r\n                this.logger.debug(\"bootstrapCrossSigning: Olm device has private keys: exporting to secret storage\");\r\n                await this.exportCrossSigningKeysToStorage();\r\n            } else {\r\n                this.logger.debug(\r\n                    \"bootstrapCrossSigning: Olm device has private keys and they are saved in secret storage; doing nothing\",\r\n                );\r\n            }\r\n        } /* (!olmDeviceHasKeys) */ else {\r\n            if (privateKeysInSecretStorage) {\r\n                // they are in 4S, so import from there\r\n                this.logger.debug(\r\n                    \"bootstrapCrossSigning: Cross-signing private keys not found locally, but they are available \" +\r\n                        \"in secret storage, reading storage and caching locally\",\r\n                );\r\n                const status = await this.olmMachine.importCrossSigningKeys(\r\n                    masterKeyFromSecretStorage,\r\n                    selfSigningKeyFromSecretStorage,\r\n                    userSigningKeyFromSecretStorage,\r\n                );\r\n\r\n                // Check that `importCrossSigningKeys` worked correctly (for example, it will fail silently if the\r\n                // public keys are not available).\r\n                if (!status.hasMaster || !status.hasSelfSigning || !status.hasUserSigning) {\r\n                    throw new Error(\"importCrossSigningKeys failed to import the keys\");\r\n                }\r\n\r\n                // Get the current device\r\n                const device: RustSdkCryptoJs.Device = (await this.olmMachine.getDevice(\r\n                    this.olmMachine.userId,\r\n                    this.olmMachine.deviceId,\r\n                ))!;\r\n                try {\r\n                    // Sign the device with our cross-signing key and upload the signature\r\n                    const request: RustSdkCryptoJs.SignatureUploadRequest = await device.verify();\r\n                    await this.outgoingRequestProcessor.makeOutgoingRequest(request);\r\n                } finally {\r\n                    device.free();\r\n                }\r\n            } else {\r\n                this.logger.debug(\r\n                    \"bootstrapCrossSigning: Cross-signing private keys not found locally or in secret storage, creating new keys\",\r\n                );\r\n                await this.resetCrossSigning(opts.authUploadDeviceSigningKeys);\r\n            }\r\n        }\r\n\r\n        // TODO: we might previously have bootstrapped cross-signing but not completed uploading the keys to the\r\n        //   server -- in which case we should call OlmDevice.bootstrap_cross_signing. How do we know?\r\n        this.logger.debug(\"bootstrapCrossSigning: complete\");\r\n    }\r\n\r\n    /** Reset our cross-signing keys\r\n     *\r\n     * This method will:\r\n     *   * Tell the OlmMachine to create new keys\r\n     *   * Upload the new public keys and the device signature to the server\r\n     *   * Upload the private keys to SSSS, if it is set up\r\n     */\r\n    private async resetCrossSigning(authUploadDeviceSigningKeys?: UIAuthCallback<void>): Promise<void> {\r\n        // XXX: We must find a way to make this atomic, currently if the user does not remember his account password\r\n        // or 4S passphrase/key the process will fail in a bad state, with keys rotated but not uploaded or saved in 4S.\r\n        const outgoingRequests: CrossSigningBootstrapRequests = await this.olmMachine.bootstrapCrossSigning(true);\r\n\r\n        // If 4S is configured we need to update it.\r\n        if (!(await this.secretStorage.hasKey())) {\r\n            this.logger.warn(\r\n                \"resetCrossSigning: Secret storage is not yet set up; not exporting keys to secret storage yet.\",\r\n            );\r\n            // the keys should get uploaded to 4S once that is set up.\r\n        } else {\r\n            // Update 4S before uploading cross-signing keys, to stay consistent with legacy that asks\r\n            // 4S passphrase before asking for account password.\r\n            // Ultimately should be made atomic and resistant to forgotten password/passphrase.\r\n            this.logger.debug(\"resetCrossSigning: exporting private keys to secret storage\");\r\n            await this.exportCrossSigningKeysToStorage();\r\n        }\r\n\r\n        this.logger.debug(\"resetCrossSigning: publishing public keys to server\");\r\n        for (const req of [\r\n            outgoingRequests.uploadKeysRequest,\r\n            outgoingRequests.uploadSigningKeysRequest,\r\n            outgoingRequests.uploadSignaturesRequest,\r\n        ]) {\r\n            if (req) {\r\n                await this.outgoingRequestProcessor.makeOutgoingRequest(req, authUploadDeviceSigningKeys);\r\n            }\r\n        }\r\n    }\r\n\r\n    /**\r\n     * Extract the cross-signing keys from the olm machine and save them to secret storage, if it is configured\r\n     *\r\n     * (If secret storage is *not* configured, we assume that the export will happen when it is set up)\r\n     */\r\n    private async exportCrossSigningKeysToStorage(): Promise<void> {\r\n        const exported: RustSdkCryptoJs.CrossSigningKeyExport | undefined =\r\n            await this.olmMachine.exportCrossSigningKeys();\r\n        /* istanbul ignore else (this function is only called when we know the olm machine has keys) */\r\n        if (exported?.masterKey) {\r\n            await this.secretStorage.store(\"m.cross_signing.master\", exported.masterKey);\r\n        } else {\r\n            this.logger.error(`Cannot export MSK to secret storage, private key unknown`);\r\n        }\r\n        if (exported?.self_signing_key) {\r\n            await this.secretStorage.store(\"m.cross_signing.self_signing\", exported.self_signing_key);\r\n        } else {\r\n            this.logger.error(`Cannot export SSK to secret storage, private key unknown`);\r\n        }\r\n        if (exported?.userSigningKey) {\r\n            await this.secretStorage.store(\"m.cross_signing.user_signing\", exported.userSigningKey);\r\n        } else {\r\n            this.logger.error(`Cannot export USK to secret storage, private key unknown`);\r\n        }\r\n    }\r\n}\r\n"],"mappings":";AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAeA;AACA;AACA;AACA;AACA,OAAO,MAAMA,oBAAoB,CAAC;EACvBC,WAAWA,CACGC,MAAc,EACdC,UAAsB,EACtBC,wBAAkD,EAClDC,aAAsC,EACzD;IAAA,KAJmBH,MAAc,GAAdA,MAAc;IAAA,KACdC,UAAsB,GAAtBA,UAAsB;IAAA,KACtBC,wBAAkD,GAAlDA,wBAAkD;IAAA,KAClDC,aAAsC,GAAtCA,aAAsC;EACxD;;EAEH;AACJ;AACA;EACiBC,qBAAqBA,CAACC,IAA+B,EAAiB;IAAA,IAAAC,KAAA;IAAA,OAAAC,iBAAA;MAC/E,IAAIF,IAAI,CAACG,oBAAoB,EAAE;QAC3B,MAAMF,KAAI,CAACG,iBAAiB,CAACJ,IAAI,CAACK,2BAA2B,CAAC;QAC9D;MACJ;MAEA,IAAMC,eAAmC,SAASL,KAAI,CAACL,UAAU,CAACW,kBAAkB,CAAC,CAAC;;MAEtF;MACA,IAAMC,0BAA0B,SAASP,KAAI,CAACH,aAAa,CAACW,GAAG,CAAC,wBAAwB,CAAC;MACzF,IAAMC,+BAA+B,SAAST,KAAI,CAACH,aAAa,CAACW,GAAG,CAAC,8BAA8B,CAAC;MACpG,IAAME,+BAA+B,SAASV,KAAI,CAACH,aAAa,CAACW,GAAG,CAAC,8BAA8B,CAAC;MACpG,IAAMG,0BAA0B,GAAGC,OAAO,CACtCL,0BAA0B,IAAIE,+BAA+B,IAAIC,+BACrE,CAAC;MAED,IAAMG,gBAAgB,GAClBR,eAAe,CAACS,SAAS,IAAIT,eAAe,CAACU,cAAc,IAAIV,eAAe,CAACW,cAAc;;MAEjG;MACAhB,KAAI,CAACN,MAAM,CAACuB,KAAK,CAAC,iCAAiC,EAAE;QACjDf,oBAAoB,EAAEH,IAAI,CAACG,oBAAoB;QAC/CgB,kBAAkB,EAAEb,eAAe,CAACS,SAAS;QAC7CK,uBAAuB,EAAEd,eAAe,CAACU,cAAc;QACvDK,uBAAuB,EAAEf,eAAe,CAACW,cAAc;QACvDL;MACJ,CAAC,CAAC;MAEF,IAAIE,gBAAgB,EAAE;QAClB,IAAI,QAAQb,KAAI,CAACH,aAAa,CAACwB,MAAM,CAAC,CAAC,CAAC,EAAE;UACtCrB,KAAI,CAACN,MAAM,CAAC4B,IAAI,CACZ,kHACJ,CAAC;UACD;QACJ,CAAC,MAAM,IAAI,CAACX,0BAA0B,EAAE;UACpC;UACAX,KAAI,CAACN,MAAM,CAACuB,KAAK,CAAC,iFAAiF,CAAC;UACpG,MAAMjB,KAAI,CAACuB,+BAA+B,CAAC,CAAC;QAChD,CAAC,MAAM;UACHvB,KAAI,CAACN,MAAM,CAACuB,KAAK,CACb,wGACJ,CAAC;QACL;MACJ,CAAC,CAAC,8BAA+B;QAC7B,IAAIN,0BAA0B,EAAE;UAC5B;UACAX,KAAI,CAACN,MAAM,CAACuB,KAAK,CACb,8FAA8F,GAC1F,wDACR,CAAC;UACD,IAAMO,MAAM,SAASxB,KAAI,CAACL,UAAU,CAAC8B,sBAAsB,CACvDlB,0BAA0B,EAC1BE,+BAA+B,EAC/BC,+BACJ,CAAC;;UAED;UACA;UACA,IAAI,CAACc,MAAM,CAACV,SAAS,IAAI,CAACU,MAAM,CAACR,cAAc,IAAI,CAACQ,MAAM,CAACT,cAAc,EAAE;YACvE,MAAM,IAAIW,KAAK,CAAC,kDAAkD,CAAC;UACvE;;UAEA;UACA,IAAMC,MAA8B,SAAU3B,KAAI,CAACL,UAAU,CAACiC,SAAS,CACnE5B,KAAI,CAACL,UAAU,CAACkC,MAAM,EACtB7B,KAAI,CAACL,UAAU,CAACmC,QACpB,CAAG;UACH,IAAI;YACA;YACA,IAAMC,OAA+C,SAASJ,MAAM,CAACK,MAAM,CAAC,CAAC;YAC7E,MAAMhC,KAAI,CAACJ,wBAAwB,CAACqC,mBAAmB,CAACF,OAAO,CAAC;UACpE,CAAC,SAAS;YACNJ,MAAM,CAACO,IAAI,CAAC,CAAC;UACjB;QACJ,CAAC,MAAM;UACHlC,KAAI,CAACN,MAAM,CAACuB,KAAK,CACb,6GACJ,CAAC;UACD,MAAMjB,KAAI,CAACG,iBAAiB,CAACJ,IAAI,CAACK,2BAA2B,CAAC;QAClE;MACJ;;MAEA;MACA;MACAJ,KAAI,CAACN,MAAM,CAACuB,KAAK,CAAC,iCAAiC,CAAC;IAAC;EACzD;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;EACkBd,iBAAiBA,CAACC,2BAAkD,EAAiB;IAAA,IAAA+B,MAAA;IAAA,OAAAlC,iBAAA;MAC/F;MACA;MACA,IAAMmC,gBAA+C,SAASD,MAAI,CAACxC,UAAU,CAACG,qBAAqB,CAAC,IAAI,CAAC;;MAEzG;MACA,IAAI,QAAQqC,MAAI,CAACtC,aAAa,CAACwB,MAAM,CAAC,CAAC,CAAC,EAAE;QACtCc,MAAI,CAACzC,MAAM,CAAC4B,IAAI,CACZ,gGACJ,CAAC;QACD;MACJ,CAAC,MAAM;QACH;QACA;QACA;QACAa,MAAI,CAACzC,MAAM,CAACuB,KAAK,CAAC,6DAA6D,CAAC;QAChF,MAAMkB,MAAI,CAACZ,+BAA+B,CAAC,CAAC;MAChD;MAEAY,MAAI,CAACzC,MAAM,CAACuB,KAAK,CAAC,qDAAqD,CAAC;MACxE,KAAK,IAAMoB,GAAG,IAAI,CACdD,gBAAgB,CAACE,iBAAiB,EAClCF,gBAAgB,CAACG,wBAAwB,EACzCH,gBAAgB,CAACI,uBAAuB,CAC3C,EAAE;QACC,IAAIH,GAAG,EAAE;UACL,MAAMF,MAAI,CAACvC,wBAAwB,CAACqC,mBAAmB,CAACI,GAAG,EAAEjC,2BAA2B,CAAC;QAC7F;MACJ;IAAC;EACL;;EAEA;AACJ;AACA;AACA;AACA;EACkBmB,+BAA+BA,CAAA,EAAkB;IAAA,IAAAkB,MAAA;IAAA,OAAAxC,iBAAA;MAC3D,IAAMyC,QAA2D,SACvDD,MAAI,CAAC9C,UAAU,CAACgD,sBAAsB,CAAC,CAAC;MAClD;MACA,IAAID,QAAQ,aAARA,QAAQ,eAARA,QAAQ,CAAEE,SAAS,EAAE;QACrB,MAAMH,MAAI,CAAC5C,aAAa,CAACgD,KAAK,CAAC,wBAAwB,EAAEH,QAAQ,CAACE,SAAS,CAAC;MAChF,CAAC,MAAM;QACHH,MAAI,CAAC/C,MAAM,CAACoD,KAAK,2DAA2D,CAAC;MACjF;MACA,IAAIJ,QAAQ,aAARA,QAAQ,eAARA,QAAQ,CAAEK,gBAAgB,EAAE;QAC5B,MAAMN,MAAI,CAAC5C,aAAa,CAACgD,KAAK,CAAC,8BAA8B,EAAEH,QAAQ,CAACK,gBAAgB,CAAC;MAC7F,CAAC,MAAM;QACHN,MAAI,CAAC/C,MAAM,CAACoD,KAAK,2DAA2D,CAAC;MACjF;MACA,IAAIJ,QAAQ,aAARA,QAAQ,eAARA,QAAQ,CAAEM,cAAc,EAAE;QAC1B,MAAMP,MAAI,CAAC5C,aAAa,CAACgD,KAAK,CAAC,8BAA8B,EAAEH,QAAQ,CAACM,cAAc,CAAC;MAC3F,CAAC,MAAM;QACHP,MAAI,CAAC/C,MAAM,CAACoD,KAAK,2DAA2D,CAAC;MACjF;IAAC;EACL;AACJ","ignoreList":[]}
+{"version":3,"file":"CrossSigningIdentity.js","names":["CrossSigningIdentity","constructor","logger","olmMachine","outgoingRequestProcessor","secretStorage","bootstrapCrossSigning","opts","_this","_asyncToGenerator","setupNewCrossSigning","resetCrossSigning","authUploadDeviceSigningKeys","olmDeviceStatus","crossSigningStatus","masterKeyFromSecretStorage","get","selfSigningKeyFromSecretStorage","userSigningKeyFromSecretStorage","privateKeysInSecretStorage","Boolean","olmDeviceHasKeys","hasMaster","hasUserSigning","hasSelfSigning","debug","olmDeviceHasMaster","olmDeviceHasUserSigning","olmDeviceHasSelfSigning","hasKey","warn","exportCrossSigningKeysToStorage","status","importCrossSigningKeys","Error","device","getDevice","userId","deviceId","request","verify","makeOutgoingRequest","free","_this2","outgoingRequests","req","uploadKeysRequest","uploadSigningKeysRequest","uploadSignaturesRequest","_this3","exported","exportCrossSigningKeys","masterKey","store","error","self_signing_key","userSigningKey"],"sources":["../../src/rust-crypto/CrossSigningIdentity.ts"],"sourcesContent":["/*\nCopyright 2023 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\nimport {\n    type OlmMachine,\n    type CrossSigningStatus,\n    type CrossSigningBootstrapRequests,\n} from \"@matrix-org/matrix-sdk-crypto-wasm\";\n\nimport type * as RustSdkCryptoJs from \"@matrix-org/matrix-sdk-crypto-wasm\";\nimport { type BootstrapCrossSigningOpts } from \"../crypto-api/index.ts\";\nimport { type Logger } from \"../logger.ts\";\nimport { type OutgoingRequestProcessor } from \"./OutgoingRequestProcessor.ts\";\nimport { type UIAuthCallback } from \"../interactive-auth.ts\";\nimport { type ServerSideSecretStorage } from \"../secret-storage.ts\";\n\n/** Manages the cross-signing keys for our own user.\n *\n * @internal\n */\nexport class CrossSigningIdentity {\n    public constructor(\n        private readonly logger: Logger,\n        private readonly olmMachine: OlmMachine,\n        private readonly outgoingRequestProcessor: OutgoingRequestProcessor,\n        private readonly secretStorage: ServerSideSecretStorage,\n    ) {}\n\n    /**\n     * Initialise our cross-signing keys by creating new keys if they do not exist, and uploading to the server\n     */\n    public async bootstrapCrossSigning(opts: BootstrapCrossSigningOpts): Promise<void> {\n        if (opts.setupNewCrossSigning) {\n            await this.resetCrossSigning(opts.authUploadDeviceSigningKeys);\n            return;\n        }\n\n        const olmDeviceStatus: CrossSigningStatus = await this.olmMachine.crossSigningStatus();\n\n        // Try to fetch cross signing keys from the secret storage\n        const masterKeyFromSecretStorage = await this.secretStorage.get(\"m.cross_signing.master\");\n        const selfSigningKeyFromSecretStorage = await this.secretStorage.get(\"m.cross_signing.self_signing\");\n        const userSigningKeyFromSecretStorage = await this.secretStorage.get(\"m.cross_signing.user_signing\");\n        const privateKeysInSecretStorage = Boolean(\n            masterKeyFromSecretStorage && selfSigningKeyFromSecretStorage && userSigningKeyFromSecretStorage,\n        );\n\n        const olmDeviceHasKeys =\n            olmDeviceStatus.hasMaster && olmDeviceStatus.hasUserSigning && olmDeviceStatus.hasSelfSigning;\n\n        // Log all relevant state for easier parsing of debug logs.\n        this.logger.debug(\"bootstrapCrossSigning: starting\", {\n            setupNewCrossSigning: opts.setupNewCrossSigning,\n            olmDeviceHasMaster: olmDeviceStatus.hasMaster,\n            olmDeviceHasUserSigning: olmDeviceStatus.hasUserSigning,\n            olmDeviceHasSelfSigning: olmDeviceStatus.hasSelfSigning,\n            privateKeysInSecretStorage,\n        });\n\n        if (olmDeviceHasKeys) {\n            if (!(await this.secretStorage.hasKey())) {\n                this.logger.warn(\n                    \"bootstrapCrossSigning: Olm device has private keys, but secret storage is not yet set up; doing nothing for now.\",\n                );\n                // the keys should get uploaded to 4S once that is set up.\n            } else if (!privateKeysInSecretStorage) {\n                // the device has the keys but they are not in 4S, so update it\n                this.logger.debug(\"bootstrapCrossSigning: Olm device has private keys: exporting to secret storage\");\n                await this.exportCrossSigningKeysToStorage();\n            } else {\n                this.logger.debug(\n                    \"bootstrapCrossSigning: Olm device has private keys and they are saved in secret storage; doing nothing\",\n                );\n            }\n        } /* (!olmDeviceHasKeys) */ else {\n            if (privateKeysInSecretStorage) {\n                // they are in 4S, so import from there\n                this.logger.debug(\n                    \"bootstrapCrossSigning: Cross-signing private keys not found locally, but they are available \" +\n                        \"in secret storage, reading storage and caching locally\",\n                );\n                const status = await this.olmMachine.importCrossSigningKeys(\n                    masterKeyFromSecretStorage,\n                    selfSigningKeyFromSecretStorage,\n                    userSigningKeyFromSecretStorage,\n                );\n\n                // Check that `importCrossSigningKeys` worked correctly (for example, it will fail silently if the\n                // public keys are not available).\n                if (!status.hasMaster || !status.hasSelfSigning || !status.hasUserSigning) {\n                    throw new Error(\"importCrossSigningKeys failed to import the keys\");\n                }\n\n                // Get the current device\n                const device: RustSdkCryptoJs.Device = (await this.olmMachine.getDevice(\n                    this.olmMachine.userId,\n                    this.olmMachine.deviceId,\n                ))!;\n                try {\n                    // Sign the device with our cross-signing key and upload the signature\n                    const request: RustSdkCryptoJs.SignatureUploadRequest = await device.verify();\n                    await this.outgoingRequestProcessor.makeOutgoingRequest(request);\n                } finally {\n                    device.free();\n                }\n            } else {\n                this.logger.debug(\n                    \"bootstrapCrossSigning: Cross-signing private keys not found locally or in secret storage, creating new keys\",\n                );\n                await this.resetCrossSigning(opts.authUploadDeviceSigningKeys);\n            }\n        }\n\n        // TODO: we might previously have bootstrapped cross-signing but not completed uploading the keys to the\n        //   server -- in which case we should call OlmDevice.bootstrap_cross_signing. How do we know?\n        this.logger.debug(\"bootstrapCrossSigning: complete\");\n    }\n\n    /** Reset our cross-signing keys\n     *\n     * This method will:\n     *   * Tell the OlmMachine to create new keys\n     *   * Upload the new public keys and the device signature to the server\n     *   * Upload the private keys to SSSS, if it is set up\n     */\n    private async resetCrossSigning(authUploadDeviceSigningKeys?: UIAuthCallback<void>): Promise<void> {\n        // XXX: We must find a way to make this atomic, currently if the user does not remember his account password\n        // or 4S passphrase/key the process will fail in a bad state, with keys rotated but not uploaded or saved in 4S.\n        const outgoingRequests: CrossSigningBootstrapRequests = await this.olmMachine.bootstrapCrossSigning(true);\n\n        // If 4S is configured we need to update it.\n        if (!(await this.secretStorage.hasKey())) {\n            this.logger.warn(\n                \"resetCrossSigning: Secret storage is not yet set up; not exporting keys to secret storage yet.\",\n            );\n            // the keys should get uploaded to 4S once that is set up.\n        } else {\n            // Update 4S before uploading cross-signing keys, to stay consistent with legacy that asks\n            // 4S passphrase before asking for account password.\n            // Ultimately should be made atomic and resistant to forgotten password/passphrase.\n            this.logger.debug(\"resetCrossSigning: exporting private keys to secret storage\");\n            await this.exportCrossSigningKeysToStorage();\n        }\n\n        this.logger.debug(\"resetCrossSigning: publishing public keys to server\");\n        for (const req of [\n            outgoingRequests.uploadKeysRequest,\n            outgoingRequests.uploadSigningKeysRequest,\n            outgoingRequests.uploadSignaturesRequest,\n        ]) {\n            if (req) {\n                await this.outgoingRequestProcessor.makeOutgoingRequest(req, authUploadDeviceSigningKeys);\n            }\n        }\n    }\n\n    /**\n     * Extract the cross-signing keys from the olm machine and save them to secret storage, if it is configured\n     *\n     * (If secret storage is *not* configured, we assume that the export will happen when it is set up)\n     */\n    private async exportCrossSigningKeysToStorage(): Promise<void> {\n        const exported: RustSdkCryptoJs.CrossSigningKeyExport | undefined =\n            await this.olmMachine.exportCrossSigningKeys();\n        /* istanbul ignore else (this function is only called when we know the olm machine has keys) */\n        if (exported?.masterKey) {\n            await this.secretStorage.store(\"m.cross_signing.master\", exported.masterKey);\n        } else {\n            this.logger.error(`Cannot export MSK to secret storage, private key unknown`);\n        }\n        if (exported?.self_signing_key) {\n            await this.secretStorage.store(\"m.cross_signing.self_signing\", exported.self_signing_key);\n        } else {\n            this.logger.error(`Cannot export SSK to secret storage, private key unknown`);\n        }\n        if (exported?.userSigningKey) {\n            await this.secretStorage.store(\"m.cross_signing.user_signing\", exported.userSigningKey);\n        } else {\n            this.logger.error(`Cannot export USK to secret storage, private key unknown`);\n        }\n    }\n}\n"],"mappings":";AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAeA;AACA;AACA;AACA;AACA,OAAO,MAAMA,oBAAoB,CAAC;EACvBC,WAAWA,CACGC,MAAc,EACdC,UAAsB,EACtBC,wBAAkD,EAClDC,aAAsC,EACzD;IAAA,KAJmBH,MAAc,GAAdA,MAAc;IAAA,KACdC,UAAsB,GAAtBA,UAAsB;IAAA,KACtBC,wBAAkD,GAAlDA,wBAAkD;IAAA,KAClDC,aAAsC,GAAtCA,aAAsC;EACxD;;EAEH;AACJ;AACA;EACiBC,qBAAqBA,CAACC,IAA+B,EAAiB;IAAA,IAAAC,KAAA;IAAA,OAAAC,iBAAA;MAC/E,IAAIF,IAAI,CAACG,oBAAoB,EAAE;QAC3B,MAAMF,KAAI,CAACG,iBAAiB,CAACJ,IAAI,CAACK,2BAA2B,CAAC;QAC9D;MACJ;MAEA,IAAMC,eAAmC,SAASL,KAAI,CAACL,UAAU,CAACW,kBAAkB,CAAC,CAAC;;MAEtF;MACA,IAAMC,0BAA0B,SAASP,KAAI,CAACH,aAAa,CAACW,GAAG,CAAC,wBAAwB,CAAC;MACzF,IAAMC,+BAA+B,SAAST,KAAI,CAACH,aAAa,CAACW,GAAG,CAAC,8BAA8B,CAAC;MACpG,IAAME,+BAA+B,SAASV,KAAI,CAACH,aAAa,CAACW,GAAG,CAAC,8BAA8B,CAAC;MACpG,IAAMG,0BAA0B,GAAGC,OAAO,CACtCL,0BAA0B,IAAIE,+BAA+B,IAAIC,+BACrE,CAAC;MAED,IAAMG,gBAAgB,GAClBR,eAAe,CAACS,SAAS,IAAIT,eAAe,CAACU,cAAc,IAAIV,eAAe,CAACW,cAAc;;MAEjG;MACAhB,KAAI,CAACN,MAAM,CAACuB,KAAK,CAAC,iCAAiC,EAAE;QACjDf,oBAAoB,EAAEH,IAAI,CAACG,oBAAoB;QAC/CgB,kBAAkB,EAAEb,eAAe,CAACS,SAAS;QAC7CK,uBAAuB,EAAEd,eAAe,CAACU,cAAc;QACvDK,uBAAuB,EAAEf,eAAe,CAACW,cAAc;QACvDL;MACJ,CAAC,CAAC;MAEF,IAAIE,gBAAgB,EAAE;QAClB,IAAI,QAAQb,KAAI,CAACH,aAAa,CAACwB,MAAM,CAAC,CAAC,CAAC,EAAE;UACtCrB,KAAI,CAACN,MAAM,CAAC4B,IAAI,CACZ,kHACJ,CAAC;UACD;QACJ,CAAC,MAAM,IAAI,CAACX,0BAA0B,EAAE;UACpC;UACAX,KAAI,CAACN,MAAM,CAACuB,KAAK,CAAC,iFAAiF,CAAC;UACpG,MAAMjB,KAAI,CAACuB,+BAA+B,CAAC,CAAC;QAChD,CAAC,MAAM;UACHvB,KAAI,CAACN,MAAM,CAACuB,KAAK,CACb,wGACJ,CAAC;QACL;MACJ,CAAC,CAAC,8BAA+B;QAC7B,IAAIN,0BAA0B,EAAE;UAC5B;UACAX,KAAI,CAACN,MAAM,CAACuB,KAAK,CACb,8FAA8F,GAC1F,wDACR,CAAC;UACD,IAAMO,MAAM,SAASxB,KAAI,CAACL,UAAU,CAAC8B,sBAAsB,CACvDlB,0BAA0B,EAC1BE,+BAA+B,EAC/BC,+BACJ,CAAC;;UAED;UACA;UACA,IAAI,CAACc,MAAM,CAACV,SAAS,IAAI,CAACU,MAAM,CAACR,cAAc,IAAI,CAACQ,MAAM,CAACT,cAAc,EAAE;YACvE,MAAM,IAAIW,KAAK,CAAC,kDAAkD,CAAC;UACvE;;UAEA;UACA,IAAMC,MAA8B,SAAU3B,KAAI,CAACL,UAAU,CAACiC,SAAS,CACnE5B,KAAI,CAACL,UAAU,CAACkC,MAAM,EACtB7B,KAAI,CAACL,UAAU,CAACmC,QACpB,CAAG;UACH,IAAI;YACA;YACA,IAAMC,OAA+C,SAASJ,MAAM,CAACK,MAAM,CAAC,CAAC;YAC7E,MAAMhC,KAAI,CAACJ,wBAAwB,CAACqC,mBAAmB,CAACF,OAAO,CAAC;UACpE,CAAC,SAAS;YACNJ,MAAM,CAACO,IAAI,CAAC,CAAC;UACjB;QACJ,CAAC,MAAM;UACHlC,KAAI,CAACN,MAAM,CAACuB,KAAK,CACb,6GACJ,CAAC;UACD,MAAMjB,KAAI,CAACG,iBAAiB,CAACJ,IAAI,CAACK,2BAA2B,CAAC;QAClE;MACJ;;MAEA;MACA;MACAJ,KAAI,CAACN,MAAM,CAACuB,KAAK,CAAC,iCAAiC,CAAC;IAAC;EACzD;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;EACkBd,iBAAiBA,CAACC,2BAAkD,EAAiB;IAAA,IAAA+B,MAAA;IAAA,OAAAlC,iBAAA;MAC/F;MACA;MACA,IAAMmC,gBAA+C,SAASD,MAAI,CAACxC,UAAU,CAACG,qBAAqB,CAAC,IAAI,CAAC;;MAEzG;MACA,IAAI,QAAQqC,MAAI,CAACtC,aAAa,CAACwB,MAAM,CAAC,CAAC,CAAC,EAAE;QACtCc,MAAI,CAACzC,MAAM,CAAC4B,IAAI,CACZ,gGACJ,CAAC;QACD;MACJ,CAAC,MAAM;QACH;QACA;QACA;QACAa,MAAI,CAACzC,MAAM,CAACuB,KAAK,CAAC,6DAA6D,CAAC;QAChF,MAAMkB,MAAI,CAACZ,+BAA+B,CAAC,CAAC;MAChD;MAEAY,MAAI,CAACzC,MAAM,CAACuB,KAAK,CAAC,qDAAqD,CAAC;MACxE,KAAK,IAAMoB,GAAG,IAAI,CACdD,gBAAgB,CAACE,iBAAiB,EAClCF,gBAAgB,CAACG,wBAAwB,EACzCH,gBAAgB,CAACI,uBAAuB,CAC3C,EAAE;QACC,IAAIH,GAAG,EAAE;UACL,MAAMF,MAAI,CAACvC,wBAAwB,CAACqC,mBAAmB,CAACI,GAAG,EAAEjC,2BAA2B,CAAC;QAC7F;MACJ;IAAC;EACL;;EAEA;AACJ;AACA;AACA;AACA;EACkBmB,+BAA+BA,CAAA,EAAkB;IAAA,IAAAkB,MAAA;IAAA,OAAAxC,iBAAA;MAC3D,IAAMyC,QAA2D,SACvDD,MAAI,CAAC9C,UAAU,CAACgD,sBAAsB,CAAC,CAAC;MAClD;MACA,IAAID,QAAQ,aAARA,QAAQ,eAARA,QAAQ,CAAEE,SAAS,EAAE;QACrB,MAAMH,MAAI,CAAC5C,aAAa,CAACgD,KAAK,CAAC,wBAAwB,EAAEH,QAAQ,CAACE,SAAS,CAAC;MAChF,CAAC,MAAM;QACHH,MAAI,CAAC/C,MAAM,CAACoD,KAAK,2DAA2D,CAAC;MACjF;MACA,IAAIJ,QAAQ,aAARA,QAAQ,eAARA,QAAQ,CAAEK,gBAAgB,EAAE;QAC5B,MAAMN,MAAI,CAAC5C,aAAa,CAACgD,KAAK,CAAC,8BAA8B,EAAEH,QAAQ,CAACK,gBAAgB,CAAC;MAC7F,CAAC,MAAM;QACHN,MAAI,CAAC/C,MAAM,CAACoD,KAAK,2DAA2D,CAAC;MACjF;MACA,IAAIJ,QAAQ,aAARA,QAAQ,eAARA,QAAQ,CAAEM,cAAc,EAAE;QAC1B,MAAMP,MAAI,CAAC5C,aAAa,CAACgD,KAAK,CAAC,8BAA8B,EAAEH,QAAQ,CAACM,cAAc,CAAC;MAC3F,CAAC,MAAM;QACHP,MAAI,CAAC/C,MAAM,CAACoD,KAAK,2DAA2D,CAAC;MACjF;IAAC;EACL;AACJ","ignoreList":[]}