conversations-classic/src/main/java/eu/siacs/conversations/crypto/axolotl/XmppAxolotlSession.java

package eu.siacs.conversations.crypto.axolotl;

import android.support.annotation.NonNull;
import android.support.annotation.Nullable;
import android.util.Log;

import org.whispersystems.libaxolotl.AxolotlAddress;
import org.whispersystems.libaxolotl.DuplicateMessageException;
import org.whispersystems.libaxolotl.IdentityKey;
import org.whispersystems.libaxolotl.InvalidKeyException;
import org.whispersystems.libaxolotl.InvalidKeyIdException;
import org.whispersystems.libaxolotl.InvalidMessageException;
import org.whispersystems.libaxolotl.InvalidVersionException;
import org.whispersystems.libaxolotl.LegacyMessageException;
import org.whispersystems.libaxolotl.NoSessionException;
import org.whispersystems.libaxolotl.SessionCipher;
import org.whispersystems.libaxolotl.UntrustedIdentityException;
import org.whispersystems.libaxolotl.protocol.CiphertextMessage;
import org.whispersystems.libaxolotl.protocol.PreKeyWhisperMessage;
import org.whispersystems.libaxolotl.protocol.WhisperMessage;

import eu.siacs.conversations.Config;
import eu.siacs.conversations.entities.Account;

public class XmppAxolotlSession {
	private final SessionCipher cipher;
	private final SQLiteAxolotlStore sqLiteAxolotlStore;
	private final AxolotlAddress remoteAddress;
	private final Account account;
	private IdentityKey identityKey;
	private Integer preKeyId = null;
	private boolean fresh = true;

	public XmppAxolotlSession(Account account, SQLiteAxolotlStore store, AxolotlAddress remoteAddress, IdentityKey identityKey) {
		this(account, store, remoteAddress);
		this.identityKey = identityKey;
	}

	public XmppAxolotlSession(Account account, SQLiteAxolotlStore store, AxolotlAddress remoteAddress) {
		this.cipher = new SessionCipher(store, remoteAddress);
		this.remoteAddress = remoteAddress;
		this.sqLiteAxolotlStore = store;
		this.account = account;
	}

	public Integer getPreKeyId() {
		return preKeyId;
	}

	public void resetPreKeyId() {

		preKeyId = null;
	}

	public String getFingerprint() {
		return identityKey == null ? null : identityKey.getFingerprint().replaceAll("\\s", "");
	}

	public IdentityKey getIdentityKey() {
		return identityKey;
	}

	public AxolotlAddress getRemoteAddress() {
		return remoteAddress;
	}

	public boolean isFresh() {
		return fresh;
	}

	public void setNotFresh() {
		this.fresh = false;
	}

	protected void setTrust(FingerprintStatus status) {
		sqLiteAxolotlStore.setFingerprintStatus(getFingerprint(), status);
	}

	public FingerprintStatus getTrust() {
		FingerprintStatus status = sqLiteAxolotlStore.getFingerprintStatus(getFingerprint());
		return (status == null) ? FingerprintStatus.createActiveUndecided() : status;
	}

	@Nullable
	public byte[] processReceiving(byte[] encryptedKey) {
		byte[] plaintext = null;
		FingerprintStatus status = getTrust();
		if (!status.isCompromised()) {
			try {
				try {
					PreKeyWhisperMessage message = new PreKeyWhisperMessage(encryptedKey);
					if (!message.getPreKeyId().isPresent()) {
						Log.w(Config.LOGTAG, AxolotlService.getLogprefix(account) + "PreKeyWhisperMessage did not contain a PreKeyId");
						return null;
					}
					Log.i(Config.LOGTAG, AxolotlService.getLogprefix(account) + "PreKeyWhisperMessage received, new session ID:" + message.getSignedPreKeyId() + "/" + message.getPreKeyId());
					IdentityKey msgIdentityKey = message.getIdentityKey();
					if (this.identityKey != null && !this.identityKey.equals(msgIdentityKey)) {
						Log.e(Config.LOGTAG, AxolotlService.getLogprefix(account) + "Had session with fingerprint " + this.getFingerprint() + ", received message with fingerprint " + msgIdentityKey.getFingerprint());
					} else {
						this.identityKey = msgIdentityKey;
						plaintext = cipher.decrypt(message);
						preKeyId = message.getPreKeyId().get();
					}
				} catch (InvalidMessageException | InvalidVersionException e) {
					Log.i(Config.LOGTAG, AxolotlService.getLogprefix(account) + "WhisperMessage received");
					WhisperMessage message = new WhisperMessage(encryptedKey);
					plaintext = cipher.decrypt(message);
				} catch (InvalidKeyException | InvalidKeyIdException | UntrustedIdentityException e) {
					Log.w(Config.LOGTAG, AxolotlService.getLogprefix(account) + "Error decrypting axolotl header, " + e.getClass().getName() + ": " + e.getMessage());
				}
			} catch (LegacyMessageException | InvalidMessageException | DuplicateMessageException | NoSessionException e) {
				Log.w(Config.LOGTAG, AxolotlService.getLogprefix(account) + "Error decrypting axolotl header, " + e.getClass().getName() + ": " + e.getMessage());
			}

			if (plaintext != null) {
				if (!status.isActive()) {
					setTrust(status.toActive());
				}
			}
		}
		return plaintext;
	}

	@Nullable
	public byte[] processSending(@NonNull byte[] outgoingMessage) {
		FingerprintStatus status = getTrust();
		if (status.isTrustedAndActive()) {
			CiphertextMessage ciphertextMessage = cipher.encrypt(outgoingMessage);
			return ciphertextMessage.serialize();
		} else {
			return null;
		}
	}

	public Account getAccount() {
		return account;
	}
}
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`package eu.siacs.conversations.crypto.axolotl;`

			`import android.support.annotation.NonNull;`
			`import android.support.annotation.Nullable;`
			`import android.util.Log;`

			`import org.whispersystems.libaxolotl.AxolotlAddress;`
			`import org.whispersystems.libaxolotl.DuplicateMessageException;`
store identity key in XmppAxolotlSession instead of the fingerprint 2015-12-19 14:44:11 +00:00			`import org.whispersystems.libaxolotl.IdentityKey;`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`import org.whispersystems.libaxolotl.InvalidKeyException;`
			`import org.whispersystems.libaxolotl.InvalidKeyIdException;`
			`import org.whispersystems.libaxolotl.InvalidMessageException;`
			`import org.whispersystems.libaxolotl.InvalidVersionException;`
			`import org.whispersystems.libaxolotl.LegacyMessageException;`
			`import org.whispersystems.libaxolotl.NoSessionException;`
			`import org.whispersystems.libaxolotl.SessionCipher;`
			`import org.whispersystems.libaxolotl.UntrustedIdentityException;`
			`import org.whispersystems.libaxolotl.protocol.CiphertextMessage;`
			`import org.whispersystems.libaxolotl.protocol.PreKeyWhisperMessage;`
			`import org.whispersystems.libaxolotl.protocol.WhisperMessage;`

			`import eu.siacs.conversations.Config;`
			`import eu.siacs.conversations.entities.Account;`

			`public class XmppAxolotlSession {`
			`private final SessionCipher cipher;`
			`private final SQLiteAxolotlStore sqLiteAxolotlStore;`
			`private final AxolotlAddress remoteAddress;`
			`private final Account account;`
store identity key in XmppAxolotlSession instead of the fingerprint 2015-12-19 14:44:11 +00:00			`private IdentityKey identityKey;`
Provide process function for key transport message 2015-07-31 21:28:09 +00:00			`private Integer preKeyId = null;`
			`private boolean fresh = true;`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00
store identity key in XmppAxolotlSession instead of the fingerprint 2015-12-19 14:44:11 +00:00			`public XmppAxolotlSession(Account account, SQLiteAxolotlStore store, AxolotlAddress remoteAddress, IdentityKey identityKey) {`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`this(account, store, remoteAddress);`
store identity key in XmppAxolotlSession instead of the fingerprint 2015-12-19 14:44:11 +00:00			`this.identityKey = identityKey;`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`}`

			`public XmppAxolotlSession(Account account, SQLiteAxolotlStore store, AxolotlAddress remoteAddress) {`
			`this.cipher = new SessionCipher(store, remoteAddress);`
			`this.remoteAddress = remoteAddress;`
			`this.sqLiteAxolotlStore = store;`
			`this.account = account;`
			`}`

			`public Integer getPreKeyId() {`
			`return preKeyId;`
			`}`

			`public void resetPreKeyId() {`

			`preKeyId = null;`
			`}`

			`public String getFingerprint() {`
store identity key in XmppAxolotlSession instead of the fingerprint 2015-12-19 14:44:11 +00:00			`return identityKey == null ? null : identityKey.getFingerprint().replaceAll("\\s", "");`
			`}`

			`public IdentityKey getIdentityKey() {`
			`return identityKey;`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`}`

Provide process function for key transport message 2015-07-31 21:28:09 +00:00			`public AxolotlAddress getRemoteAddress() {`
			`return remoteAddress;`
			`}`

			`public boolean isFresh() {`
			`return fresh;`
			`}`

			`public void setNotFresh() {`
			`this.fresh = false;`
			`}`

refactore trust enum to be FingerprintStatus class with trust and active 2016-11-14 21:27:41 +00:00			`protected void setTrust(FingerprintStatus status) {`
parse omemo fingerprints from uris 2016-11-17 19:09:42 +00:00			`sqLiteAxolotlStore.setFingerprintStatus(getFingerprint(), status);`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`}`

put omemo fingerprint in own uri (qr code / nfc) 2016-11-17 21:28:45 +00:00			`public FingerprintStatus getTrust() {`
refactore trust enum to be FingerprintStatus class with trust and active 2016-11-14 21:27:41 +00:00			`FingerprintStatus status = sqLiteAxolotlStore.getFingerprintStatus(getFingerprint());`
			`return (status == null) ? FingerprintStatus.createActiveUndecided() : status;`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`}`

			`@Nullable`
Refactor axolotl message processing workflow XmppAxolotlMessage is now entirely responsible for handling encryption and decryption of messages, only leveraging XmppAxolotlSession as a packing/unpacking primitive for payload keys. Removed pseudo-dead session generation code step from prepareMessage function, as sessions have been created by invoking the TrustKeysActivity for a while now. Added prepareKeyTransportMessage function, which creates a message with no payload. The key that is packed into the header keyElements can then be used for other purposes (e.g. encrypted file transfer). 2015-07-31 19:12:34 +00:00			`public byte[] processReceiving(byte[] encryptedKey) {`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`byte[] plaintext = null;`
refactore trust enum to be FingerprintStatus class with trust and active 2016-11-14 21:27:41 +00:00			`FingerprintStatus status = getTrust();`
			`if (!status.isCompromised()) {`
			`try {`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`try {`
refactore trust enum to be FingerprintStatus class with trust and active 2016-11-14 21:27:41 +00:00			`PreKeyWhisperMessage message = new PreKeyWhisperMessage(encryptedKey);`
			`if (!message.getPreKeyId().isPresent()) {`
			`Log.w(Config.LOGTAG, AxolotlService.getLogprefix(account) + "PreKeyWhisperMessage did not contain a PreKeyId");`
			`return null;`
			`}`
			`Log.i(Config.LOGTAG, AxolotlService.getLogprefix(account) + "PreKeyWhisperMessage received, new session ID:" + message.getSignedPreKeyId() + "/" + message.getPreKeyId());`
			`IdentityKey msgIdentityKey = message.getIdentityKey();`
			`if (this.identityKey != null && !this.identityKey.equals(msgIdentityKey)) {`
			`Log.e(Config.LOGTAG, AxolotlService.getLogprefix(account) + "Had session with fingerprint " + this.getFingerprint() + ", received message with fingerprint " + msgIdentityKey.getFingerprint());`
			`} else {`
			`this.identityKey = msgIdentityKey;`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`plaintext = cipher.decrypt(message);`
refactore trust enum to be FingerprintStatus class with trust and active 2016-11-14 21:27:41 +00:00			`preKeyId = message.getPreKeyId().get();`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`}`
refactore trust enum to be FingerprintStatus class with trust and active 2016-11-14 21:27:41 +00:00			`} catch (InvalidMessageException \| InvalidVersionException e) {`
			`Log.i(Config.LOGTAG, AxolotlService.getLogprefix(account) + "WhisperMessage received");`
			`WhisperMessage message = new WhisperMessage(encryptedKey);`
			`plaintext = cipher.decrypt(message);`
			`} catch (InvalidKeyException \| InvalidKeyIdException \| UntrustedIdentityException e) {`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`Log.w(Config.LOGTAG, AxolotlService.getLogprefix(account) + "Error decrypting axolotl header, " + e.getClass().getName() + ": " + e.getMessage());`
			`}`
refactore trust enum to be FingerprintStatus class with trust and active 2016-11-14 21:27:41 +00:00			`} catch (LegacyMessageException \| InvalidMessageException \| DuplicateMessageException \| NoSessionException e) {`
			`Log.w(Config.LOGTAG, AxolotlService.getLogprefix(account) + "Error decrypting axolotl header, " + e.getClass().getName() + ": " + e.getMessage());`
			`}`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00
refactore trust enum to be FingerprintStatus class with trust and active 2016-11-14 21:27:41 +00:00			`if (plaintext != null) {`
			`if (!status.isActive()) {`
			`setTrust(status.toActive());`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`}`
refactore trust enum to be FingerprintStatus class with trust and active 2016-11-14 21:27:41 +00:00			`}`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`}`
			`return plaintext;`
			`}`

			`@Nullable`
Refactor axolotl message processing workflow XmppAxolotlMessage is now entirely responsible for handling encryption and decryption of messages, only leveraging XmppAxolotlSession as a packing/unpacking primitive for payload keys. Removed pseudo-dead session generation code step from prepareMessage function, as sessions have been created by invoking the TrustKeysActivity for a while now. Added prepareKeyTransportMessage function, which creates a message with no payload. The key that is packed into the header keyElements can then be used for other purposes (e.g. encrypted file transfer). 2015-07-31 19:12:34 +00:00			`public byte[] processSending(@NonNull byte[] outgoingMessage) {`
refactore trust enum to be FingerprintStatus class with trust and active 2016-11-14 21:27:41 +00:00			`FingerprintStatus status = getTrust();`
			`if (status.isTrustedAndActive()) {`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`CiphertextMessage ciphertextMessage = cipher.encrypt(outgoingMessage);`
Refactor axolotl message processing workflow XmppAxolotlMessage is now entirely responsible for handling encryption and decryption of messages, only leveraging XmppAxolotlSession as a packing/unpacking primitive for payload keys. Removed pseudo-dead session generation code step from prepareMessage function, as sessions have been created by invoking the TrustKeysActivity for a while now. Added prepareKeyTransportMessage function, which creates a message with no payload. The key that is packed into the header keyElements can then be used for other purposes (e.g. encrypted file transfer). 2015-07-31 19:12:34 +00:00			`return ciphertextMessage.serialize();`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`} else {`
			`return null;`
			`}`
			`}`
show 'clear devices' button underneath own devices 2016-11-18 20:49:52 +00:00
			`public Account getAccount() {`
			`return account;`
			`}`
Refactor out inner classes, cache trust store Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. 2015-07-28 20:00:54 +00:00			`}`