2020-08-28 14:35:47 +02:00
|
|
|
/*
|
|
|
|
Copyright 2020 The Matrix.org Foundation C.I.C.
|
|
|
|
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
you may not use this file except in compliance with the License.
|
|
|
|
You may obtain a copy of the License at
|
|
|
|
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
See the License for the specific language governing permissions and
|
|
|
|
limitations under the License.
|
|
|
|
*/
|
|
|
|
|
2021-10-05 17:51:10 +02:00
|
|
|
import anotherjson from "another-json";
|
2021-11-17 11:24:44 +01:00
|
|
|
import {createEnum} from "../../utils/enum";
|
2020-09-10 12:09:17 +02:00
|
|
|
|
2020-09-18 13:08:35 +02:00
|
|
|
export const DecryptionSource = createEnum("Sync", "Timeline", "Retry");
|
2020-09-02 17:37:48 +02:00
|
|
|
|
2020-08-28 14:35:47 +02:00
|
|
|
// use common prefix so it's easy to clear properties that are not e2ee related during session clear
|
2021-09-29 11:49:58 +02:00
|
|
|
export const SESSION_E2EE_KEY_PREFIX = "e2ee:";
|
2020-08-28 14:35:47 +02:00
|
|
|
export const OLM_ALGORITHM = "m.olm.v1.curve25519-aes-sha2";
|
|
|
|
export const MEGOLM_ALGORITHM = "m.megolm.v1.aes-sha2";
|
2020-09-01 17:59:39 +02:00
|
|
|
|
|
|
|
export class DecryptionError extends Error {
|
2020-09-02 13:33:27 +02:00
|
|
|
constructor(code, event, detailsObj = null) {
|
2020-09-01 17:59:39 +02:00
|
|
|
super(`Decryption error ${code}${detailsObj ? ": "+JSON.stringify(detailsObj) : ""}`);
|
|
|
|
this.code = code;
|
2020-09-02 13:33:27 +02:00
|
|
|
this.event = event;
|
2020-09-01 17:59:39 +02:00
|
|
|
this.details = detailsObj;
|
|
|
|
}
|
|
|
|
}
|
2020-09-02 17:37:48 +02:00
|
|
|
|
|
|
|
export const SIGNATURE_ALGORITHM = "ed25519";
|
|
|
|
|
2021-11-15 15:27:57 +01:00
|
|
|
export function verifyEd25519Signature(olmUtil, userId, deviceOrKeyId, ed25519Key, value, log = undefined) {
|
2020-09-02 17:37:48 +02:00
|
|
|
const clone = Object.assign({}, value);
|
|
|
|
delete clone.unsigned;
|
|
|
|
delete clone.signatures;
|
|
|
|
const canonicalJson = anotherjson.stringify(clone);
|
|
|
|
const signature = value?.signatures?.[userId]?.[`${SIGNATURE_ALGORITHM}:${deviceOrKeyId}`];
|
|
|
|
try {
|
|
|
|
if (!signature) {
|
|
|
|
throw new Error("no signature");
|
|
|
|
}
|
|
|
|
// throws when signature is invalid
|
2020-09-03 15:27:40 +02:00
|
|
|
olmUtil.ed25519_verify(ed25519Key, canonicalJson, signature);
|
2020-09-02 17:37:48 +02:00
|
|
|
return true;
|
|
|
|
} catch (err) {
|
2021-11-15 15:27:57 +01:00
|
|
|
if (log) {
|
|
|
|
const logItem = log.log({l: "Invalid signature, ignoring.", ed25519Key, canonicalJson, signature});
|
|
|
|
logItem.error = err;
|
|
|
|
logItem.logLevel = log.level.Warn;
|
|
|
|
}
|
2020-09-02 17:37:48 +02:00
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}
|