TheArchive/session-android
1
0
Fork 0
mirror of https://github.com/oxen-io/session-android.git synced 2024-11-25 02:55:23 +00:00
Code Issues Packages Projects Releases Wiki Activity
4cab657ebe
session-android/src/org/thoughtcrime/securesms/ReceiveKeyActivity.java

316 lines
14 KiB
Java
Raw Normal View History

Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
/**
Initial Project Import
2011-12-20 18:20:44 +00:00
* Copyright (C) 2011 Whisper Systems
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
*
Initial Project Import
2011-12-20 18:20:44 +00:00
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
*
Initial Project Import
2011-12-20 18:20:44 +00:00
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
package org.thoughtcrime.securesms;
Move ReceiveKeyActivity back to themed dialog activity.
2013-10-21 02:12:53 +00:00
import android.app.Activity;
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
import android.app.ProgressDialog;
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
import android.content.Context;
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
import android.content.Intent;
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
import android.os.AsyncTask;
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
import android.os.Bundle;
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
import android.text.SpannableString;
import android.text.Spanned;
import android.text.method.LinkMovementMethod;
import android.text.style.ClickableSpan;
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
import android.util.Log;
import android.view.View;
import android.widget.Button;
import android.widget.TextView;
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
import android.widget.Toast;
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
import org.thoughtcrime.securesms.crypto.DecryptingQueue;
Initial Project Import
2011-12-20 18:20:44 +00:00
import org.thoughtcrime.securesms.crypto.KeyExchangeProcessor;
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
import org.thoughtcrime.securesms.crypto.TextSecureCipher;
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
import org.thoughtcrime.securesms.crypto.TextSecureIdentityKeyStore;
Initial Project Import
2011-12-20 18:20:44 +00:00
import org.thoughtcrime.securesms.database.DatabaseFactory;
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
import org.thoughtcrime.securesms.database.EncryptingSmsDatabase;
Initial Project Import
2011-12-20 18:20:44 +00:00
import org.thoughtcrime.securesms.recipients.Recipient;
Correctly handle key conflict resolution for incoming push.
2014-02-22 22:22:12 +00:00
import org.thoughtcrime.securesms.service.SendReceiveService;
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
import org.thoughtcrime.securesms.sms.IncomingEncryptedMessage;
import org.thoughtcrime.securesms.sms.IncomingTextMessage;
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
import org.thoughtcrime.securesms.sms.SmsTransportDetails;
Initial Project Import
2011-12-20 18:20:44 +00:00
import org.thoughtcrime.securesms.util.MemoryCleaner;
Correctly handle key conflict resolution for incoming push.
2014-02-22 22:22:12 +00:00
import org.thoughtcrime.securesms.util.Util;
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
import org.whispersystems.libaxolotl.DuplicateMessageException;
Break core ratchet out into libaxolotol. 1) Break the core cryptography functions out into libaxolotol. 2) The objective for this code is a Java library that isn't dependent on any Android functions. However, while the code has been separated from any Android functionality, it is still an 'android library project' because of the JNI.
2014-04-21 15:40:19 +00:00
import org.whispersystems.libaxolotl.IdentityKey;
import org.whispersystems.libaxolotl.InvalidKeyException;
import org.whispersystems.libaxolotl.InvalidMessageException;
import org.whispersystems.libaxolotl.InvalidVersionException;
import org.whispersystems.libaxolotl.LegacyMessageException;
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
import org.whispersystems.libaxolotl.NoSessionException;
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
import org.whispersystems.libaxolotl.StaleKeyExchangeException;
import org.whispersystems.libaxolotl.UntrustedIdentityException;
Break core ratchet out into libaxolotol. 1) Break the core cryptography functions out into libaxolotol. 2) The objective for this code is a Java library that isn't dependent on any Android functions. However, while the code has been separated from any Android functionality, it is still an 'android library project' because of the JNI.
2014-04-21 15:40:19 +00:00
import org.whispersystems.libaxolotl.protocol.CiphertextMessage;
Move session construction and KeyExchangeMessage into libaxolotl. 1) Add plain two-way key exchange support libaxolotl by moving all the KeyExchangeMessage code there. 2) Move the bulk of KeyExchangeProcessor code to libaxolotl for setting up sessions based on retrieved prekeys, received prekeybundles, or exchanged key exchange messages.
2014-04-23 04:31:57 +00:00
import org.whispersystems.libaxolotl.protocol.KeyExchangeMessage;
Break core ratchet out into libaxolotol. 1) Break the core cryptography functions out into libaxolotol. 2) The objective for this code is a Java library that isn't dependent on any Android functions. However, while the code has been separated from any Android functionality, it is still an 'android library project' because of the JNI.
2014-04-21 15:40:19 +00:00
import org.whispersystems.libaxolotl.protocol.PreKeyWhisperMessage;
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
import org.whispersystems.libaxolotl.state.IdentityKeyStore;
Break core ratchet out into libaxolotol. 1) Break the core cryptography functions out into libaxolotol. 2) The objective for this code is a Java library that isn't dependent on any Android functions. However, while the code has been separated from any Android functionality, it is still an 'android library project' because of the JNI.
2014-04-21 15:40:19 +00:00
import org.whispersystems.textsecure.crypto.IdentityKeyParcelable;
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
import org.whispersystems.textsecure.crypto.MasterSecret;
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
import org.whispersystems.textsecure.crypto.TransportDetails;
Correctly handle key conflict resolution for incoming push.
2014-02-22 22:22:12 +00:00
import org.whispersystems.textsecure.push.IncomingPushMessage;
Move session construction and KeyExchangeMessage into libaxolotl. 1) Add plain two-way key exchange support libaxolotl by moving all the KeyExchangeMessage code there. 2) Move the bulk of KeyExchangeProcessor code to libaxolotl for setting up sessions based on retrieved prekeys, received prekeybundles, or exchanged key exchange messages.
2014-04-23 04:31:57 +00:00
import org.whispersystems.libaxolotl.InvalidKeyIdException;
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
import org.whispersystems.textsecure.push.PushTransportDetails;
Support for multi-device. 1) In addition to the Recipient interface, there is now RecipientDevice. A Recipient can have multiple corresponding RecipientDevices. All addressing is done to a Recipient, but crypto sessions and transport delivery are done to RecipientDevice. 2) The Push transport handles the discovery and session setup of additional Recipient devices. 3) Some internal rejiggering of Groups.
2014-02-03 03:38:06 +00:00
import org.whispersystems.textsecure.storage.RecipientDevice;
Verify identity keys on outgoing messages. If PreKeyEntity identity key doesn't match local DB, fail outgoing message and queue "incoming" identity key update message for manual user approval.
2014-02-16 23:23:49 +00:00
import org.whispersystems.textsecure.util.Base64;
Correctly handle key conflict resolution for incoming push.
2014-02-22 22:22:12 +00:00
import org.whispersystems.textsecure.util.InvalidNumberException;
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
import java.io.IOException;
Initial Project Import
2011-12-20 18:20:44 +00:00
Correctly handle key conflict resolution for incoming push.
2014-02-22 22:22:12 +00:00
import static org.whispersystems.textsecure.push.PushMessageProtos.IncomingPushMessageSignal.Type;
Initial Project Import
2011-12-20 18:20:44 +00:00
/**
* Activity for displaying sent/received session keys.
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
*
Initial Project Import
2011-12-20 18:20:44 +00:00
* @author Moxie Marlinspike
*/
Move ReceiveKeyActivity back to themed dialog activity.
2013-10-21 02:12:53 +00:00
public class ReceiveKeyActivity extends Activity {
Initial Project Import
2011-12-20 18:20:44 +00:00
private TextView descriptionText;
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
private Button confirmButton;
private Button cancelButton;
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
private Recipient recipient;
Support for multi-device. 1) In addition to the Recipient interface, there is now RecipientDevice. A Recipient can have multiple corresponding RecipientDevices. All addressing is done to a Recipient, but crypto sessions and transport delivery are done to RecipientDevice. 2) The Push transport handles the discovery and session setup of additional Recipient devices. 3) Some internal rejiggering of Groups.
2014-02-03 03:38:06 +00:00
private int recipientDeviceId;
Initial Project Import
2011-12-20 18:20:44 +00:00
private long threadId;
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
private long messageId;
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
private MasterSecret masterSecret;
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
private PreKeyWhisperMessage keyExchangeMessageBundle;
Initial Project Import
2011-12-20 18:20:44 +00:00
private KeyExchangeMessage keyExchangeMessage;
Verify identity keys on outgoing messages. If PreKeyEntity identity key doesn't match local DB, fail outgoing message and queue "incoming" identity key update message for manual user approval.
2014-02-16 23:23:49 +00:00
private IdentityKey identityUpdateMessage;
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
@Override
protected void onCreate(Bundle state) {
super.onCreate(state);
setContentView(R.layout.receive_key_activity);
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
initializeResources();
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
try {
initializeKey();
initializeText();
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
} catch (InvalidKeyException | InvalidVersionException | InvalidMessageException | LegacyMessageException ike) {
Initial Project Import
2011-12-20 18:20:44 +00:00
Log.w("ReceiveKeyActivity", ike);
}
initializeListeners();
}
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
@Override
protected void onDestroy() {
MemoryCleaner.clean(masterSecret);
super.onDestroy();
}
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
private void initializeText() {
Verify identity keys on outgoing messages. If PreKeyEntity identity key doesn't match local DB, fail outgoing message and queue "incoming" identity key update message for manual user approval.
2014-02-16 23:23:49 +00:00
if (isTrusted(keyExchangeMessage, keyExchangeMessageBundle, identityUpdateMessage)) {
initializeTrustedText();
} else {
initializeUntrustedText();
}
Add appropriate text for manual case when identity is trusted.
2013-05-24 00:17:28 +00:00
}
private void initializeTrustedText() {
descriptionText.setText(getString(R.string.ReceiveKeyActivity_the_signature_on_this_key_exchange_is_trusted_but));
}
private void initializeUntrustedText() {
SpannableString spannableString = new SpannableString(getString(R.string.ReceiveKeyActivity_the_signature_on_this_key_exchange_is_different) + " " +
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
getString(R.string.ReceiveKeyActivity_you_may_wish_to_verify_this_contact));
spannableString.setSpan(new ClickableSpan() {
@Override
public void onClick(View widget) {
Verify identity keys on outgoing messages. If PreKeyEntity identity key doesn't match local DB, fail outgoing message and queue "incoming" identity key update message for manual user approval.
2014-02-16 23:23:49 +00:00
IdentityKey remoteIdentity;
if (identityUpdateMessage != null) remoteIdentity = identityUpdateMessage;
else if (keyExchangeMessageBundle != null) remoteIdentity = keyExchangeMessageBundle.getIdentityKey();
else remoteIdentity = keyExchangeMessage.getIdentityKey();
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
Intent intent = new Intent(ReceiveKeyActivity.this, VerifyIdentityActivity.class);
intent.putExtra("recipient", recipient);
intent.putExtra("master_secret", masterSecret);
Break core ratchet out into libaxolotol. 1) Break the core cryptography functions out into libaxolotol. 2) The objective for this code is a Java library that isn't dependent on any Android functions. However, while the code has been separated from any Android functionality, it is still an 'android library project' because of the JNI.
2014-04-21 15:40:19 +00:00
intent.putExtra("remote_identity", new IdentityKeyParcelable(remoteIdentity));
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
startActivity(intent);
}
Add appropriate text for manual case when identity is trusted.
2013-05-24 00:17:28 +00:00
}, getString(R.string.ReceiveKeyActivity_the_signature_on_this_key_exchange_is_different).length() +1,
spannableString.length(), Spanned.SPAN_EXCLUSIVE_EXCLUSIVE);
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
descriptionText.setText(spannableString);
descriptionText.setMovementMethod(LinkMovementMethod.getInstance());
Initial Project Import
2011-12-20 18:20:44 +00:00
}
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Verify identity keys on outgoing messages. If PreKeyEntity identity key doesn't match local DB, fail outgoing message and queue "incoming" identity key update message for manual user approval.
2014-02-16 23:23:49 +00:00
private boolean isTrusted(KeyExchangeMessage message, PreKeyWhisperMessage messageBundle, IdentityKey identityUpdateMessage) {
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
long recipientId = recipient.getRecipientId();
IdentityKeyStore identityKeyStore = new TextSecureIdentityKeyStore(this, masterSecret);
Collapse KeyExchangeMessage and KeyExchangeProcessor interfaces.
2014-04-22 22:15:07 +00:00
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
if (message != null) return identityKeyStore.isTrustedIdentity(recipientId, message.getIdentityKey());
else if (messageBundle != null) return identityKeyStore.isTrustedIdentity(recipientId, messageBundle.getIdentityKey());
else if (identityUpdateMessage != null) return identityKeyStore.isTrustedIdentity(recipientId, identityUpdateMessage);
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
return false;
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
}
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
private void initializeKey()
Remove V1 code.
2014-04-10 03:02:46 +00:00
throws InvalidKeyException, InvalidVersionException,
InvalidMessageException, LegacyMessageException
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
{
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
try {
String messageBody = getIntent().getStringExtra("body");
if (getIntent().getBooleanExtra("is_bundle", false)) {
Correctly handle key conflict resolution for incoming push.
2014-02-22 22:22:12 +00:00
boolean isPush = getIntent().getBooleanExtra("is_push", false);
byte[] body;
if (isPush) {
body = Base64.decode(messageBody.getBytes());
} else {
body = new SmsTransportDetails().getDecodedMessage(messageBody.getBytes());
}
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
this.keyExchangeMessageBundle = new PreKeyWhisperMessage(body);
Verify identity keys on outgoing messages. If PreKeyEntity identity key doesn't match local DB, fail outgoing message and queue "incoming" identity key update message for manual user approval.
2014-02-16 23:23:49 +00:00
} else if (getIntent().getBooleanExtra("is_identity_update", false)) {
this.identityUpdateMessage = new IdentityKey(Base64.decodeWithoutPadding(messageBody), 0);
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
} else {
Move session construction and KeyExchangeMessage into libaxolotl. 1) Add plain two-way key exchange support libaxolotl by moving all the KeyExchangeMessage code there. 2) Move the bulk of KeyExchangeProcessor code to libaxolotl for setting up sessions based on retrieved prekeys, received prekeybundles, or exchanged key exchange messages.
2014-04-23 04:31:57 +00:00
this.keyExchangeMessage = new KeyExchangeMessage(Base64.decodeWithoutPadding(messageBody));
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
}
} catch (IOException e) {
throw new AssertionError(e);
}
Initial Project Import
2011-12-20 18:20:44 +00:00
}
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
private void initializeResources() {
this.descriptionText = (TextView) findViewById(R.id.description_text);
this.confirmButton = (Button) findViewById(R.id.ok_button);
this.cancelButton = (Button) findViewById(R.id.cancel_button);
this.recipient = getIntent().getParcelableExtra("recipient");
Support for multi-device. 1) In addition to the Recipient interface, there is now RecipientDevice. A Recipient can have multiple corresponding RecipientDevices. All addressing is done to a Recipient, but crypto sessions and transport delivery are done to RecipientDevice. 2) The Push transport handles the discovery and session setup of additional Recipient devices. 3) Some internal rejiggering of Groups.
2014-02-03 03:38:06 +00:00
this.recipientDeviceId = getIntent().getIntExtra("recipient_device_id", -1);
Initial Project Import
2011-12-20 18:20:44 +00:00
this.threadId = getIntent().getLongExtra("thread_id", -1);
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
this.messageId = getIntent().getLongExtra("message_id", -1);
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
this.masterSecret = getIntent().getParcelableExtra("master_secret");
Initial Project Import
2011-12-20 18:20:44 +00:00
}
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
private void initializeListeners() {
this.confirmButton.setOnClickListener(new OkListener());
this.cancelButton.setOnClickListener(new CancelListener());
}
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
private class OkListener implements View.OnClickListener {
Refactor MasterSecret initialization, access, and timeout paths. 1) Consolidate all of the KeyCachingService interaction into a single mixin. Activities extend delegates which call through to the mixin. 2) Switch Activity increment/decrement triggers from onStop to onPause in order to account for some screen locks that don't stop activities.
2013-02-11 01:30:51 +00:00
@Override
Initial Project Import
2011-12-20 18:20:44 +00:00
public void onClick(View v) {
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
new AsyncTask<Void, Void, Void> () {
private ProgressDialog dialog;
@Override
protected void onPreExecute() {
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
dialog = ProgressDialog.show(ReceiveKeyActivity.this,
getString(R.string.ReceiveKeyActivity_processing),
getString(R.string.ReceiveKeyActivity_processing_key_exchange),
true);
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
}
@Override
protected Void doInBackground(Void... params) {
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
if (keyExchangeMessage != null) {
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
try {
Collapse KeyExchangeMessage and KeyExchangeProcessor interfaces.
2014-04-22 22:15:07 +00:00
RecipientDevice recipientDevice = new RecipientDevice(recipient.getRecipientId(),
recipientDeviceId);
KeyExchangeProcessor processor = new KeyExchangeProcessor(ReceiveKeyActivity.this,
masterSecret, recipientDevice);
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
IdentityKeyStore identityKeyStore = new TextSecureIdentityKeyStore(ReceiveKeyActivity.this,
masterSecret);
identityKeyStore.saveIdentity(recipient.getRecipientId(), keyExchangeMessage.getIdentityKey());
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
processor.processKeyExchangeMessage(keyExchangeMessage, threadId);
Collapse KeyExchangeMessage and KeyExchangeProcessor interfaces.
2014-04-22 22:15:07 +00:00
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
DatabaseFactory.getEncryptingSmsDatabase(ReceiveKeyActivity.this)
.markAsProcessedKeyExchange(messageId);
Move session construction and KeyExchangeMessage into libaxolotl. 1) Add plain two-way key exchange support libaxolotl by moving all the KeyExchangeMessage code there. 2) Move the bulk of KeyExchangeProcessor code to libaxolotl for setting up sessions based on retrieved prekeys, received prekeybundles, or exchanged key exchange messages.
2014-04-23 04:31:57 +00:00
} catch (InvalidKeyException e) {
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
Log.w("ReceiveKeyActivity", e);
DatabaseFactory.getEncryptingSmsDatabase(ReceiveKeyActivity.this)
.markAsCorruptKeyExchange(messageId);
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
} catch (StaleKeyExchangeException e) {
DatabaseFactory.getEncryptingSmsDatabase(ReceiveKeyActivity.this)
.markAsStaleKeyExchange(messageId);
} catch (UntrustedIdentityException e) {
throw new AssertionError(e);
Support for Axolotl protocol. 1) Split code into v1 and v2 message paths. 2) Do the Axolotl protocol for v2. 3) Switch all v2 entities to protobuf.
2013-11-26 01:00:20 +00:00
}
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
} else if (keyExchangeMessageBundle != null) {
try {
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
Context context = ReceiveKeyActivity.this;
EncryptingSmsDatabase database = DatabaseFactory.getEncryptingSmsDatabase(context);
RecipientDevice recipientDevice = new RecipientDevice(recipient.getRecipientId(), recipientDeviceId);
TransportDetails transportDetails = getIntent().getBooleanExtra("is_push", false) ?
new PushTransportDetails(keyExchangeMessageBundle.getMessageVersion()) :
new SmsTransportDetails();
TextSecureCipher cipher = new TextSecureCipher(ReceiveKeyActivity.this, masterSecret, recipientDevice, transportDetails);
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
IdentityKeyStore identityKeyStore = new TextSecureIdentityKeyStore(ReceiveKeyActivity.this,
masterSecret);
identityKeyStore.saveIdentity(recipient.getRecipientId(), keyExchangeMessageBundle.getIdentityKey());
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
byte[] plaintext = cipher.decrypt(keyExchangeMessageBundle);
Correctly handle key conflict resolution for incoming push.
2014-02-22 22:22:12 +00:00
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
database.updateBundleMessageBody(masterSecret, messageId, "");
database.updateMessageBody(masterSecret, messageId, new String(plaintext));
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
} catch (InvalidKeyIdException | InvalidKeyException | LegacyMessageException | NoSessionException e) {
Refactor the ciphertext message parsing and building.
2013-11-01 00:23:45 +00:00
Log.w("ReceiveKeyActivity", e);
DatabaseFactory.getEncryptingSmsDatabase(ReceiveKeyActivity.this)
.markAsCorruptKeyExchange(messageId);
Rearrange decrypt API. 1) Change SessionBuilder to only establish sessions via KeyExchangeMessage and PreKeyBundles. 2) Change SessionCipher to decrypt either WhisperMessage or PreKeyWhisperMessage items, automatically building a session for the latter. 3) Change SessionCipher to tear down new sessions built with PreKeyWhisperMessages if the embedded WhsiperMessage fails to decrypt.
2014-07-20 21:35:46 +00:00
} catch (InvalidMessageException e) {
Log.w("ReceiveKeyActivity", e);
DatabaseFactory.getEncryptingSmsDatabase(ReceiveKeyActivity.this)
.markAsDecryptFailed(messageId);
} catch (DuplicateMessageException e) {
Log.w("ReceiveKeyActivity", e);
DatabaseFactory.getEncryptingSmsDatabase(ReceiveKeyActivity.this)
.markAsDecryptDuplicate(messageId);
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
} catch (UntrustedIdentityException e) {
Correctly handle key conflict resolution for incoming push.
2014-02-22 22:22:12 +00:00
Log.w("ReceiveKeyActivity", e);
Move identity key verification into libaxolotol. With tests.
2014-04-28 18:46:37 +00:00
Toast.makeText(ReceiveKeyActivity.this, "Untrusted!", Toast.LENGTH_LONG).show();
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
}
Verify identity keys on outgoing messages. If PreKeyEntity identity key doesn't match local DB, fail outgoing message and queue "incoming" identity key update message for manual user approval.
2014-02-16 23:23:49 +00:00
} else if (identityUpdateMessage != null) {
DatabaseFactory.getIdentityDatabase(ReceiveKeyActivity.this)
.saveIdentity(masterSecret, recipient.getRecipientId(), identityUpdateMessage);
DatabaseFactory.getSmsDatabase(ReceiveKeyActivity.this).markAsProcessedKeyExchange(messageId);
Rollbacks, v2 sms-transport key exchanges, push identity conflicts. 1) Stop protocol rollbacks. 2) Handle v2 version key exchange messages. 3) Handle identity key conflicts on prekeybundle messages.
2013-09-14 20:33:23 +00:00
}
Switch to a more heavily TOFU model for identity keys. 1) There is no longer a concept of "verified" or "unverified." Only "what we saw last time" and "different from last time." 2) Let's eliminate "verify session," since we're all about identity keys now. 3) Mark manually processed key exchanges as processed.
2013-05-23 23:36:24 +00:00
return null;
}
@Override
protected void onPostExecute(Void result) {
dialog.dismiss();
finish();
}
}.execute();
Initial Project Import
2011-12-20 18:20:44 +00:00
}
}
Extract TextSecure strings for i18n. 1) Change all instances which use concatenation to build strings with variables in them to use string formatting instead. 2) Extract all string literals from layouts and menus into strings.xml 3) Extract all string literals from code into strings.xml
2012-09-08 03:03:23 +00:00
Initial Project Import
2011-12-20 18:20:44 +00:00
private class CancelListener implements View.OnClickListener {
Refactor MasterSecret initialization, access, and timeout paths. 1) Consolidate all of the KeyCachingService interaction into a single mixin. Activities extend delegates which call through to the mixin. 2) Switch Activity increment/decrement triggers from onStop to onPause in order to account for some screen locks that don't stop activities.
2013-02-11 01:30:51 +00:00
@Override
Initial Project Import
2011-12-20 18:20:44 +00:00
public void onClick(View v) {
ReceiveKeyActivity.this.finish();
}
}
}
Reference in New Issue Copy Permalink