nmode's Git Repositories - signal-cli/blob - lib/src/main/java/org/asamk/signal/manager/RegistrationManager.java

   1 /*
   2   Copyright (C) 2015-2021 AsamK and contributors
   3
   4   This program is free software: you can redistribute it and/or modify
   5   it under the terms of the GNU General Public License as published by
   6   the Free Software Foundation, either version 3 of the License, or
   7   (at your option) any later version.
   8
   9   This program is distributed in the hope that it will be useful,
  10   but WITHOUT ANY WARRANTY; without even the implied warranty of
  11   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  12   GNU General Public License for more details.
  13
  14   You should have received a copy of the GNU General Public License
  15   along with this program.  If not, see <http://www.gnu.org/licenses/>.
  16  */
  17 package org.asamk.signal.manager;
  18
  19 import org.asamk.signal.manager.config.ServiceConfig;
  20 import org.asamk.signal.manager.config.ServiceEnvironment;
  21 import org.asamk.signal.manager.config.ServiceEnvironmentConfig;
  22 import org.asamk.signal.manager.helper.PinHelper;
  23 import org.asamk.signal.manager.storage.SignalAccount;
  24 import org.asamk.signal.manager.util.KeyUtils;
  25 import org.whispersystems.libsignal.util.KeyHelper;
  26 import org.whispersystems.libsignal.util.guava.Optional;
  27 import org.whispersystems.signalservice.api.KeyBackupServicePinException;
  28 import org.whispersystems.signalservice.api.KeyBackupSystemNoDataException;
  29 import org.whispersystems.signalservice.api.SignalServiceAccountManager;
  30 import org.whispersystems.signalservice.api.groupsv2.ClientZkOperations;
  31 import org.whispersystems.signalservice.api.groupsv2.GroupsV2Operations;
  32 import org.whispersystems.signalservice.api.push.SignalServiceAddress;
  33 import org.whispersystems.signalservice.api.util.SleepTimer;
  34 import org.whispersystems.signalservice.api.util.UptimeSleepTimer;
  35 import org.whispersystems.signalservice.api.util.UuidUtil;
  36 import org.whispersystems.signalservice.internal.push.LockedException;
  37 import org.whispersystems.signalservice.internal.push.VerifyAccountResponse;
  38 import org.whispersystems.signalservice.internal.util.DynamicCredentialsProvider;
  39
  40 import java.io.Closeable;
  41 import java.io.File;
  42 import java.io.IOException;
  43 import java.util.Locale;
  44
  45 public class RegistrationManager implements Closeable {
  46
  47     private SignalAccount account;
  48     private final PathConfig pathConfig;
  49     private final ServiceEnvironmentConfig serviceEnvironmentConfig;
  50     private final String userAgent;
  51
  52     private final SignalServiceAccountManager accountManager;
  53     private final PinHelper pinHelper;
  54
  55     public RegistrationManager(
  56             SignalAccount account,
  57             PathConfig pathConfig,
  58             ServiceEnvironmentConfig serviceEnvironmentConfig,
  59             String userAgent
  60     ) {
  61         this.account = account;
  62         this.pathConfig = pathConfig;
  63         this.serviceEnvironmentConfig = serviceEnvironmentConfig;
  64         this.userAgent = userAgent;
  65
  66         final SleepTimer timer = new UptimeSleepTimer();
  67         GroupsV2Operations groupsV2Operations;
  68         try {
  69             groupsV2Operations = new GroupsV2Operations(ClientZkOperations.create(serviceEnvironmentConfig.getSignalServiceConfiguration()));
  70         } catch (Throwable ignored) {
  71             groupsV2Operations = null;
  72         }
  73         this.accountManager = new SignalServiceAccountManager(serviceEnvironmentConfig.getSignalServiceConfiguration(),
  74                 new DynamicCredentialsProvider(
  75                         // Using empty UUID, because registering doesn't work otherwise
  76                         null, account.getUsername(), account.getPassword(), SignalServiceAddress.DEFAULT_DEVICE_ID),
  77                 userAgent,
  78                 groupsV2Operations,
  79                 ServiceConfig.AUTOMATIC_NETWORK_RETRY,
  80                 timer);
  81         final var keyBackupService = accountManager.getKeyBackupService(ServiceConfig.getIasKeyStore(),
  82                 serviceEnvironmentConfig.getKeyBackupConfig().getEnclaveName(),
  83                 serviceEnvironmentConfig.getKeyBackupConfig().getServiceId(),
  84                 serviceEnvironmentConfig.getKeyBackupConfig().getMrenclave(),
  85                 10);
  86         this.pinHelper = new PinHelper(keyBackupService);
  87     }
  88
  89     public static RegistrationManager init(
  90             String username, File settingsPath, ServiceEnvironment serviceEnvironment, String userAgent
  91     ) throws IOException {
  92         var pathConfig = PathConfig.createDefault(settingsPath);
  93
  94         final var serviceConfiguration = ServiceConfig.getServiceEnvironmentConfig(serviceEnvironment, userAgent);
  95         if (!SignalAccount.userExists(pathConfig.getDataPath(), username)) {
  96             var identityKey = KeyUtils.generateIdentityKeyPair();
  97             var registrationId = KeyHelper.generateRegistrationId(false);
  98
  99             var profileKey = KeyUtils.createProfileKey();
 100             var account = SignalAccount.create(pathConfig.getDataPath(),
 101                     username,
 102                     identityKey,
 103                     registrationId,
 104                     profileKey);
 105             account.save();
 106
 107             return new RegistrationManager(account, pathConfig, serviceConfiguration, userAgent);
 108         }
 109
 110         var account = SignalAccount.load(pathConfig.getDataPath(), username);
 111
 112         return new RegistrationManager(account, pathConfig, serviceConfiguration, userAgent);
 113     }
 114
 115     public void register(boolean voiceVerification, String captcha) throws IOException {
 116         if (account.getPassword() == null) {
 117             account.setPassword(KeyUtils.createPassword());
 118         }
 119
 120         if (voiceVerification) {
 121             accountManager.requestVoiceVerificationCode(Locale.getDefault(),
 122                     Optional.fromNullable(captcha),
 123                     Optional.absent());
 124         } else {
 125             accountManager.requestSmsVerificationCode(false, Optional.fromNullable(captcha), Optional.absent());
 126         }
 127
 128         account.save();
 129     }
 130
 131     public Manager verifyAccount(
 132             String verificationCode, String pin
 133     ) throws IOException, KeyBackupSystemNoDataException, KeyBackupServicePinException {
 134         verificationCode = verificationCode.replace("-", "");
 135         VerifyAccountResponse response;
 136         try {
 137             response = verifyAccountWithCode(verificationCode, pin, null);
 138             account.setPinMasterKey(null);
 139         } catch (LockedException e) {
 140             if (pin == null) {
 141                 throw e;
 142             }
 143
 144             var registrationLockData = pinHelper.getRegistrationLockData(pin, e);
 145             if (registrationLockData == null) {
 146                 throw e;
 147             }
 148
 149             var registrationLock = registrationLockData.getMasterKey().deriveRegistrationLock();
 150             try {
 151                 response = verifyAccountWithCode(verificationCode, null, registrationLock);
 152             } catch (LockedException _e) {
 153                 throw new AssertionError("KBS Pin appeared to matched but reg lock still failed!");
 154             }
 155             account.setPinMasterKey(registrationLockData.getMasterKey());
 156         }
 157
 158         // TODO response.isStorageCapable()
 159         //accountManager.setGcmId(Optional.of(GoogleCloudMessaging.getInstance(this).register(REGISTRATION_ID)));
 160
 161         account.setDeviceId(SignalServiceAddress.DEFAULT_DEVICE_ID);
 162         account.setMultiDevice(false);
 163         account.setRegistered(true);
 164         account.setUuid(UuidUtil.parseOrNull(response.getUuid()));
 165         account.setRegistrationLockPin(pin);
 166         account.getSessionStore().archiveAllSessions();
 167         account.getSignalProtocolStore()
 168                 .saveIdentity(account.getSelfAddress(),
 169                         account.getIdentityKeyPair().getPublicKey(),
 170                         TrustLevel.TRUSTED_VERIFIED);
 171
 172         Manager m = null;
 173         try {
 174             m = new Manager(account, pathConfig, serviceEnvironmentConfig, userAgent);
 175
 176             m.refreshPreKeys();
 177
 178             account.save();
 179
 180             final var result = m;
 181             account = null;
 182             m = null;
 183
 184             return result;
 185         } finally {
 186             if (m != null) {
 187                 m.close();
 188             }
 189         }
 190     }
 191
 192     private VerifyAccountResponse verifyAccountWithCode(
 193             final String verificationCode, final String legacyPin, final String registrationLock
 194     ) throws IOException {
 195         return accountManager.verifyAccountWithCode(verificationCode,
 196                 null,
 197                 account.getLocalRegistrationId(),
 198                 true,
 199                 legacyPin,
 200                 registrationLock,
 201                 account.getSelfUnidentifiedAccessKey(),
 202                 account.isUnrestrictedUnidentifiedAccess(),
 203                 ServiceConfig.capabilities,
 204                 account.isDiscoverableByPhoneNumber());
 205     }
 206
 207     @Override
 208     public void close() throws IOException {
 209         if (account != null) {
 210             account.close();
 211             account = null;
 212         }
 213     }
 214 }