npm - livekit-client - Versions diffs - 2.0.7 → 2.0.9 - Mend

livekit-client 2.0.7 → 2.0.9

Files changed (36) hide show

package/dist/livekit-client.e2ee.worker.js +1 -1
package/dist/livekit-client.e2ee.worker.js.map +1 -1
package/dist/livekit-client.e2ee.worker.mjs +33 -9
package/dist/livekit-client.e2ee.worker.mjs.map +1 -1
package/dist/livekit-client.esm.mjs +70 -41
package/dist/livekit-client.esm.mjs.map +1 -1
package/dist/livekit-client.umd.js +1 -1
package/dist/livekit-client.umd.js.map +1 -1
package/dist/src/e2ee/constants.d.ts +0 -1
package/dist/src/e2ee/constants.d.ts.map +1 -1
package/dist/src/e2ee/types.d.ts +1 -0
package/dist/src/e2ee/types.d.ts.map +1 -1
package/dist/src/e2ee/worker/FrameCryptor.d.ts.map +1 -1
package/dist/src/e2ee/worker/ParticipantKeyHandler.d.ts.map +1 -1
package/dist/src/index.d.ts +7 -6
package/dist/src/index.d.ts.map +1 -1
package/dist/src/room/PCTransport.d.ts.map +1 -1
package/dist/src/room/RTCEngine.d.ts.map +1 -1
package/dist/src/room/participant/LocalParticipant.d.ts.map +1 -1
package/dist/src/room/participant/publishUtils.d.ts.map +1 -1
package/dist/src/room/track/LocalTrack.d.ts.map +1 -1
package/dist/ts4.2/src/e2ee/constants.d.ts +0 -1
package/dist/ts4.2/src/e2ee/types.d.ts +1 -0
package/dist/ts4.2/src/index.d.ts +7 -6
package/package.json +1 -1
package/src/e2ee/constants.ts +1 -5
package/src/e2ee/types.ts +1 -0
package/src/e2ee/worker/FrameCryptor.ts +12 -0
package/src/e2ee/worker/ParticipantKeyHandler.ts +4 -2
package/src/e2ee/worker/e2ee.worker.ts +24 -3
package/src/index.ts +32 -29
package/src/room/PCTransport.ts +6 -18
package/src/room/RTCEngine.ts +4 -3
package/src/room/participant/LocalParticipant.ts +21 -6
package/src/room/participant/publishUtils.ts +38 -11
package/src/room/track/LocalTrack.ts +11 -9

package/dist/livekit-client.e2ee.worker.mjs CHANGED Viewed

@@ -327,10 +327,6 @@ livekitLogger.setDefaultLevel(LogLevel.info);
 const workerLogger = loglevelExports.getLogger('lk-e2ee');
 const ENCRYPTION_ALGORITHM = 'AES-GCM';
-// We use a ringbuffer of keys so we can change them and still decode packets that were
-// encrypted with an old key. We use a size of 16 which corresponds to the four bits
-// in the frame trailer.
-const KEYRING_SIZE = 16;
 // How many consecutive frames can fail decrypting before a particular key gets marked as invalid
 const DECRYPTION_FAILURE_TOLERANCE = 10;
 // We copy the first bytes of the VP8 payload unencrypted.
@@ -358,7 +354,8 @@ const KEY_PROVIDER_DEFAULTS = {
   sharedKey: false,
   ratchetSalt: SALT,
   ratchetWindowSize: 8,
-  failureTolerance: DECRYPTION_FAILURE_TOLERANCE
+  failureTolerance: DECRYPTION_FAILURE_TOLERANCE,
+  keyringSize: 16
 };
 const MAX_SIF_COUNT = 100;
 const MAX_SIF_DURATION = 2000;
@@ -1002,6 +999,12 @@ class FrameCryptor extends BaseFrameCryptor {
    * @param keys
    */
   setParticipant(id, keys) {
+    workerLogger.debug('setting new participant on cryptor', Object.assign(Object.assign({}, this.logContext), {
+      participant: id
+    }));
+    if (this.participantIdentity) {
+      workerLogger.error('cryptor has already a participant set, participant should have been unset before', Object.assign({}, this.logContext));
+    }
     this.participantIdentity = id;
     this.keys = keys;
     this.sifGuard.reset();
@@ -1497,7 +1500,10 @@ class ParticipantKeyHandler extends eventsExports.EventEmitter {
     this.decryptionFailureCount = 0;
     this._hasValidKey = true;
     this.currentKeyIndex = 0;
-    this.cryptoKeyRing = new Array(KEYRING_SIZE).fill(undefined);
+    if (keyProviderOptions.keyringSize < 1 || keyProviderOptions.keyringSize > 255) {
+      throw new TypeError('Keyring size needs to be between 1 and 256');
+    }
+    this.cryptoKeyRing = new Array(keyProviderOptions.keyringSize).fill(undefined);
     this.keyProviderOptions = keyProviderOptions;
     this.ratchetPromiseMap = new Map();
     this.participantIdentity = participantIdentity;
@@ -1649,7 +1655,7 @@ onmessage = ev => {
       break;
     case 'enable':
       setEncryptionEnabled(data.enabled, data.participantIdentity);
-      workerLogger.info('updated e2ee enabled status');
+      workerLogger.info("updated e2ee enabled status for ".concat(data.participantIdentity, " to ").concat(data.enabled));
       // acknowledge enable call successful
       postMessage(ev.data);
       break;
@@ -1709,7 +1715,18 @@ function handleRatchetRequest(data) {
   });
 }
 function getTrackCryptor(participantIdentity, trackId) {
-  let cryptor = participantCryptors.find(c => c.getTrackId() === trackId);
+  let cryptors = participantCryptors.filter(c => c.getTrackId() === trackId);
+  if (cryptors.length > 1) {
+    const debugInfo = cryptors.map(c => {
+      return {
+        participant: c.getParticipantIdentity()
+      };
+    }).join(',');
+    workerLogger.error("Found multiple cryptors for the same trackID ".concat(trackId, ". target participant: ").concat(participantIdentity, " "), {
+      participants: debugInfo
+    });
+  }
+  let cryptor = cryptors[0];
   if (!cryptor) {
     workerLogger.info('creating new cryptor for', {
       participantIdentity
@@ -1751,7 +1768,14 @@ function getSharedKeyHandler() {
   return sharedKeyHandler;
 }
 function unsetCryptorParticipant(trackId, participantIdentity) {
-  const cryptor = participantCryptors.find(c => c.getParticipantIdentity() === participantIdentity && c.getTrackId() === trackId);
+  const cryptors = participantCryptors.filter(c => c.getParticipantIdentity() === participantIdentity && c.getTrackId() === trackId);
+  if (cryptors.length > 1) {
+    workerLogger.error('Found multiple cryptors for the same participant and trackID combination', {
+      trackId,
+      participantIdentity
+    });
+  }
+  const cryptor = cryptors[0];
   if (!cryptor) {
     workerLogger.warn('Could not unset participant on cryptor', {
       trackId,