]> nmode's Git Repositories - signal-cli/blob - src/main/java/org/asamk/signal/manager/Manager.java
git.nmode.ca / signal-cli / blob
? search:


c332a9599602d9cb5c0ce95f543ce29d2b9983f3
[signal-cli] / src / main / java / org / asamk / signal / manager / Manager.java
1 /*
2 Copyright (C) 2015-2020 AsamK and contributors
3
4 This program is free software: you can redistribute it and/or modify
5 it under the terms of the GNU General Public License as published by
6 the Free Software Foundation, either version 3 of the License, or
7 (at your option) any later version.
8
9 This program is distributed in the hope that it will be useful,
10 but WITHOUT ANY WARRANTY; without even the implied warranty of
11 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 GNU General Public License for more details.
13
14 You should have received a copy of the GNU General Public License
15 along with this program. If not, see <http://www.gnu.org/licenses/>.
16 */
17 package org.asamk.signal.manager;
18
19 import com.fasterxml.jackson.databind.ObjectMapper;
20
21 import org.asamk.signal.storage.SignalAccount;
22 import org.asamk.signal.storage.contacts.ContactInfo;
23 import org.asamk.signal.storage.groups.GroupInfo;
24 import org.asamk.signal.storage.groups.JsonGroupStore;
25 import org.asamk.signal.storage.profiles.SignalProfile;
26 import org.asamk.signal.storage.profiles.SignalProfileEntry;
27 import org.asamk.signal.storage.protocol.JsonIdentityKeyStore;
28 import org.asamk.signal.util.IOUtils;
29 import org.asamk.signal.util.Util;
30 import org.signal.libsignal.metadata.InvalidMetadataMessageException;
31 import org.signal.libsignal.metadata.InvalidMetadataVersionException;
32 import org.signal.libsignal.metadata.ProtocolDuplicateMessageException;
33 import org.signal.libsignal.metadata.ProtocolInvalidKeyException;
34 import org.signal.libsignal.metadata.ProtocolInvalidKeyIdException;
35 import org.signal.libsignal.metadata.ProtocolInvalidMessageException;
36 import org.signal.libsignal.metadata.ProtocolInvalidVersionException;
37 import org.signal.libsignal.metadata.ProtocolLegacyMessageException;
38 import org.signal.libsignal.metadata.ProtocolNoSessionException;
39 import org.signal.libsignal.metadata.ProtocolUntrustedIdentityException;
40 import org.signal.libsignal.metadata.SelfSendException;
41 import org.signal.libsignal.metadata.certificate.InvalidCertificateException;
42 import org.signal.zkgroup.InvalidInputException;
43 import org.signal.zkgroup.profiles.ClientZkProfileOperations;
44 import org.signal.zkgroup.profiles.ProfileKey;
45 import org.whispersystems.libsignal.IdentityKey;
46 import org.whispersystems.libsignal.IdentityKeyPair;
47 import org.whispersystems.libsignal.InvalidKeyException;
48 import org.whispersystems.libsignal.InvalidMessageException;
49 import org.whispersystems.libsignal.InvalidVersionException;
50 import org.whispersystems.libsignal.ecc.Curve;
51 import org.whispersystems.libsignal.ecc.ECKeyPair;
52 import org.whispersystems.libsignal.ecc.ECPublicKey;
53 import org.whispersystems.libsignal.state.PreKeyRecord;
54 import org.whispersystems.libsignal.state.SignedPreKeyRecord;
55 import org.whispersystems.libsignal.util.KeyHelper;
56 import org.whispersystems.libsignal.util.Medium;
57 import org.whispersystems.libsignal.util.Pair;
58 import org.whispersystems.libsignal.util.guava.Optional;
59 import org.whispersystems.signalservice.api.SignalServiceAccountManager;
60 import org.whispersystems.signalservice.api.SignalServiceMessagePipe;
61 import org.whispersystems.signalservice.api.SignalServiceMessageReceiver;
62 import org.whispersystems.signalservice.api.SignalServiceMessageSender;
63 import org.whispersystems.signalservice.api.crypto.InvalidCiphertextException;
64 import org.whispersystems.signalservice.api.crypto.ProfileCipher;
65 import org.whispersystems.signalservice.api.crypto.SignalServiceCipher;
66 import org.whispersystems.signalservice.api.crypto.UnidentifiedAccess;
67 import org.whispersystems.signalservice.api.crypto.UnidentifiedAccessPair;
68 import org.whispersystems.signalservice.api.crypto.UntrustedIdentityException;
69 import org.whispersystems.signalservice.api.groupsv2.ClientZkOperations;
70 import org.whispersystems.signalservice.api.groupsv2.GroupsV2Operations;
71 import org.whispersystems.signalservice.api.messages.SendMessageResult;
72 import org.whispersystems.signalservice.api.messages.SignalServiceAttachment;
73 import org.whispersystems.signalservice.api.messages.SignalServiceAttachmentPointer;
74 import org.whispersystems.signalservice.api.messages.SignalServiceAttachmentRemoteId;
75 import org.whispersystems.signalservice.api.messages.SignalServiceAttachmentStream;
76 import org.whispersystems.signalservice.api.messages.SignalServiceContent;
77 import org.whispersystems.signalservice.api.messages.SignalServiceDataMessage;
78 import org.whispersystems.signalservice.api.messages.SignalServiceEnvelope;
79 import org.whispersystems.signalservice.api.messages.SignalServiceGroup;
80 import org.whispersystems.signalservice.api.messages.SignalServiceReceiptMessage;
81 import org.whispersystems.signalservice.api.messages.SignalServiceStickerManifestUpload;
82 import org.whispersystems.signalservice.api.messages.SignalServiceStickerManifestUpload.StickerInfo;
83 import org.whispersystems.signalservice.api.messages.multidevice.BlockedListMessage;
84 import org.whispersystems.signalservice.api.messages.multidevice.ContactsMessage;
85 import org.whispersystems.signalservice.api.messages.multidevice.DeviceContact;
86 import org.whispersystems.signalservice.api.messages.multidevice.DeviceContactsInputStream;
87 import org.whispersystems.signalservice.api.messages.multidevice.DeviceContactsOutputStream;
88 import org.whispersystems.signalservice.api.messages.multidevice.DeviceGroup;
89 import org.whispersystems.signalservice.api.messages.multidevice.DeviceGroupsInputStream;
90 import org.whispersystems.signalservice.api.messages.multidevice.DeviceGroupsOutputStream;
91 import org.whispersystems.signalservice.api.messages.multidevice.DeviceInfo;
92 import org.whispersystems.signalservice.api.messages.multidevice.RequestMessage;
93 import org.whispersystems.signalservice.api.messages.multidevice.SentTranscriptMessage;
94 import org.whispersystems.signalservice.api.messages.multidevice.SignalServiceSyncMessage;
95 import org.whispersystems.signalservice.api.messages.multidevice.VerifiedMessage;
96 import org.whispersystems.signalservice.api.profiles.SignalServiceProfile;
97 import org.whispersystems.signalservice.api.push.ContactTokenDetails;
98 import org.whispersystems.signalservice.api.push.SignalServiceAddress;
99 import org.whispersystems.signalservice.api.push.exceptions.EncapsulatedExceptions;
100 import org.whispersystems.signalservice.api.push.exceptions.MissingConfigurationException;
101 import org.whispersystems.signalservice.api.push.exceptions.NetworkFailureException;
102 import org.whispersystems.signalservice.api.push.exceptions.UnregisteredUserException;
103 import org.whispersystems.signalservice.api.util.InvalidNumberException;
104 import org.whispersystems.signalservice.api.util.SleepTimer;
105 import org.whispersystems.signalservice.api.util.StreamDetails;
106 import org.whispersystems.signalservice.api.util.UptimeSleepTimer;
107 import org.whispersystems.signalservice.api.util.UuidUtil;
108 import org.whispersystems.signalservice.internal.configuration.SignalServiceConfiguration;
109 import org.whispersystems.signalservice.internal.push.SignalServiceProtos;
110 import org.whispersystems.signalservice.internal.push.UnsupportedDataMessageException;
111 import org.whispersystems.signalservice.internal.push.VerifyAccountResponse;
112 import org.whispersystems.signalservice.internal.util.DynamicCredentialsProvider;
113 import org.whispersystems.signalservice.internal.util.Hex;
114 import org.whispersystems.util.Base64;
115
116 import java.io.Closeable;
117 import java.io.File;
118 import java.io.FileInputStream;
119 import java.io.FileNotFoundException;
120 import java.io.FileOutputStream;
121 import java.io.IOException;
122 import java.io.InputStream;
123 import java.io.OutputStream;
124 import java.net.URI;
125 import java.net.URISyntaxException;
126 import java.net.URLEncoder;
127 import java.nio.file.Files;
128 import java.nio.file.Paths;
129 import java.nio.file.StandardCopyOption;
130 import java.util.ArrayList;
131 import java.util.Arrays;
132 import java.util.Collection;
133 import java.util.Collections;
134 import java.util.Date;
135 import java.util.HashSet;
136 import java.util.LinkedList;
137 import java.util.List;
138 import java.util.Locale;
139 import java.util.Objects;
140 import java.util.Set;
141 import java.util.UUID;
142 import java.util.concurrent.ExecutionException;
143 import java.util.concurrent.ExecutorService;
144 import java.util.concurrent.TimeUnit;
145 import java.util.concurrent.TimeoutException;
146 import java.util.stream.Collectors;
147 import java.util.zip.ZipEntry;
148 import java.util.zip.ZipFile;
149
150 import static org.asamk.signal.manager.ServiceConfig.capabilities;
151
152 public class Manager implements Closeable {
153
154 private final SleepTimer timer = new UptimeSleepTimer();
155 private final SignalServiceConfiguration serviceConfiguration;
156 private final String userAgent;
157
158 private final SignalAccount account;
159 private final PathConfig pathConfig;
160 private SignalServiceAccountManager accountManager;
161 private SignalServiceMessagePipe messagePipe = null;
162 private SignalServiceMessagePipe unidentifiedMessagePipe = null;
163 private boolean discoverableByPhoneNumber = true;
164
165 public Manager(SignalAccount account, PathConfig pathConfig, SignalServiceConfiguration serviceConfiguration, String userAgent) {
166 this.account = account;
167 this.pathConfig = pathConfig;
168 this.serviceConfiguration = serviceConfiguration;
169 this.userAgent = userAgent;
170 this.accountManager = createSignalServiceAccountManager();
171
172 this.account.setResolver(this::resolveSignalServiceAddress);
173 }
174
175 public String getUsername() {
176 return account.getUsername();
177 }
178
179 public SignalServiceAddress getSelfAddress() {
180 return account.getSelfAddress();
181 }
182
183 private SignalServiceAccountManager createSignalServiceAccountManager() {
184 GroupsV2Operations groupsV2Operations;
185 try {
186 groupsV2Operations = new GroupsV2Operations(ClientZkOperations.create(serviceConfiguration));
187 } catch (Throwable ignored) {
188 groupsV2Operations = null;
189 }
190 return new SignalServiceAccountManager(serviceConfiguration,
191 new DynamicCredentialsProvider(account.getUuid(), account.getUsername(), account.getPassword(), null, account.getDeviceId()),
192 userAgent,
193 groupsV2Operations,
194 timer);
195 }
196
197 private IdentityKeyPair getIdentityKeyPair() {
198 return account.getSignalProtocolStore().getIdentityKeyPair();
199 }
200
201 public int getDeviceId() {
202 return account.getDeviceId();
203 }
204
205 private String getMessageCachePath() {
206 return pathConfig.getDataPath() + "/" + account.getUsername() + ".d/msg-cache";
207 }
208
209 private String getMessageCachePath(String sender) {
210 if (sender == null || sender.isEmpty()) {
211 return getMessageCachePath();
212 }
213
214 return getMessageCachePath() + "/" + sender.replace("/", "_");
215 }
216
217 private File getMessageCacheFile(String sender, long now, long timestamp) throws IOException {
218 String cachePath = getMessageCachePath(sender);
219 IOUtils.createPrivateDirectories(cachePath);
220 return new File(cachePath + "/" + now + "_" + timestamp);
221 }
222
223 public static Manager init(String username, String settingsPath, SignalServiceConfiguration serviceConfiguration, String userAgent) throws IOException {
224 PathConfig pathConfig = PathConfig.createDefault(settingsPath);
225
226 if (!SignalAccount.userExists(pathConfig.getDataPath(), username)) {
227 IdentityKeyPair identityKey = KeyHelper.generateIdentityKeyPair();
228 int registrationId = KeyHelper.generateRegistrationId(false);
229
230 ProfileKey profileKey = KeyUtils.createProfileKey();
231 SignalAccount account = SignalAccount.create(pathConfig.getDataPath(), username, identityKey, registrationId, profileKey);
232 account.save();
233
234 return new Manager(account, pathConfig, serviceConfiguration, userAgent);
235 }
236
237 SignalAccount account = SignalAccount.load(pathConfig.getDataPath(), username);
238
239 Manager m = new Manager(account, pathConfig, serviceConfiguration, userAgent);
240
241 m.migrateLegacyConfigs();
242
243 return m;
244 }
245
246 private void migrateLegacyConfigs() {
247 // Copy group avatars that were previously stored in the attachments folder
248 // to the new avatar folder
249 if (JsonGroupStore.groupsWithLegacyAvatarId.size() > 0) {
250 for (GroupInfo g : JsonGroupStore.groupsWithLegacyAvatarId) {
251 File avatarFile = getGroupAvatarFile(g.groupId);
252 File attachmentFile = getAttachmentFile(new SignalServiceAttachmentRemoteId(g.getAvatarId()));
253 if (!avatarFile.exists() && attachmentFile.exists()) {
254 try {
255 IOUtils.createPrivateDirectories(pathConfig.getAvatarsPath());
256 Files.copy(attachmentFile.toPath(), avatarFile.toPath(), StandardCopyOption.REPLACE_EXISTING);
257 } catch (Exception e) {
258 // Ignore
259 }
260 }
261 }
262 JsonGroupStore.groupsWithLegacyAvatarId.clear();
263 account.save();
264 }
265 if (account.getProfileKey() == null) {
266 // Old config file, creating new profile key
267 account.setProfileKey(KeyUtils.createProfileKey());
268 account.save();
269 }
270 }
271
272 public void checkAccountState() throws IOException {
273 if (account.isRegistered()) {
274 if (accountManager.getPreKeysCount() < ServiceConfig.PREKEY_MINIMUM_COUNT) {
275 refreshPreKeys();
276 account.save();
277 }
278 if (account.getUuid() == null) {
279 account.setUuid(accountManager.getOwnUuid());
280 account.save();
281 }
282 }
283 }
284
285 public boolean isRegistered() {
286 return account.isRegistered();
287 }
288
289 public void register(boolean voiceVerification) throws IOException {
290 account.setPassword(KeyUtils.createPassword());
291
292 // Resetting UUID, because registering doesn't work otherwise
293 account.setUuid(null);
294 accountManager = createSignalServiceAccountManager();
295
296 if (voiceVerification) {
297 accountManager.requestVoiceVerificationCode(Locale.getDefault(), Optional.absent(), Optional.absent());
298 } else {
299 accountManager.requestSmsVerificationCode(false, Optional.absent(), Optional.absent());
300 }
301
302 account.setRegistered(false);
303 account.save();
304 }
305
306 public void updateAccountAttributes() throws IOException {
307 accountManager.setAccountAttributes(account.getSignalingKey(), account.getSignalProtocolStore().getLocalRegistrationId(), true, account.getRegistrationLockPin(), account.getRegistrationLock(), getSelfUnidentifiedAccessKey(), false, capabilities, discoverableByPhoneNumber);
308 }
309
310 public void setProfile(String name, File avatar) throws IOException {
311 try (final StreamDetails streamDetails = avatar == null ? null : Utils.createStreamDetailsFromFile(avatar)) {
312 accountManager.setVersionedProfile(account.getUuid(), account.getProfileKey(), name, streamDetails);
313 }
314 }
315
316 public void unregister() throws IOException {
317 // When setting an empty GCM id, the Signal-Server also sets the fetchesMessages property to false.
318 // If this is the master device, other users can't send messages to this number anymore.
319 // If this is a linked device, other users can still send messages, but this device doesn't receive them anymore.
320 accountManager.setGcmId(Optional.absent());
321
322 account.setRegistered(false);
323 account.save();
324 }
325
326 public List<DeviceInfo> getLinkedDevices() throws IOException {
327 List<DeviceInfo> devices = accountManager.getDevices();
328 account.setMultiDevice(devices.size() > 1);
329 account.save();
330 return devices;
331 }
332
333 public void removeLinkedDevices(int deviceId) throws IOException {
334 accountManager.removeDevice(deviceId);
335 List<DeviceInfo> devices = accountManager.getDevices();
336 account.setMultiDevice(devices.size() > 1);
337 account.save();
338 }
339
340 public void addDeviceLink(URI linkUri) throws IOException, InvalidKeyException {
341 Utils.DeviceLinkInfo info = Utils.parseDeviceLinkUri(linkUri);
342
343 addDevice(info.deviceIdentifier, info.deviceKey);
344 }
345
346 private void addDevice(String deviceIdentifier, ECPublicKey deviceKey) throws IOException, InvalidKeyException {
347 IdentityKeyPair identityKeyPair = getIdentityKeyPair();
348 String verificationCode = accountManager.getNewDeviceVerificationCode();
349
350 accountManager.addDevice(deviceIdentifier, deviceKey, identityKeyPair, Optional.of(account.getProfileKey().serialize()), verificationCode);
351 account.setMultiDevice(true);
352 account.save();
353 }
354
355 private List<PreKeyRecord> generatePreKeys() {
356 List<PreKeyRecord> records = new ArrayList<>(ServiceConfig.PREKEY_BATCH_SIZE);
357
358 final int offset = account.getPreKeyIdOffset();
359 for (int i = 0; i < ServiceConfig.PREKEY_BATCH_SIZE; i++) {
360 int preKeyId = (offset + i) % Medium.MAX_VALUE;
361 ECKeyPair keyPair = Curve.generateKeyPair();
362 PreKeyRecord record = new PreKeyRecord(preKeyId, keyPair);
363
364 records.add(record);
365 }
366
367 account.addPreKeys(records);
368 account.save();
369
370 return records;
371 }
372
373 private SignedPreKeyRecord generateSignedPreKey(IdentityKeyPair identityKeyPair) {
374 try {
375 ECKeyPair keyPair = Curve.generateKeyPair();
376 byte[] signature = Curve.calculateSignature(identityKeyPair.getPrivateKey(), keyPair.getPublicKey().serialize());
377 SignedPreKeyRecord record = new SignedPreKeyRecord(account.getNextSignedPreKeyId(), System.currentTimeMillis(), keyPair, signature);
378
379 account.addSignedPreKey(record);
380 account.save();
381
382 return record;
383 } catch (InvalidKeyException e) {
384 throw new AssertionError(e);
385 }
386 }
387
388 public void verifyAccount(String verificationCode, String pin) throws IOException {
389 verificationCode = verificationCode.replace("-", "");
390 account.setSignalingKey(KeyUtils.createSignalingKey());
391 // TODO make unrestricted unidentified access configurable
392 VerifyAccountResponse response = accountManager.verifyAccountWithCode(verificationCode, account.getSignalingKey(), account.getSignalProtocolStore().getLocalRegistrationId(), true, pin, null, getSelfUnidentifiedAccessKey(), false, capabilities, discoverableByPhoneNumber);
393
394 UUID uuid = UuidUtil.parseOrNull(response.getUuid());
395 // TODO response.isStorageCapable()
396 //accountManager.setGcmId(Optional.of(GoogleCloudMessaging.getInstance(this).register(REGISTRATION_ID)));
397 account.setRegistered(true);
398 account.setUuid(uuid);
399 account.setRegistrationLockPin(pin);
400 account.getSignalProtocolStore().saveIdentity(account.getSelfAddress(), getIdentityKeyPair().getPublicKey(), TrustLevel.TRUSTED_VERIFIED);
401
402 refreshPreKeys();
403 account.save();
404 }
405
406 public void setRegistrationLockPin(Optional<String> pin) throws IOException {
407 if (pin.isPresent()) {
408 account.setRegistrationLockPin(pin.get());
409 throw new RuntimeException("Not implemented anymore, will be replaced with KBS");
410 } else {
411 account.setRegistrationLockPin(null);
412 accountManager.removeRegistrationLockV1();
413 }
414 account.save();
415 }
416
417 void refreshPreKeys() throws IOException {
418 List<PreKeyRecord> oneTimePreKeys = generatePreKeys();
419 final IdentityKeyPair identityKeyPair = getIdentityKeyPair();
420 SignedPreKeyRecord signedPreKeyRecord = generateSignedPreKey(identityKeyPair);
421
422 accountManager.setPreKeys(identityKeyPair.getPublicKey(), signedPreKeyRecord, oneTimePreKeys);
423 }
424
425 private SignalServiceMessageReceiver getMessageReceiver() {
426 // TODO implement ZkGroup support
427 final ClientZkProfileOperations clientZkProfileOperations = null;
428 return new SignalServiceMessageReceiver(serviceConfiguration, account.getUuid(), account.getUsername(), account.getPassword(), account.getDeviceId(), account.getSignalingKey(), userAgent, null, timer, clientZkProfileOperations);
429 }
430
431 private SignalServiceMessageSender getMessageSender() {
432 // TODO implement ZkGroup support
433 final ClientZkProfileOperations clientZkProfileOperations = null;
434 final boolean attachmentsV3 = false;
435 final ExecutorService executor = null;
436 return new SignalServiceMessageSender(serviceConfiguration, account.getUuid(), account.getUsername(), account.getPassword(),
437 account.getDeviceId(), account.getSignalProtocolStore(), userAgent, account.isMultiDevice(), attachmentsV3, Optional.fromNullable(messagePipe), Optional.fromNullable(unidentifiedMessagePipe), Optional.absent(), clientZkProfileOperations, executor);
438 }
439
440 private SignalServiceProfile getEncryptedRecipientProfile(SignalServiceAddress address, Optional<UnidentifiedAccess> unidentifiedAccess) throws IOException {
441 SignalServiceMessagePipe pipe = unidentifiedMessagePipe != null && unidentifiedAccess.isPresent() ? unidentifiedMessagePipe
442 : messagePipe;
443
444 if (pipe != null) {
445 try {
446 return pipe.getProfile(address, Optional.absent(), unidentifiedAccess, SignalServiceProfile.RequestType.PROFILE).get(10, TimeUnit.SECONDS).getProfile();
447 } catch (IOException | InterruptedException | ExecutionException | TimeoutException ignored) {
448 }
449 }
450
451 SignalServiceMessageReceiver receiver = getMessageReceiver();
452 try {
453 return receiver.retrieveProfile(address, Optional.absent(), unidentifiedAccess, SignalServiceProfile.RequestType.PROFILE).get(10, TimeUnit.SECONDS).getProfile();
454 } catch (InterruptedException | ExecutionException | TimeoutException e) {
455 throw new IOException("Failed to retrieve profile", e);
456 }
457 }
458
459 private SignalProfile getRecipientProfile(SignalServiceAddress address, Optional<UnidentifiedAccess> unidentifiedAccess, ProfileKey profileKey) throws IOException {
460 SignalProfileEntry profileEntry = account.getProfileStore().getProfile(address);
461 long now = new Date().getTime();
462 // Profiles are cache for 24h before retrieving them again
463 if (profileEntry == null || profileEntry.getProfile() == null || now - profileEntry.getLastUpdateTimestamp() > 24 * 60 * 60 * 1000) {
464 SignalProfile profile = retrieveRecipientProfile(address, unidentifiedAccess, profileKey);
465 account.getProfileStore().updateProfile(address, profileKey, now, profile);
466 return profile;
467 }
468 return profileEntry.getProfile();
469 }
470
471 private SignalProfile retrieveRecipientProfile(SignalServiceAddress address, Optional<UnidentifiedAccess> unidentifiedAccess, ProfileKey profileKey) throws IOException {
472 final SignalServiceProfile encryptedProfile = getEncryptedRecipientProfile(address, unidentifiedAccess);
473
474 File avatarFile = null;
475 try {
476 avatarFile = encryptedProfile.getAvatar() == null ? null : retrieveProfileAvatar(address, encryptedProfile.getAvatar(), profileKey);
477 } catch (Throwable e) {
478 System.err.println("Failed to retrieve profile avatar, ignoring: " + e.getMessage());
479 }
480
481 ProfileCipher profileCipher = new ProfileCipher(profileKey);
482 try {
483 return new SignalProfile(
484 encryptedProfile.getIdentityKey(),
485 encryptedProfile.getName() == null ? null : new String(profileCipher.decryptName(Base64.decode(encryptedProfile.getName()))),
486 avatarFile,
487 encryptedProfile.getUnidentifiedAccess() == null || !profileCipher.verifyUnidentifiedAccess(Base64.decode(encryptedProfile.getUnidentifiedAccess())) ? null : encryptedProfile.getUnidentifiedAccess(),
488 encryptedProfile.isUnrestrictedUnidentifiedAccess(),
489 encryptedProfile.getCapabilities());
490 } catch (InvalidCiphertextException e) {
491 return null;
492 }
493 }
494
495 private Optional<SignalServiceAttachmentStream> createGroupAvatarAttachment(byte[] groupId) throws IOException {
496 File file = getGroupAvatarFile(groupId);
497 if (!file.exists()) {
498 return Optional.absent();
499 }
500
501 return Optional.of(Utils.createAttachment(file));
502 }
503
504 private Optional<SignalServiceAttachmentStream> createContactAvatarAttachment(String number) throws IOException {
505 File file = getContactAvatarFile(number);
506 if (!file.exists()) {
507 return Optional.absent();
508 }
509
510 return Optional.of(Utils.createAttachment(file));
511 }
512
513 private GroupInfo getGroupForSending(byte[] groupId) throws GroupNotFoundException, NotAGroupMemberException {
514 GroupInfo g = account.getGroupStore().getGroup(groupId);
515 if (g == null) {
516 throw new GroupNotFoundException(groupId);
517 }
518 if (!g.isMember(account.getSelfAddress())) {
519 throw new NotAGroupMemberException(groupId, g.name);
520 }
521 return g;
522 }
523
524 public List<GroupInfo> getGroups() {
525 return account.getGroupStore().getGroups();
526 }
527
528 public long sendGroupMessage(String messageText, List<String> attachments,
529 byte[] groupId)
530 throws IOException, EncapsulatedExceptions, GroupNotFoundException, AttachmentInvalidException, NotAGroupMemberException {
531 final SignalServiceDataMessage.Builder messageBuilder = SignalServiceDataMessage.newBuilder().withBody(messageText);
532 if (attachments != null) {
533 messageBuilder.withAttachments(Utils.getSignalServiceAttachments(attachments));
534 }
535 if (groupId != null) {
536 SignalServiceGroup group = SignalServiceGroup.newBuilder(SignalServiceGroup.Type.DELIVER)
537 .withId(groupId)
538 .build();
539 messageBuilder.asGroupMessage(group);
540 }
541
542 final GroupInfo g = getGroupForSending(groupId);
543
544 messageBuilder.withExpiration(g.messageExpirationTime);
545
546 return sendMessageLegacy(messageBuilder, g.getMembersWithout(account.getSelfAddress()));
547 }
548
549 public void sendGroupMessageReaction(String emoji, boolean remove, String targetAuthor,
550 long targetSentTimestamp, byte[] groupId)
551 throws IOException, EncapsulatedExceptions, InvalidNumberException, NotAGroupMemberException, GroupNotFoundException {
552 SignalServiceDataMessage.Reaction reaction = new SignalServiceDataMessage.Reaction(emoji, remove, canonicalizeAndResolveSignalServiceAddress(targetAuthor), targetSentTimestamp);
553 final SignalServiceDataMessage.Builder messageBuilder = SignalServiceDataMessage.newBuilder()
554 .withReaction(reaction);
555 if (groupId != null) {
556 SignalServiceGroup group = SignalServiceGroup.newBuilder(SignalServiceGroup.Type.DELIVER)
557 .withId(groupId)
558 .build();
559 messageBuilder.asGroupMessage(group);
560 }
561 final GroupInfo g = getGroupForSending(groupId);
562 sendMessageLegacy(messageBuilder, g.getMembersWithout(account.getSelfAddress()));
563 }
564
565 public void sendQuitGroupMessage(byte[] groupId) throws GroupNotFoundException, IOException, EncapsulatedExceptions, NotAGroupMemberException {
566 SignalServiceGroup group = SignalServiceGroup.newBuilder(SignalServiceGroup.Type.QUIT)
567 .withId(groupId)
568 .build();
569
570 SignalServiceDataMessage.Builder messageBuilder = SignalServiceDataMessage.newBuilder()
571 .asGroupMessage(group);
572
573 final GroupInfo g = getGroupForSending(groupId);
574 g.removeMember(account.getSelfAddress());
575 account.getGroupStore().updateGroup(g);
576
577 sendMessageLegacy(messageBuilder, g.getMembersWithout(account.getSelfAddress()));
578 }
579
580 private byte[] sendUpdateGroupMessage(byte[] groupId, String name, Collection<SignalServiceAddress> members, String avatarFile) throws IOException, EncapsulatedExceptions, GroupNotFoundException, AttachmentInvalidException, NotAGroupMemberException {
581 GroupInfo g;
582 if (groupId == null) {
583 // Create new group
584 g = new GroupInfo(KeyUtils.createGroupId());
585 g.addMembers(Collections.singleton(account.getSelfAddress()));
586 } else {
587 g = getGroupForSending(groupId);
588 }
589
590 if (name != null) {
591 g.name = name;
592 }
593
594 if (members != null) {
595 final Set<String> newE164Members = new HashSet<>();
596 for (SignalServiceAddress member : members) {
597 if (g.isMember(member) || !member.getNumber().isPresent()) {
598 continue;
599 }
600 newE164Members.add(member.getNumber().get());
601 }
602
603 final List<ContactTokenDetails> contacts = accountManager.getContacts(newE164Members);
604 if (contacts.size() != newE164Members.size()) {
605 // Some of the new members are not registered on Signal
606 for (ContactTokenDetails contact : contacts) {
607 newE164Members.remove(contact.getNumber());
608 }
609 throw new IOException("Failed to add members " + Util.join(", ", newE164Members) + " to group: Not registered on Signal");
610 }
611
612 g.addMembers(members);
613 }
614
615 if (avatarFile != null) {
616 IOUtils.createPrivateDirectories(pathConfig.getAvatarsPath());
617 File aFile = getGroupAvatarFile(g.groupId);
618 Files.copy(Paths.get(avatarFile), aFile.toPath(), StandardCopyOption.REPLACE_EXISTING);
619 }
620
621 account.getGroupStore().updateGroup(g);
622
623 SignalServiceDataMessage.Builder messageBuilder = getGroupUpdateMessageBuilder(g);
624
625 sendMessageLegacy(messageBuilder, g.getMembersWithout(account.getSelfAddress()));
626 return g.groupId;
627 }
628
629 void sendUpdateGroupMessage(byte[] groupId, SignalServiceAddress recipient) throws IOException, EncapsulatedExceptions, NotAGroupMemberException, GroupNotFoundException, AttachmentInvalidException {
630 if (groupId == null) {
631 return;
632 }
633 GroupInfo g = getGroupForSending(groupId);
634
635 if (!g.isMember(recipient)) {
636 return;
637 }
638
639 SignalServiceDataMessage.Builder messageBuilder = getGroupUpdateMessageBuilder(g);
640
641 // Send group message only to the recipient who requested it
642 sendMessageLegacy(messageBuilder, Collections.singleton(recipient));
643 }
644
645 private SignalServiceDataMessage.Builder getGroupUpdateMessageBuilder(GroupInfo g) throws AttachmentInvalidException {
646 SignalServiceGroup.Builder group = SignalServiceGroup.newBuilder(SignalServiceGroup.Type.UPDATE)
647 .withId(g.groupId)
648 .withName(g.name)
649 .withMembers(new ArrayList<>(g.getMembers()));
650
651 File aFile = getGroupAvatarFile(g.groupId);
652 if (aFile.exists()) {
653 try {
654 group.withAvatar(Utils.createAttachment(aFile));
655 } catch (IOException e) {
656 throw new AttachmentInvalidException(aFile.toString(), e);
657 }
658 }
659
660 return SignalServiceDataMessage.newBuilder()
661 .asGroupMessage(group.build())
662 .withExpiration(g.messageExpirationTime);
663 }
664
665 void sendGroupInfoRequest(byte[] groupId, SignalServiceAddress recipient) throws IOException, EncapsulatedExceptions {
666 if (groupId == null) {
667 return;
668 }
669
670 SignalServiceGroup.Builder group = SignalServiceGroup.newBuilder(SignalServiceGroup.Type.REQUEST_INFO)
671 .withId(groupId);
672
673 SignalServiceDataMessage.Builder messageBuilder = SignalServiceDataMessage.newBuilder()
674 .asGroupMessage(group.build());
675
676 // Send group info request message to the recipient who sent us a message with this groupId
677 sendMessageLegacy(messageBuilder, Collections.singleton(recipient));
678 }
679
680 void sendReceipt(SignalServiceAddress remoteAddress, long messageId) throws IOException, UntrustedIdentityException {
681 SignalServiceReceiptMessage receiptMessage = new SignalServiceReceiptMessage(SignalServiceReceiptMessage.Type.DELIVERY,
682 Collections.singletonList(messageId),
683 System.currentTimeMillis());
684
685 getMessageSender().sendReceipt(remoteAddress, getAccessFor(remoteAddress), receiptMessage);
686 }
687
688 public long sendMessage(String messageText, List<String> attachments,
689 List<String> recipients)
690 throws IOException, EncapsulatedExceptions, AttachmentInvalidException, InvalidNumberException {
691 final SignalServiceDataMessage.Builder messageBuilder = SignalServiceDataMessage.newBuilder().withBody(messageText);
692 if (attachments != null) {
693 List<SignalServiceAttachment> attachmentStreams = Utils.getSignalServiceAttachments(attachments);
694
695 // Upload attachments here, so we only upload once even for multiple recipients
696 SignalServiceMessageSender messageSender = getMessageSender();
697 List<SignalServiceAttachment> attachmentPointers = new ArrayList<>(attachmentStreams.size());
698 for (SignalServiceAttachment attachment : attachmentStreams) {
699 if (attachment.isStream()) {
700 attachmentPointers.add(messageSender.uploadAttachment(attachment.asStream()));
701 } else if (attachment.isPointer()) {
702 attachmentPointers.add(attachment.asPointer());
703 }
704 }
705
706 messageBuilder.withAttachments(attachmentPointers);
707 }
708 return sendMessageLegacy(messageBuilder, getSignalServiceAddresses(recipients));
709 }
710
711 public void sendMessageReaction(String emoji, boolean remove, String targetAuthor,
712 long targetSentTimestamp, List<String> recipients)
713 throws IOException, EncapsulatedExceptions, InvalidNumberException {
714 SignalServiceDataMessage.Reaction reaction = new SignalServiceDataMessage.Reaction(emoji, remove, canonicalizeAndResolveSignalServiceAddress(targetAuthor), targetSentTimestamp);
715 final SignalServiceDataMessage.Builder messageBuilder = SignalServiceDataMessage.newBuilder()
716 .withReaction(reaction);
717 sendMessageLegacy(messageBuilder, getSignalServiceAddresses(recipients));
718 }
719
720 public void sendEndSessionMessage(List<String> recipients) throws IOException, EncapsulatedExceptions, InvalidNumberException {
721 SignalServiceDataMessage.Builder messageBuilder = SignalServiceDataMessage.newBuilder()
722 .asEndSessionMessage();
723
724 final Collection<SignalServiceAddress> signalServiceAddresses = getSignalServiceAddresses(recipients);
725 try {
726 sendMessageLegacy(messageBuilder, signalServiceAddresses);
727 } catch (Exception e) {
728 for (SignalServiceAddress address : signalServiceAddresses) {
729 handleEndSession(address);
730 }
731 account.save();
732 throw e;
733 }
734 }
735
736 public String getContactName(String number) throws InvalidNumberException {
737 ContactInfo contact = account.getContactStore().getContact(canonicalizeAndResolveSignalServiceAddress(number));
738 if (contact == null) {
739 return "";
740 } else {
741 return contact.name;
742 }
743 }
744
745 public void setContactName(String number, String name) throws InvalidNumberException {
746 final SignalServiceAddress address = canonicalizeAndResolveSignalServiceAddress(number);
747 ContactInfo contact = account.getContactStore().getContact(address);
748 if (contact == null) {
749 contact = new ContactInfo(address);
750 }
751 contact.name = name;
752 account.getContactStore().updateContact(contact);
753 account.save();
754 }
755
756 public void setContactBlocked(String number, boolean blocked) throws InvalidNumberException {
757 setContactBlocked(canonicalizeAndResolveSignalServiceAddress(number), blocked);
758 }
759
760 private void setContactBlocked(SignalServiceAddress address, boolean blocked) {
761 ContactInfo contact = account.getContactStore().getContact(address);
762 if (contact == null) {
763 contact = new ContactInfo(address);
764 }
765 contact.blocked = blocked;
766 account.getContactStore().updateContact(contact);
767 account.save();
768 }
769
770 public void setGroupBlocked(final byte[] groupId, final boolean blocked) throws GroupNotFoundException {
771 GroupInfo group = getGroup(groupId);
772 if (group == null) {
773 throw new GroupNotFoundException(groupId);
774 }
775
776 group.blocked = blocked;
777 account.getGroupStore().updateGroup(group);
778 account.save();
779 }
780
781 public byte[] updateGroup(byte[] groupId, String name, List<String> members, String avatar) throws IOException, EncapsulatedExceptions, GroupNotFoundException, AttachmentInvalidException, InvalidNumberException, NotAGroupMemberException {
782 if (groupId.length == 0) {
783 groupId = null;
784 }
785 if (name.isEmpty()) {
786 name = null;
787 }
788 if (members.isEmpty()) {
789 members = null;
790 }
791 if (avatar.isEmpty()) {
792 avatar = null;
793 }
794 return sendUpdateGroupMessage(groupId, name, members == null ? null : getSignalServiceAddresses(members), avatar);
795 }
796
797 /**
798 * Change the expiration timer for a contact
799 */
800 public void setExpirationTimer(SignalServiceAddress address, int messageExpirationTimer) throws IOException {
801 ContactInfo contact = account.getContactStore().getContact(address);
802 contact.messageExpirationTime = messageExpirationTimer;
803 account.getContactStore().updateContact(contact);
804 sendExpirationTimerUpdate(address);
805 account.save();
806 }
807
808 private void sendExpirationTimerUpdate(SignalServiceAddress address) throws IOException {
809 final SignalServiceDataMessage.Builder messageBuilder = SignalServiceDataMessage.newBuilder()
810 .asExpirationUpdate();
811 sendMessage(messageBuilder, Collections.singleton(address));
812 }
813
814 /**
815 * Change the expiration timer for a contact
816 */
817 public void setExpirationTimer(String number, int messageExpirationTimer) throws IOException, InvalidNumberException {
818 SignalServiceAddress address = canonicalizeAndResolveSignalServiceAddress(number);
819 setExpirationTimer(address, messageExpirationTimer);
820 }
821
822 /**
823 * Change the expiration timer for a group
824 */
825 public void setExpirationTimer(byte[] groupId, int messageExpirationTimer) {
826 GroupInfo g = account.getGroupStore().getGroup(groupId);
827 g.messageExpirationTime = messageExpirationTimer;
828 account.getGroupStore().updateGroup(g);
829 }
830
831 /**
832 * Upload the sticker pack from path.
833 *
834 * @param path Path can be a path to a manifest.json file or to a zip file that contains a manifest.json file
835 * @return if successful, returns the URL to install the sticker pack in the signal app
836 */
837 public String uploadStickerPack(String path) throws IOException, StickerPackInvalidException {
838 SignalServiceStickerManifestUpload manifest = getSignalServiceStickerManifestUpload(path);
839
840 SignalServiceMessageSender messageSender = getMessageSender();
841
842 byte[] packKey = KeyUtils.createStickerUploadKey();
843 String packId = messageSender.uploadStickerManifest(manifest, packKey);
844
845 try {
846 return new URI("https", "signal.art", "/addstickers/", "pack_id=" + URLEncoder.encode(packId, "utf-8") + "&pack_key=" + URLEncoder.encode(Hex.toStringCondensed(packKey), "utf-8"))
847 .toString();
848 } catch (URISyntaxException e) {
849 throw new AssertionError(e);
850 }
851 }
852
853 private SignalServiceStickerManifestUpload getSignalServiceStickerManifestUpload(final String path) throws IOException, StickerPackInvalidException {
854 ZipFile zip = null;
855 String rootPath = null;
856
857 final File file = new File(path);
858 if (file.getName().endsWith(".zip")) {
859 zip = new ZipFile(file);
860 } else if (file.getName().equals("manifest.json")) {
861 rootPath = file.getParent();
862 } else {
863 throw new StickerPackInvalidException("Could not find manifest.json");
864 }
865
866 JsonStickerPack pack = parseStickerPack(rootPath, zip);
867
868 if (pack.stickers == null) {
869 throw new StickerPackInvalidException("Must set a 'stickers' field.");
870 }
871
872 if (pack.stickers.isEmpty()) {
873 throw new StickerPackInvalidException("Must include stickers.");
874 }
875
876 List<StickerInfo> stickers = new ArrayList<>(pack.stickers.size());
877 for (JsonStickerPack.JsonSticker sticker : pack.stickers) {
878 if (sticker.file == null) {
879 throw new StickerPackInvalidException("Must set a 'file' field on each sticker.");
880 }
881
882 Pair<InputStream, Long> data;
883 try {
884 data = getInputStreamAndLength(rootPath, zip, sticker.file);
885 } catch (IOException ignored) {
886 throw new StickerPackInvalidException("Could not find find " + sticker.file);
887 }
888
889 String contentType = Utils.getFileMimeType(new File(sticker.file), null);
890 StickerInfo stickerInfo = new StickerInfo(data.first(), data.second(), Optional.fromNullable(sticker.emoji).or(""), contentType);
891 stickers.add(stickerInfo);
892 }
893
894 StickerInfo cover = null;
895 if (pack.cover != null) {
896 if (pack.cover.file == null) {
897 throw new StickerPackInvalidException("Must set a 'file' field on the cover.");
898 }
899
900 Pair<InputStream, Long> data;
901 try {
902 data = getInputStreamAndLength(rootPath, zip, pack.cover.file);
903 } catch (IOException ignored) {
904 throw new StickerPackInvalidException("Could not find find " + pack.cover.file);
905 }
906
907 String contentType = Utils.getFileMimeType(new File(pack.cover.file), null);
908 cover = new StickerInfo(data.first(), data.second(), Optional.fromNullable(pack.cover.emoji).or(""), contentType);
909 }
910
911 return new SignalServiceStickerManifestUpload(
912 pack.title,
913 pack.author,
914 cover,
915 stickers);
916 }
917
918 private static JsonStickerPack parseStickerPack(String rootPath, ZipFile zip) throws IOException {
919 InputStream inputStream;
920 if (zip != null) {
921 inputStream = zip.getInputStream(zip.getEntry("manifest.json"));
922 } else {
923 inputStream = new FileInputStream((new File(rootPath, "manifest.json")));
924 }
925 return new ObjectMapper().readValue(inputStream, JsonStickerPack.class);
926 }
927
928 private static Pair<InputStream, Long> getInputStreamAndLength(final String rootPath, final ZipFile zip, final String subfile) throws IOException {
929 if (zip != null) {
930 final ZipEntry entry = zip.getEntry(subfile);
931 return new Pair<>(zip.getInputStream(entry), entry.getSize());
932 } else {
933 final File file = new File(rootPath, subfile);
934 return new Pair<>(new FileInputStream(file), file.length());
935 }
936 }
937
938 void requestSyncGroups() throws IOException {
939 SignalServiceProtos.SyncMessage.Request r = SignalServiceProtos.SyncMessage.Request.newBuilder().setType(SignalServiceProtos.SyncMessage.Request.Type.GROUPS).build();
940 SignalServiceSyncMessage message = SignalServiceSyncMessage.forRequest(new RequestMessage(r));
941 try {
942 sendSyncMessage(message);
943 } catch (UntrustedIdentityException e) {
944 e.printStackTrace();
945 }
946 }
947
948 void requestSyncContacts() throws IOException {
949 SignalServiceProtos.SyncMessage.Request r = SignalServiceProtos.SyncMessage.Request.newBuilder().setType(SignalServiceProtos.SyncMessage.Request.Type.CONTACTS).build();
950 SignalServiceSyncMessage message = SignalServiceSyncMessage.forRequest(new RequestMessage(r));
951 try {
952 sendSyncMessage(message);
953 } catch (UntrustedIdentityException e) {
954 e.printStackTrace();
955 }
956 }
957
958 void requestSyncBlocked() throws IOException {
959 SignalServiceProtos.SyncMessage.Request r = SignalServiceProtos.SyncMessage.Request.newBuilder().setType(SignalServiceProtos.SyncMessage.Request.Type.BLOCKED).build();
960 SignalServiceSyncMessage message = SignalServiceSyncMessage.forRequest(new RequestMessage(r));
961 try {
962 sendSyncMessage(message);
963 } catch (UntrustedIdentityException e) {
964 e.printStackTrace();
965 }
966 }
967
968 void requestSyncConfiguration() throws IOException {
969 SignalServiceProtos.SyncMessage.Request r = SignalServiceProtos.SyncMessage.Request.newBuilder().setType(SignalServiceProtos.SyncMessage.Request.Type.CONFIGURATION).build();
970 SignalServiceSyncMessage message = SignalServiceSyncMessage.forRequest(new RequestMessage(r));
971 try {
972 sendSyncMessage(message);
973 } catch (UntrustedIdentityException e) {
974 e.printStackTrace();
975 }
976 }
977
978 private byte[] getSenderCertificate() {
979 // TODO support UUID capable sender certificates
980 // byte[] certificate = accountManager.getSenderCertificateForPhoneNumberPrivacy();
981 byte[] certificate;
982 try {
983 certificate = accountManager.getSenderCertificate();
984 } catch (IOException e) {
985 System.err.println("Failed to get sender certificate: " + e);
986 return null;
987 }
988 // TODO cache for a day
989 return certificate;
990 }
991
992 private byte[] getSelfUnidentifiedAccessKey() {
993 return UnidentifiedAccess.deriveAccessKeyFrom(account.getProfileKey());
994 }
995
996 private byte[] getTargetUnidentifiedAccessKey(SignalServiceAddress recipient) {
997 ContactInfo contact = account.getContactStore().getContact(recipient);
998 if (contact == null || contact.profileKey == null) {
999 return null;
1000 }
1001 ProfileKey theirProfileKey;
1002 try {
1003 theirProfileKey = new ProfileKey(Base64.decode(contact.profileKey));
1004 } catch (InvalidInputException | IOException e) {
1005 throw new AssertionError(e);
1006 }
1007 SignalProfile targetProfile;
1008 try {
1009 targetProfile = getRecipientProfile(recipient, Optional.absent(), theirProfileKey);
1010 } catch (IOException e) {
1011 System.err.println("Failed to get recipient profile: " + e);
1012 return null;
1013 }
1014
1015 if (targetProfile == null || targetProfile.getUnidentifiedAccess() == null) {
1016 return null;
1017 }
1018
1019 if (targetProfile.isUnrestrictedUnidentifiedAccess()) {
1020 return KeyUtils.createUnrestrictedUnidentifiedAccess();
1021 }
1022
1023 return UnidentifiedAccess.deriveAccessKeyFrom(theirProfileKey);
1024 }
1025
1026 private Optional<UnidentifiedAccessPair> getAccessForSync() {
1027 byte[] selfUnidentifiedAccessKey = getSelfUnidentifiedAccessKey();
1028 byte[] selfUnidentifiedAccessCertificate = getSenderCertificate();
1029
1030 if (selfUnidentifiedAccessKey == null || selfUnidentifiedAccessCertificate == null) {
1031 return Optional.absent();
1032 }
1033
1034 try {
1035 return Optional.of(new UnidentifiedAccessPair(
1036 new UnidentifiedAccess(selfUnidentifiedAccessKey, selfUnidentifiedAccessCertificate),
1037 new UnidentifiedAccess(selfUnidentifiedAccessKey, selfUnidentifiedAccessCertificate)
1038 ));
1039 } catch (InvalidCertificateException e) {
1040 return Optional.absent();
1041 }
1042 }
1043
1044 private List<Optional<UnidentifiedAccessPair>> getAccessFor(Collection<SignalServiceAddress> recipients) {
1045 List<Optional<UnidentifiedAccessPair>> result = new ArrayList<>(recipients.size());
1046 for (SignalServiceAddress recipient : recipients) {
1047 result.add(getAccessFor(recipient));
1048 }
1049 return result;
1050 }
1051
1052 private Optional<UnidentifiedAccessPair> getAccessFor(SignalServiceAddress recipient) {
1053 byte[] recipientUnidentifiedAccessKey = getTargetUnidentifiedAccessKey(recipient);
1054 byte[] selfUnidentifiedAccessKey = getSelfUnidentifiedAccessKey();
1055 byte[] selfUnidentifiedAccessCertificate = getSenderCertificate();
1056
1057 if (recipientUnidentifiedAccessKey == null || selfUnidentifiedAccessKey == null || selfUnidentifiedAccessCertificate == null) {
1058 return Optional.absent();
1059 }
1060
1061 try {
1062 return Optional.of(new UnidentifiedAccessPair(
1063 new UnidentifiedAccess(recipientUnidentifiedAccessKey, selfUnidentifiedAccessCertificate),
1064 new UnidentifiedAccess(selfUnidentifiedAccessKey, selfUnidentifiedAccessCertificate)
1065 ));
1066 } catch (InvalidCertificateException e) {
1067 return Optional.absent();
1068 }
1069 }
1070
1071 private Optional<UnidentifiedAccess> getUnidentifiedAccess(SignalServiceAddress recipient) {
1072 Optional<UnidentifiedAccessPair> unidentifiedAccess = getAccessFor(recipient);
1073
1074 if (unidentifiedAccess.isPresent()) {
1075 return unidentifiedAccess.get().getTargetUnidentifiedAccess();
1076 }
1077
1078 return Optional.absent();
1079 }
1080
1081 private void sendSyncMessage(SignalServiceSyncMessage message)
1082 throws IOException, UntrustedIdentityException {
1083 SignalServiceMessageSender messageSender = getMessageSender();
1084 try {
1085 messageSender.sendMessage(message, getAccessForSync());
1086 } catch (UntrustedIdentityException e) {
1087 account.getSignalProtocolStore().saveIdentity(resolveSignalServiceAddress(e.getIdentifier()), e.getIdentityKey(), TrustLevel.UNTRUSTED);
1088 throw e;
1089 }
1090 }
1091
1092 /**
1093 * This method throws an EncapsulatedExceptions exception instead of returning a list of SendMessageResult.
1094 */
1095 private long sendMessageLegacy(SignalServiceDataMessage.Builder messageBuilder, Collection<SignalServiceAddress> recipients)
1096 throws EncapsulatedExceptions, IOException {
1097 final long timestamp = System.currentTimeMillis();
1098 messageBuilder.withTimestamp(timestamp);
1099 List<SendMessageResult> results = sendMessage(messageBuilder, recipients);
1100
1101 List<UntrustedIdentityException> untrustedIdentities = new LinkedList<>();
1102 List<UnregisteredUserException> unregisteredUsers = new LinkedList<>();
1103 List<NetworkFailureException> networkExceptions = new LinkedList<>();
1104
1105 for (SendMessageResult result : results) {
1106 if (result.isUnregisteredFailure()) {
1107 unregisteredUsers.add(new UnregisteredUserException(result.getAddress().getLegacyIdentifier(), null));
1108 } else if (result.isNetworkFailure()) {
1109 networkExceptions.add(new NetworkFailureException(result.getAddress().getLegacyIdentifier(), null));
1110 } else if (result.getIdentityFailure() != null) {
1111 untrustedIdentities.add(new UntrustedIdentityException("Untrusted", result.getAddress().getLegacyIdentifier(), result.getIdentityFailure().getIdentityKey()));
1112 }
1113 }
1114 if (!untrustedIdentities.isEmpty() || !unregisteredUsers.isEmpty() || !networkExceptions.isEmpty()) {
1115 throw new EncapsulatedExceptions(untrustedIdentities, unregisteredUsers, networkExceptions);
1116 }
1117 return timestamp;
1118 }
1119
1120 private Collection<SignalServiceAddress> getSignalServiceAddresses(Collection<String> numbers) throws InvalidNumberException {
1121 final Set<SignalServiceAddress> signalServiceAddresses = new HashSet<>(numbers.size());
1122
1123 for (String number : numbers) {
1124 signalServiceAddresses.add(canonicalizeAndResolveSignalServiceAddress(number));
1125 }
1126 return signalServiceAddresses;
1127 }
1128
1129 private List<SendMessageResult> sendMessage(SignalServiceDataMessage.Builder messageBuilder, Collection<SignalServiceAddress> recipients)
1130 throws IOException {
1131 if (messagePipe == null) {
1132 messagePipe = getMessageReceiver().createMessagePipe();
1133 }
1134 if (unidentifiedMessagePipe == null) {
1135 unidentifiedMessagePipe = getMessageReceiver().createUnidentifiedMessagePipe();
1136 }
1137 SignalServiceDataMessage message = null;
1138 try {
1139 message = messageBuilder.build();
1140 if (message.getGroupContext().isPresent()) {
1141 try {
1142 SignalServiceMessageSender messageSender = getMessageSender();
1143 final boolean isRecipientUpdate = false;
1144 List<SendMessageResult> result = messageSender.sendMessage(new ArrayList<>(recipients), getAccessFor(recipients), isRecipientUpdate, message);
1145 for (SendMessageResult r : result) {
1146 if (r.getIdentityFailure() != null) {
1147 account.getSignalProtocolStore().saveIdentity(r.getAddress(), r.getIdentityFailure().getIdentityKey(), TrustLevel.UNTRUSTED);
1148 }
1149 }
1150 return result;
1151 } catch (UntrustedIdentityException e) {
1152 account.getSignalProtocolStore().saveIdentity(resolveSignalServiceAddress(e.getIdentifier()), e.getIdentityKey(), TrustLevel.UNTRUSTED);
1153 return Collections.emptyList();
1154 }
1155 } else {
1156 // Send to all individually, so sync messages are sent correctly
1157 List<SendMessageResult> results = new ArrayList<>(recipients.size());
1158 for (SignalServiceAddress address : recipients) {
1159 ContactInfo contact = account.getContactStore().getContact(address);
1160 if (contact != null) {
1161 messageBuilder.withExpiration(contact.messageExpirationTime);
1162 messageBuilder.withProfileKey(account.getProfileKey().serialize());
1163 } else {
1164 messageBuilder.withExpiration(0);
1165 messageBuilder.withProfileKey(null);
1166 }
1167 message = messageBuilder.build();
1168 if (address.matches(account.getSelfAddress())) {
1169 results.add(sendSelfMessage(message));
1170 } else {
1171 results.add(sendMessage(address, message));
1172 }
1173 }
1174 return results;
1175 }
1176 } finally {
1177 if (message != null && message.isEndSession()) {
1178 for (SignalServiceAddress recipient : recipients) {
1179 handleEndSession(recipient);
1180 }
1181 }
1182 account.save();
1183 }
1184 }
1185
1186 private SendMessageResult sendSelfMessage(SignalServiceDataMessage message) throws IOException {
1187 SignalServiceMessageSender messageSender = getMessageSender();
1188
1189 SignalServiceAddress recipient = account.getSelfAddress();
1190
1191 final Optional<UnidentifiedAccessPair> unidentifiedAccess = getAccessFor(recipient);
1192 SentTranscriptMessage transcript = new SentTranscriptMessage(Optional.of(recipient),
1193 message.getTimestamp(),
1194 message,
1195 message.getExpiresInSeconds(),
1196 Collections.singletonMap(recipient, unidentifiedAccess.isPresent()),
1197 false);
1198 SignalServiceSyncMessage syncMessage = SignalServiceSyncMessage.forSentTranscript(transcript);
1199
1200 try {
1201 messageSender.sendMessage(syncMessage, unidentifiedAccess);
1202 return SendMessageResult.success(recipient, unidentifiedAccess.isPresent(), false);
1203 } catch (UntrustedIdentityException e) {
1204 account.getSignalProtocolStore().saveIdentity(resolveSignalServiceAddress(e.getIdentifier()), e.getIdentityKey(), TrustLevel.UNTRUSTED);
1205 return SendMessageResult.identityFailure(recipient, e.getIdentityKey());
1206 }
1207 }
1208
1209 private SendMessageResult sendMessage(SignalServiceAddress address, SignalServiceDataMessage message) throws IOException {
1210 SignalServiceMessageSender messageSender = getMessageSender();
1211
1212 try {
1213 return messageSender.sendMessage(address, getAccessFor(address), message);
1214 } catch (UntrustedIdentityException e) {
1215 account.getSignalProtocolStore().saveIdentity(resolveSignalServiceAddress(e.getIdentifier()), e.getIdentityKey(), TrustLevel.UNTRUSTED);
1216 return SendMessageResult.identityFailure(address, e.getIdentityKey());
1217 }
1218 }
1219
1220 private SignalServiceContent decryptMessage(SignalServiceEnvelope envelope) throws InvalidMetadataMessageException, ProtocolInvalidMessageException, ProtocolDuplicateMessageException, ProtocolLegacyMessageException, ProtocolInvalidKeyIdException, InvalidMetadataVersionException, ProtocolInvalidVersionException, ProtocolNoSessionException, ProtocolInvalidKeyException, SelfSendException, UnsupportedDataMessageException, org.whispersystems.libsignal.UntrustedIdentityException {
1221 SignalServiceCipher cipher = new SignalServiceCipher(account.getSelfAddress(), account.getSignalProtocolStore(), Utils.getCertificateValidator());
1222 try {
1223 return cipher.decrypt(envelope);
1224 } catch (ProtocolUntrustedIdentityException e) {
1225 if (e.getCause() instanceof org.whispersystems.libsignal.UntrustedIdentityException) {
1226 org.whispersystems.libsignal.UntrustedIdentityException identityException = (org.whispersystems.libsignal.UntrustedIdentityException) e.getCause();
1227 account.getSignalProtocolStore().saveIdentity(resolveSignalServiceAddress(identityException.getName()), identityException.getUntrustedIdentity(), TrustLevel.UNTRUSTED);
1228 throw identityException;
1229 }
1230 throw new AssertionError(e);
1231 }
1232 }
1233
1234 private void handleEndSession(SignalServiceAddress source) {
1235 account.getSignalProtocolStore().deleteAllSessions(source);
1236 }
1237
1238 private List<HandleAction> handleSignalServiceDataMessage(SignalServiceDataMessage message, boolean isSync, SignalServiceAddress source, SignalServiceAddress destination, boolean ignoreAttachments) {
1239 List<HandleAction> actions = new ArrayList<>();
1240 if (message.getGroupContext().isPresent() && message.getGroupContext().get().getGroupV1().isPresent()) {
1241 SignalServiceGroup groupInfo = message.getGroupContext().get().getGroupV1().get();
1242 GroupInfo group = account.getGroupStore().getGroup(groupInfo.getGroupId());
1243 switch (groupInfo.getType()) {
1244 case UPDATE:
1245 if (group == null) {
1246 group = new GroupInfo(groupInfo.getGroupId());
1247 }
1248
1249 if (groupInfo.getAvatar().isPresent()) {
1250 SignalServiceAttachment avatar = groupInfo.getAvatar().get();
1251 if (avatar.isPointer()) {
1252 try {
1253 retrieveGroupAvatarAttachment(avatar.asPointer(), group.groupId);
1254 } catch (IOException | InvalidMessageException | MissingConfigurationException e) {
1255 System.err.println("Failed to retrieve group avatar (" + avatar.asPointer().getRemoteId() + "): " + e.getMessage());
1256 }
1257 }
1258 }
1259
1260 if (groupInfo.getName().isPresent()) {
1261 group.name = groupInfo.getName().get();
1262 }
1263
1264 if (groupInfo.getMembers().isPresent()) {
1265 group.addMembers(groupInfo.getMembers().get()
1266 .stream()
1267 .map(this::resolveSignalServiceAddress)
1268 .collect(Collectors.toSet()));
1269 }
1270
1271 account.getGroupStore().updateGroup(group);
1272 break;
1273 case DELIVER:
1274 if (group == null && !isSync) {
1275 actions.add(new SendGroupInfoRequestAction(source, groupInfo.getGroupId()));
1276 }
1277 break;
1278 case QUIT:
1279 if (group != null) {
1280 group.removeMember(source);
1281 account.getGroupStore().updateGroup(group);
1282 }
1283 break;
1284 case REQUEST_INFO:
1285 if (group != null && !isSync) {
1286 actions.add(new SendGroupUpdateAction(source, group.groupId));
1287 }
1288 break;
1289 }
1290 }
1291 final SignalServiceAddress conversationPartnerAddress = isSync ? destination : source;
1292 if (message.isEndSession()) {
1293 handleEndSession(conversationPartnerAddress);
1294 }
1295 if (message.isExpirationUpdate() || message.getBody().isPresent()) {
1296 if (message.getGroupContext().isPresent() && message.getGroupContext().get().getGroupV1().isPresent()) {
1297 SignalServiceGroup groupInfo = message.getGroupContext().get().getGroupV1().get();
1298 GroupInfo group = account.getGroupStore().getGroup(groupInfo.getGroupId());
1299 if (group == null) {
1300 group = new GroupInfo(groupInfo.getGroupId());
1301 }
1302 if (group.messageExpirationTime != message.getExpiresInSeconds()) {
1303 group.messageExpirationTime = message.getExpiresInSeconds();
1304 account.getGroupStore().updateGroup(group);
1305 }
1306 } else {
1307 ContactInfo contact = account.getContactStore().getContact(conversationPartnerAddress);
1308 if (contact == null) {
1309 contact = new ContactInfo(conversationPartnerAddress);
1310 }
1311 if (contact.messageExpirationTime != message.getExpiresInSeconds()) {
1312 contact.messageExpirationTime = message.getExpiresInSeconds();
1313 account.getContactStore().updateContact(contact);
1314 }
1315 }
1316 }
1317 if (message.getAttachments().isPresent() && !ignoreAttachments) {
1318 for (SignalServiceAttachment attachment : message.getAttachments().get()) {
1319 if (attachment.isPointer()) {
1320 try {
1321 retrieveAttachment(attachment.asPointer());
1322 } catch (IOException | InvalidMessageException | MissingConfigurationException e) {
1323 System.err.println("Failed to retrieve attachment (" + attachment.asPointer().getRemoteId() + "): " + e.getMessage());
1324 }
1325 }
1326 }
1327 }
1328 if (message.getProfileKey().isPresent() && message.getProfileKey().get().length == 32) {
1329 if (source.matches(account.getSelfAddress())) {
1330 try {
1331 this.account.setProfileKey(new ProfileKey(message.getProfileKey().get()));
1332 } catch (InvalidInputException ignored) {
1333 }
1334 ContactInfo contact = account.getContactStore().getContact(source);
1335 if (contact != null) {
1336 contact.profileKey = Base64.encodeBytes(message.getProfileKey().get());
1337 account.getContactStore().updateContact(contact);
1338 }
1339 } else {
1340 ContactInfo contact = account.getContactStore().getContact(source);
1341 if (contact == null) {
1342 contact = new ContactInfo(source);
1343 }
1344 contact.profileKey = Base64.encodeBytes(message.getProfileKey().get());
1345 account.getContactStore().updateContact(contact);
1346 }
1347 }
1348 if (message.getPreviews().isPresent()) {
1349 final List<SignalServiceDataMessage.Preview> previews = message.getPreviews().get();
1350 for (SignalServiceDataMessage.Preview preview : previews) {
1351 if (preview.getImage().isPresent() && preview.getImage().get().isPointer()) {
1352 SignalServiceAttachmentPointer attachment = preview.getImage().get().asPointer();
1353 try {
1354 retrieveAttachment(attachment);
1355 } catch (IOException | InvalidMessageException | MissingConfigurationException e) {
1356 System.err.println("Failed to retrieve attachment (" + attachment.getRemoteId() + "): " + e.getMessage());
1357 }
1358 }
1359 }
1360 }
1361 return actions;
1362 }
1363
1364 private void retryFailedReceivedMessages(ReceiveMessageHandler handler, boolean ignoreAttachments) {
1365 final File cachePath = new File(getMessageCachePath());
1366 if (!cachePath.exists()) {
1367 return;
1368 }
1369 for (final File dir : Objects.requireNonNull(cachePath.listFiles())) {
1370 if (!dir.isDirectory()) {
1371 retryFailedReceivedMessage(handler, ignoreAttachments, dir);
1372 continue;
1373 }
1374
1375 for (final File fileEntry : Objects.requireNonNull(dir.listFiles())) {
1376 if (!fileEntry.isFile()) {
1377 continue;
1378 }
1379 retryFailedReceivedMessage(handler, ignoreAttachments, fileEntry);
1380 }
1381 // Try to delete directory if empty
1382 dir.delete();
1383 }
1384 }
1385
1386 private void retryFailedReceivedMessage(final ReceiveMessageHandler handler, final boolean ignoreAttachments, final File fileEntry) {
1387 SignalServiceEnvelope envelope;
1388 try {
1389 envelope = Utils.loadEnvelope(fileEntry);
1390 if (envelope == null) {
1391 return;
1392 }
1393 } catch (IOException e) {
1394 e.printStackTrace();
1395 return;
1396 }
1397 SignalServiceContent content = null;
1398 if (!envelope.isReceipt()) {
1399 try {
1400 content = decryptMessage(envelope);
1401 } catch (Exception e) {
1402 return;
1403 }
1404 List<HandleAction> actions = handleMessage(envelope, content, ignoreAttachments);
1405 for (HandleAction action : actions) {
1406 try {
1407 action.execute(this);
1408 } catch (Throwable e) {
1409 e.printStackTrace();
1410 }
1411 }
1412 }
1413 account.save();
1414 handler.handleMessage(envelope, content, null);
1415 try {
1416 Files.delete(fileEntry.toPath());
1417 } catch (IOException e) {
1418 System.err.println("Failed to delete cached message file “" + fileEntry + "”: " + e.getMessage());
1419 }
1420 }
1421
1422 public void receiveMessages(long timeout, TimeUnit unit, boolean returnOnTimeout, boolean ignoreAttachments, ReceiveMessageHandler handler) throws IOException {
1423 retryFailedReceivedMessages(handler, ignoreAttachments);
1424 final SignalServiceMessageReceiver messageReceiver = getMessageReceiver();
1425
1426 Set<HandleAction> queuedActions = null;
1427
1428 if (messagePipe == null) {
1429 messagePipe = messageReceiver.createMessagePipe();
1430 }
1431
1432 boolean hasCaughtUpWithOldMessages = false;
1433
1434 while (true) {
1435 SignalServiceEnvelope envelope;
1436 SignalServiceContent content = null;
1437 Exception exception = null;
1438 final long now = new Date().getTime();
1439 try {
1440 Optional<SignalServiceEnvelope> result = messagePipe.readOrEmpty(timeout, unit, envelope1 -> {
1441 // store message on disk, before acknowledging receipt to the server
1442 try {
1443 String source = envelope1.getSourceE164().isPresent() ? envelope1.getSourceE164().get() : "";
1444 File cacheFile = getMessageCacheFile(source, now, envelope1.getTimestamp());
1445 Utils.storeEnvelope(envelope1, cacheFile);
1446 } catch (IOException e) {
1447 System.err.println("Failed to store encrypted message in disk cache, ignoring: " + e.getMessage());
1448 }
1449 });
1450 if (result.isPresent()) {
1451 envelope = result.get();
1452 } else {
1453 // Received indicator that server queue is empty
1454 hasCaughtUpWithOldMessages = true;
1455
1456 if (queuedActions != null) {
1457 for (HandleAction action : queuedActions) {
1458 try {
1459 action.execute(this);
1460 } catch (Throwable e) {
1461 e.printStackTrace();
1462 }
1463 }
1464 queuedActions.clear();
1465 queuedActions = null;
1466 }
1467
1468 // Continue to wait another timeout for new messages
1469 continue;
1470 }
1471 } catch (TimeoutException e) {
1472 if (returnOnTimeout)
1473 return;
1474 continue;
1475 } catch (InvalidVersionException e) {
1476 System.err.println("Ignoring error: " + e.getMessage());
1477 continue;
1478 }
1479 if (envelope.hasSource()) {
1480 // Store uuid if we don't have it already
1481 SignalServiceAddress source = envelope.getSourceAddress();
1482 resolveSignalServiceAddress(source);
1483 }
1484 if (!envelope.isReceipt()) {
1485 try {
1486 content = decryptMessage(envelope);
1487 } catch (Exception e) {
1488 exception = e;
1489 }
1490 List<HandleAction> actions = handleMessage(envelope, content, ignoreAttachments);
1491 if (hasCaughtUpWithOldMessages) {
1492 for (HandleAction action : actions) {
1493 try {
1494 action.execute(this);
1495 } catch (Throwable e) {
1496 e.printStackTrace();
1497 }
1498 }
1499 } else {
1500 if (queuedActions == null) {
1501 queuedActions = new HashSet<>();
1502 }
1503 queuedActions.addAll(actions);
1504 }
1505 }
1506 account.save();
1507 if (!isMessageBlocked(envelope, content)) {
1508 handler.handleMessage(envelope, content, exception);
1509 }
1510 if (!(exception instanceof org.whispersystems.libsignal.UntrustedIdentityException)) {
1511 File cacheFile = null;
1512 try {
1513 String source = envelope.getSourceE164().isPresent() ? envelope.getSourceE164().get() : "";
1514 cacheFile = getMessageCacheFile(source, now, envelope.getTimestamp());
1515 Files.delete(cacheFile.toPath());
1516 // Try to delete directory if empty
1517 new File(getMessageCachePath()).delete();
1518 } catch (IOException e) {
1519 System.err.println("Failed to delete cached message file “" + cacheFile + "”: " + e.getMessage());
1520 }
1521 }
1522 }
1523 }
1524
1525 private boolean isMessageBlocked(SignalServiceEnvelope envelope, SignalServiceContent content) {
1526 SignalServiceAddress source;
1527 if (!envelope.isUnidentifiedSender() && envelope.hasSource()) {
1528 source = envelope.getSourceAddress();
1529 } else if (content != null) {
1530 source = content.getSender();
1531 } else {
1532 return false;
1533 }
1534 ContactInfo sourceContact = account.getContactStore().getContact(source);
1535 if (sourceContact != null && sourceContact.blocked) {
1536 return true;
1537 }
1538
1539 if (content != null && content.getDataMessage().isPresent()) {
1540 SignalServiceDataMessage message = content.getDataMessage().get();
1541 if (message.getGroupContext().isPresent() && message.getGroupContext().get().getGroupV1().isPresent()) {
1542 SignalServiceGroup groupInfo = message.getGroupContext().get().getGroupV1().get();
1543 GroupInfo group = getGroup(groupInfo.getGroupId());
1544 if (groupInfo.getType() == SignalServiceGroup.Type.DELIVER && group != null && group.blocked) {
1545 return true;
1546 }
1547 }
1548 }
1549 return false;
1550 }
1551
1552 private List<HandleAction> handleMessage(SignalServiceEnvelope envelope, SignalServiceContent content, boolean ignoreAttachments) {
1553 List<HandleAction> actions = new ArrayList<>();
1554 if (content != null) {
1555 SignalServiceAddress sender;
1556 if (!envelope.isUnidentifiedSender() && envelope.hasSource()) {
1557 sender = envelope.getSourceAddress();
1558 } else {
1559 sender = content.getSender();
1560 }
1561 // Store uuid if we don't have it already
1562 resolveSignalServiceAddress(sender);
1563
1564 if (content.getDataMessage().isPresent()) {
1565 SignalServiceDataMessage message = content.getDataMessage().get();
1566
1567 if (content.isNeedsReceipt()) {
1568 actions.add(new SendReceiptAction(sender, message.getTimestamp()));
1569 }
1570
1571 actions.addAll(handleSignalServiceDataMessage(message, false, sender, account.getSelfAddress(), ignoreAttachments));
1572 }
1573 if (content.getSyncMessage().isPresent()) {
1574 account.setMultiDevice(true);
1575 SignalServiceSyncMessage syncMessage = content.getSyncMessage().get();
1576 if (syncMessage.getSent().isPresent()) {
1577 SentTranscriptMessage message = syncMessage.getSent().get();
1578 actions.addAll(handleSignalServiceDataMessage(message.getMessage(), true, sender, message.getDestination().orNull(), ignoreAttachments));
1579 }
1580 if (syncMessage.getRequest().isPresent()) {
1581 RequestMessage rm = syncMessage.getRequest().get();
1582 if (rm.isContactsRequest()) {
1583 actions.add(SendSyncContactsAction.create());
1584 }
1585 if (rm.isGroupsRequest()) {
1586 actions.add(SendSyncGroupsAction.create());
1587 }
1588 if (rm.isBlockedListRequest()) {
1589 actions.add(SendSyncBlockedListAction.create());
1590 }
1591 // TODO Handle rm.isConfigurationRequest();
1592 }
1593 if (syncMessage.getGroups().isPresent()) {
1594 File tmpFile = null;
1595 try {
1596 tmpFile = IOUtils.createTempFile();
1597 try (InputStream attachmentAsStream = retrieveAttachmentAsStream(syncMessage.getGroups().get().asPointer(), tmpFile)) {
1598 DeviceGroupsInputStream s = new DeviceGroupsInputStream(attachmentAsStream);
1599 DeviceGroup g;
1600 while ((g = s.read()) != null) {
1601 GroupInfo syncGroup = account.getGroupStore().getGroup(g.getId());
1602 if (syncGroup == null) {
1603 syncGroup = new GroupInfo(g.getId());
1604 }
1605 if (g.getName().isPresent()) {
1606 syncGroup.name = g.getName().get();
1607 }
1608 syncGroup.addMembers(g.getMembers()
1609 .stream()
1610 .map(this::resolveSignalServiceAddress)
1611 .collect(Collectors.toSet()));
1612 if (!g.isActive()) {
1613 syncGroup.removeMember(account.getSelfAddress());
1614 } else {
1615 // Add ourself to the member set as it's marked as active
1616 syncGroup.addMembers(Collections.singleton(account.getSelfAddress()));
1617 }
1618 syncGroup.blocked = g.isBlocked();
1619 if (g.getColor().isPresent()) {
1620 syncGroup.color = g.getColor().get();
1621 }
1622
1623 if (g.getAvatar().isPresent()) {
1624 retrieveGroupAvatarAttachment(g.getAvatar().get(), syncGroup.groupId);
1625 }
1626 syncGroup.inboxPosition = g.getInboxPosition().orNull();
1627 syncGroup.archived = g.isArchived();
1628 account.getGroupStore().updateGroup(syncGroup);
1629 }
1630 }
1631 } catch (Exception e) {
1632 e.printStackTrace();
1633 } finally {
1634 if (tmpFile != null) {
1635 try {
1636 Files.delete(tmpFile.toPath());
1637 } catch (IOException e) {
1638 System.err.println("Failed to delete received groups temp file “" + tmpFile + "”: " + e.getMessage());
1639 }
1640 }
1641 }
1642 }
1643 if (syncMessage.getBlockedList().isPresent()) {
1644 final BlockedListMessage blockedListMessage = syncMessage.getBlockedList().get();
1645 for (SignalServiceAddress address : blockedListMessage.getAddresses()) {
1646 setContactBlocked(resolveSignalServiceAddress(address), true);
1647 }
1648 for (byte[] groupId : blockedListMessage.getGroupIds()) {
1649 try {
1650 setGroupBlocked(groupId, true);
1651 } catch (GroupNotFoundException e) {
1652 System.err.println("BlockedListMessage contained groupID that was not found in GroupStore: " + Base64.encodeBytes(groupId));
1653 }
1654 }
1655 }
1656 if (syncMessage.getContacts().isPresent()) {
1657 File tmpFile = null;
1658 try {
1659 tmpFile = IOUtils.createTempFile();
1660 final ContactsMessage contactsMessage = syncMessage.getContacts().get();
1661 try (InputStream attachmentAsStream = retrieveAttachmentAsStream(contactsMessage.getContactsStream().asPointer(), tmpFile)) {
1662 DeviceContactsInputStream s = new DeviceContactsInputStream(attachmentAsStream);
1663 if (contactsMessage.isComplete()) {
1664 account.getContactStore().clear();
1665 }
1666 DeviceContact c;
1667 while ((c = s.read()) != null) {
1668 if (c.getAddress().matches(account.getSelfAddress()) && c.getProfileKey().isPresent()) {
1669 account.setProfileKey(c.getProfileKey().get());
1670 }
1671 final SignalServiceAddress address = resolveSignalServiceAddress(c.getAddress());
1672 ContactInfo contact = account.getContactStore().getContact(address);
1673 if (contact == null) {
1674 contact = new ContactInfo(address);
1675 }
1676 if (c.getName().isPresent()) {
1677 contact.name = c.getName().get();
1678 }
1679 if (c.getColor().isPresent()) {
1680 contact.color = c.getColor().get();
1681 }
1682 if (c.getProfileKey().isPresent()) {
1683 contact.profileKey = Base64.encodeBytes(c.getProfileKey().get().serialize());
1684 }
1685 if (c.getVerified().isPresent()) {
1686 final VerifiedMessage verifiedMessage = c.getVerified().get();
1687 account.getSignalProtocolStore().setIdentityTrustLevel(verifiedMessage.getDestination(), verifiedMessage.getIdentityKey(), TrustLevel.fromVerifiedState(verifiedMessage.getVerified()));
1688 }
1689 if (c.getExpirationTimer().isPresent()) {
1690 contact.messageExpirationTime = c.getExpirationTimer().get();
1691 }
1692 contact.blocked = c.isBlocked();
1693 contact.inboxPosition = c.getInboxPosition().orNull();
1694 contact.archived = c.isArchived();
1695 account.getContactStore().updateContact(contact);
1696
1697 if (c.getAvatar().isPresent()) {
1698 retrieveContactAvatarAttachment(c.getAvatar().get(), contact.number);
1699 }
1700 }
1701 }
1702 } catch (Exception e) {
1703 e.printStackTrace();
1704 } finally {
1705 if (tmpFile != null) {
1706 try {
1707 Files.delete(tmpFile.toPath());
1708 } catch (IOException e) {
1709 System.err.println("Failed to delete received contacts temp file “" + tmpFile + "”: " + e.getMessage());
1710 }
1711 }
1712 }
1713 }
1714 if (syncMessage.getVerified().isPresent()) {
1715 final VerifiedMessage verifiedMessage = syncMessage.getVerified().get();
1716 account.getSignalProtocolStore().setIdentityTrustLevel(resolveSignalServiceAddress(verifiedMessage.getDestination()), verifiedMessage.getIdentityKey(), TrustLevel.fromVerifiedState(verifiedMessage.getVerified()));
1717 }
1718 if (syncMessage.getConfiguration().isPresent()) {
1719 // TODO
1720 }
1721 }
1722 }
1723 return actions;
1724 }
1725
1726 private File getContactAvatarFile(String number) {
1727 return new File(pathConfig.getAvatarsPath(), "contact-" + number);
1728 }
1729
1730 private File retrieveContactAvatarAttachment(SignalServiceAttachment attachment, String number) throws IOException, InvalidMessageException, MissingConfigurationException {
1731 IOUtils.createPrivateDirectories(pathConfig.getAvatarsPath());
1732 if (attachment.isPointer()) {
1733 SignalServiceAttachmentPointer pointer = attachment.asPointer();
1734 return retrieveAttachment(pointer, getContactAvatarFile(number), false);
1735 } else {
1736 SignalServiceAttachmentStream stream = attachment.asStream();
1737 return Utils.retrieveAttachment(stream, getContactAvatarFile(number));
1738 }
1739 }
1740
1741 private File getGroupAvatarFile(byte[] groupId) {
1742 return new File(pathConfig.getAvatarsPath(), "group-" + Base64.encodeBytes(groupId).replace("/", "_"));
1743 }
1744
1745 private File retrieveGroupAvatarAttachment(SignalServiceAttachment attachment, byte[] groupId) throws IOException, InvalidMessageException, MissingConfigurationException {
1746 IOUtils.createPrivateDirectories(pathConfig.getAvatarsPath());
1747 if (attachment.isPointer()) {
1748 SignalServiceAttachmentPointer pointer = attachment.asPointer();
1749 return retrieveAttachment(pointer, getGroupAvatarFile(groupId), false);
1750 } else {
1751 SignalServiceAttachmentStream stream = attachment.asStream();
1752 return Utils.retrieveAttachment(stream, getGroupAvatarFile(groupId));
1753 }
1754 }
1755
1756 private File getProfileAvatarFile(SignalServiceAddress address) {
1757 return new File(pathConfig.getAvatarsPath(), "profile-" + address.getLegacyIdentifier());
1758 }
1759
1760 private File retrieveProfileAvatar(SignalServiceAddress address, String avatarPath, ProfileKey profileKey) throws IOException {
1761 IOUtils.createPrivateDirectories(pathConfig.getAvatarsPath());
1762 SignalServiceMessageReceiver receiver = getMessageReceiver();
1763 File outputFile = getProfileAvatarFile(address);
1764
1765 File tmpFile = IOUtils.createTempFile();
1766 try (InputStream input = receiver.retrieveProfileAvatar(avatarPath, tmpFile, profileKey, ServiceConfig.AVATAR_DOWNLOAD_FAILSAFE_MAX_SIZE)) {
1767 // Use larger buffer size to prevent AssertionError: Need: 12272 but only have: 8192 ...
1768 IOUtils.copyStreamToFile(input, outputFile, (int) ServiceConfig.AVATAR_DOWNLOAD_FAILSAFE_MAX_SIZE);
1769 } finally {
1770 try {
1771 Files.delete(tmpFile.toPath());
1772 } catch (IOException e) {
1773 System.err.println("Failed to delete received avatar temp file “" + tmpFile + "”: " + e.getMessage());
1774 }
1775 }
1776 return outputFile;
1777 }
1778
1779 public File getAttachmentFile(SignalServiceAttachmentRemoteId attachmentId) {
1780 return new File(pathConfig.getAttachmentsPath(), attachmentId.toString());
1781 }
1782
1783 private File retrieveAttachment(SignalServiceAttachmentPointer pointer) throws IOException, InvalidMessageException, MissingConfigurationException {
1784 IOUtils.createPrivateDirectories(pathConfig.getAttachmentsPath());
1785 return retrieveAttachment(pointer, getAttachmentFile(pointer.getRemoteId()), true);
1786 }
1787
1788 private File retrieveAttachment(SignalServiceAttachmentPointer pointer, File outputFile, boolean storePreview) throws IOException, InvalidMessageException, MissingConfigurationException {
1789 if (storePreview && pointer.getPreview().isPresent()) {
1790 File previewFile = new File(outputFile + ".preview");
1791 try (OutputStream output = new FileOutputStream(previewFile)) {
1792 byte[] preview = pointer.getPreview().get();
1793 output.write(preview, 0, preview.length);
1794 } catch (FileNotFoundException e) {
1795 e.printStackTrace();
1796 return null;
1797 }
1798 }
1799
1800 final SignalServiceMessageReceiver messageReceiver = getMessageReceiver();
1801
1802 File tmpFile = IOUtils.createTempFile();
1803 try (InputStream input = messageReceiver.retrieveAttachment(pointer, tmpFile, ServiceConfig.MAX_ATTACHMENT_SIZE)) {
1804 IOUtils.copyStreamToFile(input, outputFile);
1805 } finally {
1806 try {
1807 Files.delete(tmpFile.toPath());
1808 } catch (IOException e) {
1809 System.err.println("Failed to delete received attachment temp file “" + tmpFile + "”: " + e.getMessage());
1810 }
1811 }
1812 return outputFile;
1813 }
1814
1815 private InputStream retrieveAttachmentAsStream(SignalServiceAttachmentPointer pointer, File tmpFile) throws IOException, InvalidMessageException, MissingConfigurationException {
1816 final SignalServiceMessageReceiver messageReceiver = getMessageReceiver();
1817 return messageReceiver.retrieveAttachment(pointer, tmpFile, ServiceConfig.MAX_ATTACHMENT_SIZE);
1818 }
1819
1820 void sendGroups() throws IOException, UntrustedIdentityException {
1821 File groupsFile = IOUtils.createTempFile();
1822
1823 try {
1824 try (OutputStream fos = new FileOutputStream(groupsFile)) {
1825 DeviceGroupsOutputStream out = new DeviceGroupsOutputStream(fos);
1826 for (GroupInfo record : account.getGroupStore().getGroups()) {
1827 out.write(new DeviceGroup(record.groupId, Optional.fromNullable(record.name),
1828 new ArrayList<>(record.getMembers()), createGroupAvatarAttachment(record.groupId),
1829 record.isMember(account.getSelfAddress()), Optional.of(record.messageExpirationTime),
1830 Optional.fromNullable(record.color), record.blocked, Optional.fromNullable(record.inboxPosition), record.archived));
1831 }
1832 }
1833
1834 if (groupsFile.exists() && groupsFile.length() > 0) {
1835 try (FileInputStream groupsFileStream = new FileInputStream(groupsFile)) {
1836 SignalServiceAttachmentStream attachmentStream = SignalServiceAttachment.newStreamBuilder()
1837 .withStream(groupsFileStream)
1838 .withContentType("application/octet-stream")
1839 .withLength(groupsFile.length())
1840 .build();
1841
1842 sendSyncMessage(SignalServiceSyncMessage.forGroups(attachmentStream));
1843 }
1844 }
1845 } finally {
1846 try {
1847 Files.delete(groupsFile.toPath());
1848 } catch (IOException e) {
1849 System.err.println("Failed to delete groups temp file “" + groupsFile + "”: " + e.getMessage());
1850 }
1851 }
1852 }
1853
1854 public void sendContacts() throws IOException, UntrustedIdentityException {
1855 File contactsFile = IOUtils.createTempFile();
1856
1857 try {
1858 try (OutputStream fos = new FileOutputStream(contactsFile)) {
1859 DeviceContactsOutputStream out = new DeviceContactsOutputStream(fos);
1860 for (ContactInfo record : account.getContactStore().getContacts()) {
1861 VerifiedMessage verifiedMessage = null;
1862 JsonIdentityKeyStore.Identity currentIdentity = account.getSignalProtocolStore().getIdentity(record.getAddress());
1863 if (currentIdentity != null) {
1864 verifiedMessage = new VerifiedMessage(record.getAddress(), currentIdentity.getIdentityKey(), currentIdentity.getTrustLevel().toVerifiedState(), currentIdentity.getDateAdded().getTime());
1865 }
1866
1867 ProfileKey profileKey = null;
1868 try {
1869 profileKey = record.profileKey == null ? null : new ProfileKey(Base64.decode(record.profileKey));
1870 } catch (InvalidInputException ignored) {
1871 }
1872 out.write(new DeviceContact(record.getAddress(), Optional.fromNullable(record.name),
1873 createContactAvatarAttachment(record.number), Optional.fromNullable(record.color),
1874 Optional.fromNullable(verifiedMessage), Optional.fromNullable(profileKey), record.blocked,
1875 Optional.of(record.messageExpirationTime),
1876 Optional.fromNullable(record.inboxPosition), record.archived));
1877 }
1878
1879 if (account.getProfileKey() != null) {
1880 // Send our own profile key as well
1881 out.write(new DeviceContact(account.getSelfAddress(),
1882 Optional.absent(), Optional.absent(),
1883 Optional.absent(), Optional.absent(),
1884 Optional.of(account.getProfileKey()),
1885 false, Optional.absent(), Optional.absent(), false));
1886 }
1887 }
1888
1889 if (contactsFile.exists() && contactsFile.length() > 0) {
1890 try (FileInputStream contactsFileStream = new FileInputStream(contactsFile)) {
1891 SignalServiceAttachmentStream attachmentStream = SignalServiceAttachment.newStreamBuilder()
1892 .withStream(contactsFileStream)
1893 .withContentType("application/octet-stream")
1894 .withLength(contactsFile.length())
1895 .build();
1896
1897 sendSyncMessage(SignalServiceSyncMessage.forContacts(new ContactsMessage(attachmentStream, true)));
1898 }
1899 }
1900 } finally {
1901 try {
1902 Files.delete(contactsFile.toPath());
1903 } catch (IOException e) {
1904 System.err.println("Failed to delete contacts temp file “" + contactsFile + "”: " + e.getMessage());
1905 }
1906 }
1907 }
1908
1909 void sendBlockedList() throws IOException, UntrustedIdentityException {
1910 List<SignalServiceAddress> addresses = new ArrayList<>();
1911 for (ContactInfo record : account.getContactStore().getContacts()) {
1912 if (record.blocked) {
1913 addresses.add(record.getAddress());
1914 }
1915 }
1916 List<byte[]> groupIds = new ArrayList<>();
1917 for (GroupInfo record : account.getGroupStore().getGroups()) {
1918 if (record.blocked) {
1919 groupIds.add(record.groupId);
1920 }
1921 }
1922 sendSyncMessage(SignalServiceSyncMessage.forBlocked(new BlockedListMessage(addresses, groupIds)));
1923 }
1924
1925 private void sendVerifiedMessage(SignalServiceAddress destination, IdentityKey identityKey, TrustLevel trustLevel) throws IOException, UntrustedIdentityException {
1926 VerifiedMessage verifiedMessage = new VerifiedMessage(destination, identityKey, trustLevel.toVerifiedState(), System.currentTimeMillis());
1927 sendSyncMessage(SignalServiceSyncMessage.forVerified(verifiedMessage));
1928 }
1929
1930 public List<ContactInfo> getContacts() {
1931 return account.getContactStore().getContacts();
1932 }
1933
1934 public ContactInfo getContact(String number) {
1935 return account.getContactStore().getContact(Util.getSignalServiceAddressFromIdentifier(number));
1936 }
1937
1938 public GroupInfo getGroup(byte[] groupId) {
1939 return account.getGroupStore().getGroup(groupId);
1940 }
1941
1942 public List<JsonIdentityKeyStore.Identity> getIdentities() {
1943 return account.getSignalProtocolStore().getIdentities();
1944 }
1945
1946 public List<JsonIdentityKeyStore.Identity> getIdentities(String number) throws InvalidNumberException {
1947 return account.getSignalProtocolStore().getIdentities(canonicalizeAndResolveSignalServiceAddress(number));
1948 }
1949
1950 /**
1951 * Trust this the identity with this fingerprint
1952 *
1953 * @param name username of the identity
1954 * @param fingerprint Fingerprint
1955 */
1956 public boolean trustIdentityVerified(String name, byte[] fingerprint) throws InvalidNumberException {
1957 SignalServiceAddress address = canonicalizeAndResolveSignalServiceAddress(name);
1958 List<JsonIdentityKeyStore.Identity> ids = account.getSignalProtocolStore().getIdentities(address);
1959 if (ids == null) {
1960 return false;
1961 }
1962 for (JsonIdentityKeyStore.Identity id : ids) {
1963 if (!Arrays.equals(id.getIdentityKey().serialize(), fingerprint)) {
1964 continue;
1965 }
1966
1967 account.getSignalProtocolStore().setIdentityTrustLevel(address, id.getIdentityKey(), TrustLevel.TRUSTED_VERIFIED);
1968 try {
1969 sendVerifiedMessage(address, id.getIdentityKey(), TrustLevel.TRUSTED_VERIFIED);
1970 } catch (IOException | UntrustedIdentityException e) {
1971 e.printStackTrace();
1972 }
1973 account.save();
1974 return true;
1975 }
1976 return false;
1977 }
1978
1979 /**
1980 * Trust this the identity with this safety number
1981 *
1982 * @param name username of the identity
1983 * @param safetyNumber Safety number
1984 */
1985 public boolean trustIdentityVerifiedSafetyNumber(String name, String safetyNumber) throws InvalidNumberException {
1986 SignalServiceAddress address = canonicalizeAndResolveSignalServiceAddress(name);
1987 List<JsonIdentityKeyStore.Identity> ids = account.getSignalProtocolStore().getIdentities(address);
1988 if (ids == null) {
1989 return false;
1990 }
1991 for (JsonIdentityKeyStore.Identity id : ids) {
1992 if (!safetyNumber.equals(computeSafetyNumber(address, id.getIdentityKey()))) {
1993 continue;
1994 }
1995
1996 account.getSignalProtocolStore().setIdentityTrustLevel(address, id.getIdentityKey(), TrustLevel.TRUSTED_VERIFIED);
1997 try {
1998 sendVerifiedMessage(address, id.getIdentityKey(), TrustLevel.TRUSTED_VERIFIED);
1999 } catch (IOException | UntrustedIdentityException e) {
2000 e.printStackTrace();
2001 }
2002 account.save();
2003 return true;
2004 }
2005 return false;
2006 }
2007
2008 /**
2009 * Trust all keys of this identity without verification
2010 *
2011 * @param name username of the identity
2012 */
2013 public boolean trustIdentityAllKeys(String name) {
2014 SignalServiceAddress address = resolveSignalServiceAddress(name);
2015 List<JsonIdentityKeyStore.Identity> ids = account.getSignalProtocolStore().getIdentities(address);
2016 if (ids == null) {
2017 return false;
2018 }
2019 for (JsonIdentityKeyStore.Identity id : ids) {
2020 if (id.getTrustLevel() == TrustLevel.UNTRUSTED) {
2021 account.getSignalProtocolStore().setIdentityTrustLevel(address, id.getIdentityKey(), TrustLevel.TRUSTED_UNVERIFIED);
2022 try {
2023 sendVerifiedMessage(address, id.getIdentityKey(), TrustLevel.TRUSTED_UNVERIFIED);
2024 } catch (IOException | UntrustedIdentityException e) {
2025 e.printStackTrace();
2026 }
2027 }
2028 }
2029 account.save();
2030 return true;
2031 }
2032
2033 public String computeSafetyNumber(SignalServiceAddress theirAddress, IdentityKey theirIdentityKey) {
2034 return Utils.computeSafetyNumber(account.getSelfAddress(), getIdentityKeyPair().getPublicKey(), theirAddress, theirIdentityKey);
2035 }
2036
2037 void saveAccount() {
2038 account.save();
2039 }
2040
2041 public SignalServiceAddress canonicalizeAndResolveSignalServiceAddress(String identifier) throws InvalidNumberException {
2042 String canonicalizedNumber = UuidUtil.isUuid(identifier) ? identifier : Util.canonicalizeNumber(identifier, account.getUsername());
2043 return resolveSignalServiceAddress(canonicalizedNumber);
2044 }
2045
2046 public SignalServiceAddress resolveSignalServiceAddress(String identifier) {
2047 SignalServiceAddress address = Util.getSignalServiceAddressFromIdentifier(identifier);
2048
2049 return resolveSignalServiceAddress(address);
2050 }
2051
2052 public SignalServiceAddress resolveSignalServiceAddress(SignalServiceAddress address) {
2053 if (address.matches(account.getSelfAddress())) {
2054 return account.getSelfAddress();
2055 }
2056
2057 return account.getRecipientStore().resolveServiceAddress(address);
2058 }
2059
2060 @Override
2061 public void close() throws IOException {
2062 if (messagePipe != null) {
2063 messagePipe.shutdown();
2064 messagePipe = null;
2065 }
2066
2067 if (unidentifiedMessagePipe != null) {
2068 unidentifiedMessagePipe.shutdown();
2069 unidentifiedMessagePipe = null;
2070 }
2071
2072 account.close();
2073 }
2074
2075 public interface ReceiveMessageHandler {
2076
2077 void handleMessage(SignalServiceEnvelope envelope, SignalServiceContent decryptedContent, Throwable e);
2078 }
2079 }
[GitHub/AsamK] signal-cli provides an unofficial commandline, JSON-RPC and dbus interface for the Signal messenger.

Codeberg
GitHub
GitLab
SourceHut