import org.whispersystems.libsignal.InvalidKeyException;
import org.whispersystems.libsignal.InvalidMessageException;
import org.whispersystems.libsignal.ecc.ECPublicKey;
+import org.whispersystems.libsignal.fingerprint.Fingerprint;
+import org.whispersystems.libsignal.fingerprint.FingerprintParsingException;
+import org.whispersystems.libsignal.fingerprint.FingerprintVersionMismatchException;
import org.whispersystems.libsignal.state.PreKeyRecord;
import org.whispersystems.libsignal.state.SignedPreKeyRecord;
import org.whispersystems.libsignal.util.Pair;
TrustLevel.TRUSTED_VERIFIED);
}
+ /**
+ * Trust this the identity with this scannable safety number
+ *
+ * @param name username of the identity
+ * @param safetyNumber Scannable safety number
+ */
+ public boolean trustIdentityVerifiedSafetyNumber(String name, byte[] safetyNumber) throws InvalidNumberException {
+ var recipientId = canonicalizeAndResolveRecipient(name);
+ var address = account.getRecipientStore().resolveServiceAddress(recipientId);
+ return trustIdentity(recipientId, identityKey -> {
+ final var fingerprint = computeSafetyNumberFingerprint(address, identityKey);
+ try {
+ return fingerprint != null && fingerprint.getScannableFingerprint().compareTo(safetyNumber);
+ } catch (FingerprintVersionMismatchException | FingerprintParsingException e) {
+ return false;
+ }
+ }, TrustLevel.TRUSTED_VERIFIED);
+ }
+
/**
* Trust all keys of this identity without verification
*
}
public String computeSafetyNumber(SignalServiceAddress theirAddress, IdentityKey theirIdentityKey) {
- final var fingerprint = Utils.computeSafetyNumber(capabilities.isUuid(),
- account.getSelfAddress(),
- getIdentityKeyPair().getPublicKey(),
- theirAddress,
- theirIdentityKey);
+ final Fingerprint fingerprint = computeSafetyNumberFingerprint(theirAddress, theirIdentityKey);
return fingerprint == null ? null : fingerprint.getDisplayableFingerprint().getDisplayText();
}
public byte[] computeSafetyNumberForScanning(SignalServiceAddress theirAddress, IdentityKey theirIdentityKey) {
- final var fingerprint = Utils.computeSafetyNumber(capabilities.isUuid(),
+ final Fingerprint fingerprint = computeSafetyNumberFingerprint(theirAddress, theirIdentityKey);
+ return fingerprint == null ? null : fingerprint.getScannableFingerprint().getSerialized();
+ }
+
+ private Fingerprint computeSafetyNumberFingerprint(
+ final SignalServiceAddress theirAddress, final IdentityKey theirIdentityKey
+ ) {
+ return Utils.computeSafetyNumber(capabilities.isUuid(),
account.getSelfAddress(),
getIdentityKeyPair().getPublicKey(),
theirAddress,
theirIdentityKey);
- return fingerprint == null ? null : fingerprint.getScannableFingerprint().getSerialized();
}
@Deprecated
import org.asamk.signal.util.Hex;
import org.whispersystems.signalservice.api.util.InvalidNumberException;
+import java.util.Base64;
import java.util.Locale;
public class TrustCommand implements JsonRpcLocalCommand {
}
} else {
var safetyNumber = ns.getString("verified-safety-number");
- if (safetyNumber != null) {
- safetyNumber = safetyNumber.replaceAll(" ", "");
- if (safetyNumber.length() == 66) {
- byte[] fingerprintBytes;
- try {
- fingerprintBytes = Hex.toByteArray(safetyNumber.toLowerCase(Locale.ROOT));
- } catch (Exception e) {
- throw new UserErrorException(
- "Failed to parse the fingerprint, make sure the fingerprint is a correctly encoded hex string without additional characters.");
- }
- boolean res;
- try {
- res = m.trustIdentityVerified(number, fingerprintBytes);
- } catch (InvalidNumberException e) {
- throw new UserErrorException("Failed to parse recipient: " + e.getMessage());
- }
- if (!res) {
- throw new UserErrorException(
- "Failed to set the trust for the fingerprint of this number, make sure the number and the fingerprint are correct.");
- }
- } else if (safetyNumber.length() == 60) {
- boolean res;
- try {
- res = m.trustIdentityVerifiedSafetyNumber(number, safetyNumber);
- } catch (InvalidNumberException e) {
- throw new UserErrorException("Failed to parse recipient: " + e.getMessage());
- }
- if (!res) {
- throw new UserErrorException(
- "Failed to set the trust for the safety number of this phone number, make sure the phone number and the safety number are correct.");
- }
- } else {
+ if (safetyNumber == null) {
+ throw new UserErrorException(
+ "You need to specify the fingerprint/safety number you have verified with -v SAFETY_NUMBER");
+ }
+
+ safetyNumber = safetyNumber.replaceAll(" ", "");
+ if (safetyNumber.length() == 66) {
+ byte[] fingerprintBytes;
+ try {
+ fingerprintBytes = Hex.toByteArray(safetyNumber.toLowerCase(Locale.ROOT));
+ } catch (Exception e) {
throw new UserErrorException(
- "Safety number has invalid format, either specify the old hex fingerprint or the new safety number");
+ "Failed to parse the fingerprint, make sure the fingerprint is a correctly encoded hex string without additional characters.");
+ }
+ boolean res;
+ try {
+ res = m.trustIdentityVerified(number, fingerprintBytes);
+ } catch (InvalidNumberException e) {
+ throw new UserErrorException("Failed to parse recipient: " + e.getMessage());
+ }
+ if (!res) {
+ throw new UserErrorException(
+ "Failed to set the trust for the fingerprint of this number, make sure the number and the fingerprint are correct.");
+ }
+ } else if (safetyNumber.length() == 60) {
+ boolean res;
+ try {
+ res = m.trustIdentityVerifiedSafetyNumber(number, safetyNumber);
+ } catch (InvalidNumberException e) {
+ throw new UserErrorException("Failed to parse recipient: " + e.getMessage());
+ }
+ if (!res) {
+ throw new UserErrorException(
+ "Failed to set the trust for the safety number of this phone number, make sure the phone number and the safety number are correct.");
}
} else {
- throw new UserErrorException(
- "You need to specify the fingerprint/safety number you have verified with -v SAFETY_NUMBER");
+ final byte[] scannableSafetyNumber;
+ try {
+ scannableSafetyNumber = Base64.getDecoder().decode(safetyNumber);
+ } catch (IllegalArgumentException e) {
+ throw new UserErrorException(
+ "Safety number has invalid format, either specify the old hex fingerprint or the new safety number");
+ }
+ boolean res;
+ try {
+ res = m.trustIdentityVerifiedSafetyNumber(number, scannableSafetyNumber);
+ } catch (InvalidNumberException e) {
+ throw new UserErrorException("Failed to parse recipient: " + e.getMessage());
+ }
+ if (!res) {
+ throw new UserErrorException(
+ "Failed to set the trust for the safety number of this phone number, make sure the phone number and the safety number are correct.");
+ }
}
}
}
git.nmode.ca / signal-cli / commitdiff
