zapo-js 0.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +235 -0
- package/dist/appstate/WaAppStateCrypto.js +202 -0
- package/dist/appstate/WaAppStateSyncClient.js +808 -0
- package/dist/appstate/WaAppStateSyncResponseParser.js +71 -0
- package/dist/appstate/constants.js +23 -0
- package/dist/appstate/index.js +28 -0
- package/dist/appstate/store/sqlite.js +55 -0
- package/dist/appstate/types.js +2 -0
- package/dist/appstate/utils.js +84 -0
- package/dist/auth/WaAuthClient.js +266 -0
- package/dist/auth/flow/WaAuthCredentialsFlow.js +123 -0
- package/dist/auth/index.js +27 -0
- package/dist/auth/pairing/WaPairingCodeCrypto.js +75 -0
- package/dist/auth/pairing/WaPairingFlow.js +328 -0
- package/dist/auth/pairing/WaQrFlow.js +86 -0
- package/dist/auth/pairing/constants.js +5 -0
- package/dist/auth/types.js +2 -0
- package/dist/client/WaClient.js +749 -0
- package/dist/client/WaClientFactory.js +381 -0
- package/dist/client/coordinators/WaGroupCoordinator.js +191 -0
- package/dist/client/coordinators/WaIncomingNodeCoordinator.js +315 -0
- package/dist/client/coordinators/WaMessageDispatchCoordinator.js +1061 -0
- package/dist/client/coordinators/WaPassiveTasksCoordinator.js +200 -0
- package/dist/client/coordinators/WaRetryCoordinator.js +494 -0
- package/dist/client/coordinators/WaStreamControlCoordinator.js +123 -0
- package/dist/client/dirty.js +254 -0
- package/dist/client/events/chat.js +226 -0
- package/dist/client/events/group.js +410 -0
- package/dist/client/history-sync.js +122 -0
- package/dist/client/incoming.js +236 -0
- package/dist/client/index.js +5 -0
- package/dist/client/mailbox.js +49 -0
- package/dist/client/messages.js +152 -0
- package/dist/client/types.js +2 -0
- package/dist/crypto/core/constants.js +4 -0
- package/dist/crypto/core/encoding.js +29 -0
- package/dist/crypto/core/hkdf.js +26 -0
- package/dist/crypto/core/index.js +43 -0
- package/dist/crypto/core/keys.js +73 -0
- package/dist/crypto/core/nonce.js +18 -0
- package/dist/crypto/core/primitives.js +121 -0
- package/dist/crypto/core/random.js +32 -0
- package/dist/crypto/curves/Ed25519.js +42 -0
- package/dist/crypto/curves/X25519.js +64 -0
- package/dist/crypto/curves/constants.js +6 -0
- package/dist/crypto/curves/types.js +9 -0
- package/dist/crypto/index.js +22 -0
- package/dist/crypto/math/constants.js +44 -0
- package/dist/crypto/math/edwards.js +64 -0
- package/dist/crypto/math/le.js +20 -0
- package/dist/crypto/math/mod.js +38 -0
- package/dist/crypto/math/types.js +2 -0
- package/dist/esm/appstate/WaAppStateCrypto.js +198 -0
- package/dist/esm/appstate/WaAppStateSyncClient.js +803 -0
- package/dist/esm/appstate/WaAppStateSyncResponseParser.js +67 -0
- package/dist/esm/appstate/constants.js +20 -0
- package/dist/esm/appstate/index.js +6 -0
- package/dist/esm/appstate/store/sqlite.js +49 -0
- package/dist/esm/appstate/types.js +1 -0
- package/dist/esm/appstate/utils.js +75 -0
- package/dist/esm/auth/WaAuthClient.js +262 -0
- package/dist/esm/auth/flow/WaAuthCredentialsFlow.js +118 -0
- package/dist/esm/auth/index.js +5 -0
- package/dist/esm/auth/pairing/WaPairingCodeCrypto.js +71 -0
- package/dist/esm/auth/pairing/WaPairingFlow.js +324 -0
- package/dist/esm/auth/pairing/WaQrFlow.js +82 -0
- package/dist/esm/auth/pairing/constants.js +2 -0
- package/dist/esm/auth/types.js +1 -0
- package/dist/esm/client/WaClient.js +745 -0
- package/dist/esm/client/WaClientFactory.js +377 -0
- package/dist/esm/client/coordinators/WaGroupCoordinator.js +188 -0
- package/dist/esm/client/coordinators/WaIncomingNodeCoordinator.js +311 -0
- package/dist/esm/client/coordinators/WaMessageDispatchCoordinator.js +1057 -0
- package/dist/esm/client/coordinators/WaPassiveTasksCoordinator.js +196 -0
- package/dist/esm/client/coordinators/WaRetryCoordinator.js +490 -0
- package/dist/esm/client/coordinators/WaStreamControlCoordinator.js +120 -0
- package/dist/esm/client/dirty.js +250 -0
- package/dist/esm/client/events/chat.js +223 -0
- package/dist/esm/client/events/group.js +407 -0
- package/dist/esm/client/history-sync.js +119 -0
- package/dist/esm/client/incoming.js +227 -0
- package/dist/esm/client/index.js +1 -0
- package/dist/esm/client/mailbox.js +46 -0
- package/dist/esm/client/messages.js +148 -0
- package/dist/esm/client/types.js +1 -0
- package/dist/esm/crypto/core/constants.js +1 -0
- package/dist/esm/crypto/core/encoding.js +25 -0
- package/dist/esm/crypto/core/hkdf.js +22 -0
- package/dist/esm/crypto/core/index.js +11 -0
- package/dist/esm/crypto/core/keys.js +66 -0
- package/dist/esm/crypto/core/nonce.js +15 -0
- package/dist/esm/crypto/core/primitives.js +102 -0
- package/dist/esm/crypto/core/random.js +28 -0
- package/dist/esm/crypto/curves/Ed25519.js +38 -0
- package/dist/esm/crypto/curves/X25519.js +58 -0
- package/dist/esm/crypto/curves/constants.js +3 -0
- package/dist/esm/crypto/curves/types.js +6 -0
- package/dist/esm/crypto/index.js +3 -0
- package/dist/esm/crypto/math/constants.js +41 -0
- package/dist/esm/crypto/math/edwards.js +60 -0
- package/dist/esm/crypto/math/le.js +16 -0
- package/dist/esm/crypto/math/mod.js +31 -0
- package/dist/esm/crypto/math/types.js +1 -0
- package/dist/esm/index.js +6 -0
- package/dist/esm/infra/log/ConsoleLogger.js +40 -0
- package/dist/esm/infra/log/PinoLogger.js +73 -0
- package/dist/esm/infra/log/types.js +1 -0
- package/dist/esm/infra/perf/BoundedTaskQueue.js +62 -0
- package/dist/esm/media/WaMediaCrypto.js +224 -0
- package/dist/esm/media/WaMediaTransferClient.js +361 -0
- package/dist/esm/media/conn.js +33 -0
- package/dist/esm/media/constants.js +18 -0
- package/dist/esm/media/index.js +3 -0
- package/dist/esm/media/types.js +1 -0
- package/dist/esm/message/WaMessageClient.js +210 -0
- package/dist/esm/message/ack.js +46 -0
- package/dist/esm/message/content.js +20 -0
- package/dist/esm/message/device-sent.js +49 -0
- package/dist/esm/message/incoming.js +318 -0
- package/dist/esm/message/index.js +2 -0
- package/dist/esm/message/padding.js +20 -0
- package/dist/esm/message/phash.js +25 -0
- package/dist/esm/message/types.js +1 -0
- package/dist/esm/package.json +3 -0
- package/dist/esm/proto.js +3 -0
- package/dist/esm/protocol/appstate.js +34 -0
- package/dist/esm/protocol/auth.js +12 -0
- package/dist/esm/protocol/browser.js +41 -0
- package/dist/esm/protocol/constants.js +11 -0
- package/dist/esm/protocol/defaults.js +27 -0
- package/dist/esm/protocol/dirty.js +26 -0
- package/dist/esm/protocol/group.js +5 -0
- package/dist/esm/protocol/index.js +11 -0
- package/dist/esm/protocol/jid.js +94 -0
- package/dist/esm/protocol/media.js +20 -0
- package/dist/esm/protocol/message.js +16 -0
- package/dist/esm/protocol/nodes.js +83 -0
- package/dist/esm/protocol/notification.js +50 -0
- package/dist/esm/protocol/stream.js +60 -0
- package/dist/esm/retry/constants.js +20 -0
- package/dist/esm/retry/index.js +5 -0
- package/dist/esm/retry/outbound.js +83 -0
- package/dist/esm/retry/parse.js +130 -0
- package/dist/esm/retry/reason.js +50 -0
- package/dist/esm/retry/replay.js +177 -0
- package/dist/esm/retry/types.js +1 -0
- package/dist/esm/signal/api/SignalDeviceSyncApi.js +185 -0
- package/dist/esm/signal/api/SignalDigestSyncApi.js +179 -0
- package/dist/esm/signal/api/SignalIdentitySyncApi.js +111 -0
- package/dist/esm/signal/api/SignalMissingPreKeysSyncApi.js +141 -0
- package/dist/esm/signal/api/SignalRotateKeyApi.js +59 -0
- package/dist/esm/signal/api/SignalSessionSyncApi.js +187 -0
- package/dist/esm/signal/api/codec.js +23 -0
- package/dist/esm/signal/api/constants.js +9 -0
- package/dist/esm/signal/api/prekeys.js +9 -0
- package/dist/esm/signal/constants.js +16 -0
- package/dist/esm/signal/crypto/WaAdvSignature.js +60 -0
- package/dist/esm/signal/crypto/constants.js +8 -0
- package/dist/esm/signal/group/SenderKeyChain.js +97 -0
- package/dist/esm/signal/group/SenderKeyCodec.js +46 -0
- package/dist/esm/signal/group/SenderKeyManager.js +176 -0
- package/dist/esm/signal/index.js +11 -0
- package/dist/esm/signal/registration/keygen.js +31 -0
- package/dist/esm/signal/registration/utils.js +16 -0
- package/dist/esm/signal/session/SignalProtocol.js +122 -0
- package/dist/esm/signal/session/SignalRatchet.js +260 -0
- package/dist/esm/signal/session/SignalSerializer.js +63 -0
- package/dist/esm/signal/session/SignalSession.js +153 -0
- package/dist/esm/signal/store/sqlite.js +310 -0
- package/dist/esm/signal/types.js +1 -0
- package/dist/esm/store/contracts/appstate.store.js +1 -0
- package/dist/esm/store/contracts/auth.store.js +1 -0
- package/dist/esm/store/contracts/contact.store.js +1 -0
- package/dist/esm/store/contracts/device-list.store.js +1 -0
- package/dist/esm/store/contracts/message.store.js +1 -0
- package/dist/esm/store/contracts/participants.store.js +1 -0
- package/dist/esm/store/contracts/retry.store.js +1 -0
- package/dist/esm/store/contracts/sender-key.store.js +1 -0
- package/dist/esm/store/contracts/signal.store.js +1 -0
- package/dist/esm/store/contracts/thread.store.js +1 -0
- package/dist/esm/store/createStore.js +278 -0
- package/dist/esm/store/index.js +20 -0
- package/dist/esm/store/noop.store.js +43 -0
- package/dist/esm/store/providers/memory/appstate.store.js +101 -0
- package/dist/esm/store/providers/memory/contact.store.js +23 -0
- package/dist/esm/store/providers/memory/device-list.store.js +86 -0
- package/dist/esm/store/providers/memory/message.store.js +40 -0
- package/dist/esm/store/providers/memory/participants.store.js +61 -0
- package/dist/esm/store/providers/memory/retry.store.js +71 -0
- package/dist/esm/store/providers/memory/sender-key.store.js +88 -0
- package/dist/esm/store/providers/memory/signal.store.js +170 -0
- package/dist/esm/store/providers/memory/thread.store.js +34 -0
- package/dist/esm/store/providers/sqlite/BaseSqliteStore.js +37 -0
- package/dist/esm/store/providers/sqlite/appstate.store.js +169 -0
- package/dist/esm/store/providers/sqlite/auth.store.js +176 -0
- package/dist/esm/store/providers/sqlite/connection.js +240 -0
- package/dist/esm/store/providers/sqlite/contact.store.js +61 -0
- package/dist/esm/store/providers/sqlite/device-list.store.js +155 -0
- package/dist/esm/store/providers/sqlite/message.store.js +119 -0
- package/dist/esm/store/providers/sqlite/migrations.js +347 -0
- package/dist/esm/store/providers/sqlite/participants.store.js +85 -0
- package/dist/esm/store/providers/sqlite/retry.store.js +144 -0
- package/dist/esm/store/providers/sqlite/sender-key.store.js +203 -0
- package/dist/esm/store/providers/sqlite/signal.store.js +353 -0
- package/dist/esm/store/providers/sqlite/thread.store.js +72 -0
- package/dist/esm/store/types.js +1 -0
- package/dist/esm/transport/WaComms.js +527 -0
- package/dist/esm/transport/WaWebSocket.js +361 -0
- package/dist/esm/transport/binary/constants.js +96 -0
- package/dist/esm/transport/binary/decoder.js +275 -0
- package/dist/esm/transport/binary/encoder.js +210 -0
- package/dist/esm/transport/binary/index.js +4 -0
- package/dist/esm/transport/binary/tokens.js +1280 -0
- package/dist/esm/transport/index.js +6 -0
- package/dist/esm/transport/keepalive/WaKeepAlive.js +141 -0
- package/dist/esm/transport/node/WaNodeOrchestrator.js +143 -0
- package/dist/esm/transport/node/WaNodeTransport.js +64 -0
- package/dist/esm/transport/node/builders/accountSync.js +101 -0
- package/dist/esm/transport/node/builders/group.js +47 -0
- package/dist/esm/transport/node/builders/index.js +7 -0
- package/dist/esm/transport/node/builders/media.js +10 -0
- package/dist/esm/transport/node/builders/message.js +317 -0
- package/dist/esm/transport/node/builders/pairing.js +130 -0
- package/dist/esm/transport/node/builders/prekeys.js +102 -0
- package/dist/esm/transport/node/builders/retry.js +116 -0
- package/dist/esm/transport/node/helpers.js +37 -0
- package/dist/esm/transport/node/query.js +53 -0
- package/dist/esm/transport/node/xml.js +39 -0
- package/dist/esm/transport/noise/WaClientPayload.js +162 -0
- package/dist/esm/transport/noise/WaFrameCodec.js +121 -0
- package/dist/esm/transport/noise/WaNoiseCert.js +74 -0
- package/dist/esm/transport/noise/WaNoiseHandshake.js +57 -0
- package/dist/esm/transport/noise/WaNoiseSession.js +322 -0
- package/dist/esm/transport/noise/WaNoiseSocket.js +17 -0
- package/dist/esm/transport/noise/constants.js +8 -0
- package/dist/esm/transport/noise/types.js +1 -0
- package/dist/esm/transport/stream/parse.js +91 -0
- package/dist/esm/transport/types.js +1 -0
- package/dist/esm/util/async.js +5 -0
- package/dist/esm/util/base64.js +18 -0
- package/dist/esm/util/bytes.js +275 -0
- package/dist/esm/util/coercion.js +56 -0
- package/dist/esm/util/collections.js +27 -0
- package/dist/esm/util/primitives.js +32 -0
- package/dist/esm/util/runtime.js +15 -0
- package/dist/esm/util/signal-address.js +5 -0
- package/dist/index.js +52 -0
- package/dist/infra/log/ConsoleLogger.js +44 -0
- package/dist/infra/log/PinoLogger.js +111 -0
- package/dist/infra/log/types.js +2 -0
- package/dist/infra/perf/BoundedTaskQueue.js +67 -0
- package/dist/media/WaMediaCrypto.js +228 -0
- package/dist/media/WaMediaTransferClient.js +365 -0
- package/dist/media/conn.js +36 -0
- package/dist/media/constants.js +21 -0
- package/dist/media/index.js +9 -0
- package/dist/media/types.js +2 -0
- package/dist/message/WaMessageClient.js +214 -0
- package/dist/message/ack.js +52 -0
- package/dist/message/content.js +24 -0
- package/dist/message/device-sent.js +53 -0
- package/dist/message/incoming.js +321 -0
- package/dist/message/index.js +20 -0
- package/dist/message/padding.js +24 -0
- package/dist/message/phash.js +28 -0
- package/dist/message/types.js +2 -0
- package/dist/proto.js +5 -0
- package/dist/protocol/appstate.js +37 -0
- package/dist/protocol/auth.js +15 -0
- package/dist/protocol/browser.js +45 -0
- package/dist/protocol/constants.js +46 -0
- package/dist/protocol/defaults.js +30 -0
- package/dist/protocol/dirty.js +29 -0
- package/dist/protocol/group.js +8 -0
- package/dist/protocol/index.js +53 -0
- package/dist/protocol/jid.js +107 -0
- package/dist/protocol/media.js +24 -0
- package/dist/protocol/message.js +19 -0
- package/dist/protocol/nodes.js +86 -0
- package/dist/protocol/notification.js +53 -0
- package/dist/protocol/stream.js +63 -0
- package/dist/retry/constants.js +23 -0
- package/dist/retry/index.js +19 -0
- package/dist/retry/outbound.js +88 -0
- package/dist/retry/parse.js +133 -0
- package/dist/retry/reason.js +53 -0
- package/dist/retry/replay.js +181 -0
- package/dist/retry/types.js +2 -0
- package/dist/signal/api/SignalDeviceSyncApi.js +189 -0
- package/dist/signal/api/SignalDigestSyncApi.js +183 -0
- package/dist/signal/api/SignalIdentitySyncApi.js +115 -0
- package/dist/signal/api/SignalMissingPreKeysSyncApi.js +145 -0
- package/dist/signal/api/SignalRotateKeyApi.js +63 -0
- package/dist/signal/api/SignalSessionSyncApi.js +191 -0
- package/dist/signal/api/codec.js +27 -0
- package/dist/signal/api/constants.js +12 -0
- package/dist/signal/api/prekeys.js +16 -0
- package/dist/signal/constants.js +19 -0
- package/dist/signal/crypto/WaAdvSignature.js +72 -0
- package/dist/signal/crypto/constants.js +11 -0
- package/dist/signal/group/SenderKeyChain.js +101 -0
- package/dist/signal/group/SenderKeyCodec.js +50 -0
- package/dist/signal/group/SenderKeyManager.js +180 -0
- package/dist/signal/index.js +29 -0
- package/dist/signal/registration/keygen.js +37 -0
- package/dist/signal/registration/utils.js +19 -0
- package/dist/signal/session/SignalProtocol.js +126 -0
- package/dist/signal/session/SignalRatchet.js +268 -0
- package/dist/signal/session/SignalSerializer.js +69 -0
- package/dist/signal/session/SignalSession.js +165 -0
- package/dist/signal/store/sqlite.js +324 -0
- package/dist/signal/types.js +2 -0
- package/dist/store/contracts/appstate.store.js +2 -0
- package/dist/store/contracts/auth.store.js +2 -0
- package/dist/store/contracts/contact.store.js +2 -0
- package/dist/store/contracts/device-list.store.js +2 -0
- package/dist/store/contracts/message.store.js +2 -0
- package/dist/store/contracts/participants.store.js +2 -0
- package/dist/store/contracts/retry.store.js +2 -0
- package/dist/store/contracts/sender-key.store.js +2 -0
- package/dist/store/contracts/signal.store.js +2 -0
- package/dist/store/contracts/thread.store.js +2 -0
- package/dist/store/createStore.js +281 -0
- package/dist/store/index.js +43 -0
- package/dist/store/noop.store.js +46 -0
- package/dist/store/providers/memory/appstate.store.js +105 -0
- package/dist/store/providers/memory/contact.store.js +27 -0
- package/dist/store/providers/memory/device-list.store.js +90 -0
- package/dist/store/providers/memory/message.store.js +44 -0
- package/dist/store/providers/memory/participants.store.js +65 -0
- package/dist/store/providers/memory/retry.store.js +75 -0
- package/dist/store/providers/memory/sender-key.store.js +92 -0
- package/dist/store/providers/memory/signal.store.js +174 -0
- package/dist/store/providers/memory/thread.store.js +38 -0
- package/dist/store/providers/sqlite/BaseSqliteStore.js +41 -0
- package/dist/store/providers/sqlite/appstate.store.js +173 -0
- package/dist/store/providers/sqlite/auth.store.js +180 -0
- package/dist/store/providers/sqlite/connection.js +276 -0
- package/dist/store/providers/sqlite/contact.store.js +65 -0
- package/dist/store/providers/sqlite/device-list.store.js +159 -0
- package/dist/store/providers/sqlite/message.store.js +123 -0
- package/dist/store/providers/sqlite/migrations.js +350 -0
- package/dist/store/providers/sqlite/participants.store.js +89 -0
- package/dist/store/providers/sqlite/retry.store.js +148 -0
- package/dist/store/providers/sqlite/sender-key.store.js +207 -0
- package/dist/store/providers/sqlite/signal.store.js +357 -0
- package/dist/store/providers/sqlite/thread.store.js +76 -0
- package/dist/store/types.js +2 -0
- package/dist/transport/WaComms.js +531 -0
- package/dist/transport/WaWebSocket.js +365 -0
- package/dist/transport/binary/constants.js +99 -0
- package/dist/transport/binary/decoder.js +279 -0
- package/dist/transport/binary/encoder.js +214 -0
- package/dist/transport/binary/index.js +23 -0
- package/dist/transport/binary/tokens.js +1283 -0
- package/dist/transport/index.js +18 -0
- package/dist/transport/keepalive/WaKeepAlive.js +145 -0
- package/dist/transport/node/WaNodeOrchestrator.js +147 -0
- package/dist/transport/node/WaNodeTransport.js +68 -0
- package/dist/transport/node/builders/accountSync.js +110 -0
- package/dist/transport/node/builders/group.js +52 -0
- package/dist/transport/node/builders/index.js +39 -0
- package/dist/transport/node/builders/media.js +13 -0
- package/dist/transport/node/builders/message.js +328 -0
- package/dist/transport/node/builders/pairing.js +137 -0
- package/dist/transport/node/builders/prekeys.js +107 -0
- package/dist/transport/node/builders/retry.js +119 -0
- package/dist/transport/node/helpers.js +46 -0
- package/dist/transport/node/query.js +59 -0
- package/dist/transport/node/xml.js +42 -0
- package/dist/transport/noise/WaClientPayload.js +166 -0
- package/dist/transport/noise/WaFrameCodec.js +125 -0
- package/dist/transport/noise/WaNoiseCert.js +77 -0
- package/dist/transport/noise/WaNoiseHandshake.js +61 -0
- package/dist/transport/noise/WaNoiseSession.js +326 -0
- package/dist/transport/noise/WaNoiseSocket.js +21 -0
- package/dist/transport/noise/constants.js +11 -0
- package/dist/transport/noise/types.js +2 -0
- package/dist/transport/stream/parse.js +97 -0
- package/dist/transport/types.js +2 -0
- package/dist/types/appstate/WaAppStateCrypto.d.ts +59 -0
- package/dist/types/appstate/WaAppStateSyncClient.d.ts +63 -0
- package/dist/types/appstate/WaAppStateSyncResponseParser.d.ts +12 -0
- package/dist/types/appstate/constants.d.ts +14 -0
- package/dist/types/appstate/index.d.ts +7 -0
- package/dist/types/appstate/store/sqlite.d.ts +21 -0
- package/dist/types/appstate/types.d.ts +66 -0
- package/dist/types/appstate/utils.d.ts +10 -0
- package/dist/types/auth/WaAuthClient.d.ts +61 -0
- package/dist/types/auth/flow/WaAuthCredentialsFlow.d.ts +14 -0
- package/dist/types/auth/index.d.ts +6 -0
- package/dist/types/auth/pairing/WaPairingCodeCrypto.d.ts +17 -0
- package/dist/types/auth/pairing/WaPairingFlow.d.ts +48 -0
- package/dist/types/auth/pairing/WaQrFlow.d.ts +23 -0
- package/dist/types/auth/pairing/constants.d.ts +2 -0
- package/dist/types/auth/types.d.ts +48 -0
- package/dist/types/client/WaClient.d.ts +97 -0
- package/dist/types/client/WaClientFactory.d.ts +83 -0
- package/dist/types/client/coordinators/WaGroupCoordinator.d.ts +48 -0
- package/dist/types/client/coordinators/WaIncomingNodeCoordinator.d.ts +60 -0
- package/dist/types/client/coordinators/WaMessageDispatchCoordinator.d.ts +90 -0
- package/dist/types/client/coordinators/WaPassiveTasksCoordinator.d.ts +43 -0
- package/dist/types/client/coordinators/WaRetryCoordinator.d.ts +61 -0
- package/dist/types/client/coordinators/WaStreamControlCoordinator.d.ts +17 -0
- package/dist/types/client/dirty.d.ts +17 -0
- package/dist/types/client/events/chat.d.ts +3 -0
- package/dist/types/client/events/group.d.ts +7 -0
- package/dist/types/client/history-sync.d.ts +17 -0
- package/dist/types/client/incoming.d.ts +35 -0
- package/dist/types/client/index.d.ts +2 -0
- package/dist/types/client/mailbox.d.ts +12 -0
- package/dist/types/client/messages.d.ts +17 -0
- package/dist/types/client/types.d.ts +235 -0
- package/dist/types/crypto/core/constants.d.ts +1 -0
- package/dist/types/crypto/core/encoding.d.ts +11 -0
- package/dist/types/crypto/core/hkdf.d.ts +8 -0
- package/dist/types/crypto/core/index.d.ts +11 -0
- package/dist/types/crypto/core/keys.d.ts +20 -0
- package/dist/types/crypto/core/nonce.d.ts +5 -0
- package/dist/types/crypto/core/primitives.d.ts +25 -0
- package/dist/types/crypto/core/random.d.ts +8 -0
- package/dist/types/crypto/curves/Ed25519.d.ts +7 -0
- package/dist/types/crypto/curves/X25519.d.ts +8 -0
- package/dist/types/crypto/curves/constants.d.ts +2 -0
- package/dist/types/crypto/curves/types.d.ts +10 -0
- package/dist/types/crypto/index.d.ts +3 -0
- package/dist/types/crypto/math/constants.d.ts +7 -0
- package/dist/types/crypto/math/edwards.d.ts +3 -0
- package/dist/types/crypto/math/le.d.ts +2 -0
- package/dist/types/crypto/math/mod.d.ts +5 -0
- package/dist/types/crypto/math/types.d.ts +6 -0
- package/dist/types/index.d.ts +10 -0
- package/dist/types/infra/log/ConsoleLogger.d.ts +11 -0
- package/dist/types/infra/log/PinoLogger.d.ts +30 -0
- package/dist/types/infra/log/types.d.ts +9 -0
- package/dist/types/infra/perf/BoundedTaskQueue.d.ts +19 -0
- package/dist/types/media/WaMediaCrypto.d.ts +12 -0
- package/dist/types/media/WaMediaTransferClient.d.ts +81 -0
- package/dist/types/media/conn.d.ts +3 -0
- package/dist/types/media/constants.d.ts +10 -0
- package/dist/types/media/index.d.ts +4 -0
- package/dist/types/media/types.d.ts +56 -0
- package/dist/types/message/WaMessageClient.d.ts +29 -0
- package/dist/types/message/ack.d.ts +5 -0
- package/dist/types/message/content.d.ts +4 -0
- package/dist/types/message/device-sent.d.ts +3 -0
- package/dist/types/message/incoming.d.ts +18 -0
- package/dist/types/message/index.d.ts +2 -0
- package/dist/types/message/padding.d.ts +2 -0
- package/dist/types/message/phash.d.ts +1 -0
- package/dist/types/message/types.d.ts +58 -0
- package/dist/types/proto.d.ts +2 -0
- package/dist/types/protocol/appstate.d.ts +34 -0
- package/dist/types/protocol/auth.d.ts +12 -0
- package/dist/types/protocol/browser.d.ts +22 -0
- package/dist/types/protocol/constants.d.ts +11 -0
- package/dist/types/protocol/defaults.d.ts +26 -0
- package/dist/types/protocol/dirty.d.ts +15 -0
- package/dist/types/protocol/group.d.ts +6 -0
- package/dist/types/protocol/index.d.ts +11 -0
- package/dist/types/protocol/jid.d.ts +19 -0
- package/dist/types/protocol/media.d.ts +15 -0
- package/dist/types/protocol/message.d.ts +16 -0
- package/dist/types/protocol/nodes.d.ts +83 -0
- package/dist/types/protocol/notification.d.ts +50 -0
- package/dist/types/protocol/stream.d.ts +60 -0
- package/dist/types/retry/constants.d.ts +21 -0
- package/dist/types/retry/index.d.ts +7 -0
- package/dist/types/retry/outbound.d.ts +4 -0
- package/dist/types/retry/parse.d.ts +3 -0
- package/dist/types/retry/reason.d.ts +2 -0
- package/dist/types/retry/replay.d.ts +30 -0
- package/dist/types/retry/types.d.ts +70 -0
- package/dist/types/signal/api/SignalDeviceSyncApi.d.ts +31 -0
- package/dist/types/signal/api/SignalDigestSyncApi.d.ts +27 -0
- package/dist/types/signal/api/SignalIdentitySyncApi.d.ts +26 -0
- package/dist/types/signal/api/SignalMissingPreKeysSyncApi.d.ts +39 -0
- package/dist/types/signal/api/SignalRotateKeyApi.d.ts +22 -0
- package/dist/types/signal/api/SignalSessionSyncApi.d.ts +38 -0
- package/dist/types/signal/api/codec.d.ts +3 -0
- package/dist/types/signal/api/constants.d.ts +9 -0
- package/dist/types/signal/api/prekeys.d.ts +6 -0
- package/dist/types/signal/constants.d.ts +14 -0
- package/dist/types/signal/crypto/WaAdvSignature.d.ts +7 -0
- package/dist/types/signal/crypto/constants.d.ts +5 -0
- package/dist/types/signal/group/SenderKeyChain.d.ts +11 -0
- package/dist/types/signal/group/SenderKeyCodec.d.ts +14 -0
- package/dist/types/signal/group/SenderKeyManager.d.ts +22 -0
- package/dist/types/signal/index.d.ts +12 -0
- package/dist/types/signal/registration/keygen.d.ts +5 -0
- package/dist/types/signal/registration/utils.d.ts +9 -0
- package/dist/types/signal/session/SignalProtocol.d.ts +22 -0
- package/dist/types/signal/session/SignalRatchet.d.ts +25 -0
- package/dist/types/signal/session/SignalSerializer.d.ts +6 -0
- package/dist/types/signal/session/SignalSession.d.ts +43 -0
- package/dist/types/signal/store/sqlite.d.ts +72 -0
- package/dist/types/signal/types.d.ts +110 -0
- package/dist/types/store/contracts/appstate.store.d.ts +22 -0
- package/dist/types/store/contracts/auth.store.d.ts +6 -0
- package/dist/types/store/contracts/contact.store.d.ts +14 -0
- package/dist/types/store/contracts/device-list.store.d.ts +16 -0
- package/dist/types/store/contracts/message.store.d.ts +18 -0
- package/dist/types/store/contracts/participants.store.d.ts +14 -0
- package/dist/types/store/contracts/retry.store.d.ts +11 -0
- package/dist/types/store/contracts/sender-key.store.d.ts +16 -0
- package/dist/types/store/contracts/signal.store.d.ts +31 -0
- package/dist/types/store/contracts/thread.store.d.ts +17 -0
- package/dist/types/store/createStore.d.ts +2 -0
- package/dist/types/store/index.d.ts +31 -0
- package/dist/types/store/noop.store.d.ts +10 -0
- package/dist/types/store/providers/memory/appstate.store.d.ts +21 -0
- package/dist/types/store/providers/memory/contact.store.d.ts +13 -0
- package/dist/types/store/providers/memory/device-list.store.d.ts +20 -0
- package/dist/types/store/providers/memory/message.store.d.ts +14 -0
- package/dist/types/store/providers/memory/participants.store.d.ts +18 -0
- package/dist/types/store/providers/memory/retry.store.d.ts +18 -0
- package/dist/types/store/providers/memory/sender-key.store.d.ts +28 -0
- package/dist/types/store/providers/memory/signal.store.d.ts +51 -0
- package/dist/types/store/providers/memory/thread.store.d.ts +14 -0
- package/dist/types/store/providers/sqlite/BaseSqliteStore.d.ts +12 -0
- package/dist/types/store/providers/sqlite/appstate.store.d.ts +15 -0
- package/dist/types/store/providers/sqlite/auth.store.d.ts +10 -0
- package/dist/types/store/providers/sqlite/connection.d.ts +10 -0
- package/dist/types/store/providers/sqlite/contact.store.d.ts +10 -0
- package/dist/types/store/providers/sqlite/device-list.store.d.ts +18 -0
- package/dist/types/store/providers/sqlite/message.store.d.ts +11 -0
- package/dist/types/store/providers/sqlite/migrations.d.ts +3 -0
- package/dist/types/store/providers/sqlite/participants.store.d.ts +13 -0
- package/dist/types/store/providers/sqlite/retry.store.d.ts +16 -0
- package/dist/types/store/providers/sqlite/sender-key.store.d.ts +25 -0
- package/dist/types/store/providers/sqlite/signal.store.d.ts +46 -0
- package/dist/types/store/providers/sqlite/thread.store.d.ts +11 -0
- package/dist/types/store/types.d.ts +103 -0
- package/dist/types/transport/WaComms.d.ts +61 -0
- package/dist/types/transport/WaWebSocket.d.ts +36 -0
- package/dist/types/transport/binary/constants.d.ts +49 -0
- package/dist/types/transport/binary/decoder.d.ts +3 -0
- package/dist/types/transport/binary/encoder.d.ts +3 -0
- package/dist/types/transport/binary/index.d.ts +4 -0
- package/dist/types/transport/binary/tokens.d.ts +11 -0
- package/dist/types/transport/index.d.ts +7 -0
- package/dist/types/transport/keepalive/WaKeepAlive.d.ts +39 -0
- package/dist/types/transport/node/WaNodeOrchestrator.d.ts +28 -0
- package/dist/types/transport/node/WaNodeTransport.d.ts +22 -0
- package/dist/types/transport/node/builders/accountSync.d.ts +11 -0
- package/dist/types/transport/node/builders/group.d.ts +16 -0
- package/dist/types/transport/node/builders/index.d.ts +7 -0
- package/dist/types/transport/node/builders/media.d.ts +2 -0
- package/dist/types/transport/node/builders/message.d.ts +52 -0
- package/dist/types/transport/node/builders/pairing.d.ts +18 -0
- package/dist/types/transport/node/builders/prekeys.d.ts +5 -0
- package/dist/types/transport/node/builders/retry.d.ts +18 -0
- package/dist/types/transport/node/helpers.d.ts +8 -0
- package/dist/types/transport/node/query.d.ts +10 -0
- package/dist/types/transport/node/xml.d.ts +2 -0
- package/dist/types/transport/noise/WaClientPayload.d.ts +3 -0
- package/dist/types/transport/noise/WaFrameCodec.d.ts +9 -0
- package/dist/types/transport/noise/WaNoiseCert.d.ts +1 -0
- package/dist/types/transport/noise/WaNoiseHandshake.d.ts +14 -0
- package/dist/types/transport/noise/WaNoiseSession.d.ts +33 -0
- package/dist/types/transport/noise/WaNoiseSocket.d.ts +10 -0
- package/dist/types/transport/noise/constants.d.ts +7 -0
- package/dist/types/transport/noise/types.d.ts +23 -0
- package/dist/types/transport/stream/parse.d.ts +23 -0
- package/dist/types/transport/types.d.ts +71 -0
- package/dist/types/util/async.d.ts +1 -0
- package/dist/types/util/base64.d.ts +4 -0
- package/dist/types/util/bytes.d.ts +28 -0
- package/dist/types/util/coercion.d.ts +8 -0
- package/dist/types/util/collections.d.ts +3 -0
- package/dist/types/util/primitives.d.ts +7 -0
- package/dist/types/util/runtime.d.ts +2 -0
- package/dist/types/util/signal-address.d.ts +2 -0
- package/dist/util/async.js +8 -0
- package/dist/util/base64.js +24 -0
- package/dist/util/bytes.js +291 -0
- package/dist/util/coercion.js +66 -0
- package/dist/util/collections.js +32 -0
- package/dist/util/primitives.js +37 -0
- package/dist/util/runtime.js +19 -0
- package/dist/util/signal-address.js +8 -0
- package/package.json +150 -0
- package/proto/index.d.ts +10861 -0
- package/proto/index.js +1 -0
- package/scripts/check-node-version.cjs +55 -0
|
@@ -0,0 +1,180 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.SenderKeyManager = void 0;
|
|
4
|
+
const _crypto_1 = require("../../crypto/index.js");
|
|
5
|
+
const _proto_1 = require("../../proto.js");
|
|
6
|
+
const constants_1 = require("../constants");
|
|
7
|
+
const WaAdvSignature_1 = require("../crypto/WaAdvSignature");
|
|
8
|
+
const SenderKeyChain_1 = require("../group/SenderKeyChain");
|
|
9
|
+
const SenderKeyCodec_1 = require("../group/SenderKeyCodec");
|
|
10
|
+
const bytes_1 = require("../../util/bytes");
|
|
11
|
+
function extractAesCbcParams(seed) {
|
|
12
|
+
if (seed.length < 48) {
|
|
13
|
+
throw new Error('sender key message seed must be at least 48 bytes');
|
|
14
|
+
}
|
|
15
|
+
return {
|
|
16
|
+
iv: seed.subarray(0, 16),
|
|
17
|
+
keyBytes: seed.subarray(16, 48)
|
|
18
|
+
};
|
|
19
|
+
}
|
|
20
|
+
async function aesCbcEncryptFromSeed(seed, plaintext) {
|
|
21
|
+
const { keyBytes, iv } = extractAesCbcParams(seed);
|
|
22
|
+
return (0, _crypto_1.aesCbcEncrypt)(await (0, _crypto_1.importAesCbcKey)(keyBytes), iv, plaintext);
|
|
23
|
+
}
|
|
24
|
+
async function aesCbcDecryptFromSeed(seed, ciphertext) {
|
|
25
|
+
const { keyBytes, iv } = extractAesCbcParams(seed);
|
|
26
|
+
return (0, _crypto_1.aesCbcDecrypt)(await (0, _crypto_1.importAesCbcKey)(keyBytes), iv, ciphertext);
|
|
27
|
+
}
|
|
28
|
+
class SenderKeyManager {
|
|
29
|
+
constructor(store) {
|
|
30
|
+
this.store = store;
|
|
31
|
+
}
|
|
32
|
+
async createSenderKeyDistributionMessage(groupId, sender) {
|
|
33
|
+
const senderKey = await this.ensureSenderKey(groupId, sender);
|
|
34
|
+
const distributionProto = _proto_1.proto.SenderKeyDistributionMessage.encode({
|
|
35
|
+
id: senderKey.keyId,
|
|
36
|
+
iteration: senderKey.iteration,
|
|
37
|
+
chainKey: senderKey.chainKey,
|
|
38
|
+
signingKey: senderKey.signingPublicKey
|
|
39
|
+
}).finish();
|
|
40
|
+
const payload = (0, _crypto_1.prependVersion)(distributionProto, constants_1.SIGNAL_GROUP_VERSION);
|
|
41
|
+
await this.store.upsertSenderKeyDistribution({
|
|
42
|
+
groupId,
|
|
43
|
+
sender,
|
|
44
|
+
keyId: senderKey.keyId,
|
|
45
|
+
timestampMs: Date.now()
|
|
46
|
+
});
|
|
47
|
+
return {
|
|
48
|
+
groupId,
|
|
49
|
+
axolotlSenderKeyDistributionMessage: payload
|
|
50
|
+
};
|
|
51
|
+
}
|
|
52
|
+
async filterParticipantsNeedingDistribution(groupId, sender, participants) {
|
|
53
|
+
if (participants.length === 0) {
|
|
54
|
+
return [];
|
|
55
|
+
}
|
|
56
|
+
const senderKey = await this.ensureSenderKey(groupId, sender);
|
|
57
|
+
const distributed = await this.store.getDeviceSenderKeyDistributions(groupId, participants);
|
|
58
|
+
return participants.filter((_, index) => {
|
|
59
|
+
const record = distributed[index];
|
|
60
|
+
return !record || record.keyId !== senderKey.keyId;
|
|
61
|
+
});
|
|
62
|
+
}
|
|
63
|
+
async markSenderKeyDistributed(groupId, sender, participants) {
|
|
64
|
+
if (participants.length === 0) {
|
|
65
|
+
return;
|
|
66
|
+
}
|
|
67
|
+
const senderKey = await this.ensureSenderKey(groupId, sender);
|
|
68
|
+
const timestampMs = Date.now();
|
|
69
|
+
await this.store.upsertSenderKeyDistributions(participants.map((participant) => ({
|
|
70
|
+
groupId,
|
|
71
|
+
sender: participant,
|
|
72
|
+
keyId: senderKey.keyId,
|
|
73
|
+
timestampMs
|
|
74
|
+
})));
|
|
75
|
+
}
|
|
76
|
+
async processSenderKeyDistributionPayload(groupId, sender, payload) {
|
|
77
|
+
if (groupId.length === 0) {
|
|
78
|
+
throw new Error('sender key distribution missing groupId');
|
|
79
|
+
}
|
|
80
|
+
const parsed = (0, SenderKeyCodec_1.parseDistributionPayload)(payload);
|
|
81
|
+
const record = {
|
|
82
|
+
groupId,
|
|
83
|
+
sender,
|
|
84
|
+
keyId: parsed.keyId,
|
|
85
|
+
iteration: parsed.iteration,
|
|
86
|
+
chainKey: parsed.chainKey,
|
|
87
|
+
signingPublicKey: parsed.signingPublicKey,
|
|
88
|
+
unusedMessageKeys: []
|
|
89
|
+
};
|
|
90
|
+
await this.store.upsertSenderKey(record);
|
|
91
|
+
await this.store.upsertSenderKeyDistribution({
|
|
92
|
+
groupId,
|
|
93
|
+
sender,
|
|
94
|
+
keyId: parsed.keyId,
|
|
95
|
+
timestampMs: Date.now()
|
|
96
|
+
});
|
|
97
|
+
return record;
|
|
98
|
+
}
|
|
99
|
+
async encryptGroupMessage(groupId, sender, plaintext) {
|
|
100
|
+
const senderKey = await this.ensureSenderKey(groupId, sender);
|
|
101
|
+
if (!senderKey.signingPrivateKey) {
|
|
102
|
+
throw new Error('sender private signing key is missing');
|
|
103
|
+
}
|
|
104
|
+
const derived = await (0, SenderKeyChain_1.deriveSenderKeyMsgKey)(senderKey.iteration, senderKey.chainKey);
|
|
105
|
+
const messagePayload = await aesCbcEncryptFromSeed(derived.messageKey.seed, plaintext);
|
|
106
|
+
const senderKeyMessage = _proto_1.proto.SenderKeyMessage.encode({
|
|
107
|
+
id: senderKey.keyId,
|
|
108
|
+
iteration: derived.messageKey.iteration,
|
|
109
|
+
ciphertext: messagePayload
|
|
110
|
+
}).finish();
|
|
111
|
+
const versionedContent = (0, _crypto_1.prependVersion)(senderKeyMessage, constants_1.SIGNAL_GROUP_VERSION);
|
|
112
|
+
const signature = await (0, WaAdvSignature_1.signSignalMessage)(senderKey.signingPrivateKey, versionedContent);
|
|
113
|
+
if (signature.length !== constants_1.SIGNATURE_SIZE) {
|
|
114
|
+
throw new Error(`invalid sender key signature length ${signature.length}`);
|
|
115
|
+
}
|
|
116
|
+
const ciphertext = (0, bytes_1.concatBytes)([versionedContent, signature]);
|
|
117
|
+
await this.store.upsertSenderKey({
|
|
118
|
+
...senderKey,
|
|
119
|
+
chainKey: derived.nextChainKey,
|
|
120
|
+
iteration: derived.messageKey.iteration + 1
|
|
121
|
+
});
|
|
122
|
+
return {
|
|
123
|
+
groupId,
|
|
124
|
+
sender,
|
|
125
|
+
keyId: senderKey.keyId,
|
|
126
|
+
iteration: derived.messageKey.iteration,
|
|
127
|
+
ciphertext
|
|
128
|
+
};
|
|
129
|
+
}
|
|
130
|
+
async decryptGroupMessage(payload) {
|
|
131
|
+
const parsed = (0, SenderKeyCodec_1.parseSenderKeyMessage)(payload.ciphertext);
|
|
132
|
+
const senderKey = await this.store.getDeviceSenderKey(payload.groupId, payload.sender);
|
|
133
|
+
if (!senderKey) {
|
|
134
|
+
throw new Error('missing sender key');
|
|
135
|
+
}
|
|
136
|
+
if (senderKey.keyId !== parsed.keyId) {
|
|
137
|
+
throw new Error('sender key id mismatch');
|
|
138
|
+
}
|
|
139
|
+
if (payload.keyId !== undefined &&
|
|
140
|
+
payload.keyId !== null &&
|
|
141
|
+
parsed.keyId !== payload.keyId) {
|
|
142
|
+
throw new Error('sender key id mismatch');
|
|
143
|
+
}
|
|
144
|
+
if (payload.iteration !== undefined &&
|
|
145
|
+
payload.iteration !== null &&
|
|
146
|
+
parsed.iteration !== payload.iteration) {
|
|
147
|
+
throw new Error('sender key iteration mismatch');
|
|
148
|
+
}
|
|
149
|
+
const signedContent = parsed.versionContentMac.subarray(0, parsed.versionContentMac.length - constants_1.SIGNATURE_SIZE);
|
|
150
|
+
const signature = parsed.versionContentMac.subarray(parsed.versionContentMac.length - constants_1.SIGNATURE_SIZE);
|
|
151
|
+
const validSignature = await (0, WaAdvSignature_1.verifySignalSignature)(senderKey.signingPublicKey, signedContent, signature);
|
|
152
|
+
if (!validSignature) {
|
|
153
|
+
throw new Error('invalid sender key signature');
|
|
154
|
+
}
|
|
155
|
+
const selected = await (0, SenderKeyChain_1.selectMessageKey)(senderKey, parsed.iteration);
|
|
156
|
+
const plaintext = await aesCbcDecryptFromSeed(selected.messageKey.seed, parsed.ciphertext);
|
|
157
|
+
await this.store.upsertSenderKey(selected.updatedRecord);
|
|
158
|
+
return plaintext;
|
|
159
|
+
}
|
|
160
|
+
async ensureSenderKey(groupId, sender) {
|
|
161
|
+
const existing = await this.store.getDeviceSenderKey(groupId, sender);
|
|
162
|
+
if (existing) {
|
|
163
|
+
return existing;
|
|
164
|
+
}
|
|
165
|
+
const signingKeyPair = await _crypto_1.X25519.generateKeyPair();
|
|
166
|
+
const created = {
|
|
167
|
+
groupId,
|
|
168
|
+
sender,
|
|
169
|
+
keyId: await (0, _crypto_1.randomIntAsync)(1, 2147483647),
|
|
170
|
+
iteration: 0,
|
|
171
|
+
chainKey: await (0, _crypto_1.randomBytesAsync)(32),
|
|
172
|
+
signingPublicKey: (0, _crypto_1.toSerializedPubKey)(signingKeyPair.pubKey),
|
|
173
|
+
signingPrivateKey: signingKeyPair.privKey,
|
|
174
|
+
unusedMessageKeys: []
|
|
175
|
+
};
|
|
176
|
+
await this.store.upsertSenderKey(created);
|
|
177
|
+
return created;
|
|
178
|
+
}
|
|
179
|
+
}
|
|
180
|
+
exports.SenderKeyManager = SenderKeyManager;
|
|
@@ -0,0 +1,29 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.SignalProtocol = exports.createAndStoreInitialKeys = exports.SenderKeyManager = exports.SignalSessionSyncApi = exports.SignalRotateKeyApi = exports.SignalMissingPreKeysSyncApi = exports.SignalIdentitySyncApi = exports.SignalDeviceSyncApi = exports.SignalDigestSyncApi = exports.parsePreKeyUploadFailure = exports.buildPreKeyUploadIq = exports.generateSignedPreKey = exports.generateRegistrationInfo = exports.generateRegistrationId = exports.generatePreKeyPair = void 0;
|
|
4
|
+
var keygen_1 = require("./registration/keygen");
|
|
5
|
+
Object.defineProperty(exports, "generatePreKeyPair", { enumerable: true, get: function () { return keygen_1.generatePreKeyPair; } });
|
|
6
|
+
Object.defineProperty(exports, "generateRegistrationId", { enumerable: true, get: function () { return keygen_1.generateRegistrationId; } });
|
|
7
|
+
Object.defineProperty(exports, "generateRegistrationInfo", { enumerable: true, get: function () { return keygen_1.generateRegistrationInfo; } });
|
|
8
|
+
Object.defineProperty(exports, "generateSignedPreKey", { enumerable: true, get: function () { return keygen_1.generateSignedPreKey; } });
|
|
9
|
+
var prekeys_1 = require("./api/prekeys");
|
|
10
|
+
Object.defineProperty(exports, "buildPreKeyUploadIq", { enumerable: true, get: function () { return prekeys_1.buildPreKeyUploadIq; } });
|
|
11
|
+
Object.defineProperty(exports, "parsePreKeyUploadFailure", { enumerable: true, get: function () { return prekeys_1.parsePreKeyUploadFailure; } });
|
|
12
|
+
var SignalDigestSyncApi_1 = require("./api/SignalDigestSyncApi");
|
|
13
|
+
Object.defineProperty(exports, "SignalDigestSyncApi", { enumerable: true, get: function () { return SignalDigestSyncApi_1.SignalDigestSyncApi; } });
|
|
14
|
+
var SignalDeviceSyncApi_1 = require("./api/SignalDeviceSyncApi");
|
|
15
|
+
Object.defineProperty(exports, "SignalDeviceSyncApi", { enumerable: true, get: function () { return SignalDeviceSyncApi_1.SignalDeviceSyncApi; } });
|
|
16
|
+
var SignalIdentitySyncApi_1 = require("./api/SignalIdentitySyncApi");
|
|
17
|
+
Object.defineProperty(exports, "SignalIdentitySyncApi", { enumerable: true, get: function () { return SignalIdentitySyncApi_1.SignalIdentitySyncApi; } });
|
|
18
|
+
var SignalMissingPreKeysSyncApi_1 = require("./api/SignalMissingPreKeysSyncApi");
|
|
19
|
+
Object.defineProperty(exports, "SignalMissingPreKeysSyncApi", { enumerable: true, get: function () { return SignalMissingPreKeysSyncApi_1.SignalMissingPreKeysSyncApi; } });
|
|
20
|
+
var SignalRotateKeyApi_1 = require("./api/SignalRotateKeyApi");
|
|
21
|
+
Object.defineProperty(exports, "SignalRotateKeyApi", { enumerable: true, get: function () { return SignalRotateKeyApi_1.SignalRotateKeyApi; } });
|
|
22
|
+
var SignalSessionSyncApi_1 = require("./api/SignalSessionSyncApi");
|
|
23
|
+
Object.defineProperty(exports, "SignalSessionSyncApi", { enumerable: true, get: function () { return SignalSessionSyncApi_1.SignalSessionSyncApi; } });
|
|
24
|
+
var SenderKeyManager_1 = require("./group/SenderKeyManager");
|
|
25
|
+
Object.defineProperty(exports, "SenderKeyManager", { enumerable: true, get: function () { return SenderKeyManager_1.SenderKeyManager; } });
|
|
26
|
+
var utils_1 = require("./registration/utils");
|
|
27
|
+
Object.defineProperty(exports, "createAndStoreInitialKeys", { enumerable: true, get: function () { return utils_1.createAndStoreInitialKeys; } });
|
|
28
|
+
var SignalProtocol_1 = require("./session/SignalProtocol");
|
|
29
|
+
Object.defineProperty(exports, "SignalProtocol", { enumerable: true, get: function () { return SignalProtocol_1.SignalProtocol; } });
|
|
@@ -0,0 +1,37 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.generateRegistrationInfo = generateRegistrationInfo;
|
|
4
|
+
exports.generatePreKeyPair = generatePreKeyPair;
|
|
5
|
+
exports.generateSignedPreKey = generateSignedPreKey;
|
|
6
|
+
exports.generateRegistrationId = generateRegistrationId;
|
|
7
|
+
const _crypto_1 = require("../../crypto/index.js");
|
|
8
|
+
const keys_1 = require("../../crypto/core/keys");
|
|
9
|
+
const X25519_1 = require("../../crypto/curves/X25519");
|
|
10
|
+
const WaAdvSignature_1 = require("../crypto/WaAdvSignature");
|
|
11
|
+
async function generateRegistrationInfo() {
|
|
12
|
+
return {
|
|
13
|
+
registrationId: await generateRegistrationId(),
|
|
14
|
+
identityKeyPair: await X25519_1.X25519.generateKeyPair()
|
|
15
|
+
};
|
|
16
|
+
}
|
|
17
|
+
async function generatePreKeyPair(keyId) {
|
|
18
|
+
return {
|
|
19
|
+
keyId,
|
|
20
|
+
keyPair: await X25519_1.X25519.generateKeyPair(),
|
|
21
|
+
uploaded: false
|
|
22
|
+
};
|
|
23
|
+
}
|
|
24
|
+
async function generateSignedPreKey(keyId, signingPrivateKey) {
|
|
25
|
+
const keyPair = await X25519_1.X25519.generateKeyPair();
|
|
26
|
+
const serializedPubKey = (0, keys_1.toSerializedPubKey)(keyPair.pubKey);
|
|
27
|
+
const signature = await (0, WaAdvSignature_1.signSignalMessage)(signingPrivateKey, serializedPubKey);
|
|
28
|
+
return {
|
|
29
|
+
keyId,
|
|
30
|
+
keyPair,
|
|
31
|
+
signature,
|
|
32
|
+
uploaded: false
|
|
33
|
+
};
|
|
34
|
+
}
|
|
35
|
+
async function generateRegistrationId() {
|
|
36
|
+
return await (0, _crypto_1.randomIntAsync)(1, 16381);
|
|
37
|
+
}
|
|
@@ -0,0 +1,19 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.createAndStoreInitialKeys = createAndStoreInitialKeys;
|
|
4
|
+
const keygen_1 = require("../registration/keygen");
|
|
5
|
+
async function createAndStoreInitialKeys(store) {
|
|
6
|
+
const [registrationInfo, firstPreKey] = await Promise.all([
|
|
7
|
+
(0, keygen_1.generateRegistrationInfo)(),
|
|
8
|
+
(0, keygen_1.generatePreKeyPair)(1)
|
|
9
|
+
]);
|
|
10
|
+
const signedPreKey = await (0, keygen_1.generateSignedPreKey)(1, registrationInfo.identityKeyPair.privKey);
|
|
11
|
+
await store.setRegistrationInfo(registrationInfo);
|
|
12
|
+
await store.setSignedPreKey(signedPreKey);
|
|
13
|
+
await store.getOrGenSinglePreKey(async () => firstPreKey);
|
|
14
|
+
return {
|
|
15
|
+
registrationInfo,
|
|
16
|
+
signedPreKey,
|
|
17
|
+
firstPreKey
|
|
18
|
+
};
|
|
19
|
+
}
|
|
@@ -0,0 +1,126 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.SignalProtocol = void 0;
|
|
4
|
+
const _crypto_1 = require("../../crypto/index.js");
|
|
5
|
+
const ConsoleLogger_1 = require("../../infra/log/ConsoleLogger");
|
|
6
|
+
const constants_1 = require("../constants");
|
|
7
|
+
const SignalRatchet_1 = require("../session/SignalRatchet");
|
|
8
|
+
const SignalSerializer_1 = require("../session/SignalSerializer");
|
|
9
|
+
const SignalSession_1 = require("../session/SignalSession");
|
|
10
|
+
const bytes_1 = require("../../util/bytes");
|
|
11
|
+
class SignalProtocol {
|
|
12
|
+
constructor(store, logger = new ConsoleLogger_1.ConsoleLogger('info')) {
|
|
13
|
+
this.store = store;
|
|
14
|
+
this.logger = logger;
|
|
15
|
+
}
|
|
16
|
+
async hasSession(address) {
|
|
17
|
+
return this.store.hasSession(address);
|
|
18
|
+
}
|
|
19
|
+
async hasSessions(addresses) {
|
|
20
|
+
return this.store.hasSessions(addresses);
|
|
21
|
+
}
|
|
22
|
+
async establishOutgoingSession(address, remoteBundle) {
|
|
23
|
+
const [local, localOneTimeBase] = await Promise.all([
|
|
24
|
+
(0, SignalSession_1.requireLocalIdentity)(this.store),
|
|
25
|
+
(0, SignalSession_1.generateSerializedKeyPair)()
|
|
26
|
+
]);
|
|
27
|
+
const session = await (0, SignalSession_1.initiateSessionOutgoing)(local, remoteBundle, localOneTimeBase);
|
|
28
|
+
await this.store.setRemoteIdentity(address, session.remote.pubKey);
|
|
29
|
+
await this.store.setSession(address, session);
|
|
30
|
+
return session;
|
|
31
|
+
}
|
|
32
|
+
async encryptMessage(address, plaintext, expectedIdentity) {
|
|
33
|
+
const session = await this.store.getSession(address);
|
|
34
|
+
if (!session) {
|
|
35
|
+
throw new Error('signal session not found');
|
|
36
|
+
}
|
|
37
|
+
if (expectedIdentity &&
|
|
38
|
+
!(0, bytes_1.uint8Equal)((0, _crypto_1.toSerializedPubKey)(expectedIdentity), session.remote.pubKey)) {
|
|
39
|
+
throw new Error('identity mismatch');
|
|
40
|
+
}
|
|
41
|
+
const [updatedSession, encrypted] = await (0, SignalRatchet_1.encryptMsg)(session, plaintext);
|
|
42
|
+
await this.store.setSession(address, updatedSession);
|
|
43
|
+
if (!(0, bytes_1.uint8Equal)(updatedSession.remote.pubKey, session.remote.pubKey)) {
|
|
44
|
+
await this.store.setRemoteIdentity(address, updatedSession.remote.pubKey);
|
|
45
|
+
}
|
|
46
|
+
return {
|
|
47
|
+
...encrypted,
|
|
48
|
+
baseKey: updatedSession.aliceBaseKey
|
|
49
|
+
};
|
|
50
|
+
}
|
|
51
|
+
async decryptMessage(address, envelope) {
|
|
52
|
+
const currentSession = await this.store.getSession(address);
|
|
53
|
+
let outcome;
|
|
54
|
+
if (envelope.type === 'pkmsg') {
|
|
55
|
+
const parsedPk = (0, SignalSerializer_1.deserializePkMsg)(envelope.ciphertext);
|
|
56
|
+
outcome = await this.decryptPkMsg(currentSession, parsedPk);
|
|
57
|
+
}
|
|
58
|
+
else {
|
|
59
|
+
const parsed = (0, SignalSerializer_1.deserializeMsg)(envelope.ciphertext);
|
|
60
|
+
outcome = await this.decryptMsgInternal(currentSession, parsed);
|
|
61
|
+
}
|
|
62
|
+
const nextRemoteIdentity = outcome.newSessionInfo?.newIdentity ?? outcome.updatedSession.remote.pubKey;
|
|
63
|
+
if (!currentSession || !(0, bytes_1.uint8Equal)(currentSession.remote.pubKey, nextRemoteIdentity)) {
|
|
64
|
+
await this.store.setRemoteIdentity(address, nextRemoteIdentity);
|
|
65
|
+
}
|
|
66
|
+
await this.store.setSession(address, outcome.updatedSession);
|
|
67
|
+
return outcome.plaintext;
|
|
68
|
+
}
|
|
69
|
+
async decryptMsgInternal(session, parsed) {
|
|
70
|
+
return (0, SignalRatchet_1.decryptMsg)(session, parsed, (error, previousSessionIndex) => {
|
|
71
|
+
this.logger.debug('signal decrypt fallback session failed', {
|
|
72
|
+
previousSessionIndex,
|
|
73
|
+
message: error.message
|
|
74
|
+
});
|
|
75
|
+
});
|
|
76
|
+
}
|
|
77
|
+
async decryptPkMsg(currentSession, parsed) {
|
|
78
|
+
const matchingSession = (0, SignalSession_1.findMatchingSession)(currentSession, parsed.sessionBaseKey);
|
|
79
|
+
if (matchingSession) {
|
|
80
|
+
const [updatedSession, plaintext] = await (0, SignalRatchet_1.decryptMsgFromSession)(matchingSession, parsed);
|
|
81
|
+
return {
|
|
82
|
+
updatedSession,
|
|
83
|
+
plaintext,
|
|
84
|
+
newSessionInfo: null
|
|
85
|
+
};
|
|
86
|
+
}
|
|
87
|
+
const [local, signedPreKey, oneTimePreKey] = await Promise.all([
|
|
88
|
+
(0, SignalSession_1.requireLocalIdentity)(this.store),
|
|
89
|
+
(0, SignalSerializer_1.requireSignedPreKey)(this.store, parsed.localSignedPreKeyId),
|
|
90
|
+
parsed.localOneTimeKeyId === null || parsed.localOneTimeKeyId === undefined
|
|
91
|
+
? Promise.resolve(null)
|
|
92
|
+
: (0, SignalSerializer_1.requirePreKey)(this.store, parsed.localOneTimeKeyId)
|
|
93
|
+
]);
|
|
94
|
+
const incoming = await (0, SignalSession_1.initiateSessionIncoming)(local, parsed.remote, parsed.sessionBaseKey, {
|
|
95
|
+
signed: (0, SignalSession_1.toSerializedKeyPair)(signedPreKey.keyPair),
|
|
96
|
+
oneTime: oneTimePreKey ? (0, SignalSession_1.toSerializedKeyPair)(oneTimePreKey.keyPair) : undefined,
|
|
97
|
+
ratchet: (0, SignalSession_1.toSerializedKeyPair)(signedPreKey.keyPair)
|
|
98
|
+
});
|
|
99
|
+
const newIdentity = !currentSession || !(0, bytes_1.uint8Equal)(incoming.remote.pubKey, currentSession.remote.pubKey)
|
|
100
|
+
? incoming.remote.pubKey
|
|
101
|
+
: null;
|
|
102
|
+
const baseSession = currentSession
|
|
103
|
+
? {
|
|
104
|
+
...incoming,
|
|
105
|
+
prevSessions: [
|
|
106
|
+
(0, SignalSession_1.detachSession)(currentSession),
|
|
107
|
+
...currentSession.prevSessions.slice(0, constants_1.MAX_PREV_SESSIONS - 1)
|
|
108
|
+
]
|
|
109
|
+
}
|
|
110
|
+
: incoming;
|
|
111
|
+
const [updatedSession, plaintext] = await (0, SignalRatchet_1.decryptMsgFromSession)(baseSession, parsed);
|
|
112
|
+
if (parsed.localOneTimeKeyId !== null && parsed.localOneTimeKeyId !== undefined) {
|
|
113
|
+
await this.store.consumePreKeyById(parsed.localOneTimeKeyId);
|
|
114
|
+
}
|
|
115
|
+
return {
|
|
116
|
+
updatedSession,
|
|
117
|
+
plaintext,
|
|
118
|
+
newSessionInfo: {
|
|
119
|
+
newIdentity,
|
|
120
|
+
baseSession,
|
|
121
|
+
usedPreKey: parsed.localOneTimeKeyId
|
|
122
|
+
}
|
|
123
|
+
};
|
|
124
|
+
}
|
|
125
|
+
}
|
|
126
|
+
exports.SignalProtocol = SignalProtocol;
|
|
@@ -0,0 +1,268 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.splitMsgKey = splitMsgKey;
|
|
4
|
+
exports.deriveMsgKey = deriveMsgKey;
|
|
5
|
+
exports.selectMessageKey = selectMessageKey;
|
|
6
|
+
exports.encryptMsg = encryptMsg;
|
|
7
|
+
exports.decryptMsg = decryptMsg;
|
|
8
|
+
exports.decryptMsgFromSession = decryptMsgFromSession;
|
|
9
|
+
const _crypto_1 = require("../../crypto/index.js");
|
|
10
|
+
const _proto_1 = require("../../proto.js");
|
|
11
|
+
const constants_1 = require("../constants");
|
|
12
|
+
const SignalSession_1 = require("../session/SignalSession");
|
|
13
|
+
const bytes_1 = require("../../util/bytes");
|
|
14
|
+
const primitives_1 = require("../../util/primitives");
|
|
15
|
+
const MAX_TRACKED_RECV_CHAINS = 4;
|
|
16
|
+
function splitMsgKey(index, bytes) {
|
|
17
|
+
if (bytes.length < 80) {
|
|
18
|
+
throw new Error('invalid message key length');
|
|
19
|
+
}
|
|
20
|
+
return {
|
|
21
|
+
index,
|
|
22
|
+
cipherKey: bytes.subarray(0, 32),
|
|
23
|
+
macKey: bytes.subarray(32, 64),
|
|
24
|
+
iv: bytes.subarray(64, 80)
|
|
25
|
+
};
|
|
26
|
+
}
|
|
27
|
+
async function deriveMsgKey(index, chainKey) {
|
|
28
|
+
const state = await createDerivedChainState(chainKey);
|
|
29
|
+
const derived = await deriveMsgKeyFromState(index, state);
|
|
30
|
+
return {
|
|
31
|
+
nextChainKey: derived.nextState.chainKey,
|
|
32
|
+
messageKey: derived.messageKey
|
|
33
|
+
};
|
|
34
|
+
}
|
|
35
|
+
async function selectMessageKey(chain, targetCounter) {
|
|
36
|
+
const delta = targetCounter - chain.nextMsgIndex;
|
|
37
|
+
if (delta > constants_1.FUTURE_MESSAGES_MAX) {
|
|
38
|
+
throw new Error('message too far in future');
|
|
39
|
+
}
|
|
40
|
+
const unused = chain.unusedMsgKeys;
|
|
41
|
+
if (delta < 0) {
|
|
42
|
+
const idx = unused.findIndex((entry) => entry.index === targetCounter);
|
|
43
|
+
if (idx === -1) {
|
|
44
|
+
throw new Error('duplicate message');
|
|
45
|
+
}
|
|
46
|
+
const messageKey = unused[idx];
|
|
47
|
+
const nextUnused = (0, bytes_1.removeAt)(unused, idx);
|
|
48
|
+
return {
|
|
49
|
+
messageKey,
|
|
50
|
+
updatedChain: {
|
|
51
|
+
ratchetPubKey: chain.ratchetPubKey,
|
|
52
|
+
nextMsgIndex: chain.nextMsgIndex,
|
|
53
|
+
chainKey: chain.chainKey,
|
|
54
|
+
unusedMsgKeys: nextUnused
|
|
55
|
+
}
|
|
56
|
+
};
|
|
57
|
+
}
|
|
58
|
+
let chainState = await createDerivedChainState(chain.chainKey);
|
|
59
|
+
const first = await deriveMsgKeyFromState(chain.nextMsgIndex, chainState);
|
|
60
|
+
let currentMessageKey = first.messageKey;
|
|
61
|
+
chainState = first.nextState;
|
|
62
|
+
let nextUnused = unused.slice();
|
|
63
|
+
if (delta > 0) {
|
|
64
|
+
let overflow = delta + unused.length - constants_1.MAX_UNUSED_KEYS;
|
|
65
|
+
if (overflow > 0) {
|
|
66
|
+
nextUnused = nextUnused.slice(overflow);
|
|
67
|
+
overflow -= unused.length;
|
|
68
|
+
}
|
|
69
|
+
for (let counter = chain.nextMsgIndex + 1; counter <= targetCounter; counter += 1) {
|
|
70
|
+
if (overflow > 0) {
|
|
71
|
+
overflow -= 1;
|
|
72
|
+
}
|
|
73
|
+
else {
|
|
74
|
+
nextUnused.push(currentMessageKey);
|
|
75
|
+
}
|
|
76
|
+
const derived = await deriveMsgKeyFromState(counter, chainState);
|
|
77
|
+
currentMessageKey = derived.messageKey;
|
|
78
|
+
chainState = derived.nextState;
|
|
79
|
+
}
|
|
80
|
+
}
|
|
81
|
+
return {
|
|
82
|
+
messageKey: currentMessageKey,
|
|
83
|
+
updatedChain: {
|
|
84
|
+
ratchetPubKey: chain.ratchetPubKey,
|
|
85
|
+
nextMsgIndex: targetCounter + 1,
|
|
86
|
+
chainKey: chainState.chainKey,
|
|
87
|
+
unusedMsgKeys: nextUnused
|
|
88
|
+
}
|
|
89
|
+
};
|
|
90
|
+
}
|
|
91
|
+
async function createDerivedChainState(chainKey) {
|
|
92
|
+
return {
|
|
93
|
+
chainKey,
|
|
94
|
+
hmacKey: await (0, _crypto_1.importHmacKey)(chainKey)
|
|
95
|
+
};
|
|
96
|
+
}
|
|
97
|
+
async function deriveMsgKeyFromState(index, state) {
|
|
98
|
+
const nextChainRawPromise = (0, _crypto_1.hmacSign)(state.hmacKey, constants_1.CHAIN_KEY_LABEL);
|
|
99
|
+
const messageInputKeyPromise = (0, _crypto_1.hmacSign)(state.hmacKey, constants_1.MESSAGE_KEY_LABEL);
|
|
100
|
+
const [nextChainRaw, messageInputKey] = await Promise.all([
|
|
101
|
+
nextChainRawPromise,
|
|
102
|
+
messageInputKeyPromise
|
|
103
|
+
]);
|
|
104
|
+
const nextChainKey = nextChainRaw.subarray(0, 32);
|
|
105
|
+
const [nextHmacKey, expanded] = await Promise.all([
|
|
106
|
+
(0, _crypto_1.importHmacKey)(nextChainKey),
|
|
107
|
+
(0, _crypto_1.hkdf)(messageInputKey, null, 'WhisperMessageKeys', 80)
|
|
108
|
+
]);
|
|
109
|
+
return {
|
|
110
|
+
nextState: {
|
|
111
|
+
chainKey: nextChainKey,
|
|
112
|
+
hmacKey: nextHmacKey
|
|
113
|
+
},
|
|
114
|
+
messageKey: splitMsgKey(index, expanded)
|
|
115
|
+
};
|
|
116
|
+
}
|
|
117
|
+
async function encryptMsg(session, plaintext) {
|
|
118
|
+
const { nextChainKey, messageKey } = await deriveMsgKey(session.sendChain.nextMsgIndex, session.sendChain.chainKey);
|
|
119
|
+
const [cipherKey, macKey] = await Promise.all([
|
|
120
|
+
(0, _crypto_1.importAesCbcKey)(messageKey.cipherKey),
|
|
121
|
+
(0, _crypto_1.importHmacKey)(messageKey.macKey)
|
|
122
|
+
]);
|
|
123
|
+
const ciphertext = await (0, _crypto_1.aesCbcEncrypt)(cipherKey, messageKey.iv, plaintext);
|
|
124
|
+
const signalPayload = _proto_1.proto.SignalMessage.encode({
|
|
125
|
+
ratchetKey: session.sendChain.ratchetKey.pubKey,
|
|
126
|
+
counter: messageKey.index,
|
|
127
|
+
previousCounter: session.prevSendChainHighestIndex,
|
|
128
|
+
ciphertext
|
|
129
|
+
}).finish();
|
|
130
|
+
const versionedSignalPayload = (0, _crypto_1.prependVersion)(signalPayload, constants_1.SIGNAL_VERSION);
|
|
131
|
+
const macInput = (0, bytes_1.concatBytes)([
|
|
132
|
+
session.local.pubKey,
|
|
133
|
+
session.remote.pubKey,
|
|
134
|
+
versionedSignalPayload
|
|
135
|
+
]);
|
|
136
|
+
const mac = await (0, _crypto_1.hmacSign)(macKey, macInput);
|
|
137
|
+
const signalMessage = (0, bytes_1.concatBytes)([versionedSignalPayload, mac.subarray(0, constants_1.SIGNAL_MAC_SIZE)]);
|
|
138
|
+
let type = 'msg';
|
|
139
|
+
let output = signalMessage;
|
|
140
|
+
if (session.initialExchangeInfo) {
|
|
141
|
+
const preKeyPayload = _proto_1.proto.PreKeySignalMessage.encode({
|
|
142
|
+
registrationId: session.local.regId,
|
|
143
|
+
preKeyId: session.initialExchangeInfo.remoteOneTimeId ?? undefined,
|
|
144
|
+
signedPreKeyId: session.initialExchangeInfo.remoteSignedId,
|
|
145
|
+
baseKey: session.initialExchangeInfo.localOneTimePubKey,
|
|
146
|
+
identityKey: session.local.pubKey,
|
|
147
|
+
message: signalMessage
|
|
148
|
+
}).finish();
|
|
149
|
+
type = 'pkmsg';
|
|
150
|
+
output = (0, _crypto_1.prependVersion)(preKeyPayload, constants_1.SIGNAL_VERSION);
|
|
151
|
+
}
|
|
152
|
+
const updated = {
|
|
153
|
+
...session,
|
|
154
|
+
sendChain: {
|
|
155
|
+
ratchetKey: session.sendChain.ratchetKey,
|
|
156
|
+
nextMsgIndex: messageKey.index + 1,
|
|
157
|
+
chainKey: nextChainKey
|
|
158
|
+
}
|
|
159
|
+
};
|
|
160
|
+
return [updated, { type, ciphertext: output }];
|
|
161
|
+
}
|
|
162
|
+
async function decryptMsg(session, parsed, onPrevSessionDecryptError) {
|
|
163
|
+
if (!session) {
|
|
164
|
+
throw new Error('signal session not found');
|
|
165
|
+
}
|
|
166
|
+
try {
|
|
167
|
+
const [updatedSession, plaintext] = await decryptMsgFromSession(session, parsed);
|
|
168
|
+
return {
|
|
169
|
+
updatedSession,
|
|
170
|
+
plaintext,
|
|
171
|
+
newSessionInfo: null
|
|
172
|
+
};
|
|
173
|
+
}
|
|
174
|
+
catch (error) {
|
|
175
|
+
for (let i = 0; i < session.prevSessions.length; i += 1) {
|
|
176
|
+
const prevSession = (0, SignalSession_1.snapshotToRecord)(session.prevSessions[i]);
|
|
177
|
+
try {
|
|
178
|
+
const [updatedPrev, plaintext] = await decryptMsgFromSession(prevSession, parsed);
|
|
179
|
+
const updatedSession = {
|
|
180
|
+
...updatedPrev,
|
|
181
|
+
prevSessions: [
|
|
182
|
+
(0, SignalSession_1.detachSession)(session),
|
|
183
|
+
...session.prevSessions.slice(0, i),
|
|
184
|
+
...session.prevSessions.slice(i + 1)
|
|
185
|
+
]
|
|
186
|
+
};
|
|
187
|
+
return {
|
|
188
|
+
updatedSession,
|
|
189
|
+
plaintext,
|
|
190
|
+
newSessionInfo: {
|
|
191
|
+
newIdentity: (0, bytes_1.uint8Equal)(updatedSession.remote.pubKey, session.remote.pubKey)
|
|
192
|
+
? null
|
|
193
|
+
: updatedSession.remote.pubKey,
|
|
194
|
+
baseSession: prevSession,
|
|
195
|
+
usedPreKey: null
|
|
196
|
+
}
|
|
197
|
+
};
|
|
198
|
+
}
|
|
199
|
+
catch (prevError) {
|
|
200
|
+
onPrevSessionDecryptError?.((0, primitives_1.toError)(prevError), i);
|
|
201
|
+
continue;
|
|
202
|
+
}
|
|
203
|
+
}
|
|
204
|
+
throw error;
|
|
205
|
+
}
|
|
206
|
+
}
|
|
207
|
+
async function decryptMsgFromSession(session, message) {
|
|
208
|
+
const ratchetPubKey = (0, _crypto_1.toSerializedPubKey)(message.ratchetPubKey);
|
|
209
|
+
const recvChainIndex = session.recvChains.findIndex((entry) => (0, bytes_1.uint8Equal)(entry.ratchetPubKey, ratchetPubKey));
|
|
210
|
+
let selectedMessageKey;
|
|
211
|
+
let updatedSession;
|
|
212
|
+
if (recvChainIndex === -1) {
|
|
213
|
+
const recvRatchet = await (0, SignalSession_1.calculateRatchet)(session.rootKey, session.sendChain.ratchetKey, ratchetPubKey);
|
|
214
|
+
const freshRecvChain = {
|
|
215
|
+
ratchetPubKey,
|
|
216
|
+
nextMsgIndex: 0,
|
|
217
|
+
chainKey: recvRatchet.chainKey,
|
|
218
|
+
unusedMsgKeys: []
|
|
219
|
+
};
|
|
220
|
+
const [selected, newSendRatchet] = await Promise.all([
|
|
221
|
+
selectMessageKey(freshRecvChain, message.counter),
|
|
222
|
+
(0, SignalSession_1.generateSerializedKeyPair)()
|
|
223
|
+
]);
|
|
224
|
+
selectedMessageKey = selected.messageKey;
|
|
225
|
+
const sendRatchet = await (0, SignalSession_1.calculateRatchet)(recvRatchet.rootKey, newSendRatchet, ratchetPubKey);
|
|
226
|
+
const nextRecvChains = session.recvChains.slice(-MAX_TRACKED_RECV_CHAINS);
|
|
227
|
+
nextRecvChains.push(selected.updatedChain);
|
|
228
|
+
updatedSession = {
|
|
229
|
+
...session,
|
|
230
|
+
rootKey: sendRatchet.rootKey,
|
|
231
|
+
recvChains: nextRecvChains,
|
|
232
|
+
sendChain: {
|
|
233
|
+
ratchetKey: newSendRatchet,
|
|
234
|
+
nextMsgIndex: 0,
|
|
235
|
+
chainKey: sendRatchet.chainKey
|
|
236
|
+
},
|
|
237
|
+
initialExchangeInfo: null,
|
|
238
|
+
prevSendChainHighestIndex: Math.max(session.sendChain.nextMsgIndex - 1, 0)
|
|
239
|
+
};
|
|
240
|
+
}
|
|
241
|
+
else {
|
|
242
|
+
const selected = await selectMessageKey(session.recvChains[recvChainIndex], message.counter);
|
|
243
|
+
selectedMessageKey = selected.messageKey;
|
|
244
|
+
const nextRecvChains = session.recvChains.slice();
|
|
245
|
+
nextRecvChains[recvChainIndex] = selected.updatedChain;
|
|
246
|
+
updatedSession = {
|
|
247
|
+
...session,
|
|
248
|
+
recvChains: nextRecvChains
|
|
249
|
+
};
|
|
250
|
+
}
|
|
251
|
+
const [cipherKey, macKey] = await Promise.all([
|
|
252
|
+
(0, _crypto_1.importAesCbcKey)(selectedMessageKey.cipherKey),
|
|
253
|
+
(0, _crypto_1.importHmacKey)(selectedMessageKey.macKey)
|
|
254
|
+
]);
|
|
255
|
+
const payloadWithoutMac = message.versionContentMac.subarray(0, message.versionContentMac.length - constants_1.SIGNAL_MAC_SIZE);
|
|
256
|
+
const expectedMacInput = (0, bytes_1.concatBytes)([
|
|
257
|
+
session.remote.pubKey,
|
|
258
|
+
session.local.pubKey,
|
|
259
|
+
payloadWithoutMac
|
|
260
|
+
]);
|
|
261
|
+
const expectedMac = await (0, _crypto_1.hmacSign)(macKey, expectedMacInput);
|
|
262
|
+
const receivedMac = message.versionContentMac.subarray(message.versionContentMac.length - constants_1.SIGNAL_MAC_SIZE);
|
|
263
|
+
if (!(0, bytes_1.uint8Equal)(expectedMac.subarray(0, constants_1.SIGNAL_MAC_SIZE), receivedMac)) {
|
|
264
|
+
throw new Error('invalid message mac');
|
|
265
|
+
}
|
|
266
|
+
const plaintext = await (0, _crypto_1.aesCbcDecrypt)(cipherKey, selectedMessageKey.iv, message.ciphertext);
|
|
267
|
+
return [updatedSession, plaintext];
|
|
268
|
+
}
|