@wireapp/core-crypto 1.0.0-rc.18 → 1.0.0-rc.19

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wireapp/core-crypto",
-  "version": "1.0.0-rc.18",
+  "version": "1.0.0-rc.19",
   "description": "CoreCrypto bindings for the Web",
   "type": "module",
   "module": "platforms/web/corecrypto.js",

package/platforms/web/corecrypto.d.ts

@@ -1,3 +1,22 @@
+/* tslint:disable */
+/* eslint-disable */
+/**
+* see [core_crypto::prelude::DeviceStatus]
+*/
+export enum DeviceStatus {
+	/**
+	* All is fine
+	*/
+	Valid = 0,
+	/**
+	* The Credential's certificate is expired
+	*/
+	Expired = 1,
+	/**
+	* The Credential's certificate is revoked (not implemented yet)
+	*/
+	Revoked = 2
+}
 /**
 * For creating a challenge.
 * @see https://www.rfc-editor.org/rfc/rfc8555.html#section-7.5.1
@@ -74,6 +93,41 @@ export class NewAcmeOrder {
 	*/
 	readonly delegate: Uint8Array;
 }
+/**
+* Represents the identity claims identifying a client
+* Those claims are verifiable by any member in the group
+*/
+export class WireIdentity {
+	free(): void;
+	/**
+	* X509 certificate identifying this client in the MLS group ; PEM encoded
+	*/
+	readonly certificate: string;
+	/**
+	* Unique client identifier e.g. `T4Coy4vdRzianwfOgXpn6A:6add501bacd1d90e@whitehouse.gov`
+	*/
+	readonly clientId: string;
+	/**
+	* Name as displayed in the messaging application e.g. `John Fitzgerald Kennedy`
+	*/
+	readonly displayName: string;
+	/**
+	* DNS domain for which this identity proof was generated e.g. `whitehouse.gov`
+	*/
+	readonly domain: string;
+	/**
+	* user handle e.g. `john_wire`
+	*/
+	readonly handle: string;
+	/**
+	* Status of the Credential at the moment T when this object is created
+	*/
+	readonly status: DeviceStatus;
+	/**
+	* MLS thumbprint
+	*/
+	readonly thumbprint: string;
+}
 /**
  * Error wrapper that takes care of extracting rich error details across the FFI (through JSON parsing)
  *
@@ -506,31 +560,6 @@ export interface BufferedDecryptedMessage {
 	 */
 	identity?: WireIdentity;
 }
-/**
- * Represents the identity claims identifying a client. Those claims are verifiable by any member in the group
- */
-export interface WireIdentity {
-	/**
-	 * Represents the identity claims identifying a client. Those claims are verifiable by any member in the group
-	 */
-	clientId: string;
-	/**
-	 * user handle e.g. `john_wire`
-	 */
-	handle: string;
-	/**
-	 * Name as displayed in the messaging application e.g. `John Fitzgerald Kennedy`
-	 */
-	displayName: string;
-	/**
-	 * DNS domain for which this identity proof was generated e.g. `whitehouse.gov`
-	 */
-	domain: string;
-	/**
-	 * X509 certificate identifying this client in the MLS group ; PEM encoded
-	 */
-	certificate: string;
-}
 /**
  * Returned by all methods creating proposals. Contains a proposal message and an identifier to roll back the proposal
  */
@@ -1278,10 +1307,20 @@ export declare class CoreCrypto {
 	 * Certificate Credential (after turning on end-to-end identity).
 	 *
 	 * @param conversationId - identifier of the conversation
-	 * @param clientIds - identifiers of the user
+	 * @param deviceIds - identifiers of the devices
 	 * @returns identities or if no member has a x509 certificate, it will return an empty List
 	 */
-	getUserIdentities(conversationId: ConversationId, clientIds: ClientId[]): Promise<WireIdentity[]>;
+	getDeviceIdentities(conversationId: ConversationId, deviceIds: ClientId[]): Promise<WireIdentity[]>;
+	/**
+	 * From a given conversation, get the identity of the users (device holders) supplied.
+	 * Identity is only present for devices with a Certificate Credential (after turning on end-to-end identity).
+	 * If no member has a x509 certificate, it will return an empty Vec.
+	 *
+	 * @param conversationId - identifier of the conversation
+	 * @param userIds - user identifiers e.g. t6wRpI8BRSeviBwwiFp5MQ which is a base64UrlUnpadded UUIDv4
+	 * @returns a Map with all the identities for a given users. Consumers are then recommended to reduce those identities to determine the actual status of a user.
+	 */
+	getUserIdentities(conversationId: ConversationId, userIds: string[]): Promise<Map<string, WireIdentity[]>>;
 	/**
 	 * Returns the current version of {@link CoreCrypto}
 	 *

package/platforms/web/corecrypto.js

@@ -1,12 +1,4 @@
 // bindings/js/wasm/core-crypto-ffi.js
-var addHeapObject = function(obj) {
-  if (heap_next === heap.length)
-    heap.push(heap.length + 1);
-  const idx = heap_next;
-  heap_next = heap[idx];
-  heap[idx] = obj;
-  return idx;
-};
 var getObject = function(idx) {
   return heap[idx];
 };
@@ -21,6 +13,14 @@ var takeObject = function(idx) {
   dropObject(idx);
   return ret;
 };
+var addHeapObject = function(obj) {
+  if (heap_next === heap.length)
+    heap.push(heap.length + 1);
+  const idx = heap_next;
+  heap_next = heap[idx];
+  heap[idx] = obj;
+  return idx;
+};
 var getUint8Memory0 = function() {
   if (cachedUint8Memory0 === null || cachedUint8Memory0.byteLength === 0) {
     cachedUint8Memory0 = new Uint8Array(wasm.memory.buffer);
@@ -157,12 +157,12 @@ var makeMutClosure = function(arg0, arg1, dtor, f) {
   return real;
 };
 var __wbg_adapter_52 = function(arg0, arg1, arg2) {
-  wasm.wasm_bindgen__convert__closures__invoke1_mut__h0f2a9dd0c610e808(arg0, arg1, addHeapObject(arg2));
+  wasm.wasm_bindgen__convert__closures__invoke1_mut__haa59db12f6db579c(arg0, arg1, addHeapObject(arg2));
 };
 var __wbg_adapter_55 = function(arg0, arg1, arg2) {
   try {
     const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
-    wasm.wasm_bindgen__convert__closures__invoke1_mut__hb74a6b2f1fdadeb5(retptr, arg0, arg1, addHeapObject(arg2));
+    wasm.wasm_bindgen__convert__closures__invoke1_mut__hceafba4929294a2f(retptr, arg0, arg1, addHeapObject(arg2));
     var r0 = getInt32Memory0()[retptr / 4 + 0];
     var r1 = getInt32Memory0()[retptr / 4 + 1];
     if (r1) {
@@ -232,8 +232,8 @@ var handleError = function(f, args) {
     wasm.__wbindgen_exn_store(addHeapObject(e));
   }
 };
-var __wbg_adapter_396 = function(arg0, arg1, arg2, arg3) {
-  wasm.wasm_bindgen__convert__closures__invoke2_mut__h9c95ec8d3b398f12(arg0, arg1, addHeapObject(arg2), addHeapObject(arg3));
+var __wbg_adapter_398 = function(arg0, arg1, arg2, arg3) {
+  wasm.wasm_bindgen__convert__closures__invoke2_mut__h61cfff0f57bf91cc(arg0, arg1, addHeapObject(arg2), addHeapObject(arg3));
 };
 async function __wbg_load(module, imports) {
   if (typeof Response === "function" && module instanceof Response) {
@@ -262,35 +262,35 @@ async function __wbg_load(module, imports) {
 var __wbg_get_imports = function() {
   const imports = {};
   imports.wbg = {};
-  imports.wbg.__wbg_buffereddecryptedmessage_new = function(arg0) {
-    const ret = BufferedDecryptedMessage.__wrap(arg0);
-    return addHeapObject(ret);
+  imports.wbg.__wbindgen_object_drop_ref = function(arg0) {
+    takeObject(arg0);
   };
-  imports.wbg.__wbindgen_number_new = function(arg0) {
-    const ret = arg0;
+  imports.wbg.__wbg_commitbundle_new = function(arg0) {
+    const ret = CommitBundle.__wrap(arg0);
     return addHeapObject(ret);
   };
-  imports.wbg.__wbg_corecrypto_new = function(arg0) {
-    const ret = CoreCrypto.__wrap(arg0);
+  imports.wbg.__wbg_ffiwiree2eidentity_new = function(arg0) {
+    const ret = FfiWireE2EIdentity.__wrap(arg0);
     return addHeapObject(ret);
   };
   imports.wbg.__wbg_proposalbundle_new = function(arg0) {
     const ret = ProposalBundle.__wrap(arg0);
     return addHeapObject(ret);
   };
-  imports.wbg.__wbindgen_object_drop_ref = function(arg0) {
-    takeObject(arg0);
+  imports.wbg.__wbindgen_number_new = function(arg0) {
+    const ret = arg0;
+    return addHeapObject(ret);
   };
   imports.wbg.__wbg_proteusautoprekeybundle_new = function(arg0) {
     const ret = ProteusAutoPrekeyBundle.__wrap(arg0);
     return addHeapObject(ret);
   };
-  imports.wbg.__wbg_commitbundle_new = function(arg0) {
-    const ret = CommitBundle.__wrap(arg0);
+  imports.wbg.__wbg_corecrypto_new = function(arg0) {
+    const ret = CoreCrypto.__wrap(arg0);
     return addHeapObject(ret);
   };
-  imports.wbg.__wbg_ffiwiree2eidentity_new = function(arg0) {
-    const ret = FfiWireE2EIdentity.__wrap(arg0);
+  imports.wbg.__wbg_buffereddecryptedmessage_new = function(arg0) {
+    const ret = BufferedDecryptedMessage.__wrap(arg0);
     return addHeapObject(ret);
   };
   imports.wbg.__wbindgen_object_clone_ref = function(arg0) {
@@ -870,7 +870,7 @@ var __wbg_get_imports = function() {
         const a = state0.a;
         state0.a = 0;
         try {
-          return __wbg_adapter_396(a, state0.b, arg02, arg12);
+          return __wbg_adapter_398(a, state0.b, arg02, arg12);
         } finally {
           state0.a = a;
         }
@@ -950,12 +950,12 @@ var __wbg_get_imports = function() {
     const ret = wasm.memory;
     return addHeapObject(ret);
   };
-  imports.wbg.__wbindgen_closure_wrapper2215 = function(arg0, arg1, arg2) {
-    const ret = makeMutClosure(arg0, arg1, 353, __wbg_adapter_52);
+  imports.wbg.__wbindgen_closure_wrapper2230 = function(arg0, arg1, arg2) {
+    const ret = makeMutClosure(arg0, arg1, 357, __wbg_adapter_52);
     return addHeapObject(ret);
   };
-  imports.wbg.__wbindgen_closure_wrapper9851 = function(arg0, arg1, arg2) {
-    const ret = makeMutClosure(arg0, arg1, 1327, __wbg_adapter_55);
+  imports.wbg.__wbindgen_closure_wrapper9979 = function(arg0, arg1, arg2) {
+    const ret = makeMutClosure(arg0, arg1, 1317, __wbg_adapter_55);
     return addHeapObject(ret);
   };
   return imports;
@@ -1017,6 +1017,26 @@ if (typeof TextDecoder !== "undefined") {
 var cachedBigInt64Memory0 = null;
 var cachedUint32Memory0 = null;
 var cachedUint16Memory0 = null;
+var DeviceStatus = Object.freeze({
+  Valid: 0,
+  "0": "Valid",
+  Expired: 1,
+  "1": "Expired",
+  Revoked: 2,
+  "2": "Revoked"
+});
+var CredentialType = Object.freeze({
+  Basic: 1,
+  "1": "Basic",
+  X509: 2,
+  "2": "X509"
+});
+var WirePolicy = Object.freeze({
+  Plaintext: 1,
+  "1": "Plaintext",
+  Ciphertext: 2,
+  "2": "Ciphertext"
+});
 var Ciphersuite = Object.freeze({
   MLS_128_DHKEMX25519_AES128GCM_SHA256_Ed25519: 1,
   "1": "MLS_128_DHKEMX25519_AES128GCM_SHA256_Ed25519",
@@ -1035,18 +1055,6 @@ var Ciphersuite = Object.freeze({
   MLS_128_X25519KYBER768DRAFT00_AES128GCM_SHA256_Ed25519: 61489,
   "61489": "MLS_128_X25519KYBER768DRAFT00_AES128GCM_SHA256_Ed25519"
 });
-var WirePolicy = Object.freeze({
-  Plaintext: 1,
-  "1": "Plaintext",
-  Ciphertext: 2,
-  "2": "Ciphertext"
-});
-var CredentialType = Object.freeze({
-  Basic: 1,
-  "1": "Basic",
-  X509: 2,
-  "2": "X509"
-});
 
 class AcmeChallenge {
   static __wrap(ptr) {
@@ -1389,10 +1397,18 @@ class CoreCrypto {
     const ret = wasm.corecrypto_e2ei_is_enabled(this.__wbg_ptr, ciphersuite);
     return takeObject(ret);
   }
-  get_user_identities(conversation_id, client_ids) {
+  get_device_identities(conversation_id, device_ids) {
+    const ptr0 = passArray8ToWasm0(conversation_id, wasm.__wbindgen_malloc);
+    const len0 = WASM_VECTOR_LEN;
+    const ptr1 = passArrayJsValueToWasm0(device_ids, wasm.__wbindgen_malloc);
+    const len1 = WASM_VECTOR_LEN;
+    const ret = wasm.corecrypto_get_device_identities(this.__wbg_ptr, ptr0, len0, ptr1, len1);
+    return takeObject(ret);
+  }
+  get_user_identities(conversation_id, user_ids) {
     const ptr0 = passArray8ToWasm0(conversation_id, wasm.__wbindgen_malloc);
     const len0 = WASM_VECTOR_LEN;
-    const ptr1 = passArrayJsValueToWasm0(client_ids, wasm.__wbindgen_malloc);
+    const ptr1 = passArrayJsValueToWasm0(user_ids, wasm.__wbindgen_malloc);
     const len1 = WASM_VECTOR_LEN;
     const ret = wasm.corecrypto_get_user_identities(this.__wbg_ptr, ptr0, len0, ptr1, len1);
     return takeObject(ret);
@@ -2391,27 +2407,12 @@ class WireIdentity {
     const ptr = this.__destroy_into_raw();
     wasm.__wbg_wireidentity_free(ptr);
   }
-  constructor(client_id, handle, display_name, domain, certificate) {
-    const ptr0 = passStringToWasm0(client_id, wasm.__wbindgen_malloc, wasm.__wbindgen_realloc);
-    const len0 = WASM_VECTOR_LEN;
-    const ptr1 = passStringToWasm0(handle, wasm.__wbindgen_malloc, wasm.__wbindgen_realloc);
-    const len1 = WASM_VECTOR_LEN;
-    const ptr2 = passStringToWasm0(display_name, wasm.__wbindgen_malloc, wasm.__wbindgen_realloc);
-    const len2 = WASM_VECTOR_LEN;
-    const ptr3 = passStringToWasm0(domain, wasm.__wbindgen_malloc, wasm.__wbindgen_realloc);
-    const len3 = WASM_VECTOR_LEN;
-    const ptr4 = passStringToWasm0(certificate, wasm.__wbindgen_malloc, wasm.__wbindgen_realloc);
-    const len4 = WASM_VECTOR_LEN;
-    const ret = wasm.wireidentity_new(ptr0, len0, ptr1, len1, ptr2, len2, ptr3, len3, ptr4, len4);
-    this.__wbg_ptr = ret >>> 0;
-    return this;
-  }
-  get client_id() {
+  get clientId() {
     let deferred1_0;
     let deferred1_1;
     try {
       const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
-      wasm.wireidentity_client_id(retptr, this.__wbg_ptr);
+      wasm.__wbg_get_acmedirectory_newNonce(retptr, this.__wbg_ptr);
       var r0 = getInt32Memory0()[retptr / 4 + 0];
       var r1 = getInt32Memory0()[retptr / 4 + 1];
       deferred1_0 = r0;
@@ -2427,7 +2428,7 @@ class WireIdentity {
     let deferred1_1;
     try {
       const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
-      wasm.wireidentity_handle(retptr, this.__wbg_ptr);
+      wasm.__wbg_get_acmechallenge_url(retptr, this.__wbg_ptr);
       var r0 = getInt32Memory0()[retptr / 4 + 0];
       var r1 = getInt32Memory0()[retptr / 4 + 1];
       deferred1_0 = r0;
@@ -2438,12 +2439,12 @@ class WireIdentity {
       wasm.__wbindgen_free(deferred1_0, deferred1_1, 1);
     }
   }
-  get display_name() {
+  get displayName() {
     let deferred1_0;
     let deferred1_1;
     try {
       const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
-      wasm.wireidentity_display_name(retptr, this.__wbg_ptr);
+      wasm.__wbg_get_acmechallenge_target(retptr, this.__wbg_ptr);
       var r0 = getInt32Memory0()[retptr / 4 + 0];
       var r1 = getInt32Memory0()[retptr / 4 + 1];
       deferred1_0 = r0;
@@ -2459,7 +2460,7 @@ class WireIdentity {
     let deferred1_1;
     try {
       const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
-      wasm.wireidentity_domain(retptr, this.__wbg_ptr);
+      wasm.__wbg_get_acmedirectory_revokeCert(retptr, this.__wbg_ptr);
       var r0 = getInt32Memory0()[retptr / 4 + 0];
       var r1 = getInt32Memory0()[retptr / 4 + 1];
       deferred1_0 = r0;
@@ -2475,7 +2476,27 @@ class WireIdentity {
     let deferred1_1;
     try {
       const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
-      wasm.wireidentity_certificate(retptr, this.__wbg_ptr);
+      wasm.__wbg_get_wireidentity_certificate(retptr, this.__wbg_ptr);
+      var r0 = getInt32Memory0()[retptr / 4 + 0];
+      var r1 = getInt32Memory0()[retptr / 4 + 1];
+      deferred1_0 = r0;
+      deferred1_1 = r1;
+      return getStringFromWasm0(r0, r1);
+    } finally {
+      wasm.__wbindgen_add_to_stack_pointer(16);
+      wasm.__wbindgen_free(deferred1_0, deferred1_1, 1);
+    }
+  }
+  get status() {
+    const ret = wasm.__wbg_get_wireidentity_status(this.__wbg_ptr);
+    return ret;
+  }
+  get thumbprint() {
+    let deferred1_0;
+    let deferred1_1;
+    try {
+      const retptr = wasm.__wbindgen_add_to_stack_pointer(-16);
+      wasm.__wbg_get_wireidentity_thumbprint(retptr, this.__wbg_ptr);
       var r0 = getInt32Memory0()[retptr / 4 + 0];
       var r1 = getInt32Memory0()[retptr / 4 + 1];
       deferred1_0 = r0;
@@ -3006,8 +3027,11 @@ class CoreCrypto2 {
   async e2eiIsEnabled(ciphersuite) {
     return await CoreCryptoError.asyncMapErr(this.#cc.e2ei_is_enabled(ciphersuite));
   }
-  async getUserIdentities(conversationId, clientIds) {
-    return await CoreCryptoError.asyncMapErr(this.#cc.get_user_identities(conversationId, clientIds));
+  async getDeviceIdentities(conversationId, deviceIds) {
+    return await CoreCryptoError.asyncMapErr(this.#cc.get_device_identities(conversationId, deviceIds));
+  }
+  async getUserIdentities(conversationId, userIds) {
+    return await CoreCryptoError.asyncMapErr(this.#cc.get_user_identities(conversationId, userIds));
   }
   static version() {
     this.#assertModuleLoaded();
@@ -3147,6 +3171,7 @@ var E2eiConversationState;
 })(E2eiConversationState || (E2eiConversationState = {}));
 export {
   WirePolicy2 as WirePolicy,
+  WireIdentity,
   RatchetTreeType,
   ProposalType,
   NewAcmeOrder,
@@ -3155,6 +3180,7 @@ export {
   ExternalProposalType,
   E2eiEnrollment,
   E2eiConversationState,
+  DeviceStatus,
   CredentialType2 as CredentialType,
   CoreCryptoError,
   CoreCrypto2 as CoreCrypto,