oxen-io
/
session-ios
mirror of https://github.com/oxen-io/session-ios.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
session-ios/SessionMessagingKit/Sending & Receiving/Message Handling/MessageReceiver+ClosedGroup...

661 lines
27 KiB
Swift
Raw Blame History

// Copyright © 2022 Rangeproof Pty Ltd. All rights reserved.
import Foundation
import Combine
import GRDB
import Sodium
import SessionUtilitiesKit
import SessionSnodeKit
extension MessageReceiver {
public static func handleClosedGroupControlMessage(
_ db: Database,
threadId: String,
threadVariant: SessionThread.Variant,
message: ClosedGroupControlMessage
) throws {
switch message.kind {
case .new: try handleNewClosedGroup(db, message: message)
case .encryptionKeyPair:
try handleClosedGroupEncryptionKeyPair(
db,
threadId: threadId,
threadVariant: threadVariant,
message: message
)
case .nameChange:
try handleClosedGroupNameChanged(
db,
threadId: threadId,
threadVariant: threadVariant,
message: message
)
case .membersAdded:
try handleClosedGroupMembersAdded(
db,
threadId: threadId,
threadVariant: threadVariant,
message: message
)
case .membersRemoved:
try handleClosedGroupMembersRemoved(
db,
threadId: threadId,
threadVariant: threadVariant,
message: message
)
case .memberLeft:
try handleClosedGroupMemberLeft(
db,
threadId: threadId,
threadVariant: threadVariant,
message: message
)
case .encryptionKeyPairRequest: break // Currently not used
default: throw MessageReceiverError.invalidMessage
}
}
// MARK: - Specific Handling
private static func handleNewClosedGroup(_ db: Database, message: ClosedGroupControlMessage) throws {
guard case let .new(publicKeyAsData, name, encryptionKeyPair, membersAsData, adminsAsData, expirationTimer) = message.kind else {
return
}
guard
let sentTimestamp: UInt64 = message.sentTimestamp,
SessionUtil.canPerformChange(
db,
threadId: publicKeyAsData.toHexString(),
targetConfig: .userGroups,
changeTimestampMs: Int64(sentTimestamp)
)
else {
// If the closed group already exists then store the encryption keys (just in case - there can be
// some weird edge-cases where we don't have keys we need if we don't store them)
let groupPublicKey: String = publicKeyAsData.toHexString()
let receivedTimestamp: TimeInterval = (TimeInterval(SnodeAPI.currentOffsetTimestampMs()) / 1000)
let newKeyPair: ClosedGroupKeyPair = ClosedGroupKeyPair(
threadId: groupPublicKey,
publicKey: Data(encryptionKeyPair.publicKey),
secretKey: Data(encryptionKeyPair.secretKey),
receivedTimestamp: receivedTimestamp
)
guard
ClosedGroup.filter(id: groupPublicKey).isNotEmpty(db),
!ClosedGroupKeyPair
.filter(ClosedGroupKeyPair.Columns.threadKeyPairHash == newKeyPair.threadKeyPairHash)
.isNotEmpty(db)
else { return SNLog("Ignoring outdated NEW legacy group message due to more recent config state") }
try newKeyPair.insert(db)
return
}
try handleNewClosedGroup(
db,
groupPublicKey: publicKeyAsData.toHexString(),
name: name,
encryptionKeyPair: encryptionKeyPair,
members: membersAsData.map { $0.toHexString() },
admins: adminsAsData.map { $0.toHexString() },
expirationTimer: expirationTimer,
formationTimestampMs: sentTimestamp,
calledFromConfigHandling: false
)
}
internal static func handleNewClosedGroup(
_ db: Database,
groupPublicKey: String,
name: String,
encryptionKeyPair: KeyPair,
members: [String],
admins: [String],
expirationTimer: UInt32,
formationTimestampMs: UInt64,
calledFromConfigHandling: Bool
) throws {
// With new closed groups we only want to create them if the admin creating the closed group is an
// approved contact (to prevent spam via closed groups getting around message requests if users are
// on old or modified clients)
var hasApprovedAdmin: Bool = false
for adminId in admins {
if let contact: Contact = try? Contact.fetchOne(db, id: adminId), contact.isApproved {
hasApprovedAdmin = true
break
}
}
// If the group came from the updated config handling then it doesn't matter if we
// have an approved admin - we should add it regardless (as it's been synced from
// antoher device)
guard hasApprovedAdmin || calledFromConfigHandling else { return }
// Create the group
let thread: SessionThread = try SessionThread
.fetchOrCreate(db, id: groupPublicKey, variant: .legacyGroup, shouldBeVisible: true)
let closedGroup: ClosedGroup = try ClosedGroup(
threadId: groupPublicKey,
name: name,
formationTimestamp: (TimeInterval(formationTimestampMs) / 1000)
).saved(db)
// Clear the zombie list if the group wasn't active (ie. had no keys)
if ((try? closedGroup.keyPairs.fetchCount(db)) ?? 0) == 0 {
try closedGroup.zombies.deleteAll(db)
}
// Create the GroupMember records if needed
try members.forEach { memberId in
try GroupMember(
groupId: groupPublicKey,
profileId: memberId,
role: .standard,
isHidden: false
).save(db)
}
try admins.forEach { adminId in
try GroupMember(
groupId: groupPublicKey,
profileId: adminId,
role: .admin,
isHidden: false
).save(db)
}
// Update the DisappearingMessages config
let disappearingConfig: DisappearingMessagesConfiguration = try thread.disappearingMessagesConfiguration
.fetchOne(db)
.defaulting(to: DisappearingMessagesConfiguration.defaultWith(thread.id))
.with(
isEnabled: (expirationTimer > 0),
durationSeconds: TimeInterval(expirationTimer > 0 ?
expirationTimer :
(24 * 60 * 60)
)
)
.saved(db)
// Store the key pair if it doesn't already exist
let receivedTimestamp: TimeInterval = (TimeInterval(SnodeAPI.currentOffsetTimestampMs()) / 1000)
let newKeyPair: ClosedGroupKeyPair = ClosedGroupKeyPair(
threadId: groupPublicKey,
publicKey: Data(encryptionKeyPair.publicKey),
secretKey: Data(encryptionKeyPair.secretKey),
receivedTimestamp: receivedTimestamp
)
let keyPairExists: Bool = ClosedGroupKeyPair
.filter(ClosedGroupKeyPair.Columns.threadKeyPairHash == newKeyPair.threadKeyPairHash)
.isNotEmpty(db)
if !keyPairExists {
try newKeyPair.insert(db)
}
if !calledFromConfigHandling {
// Update libSession
try? SessionUtil.add(
db,
groupPublicKey: groupPublicKey,
name: name,
latestKeyPairPublicKey: Data(encryptionKeyPair.publicKey),
latestKeyPairSecretKey: Data(encryptionKeyPair.secretKey),
latestKeyPairReceivedTimestamp: receivedTimestamp,
disappearingConfig: disappearingConfig,
members: members.asSet(),
admins: admins.asSet()
)
}
// Start polling
ClosedGroupPoller.shared.startIfNeeded(for: groupPublicKey)
// Notify the PN server
let _ = PushNotificationAPI.performOperation(.subscribe, for: groupPublicKey, publicKey: getUserHexEncodedPublicKey(db))
}
/// Extracts and adds the new encryption key pair to our list of key pairs if there is one for our public key, AND the message was
/// sent by the group admin.
private static func handleClosedGroupEncryptionKeyPair(
_ db: Database,
threadId: String,
threadVariant: SessionThread.Variant,
message: ClosedGroupControlMessage
) throws {
guard case let .encryptionKeyPair(explicitGroupPublicKey, wrappers) = message.kind else {
return
}
let groupPublicKey: String = (explicitGroupPublicKey?.toHexString() ?? threadId)
guard let userKeyPair: KeyPair = Identity.fetchUserKeyPair(db) else {
return SNLog("Couldn't find user X25519 key pair.")
}
guard let closedGroup: ClosedGroup = try? ClosedGroup.fetchOne(db, id: groupPublicKey) else {
return SNLog("Ignoring closed group encryption key pair for nonexistent group.")
}
guard let groupAdmins: [GroupMember] = try? closedGroup.admins.fetchAll(db) else { return }
guard let sender: String = message.sender, groupAdmins.contains(where: { $0.profileId == sender }) else {
return SNLog("Ignoring closed group encryption key pair from non-admin.")
}
// Find our wrapper and decrypt it if possible
let userPublicKey: String = SessionId(.standard, publicKey: userKeyPair.publicKey).hexString
guard
let wrapper = wrappers.first(where: { $0.publicKey == userPublicKey }),
let encryptedKeyPair = wrapper.encryptedKeyPair
else { return }
let plaintext: Data
do {
plaintext = try MessageReceiver.decryptWithSessionProtocol(
ciphertext: encryptedKeyPair,
using: userKeyPair
).plaintext
}
catch {
return SNLog("Couldn't decrypt closed group encryption key pair.")
}
// Parse it
let proto: SNProtoKeyPair
do {
proto = try SNProtoKeyPair.parseData(plaintext)
}
catch {
return SNLog("Couldn't parse closed group encryption key pair.")
}
do {
let keyPair: ClosedGroupKeyPair = ClosedGroupKeyPair(
threadId: groupPublicKey,
publicKey: proto.publicKey.removingIdPrefixIfNeeded(),
secretKey: proto.privateKey,
receivedTimestamp: (TimeInterval(SnodeAPI.currentOffsetTimestampMs()) / 1000)
)
try keyPair.insert(db)
// Update libSession
try? SessionUtil.update(
db,
groupPublicKey: groupPublicKey,
latestKeyPair: keyPair
)
}
catch {
if case DatabaseError.SQLITE_CONSTRAINT_UNIQUE = error {
return SNLog("Ignoring duplicate closed group encryption key pair.")
}
throw error
}
SNLog("Received a new closed group encryption key pair.")
}
private static func handleClosedGroupNameChanged(
_ db: Database,
threadId: String,
threadVariant: SessionThread.Variant,
message: ClosedGroupControlMessage
) throws {
guard
let messageKind: ClosedGroupControlMessage.Kind = message.kind,
case let .nameChange(name) = message.kind
else { return }
try processIfValid(
db,
threadId: threadId,
threadVariant: threadVariant,
message: message,
messageKind: messageKind,
infoMessageVariant: .infoClosedGroupUpdated,
legacyGroupChanges: { sender, closedGroup, allMembers in
// Update libSession
try? SessionUtil.update(
db,
groupPublicKey: threadId,
name: name
)
_ = try ClosedGroup
.filter(id: threadId)
.updateAll( // Explicit config update so no need to use 'updateAllAndConfig'
db,
ClosedGroup.Columns.name.set(to: name)
)
}
)
}
private static func handleClosedGroupMembersAdded(
_ db: Database,
threadId: String,
threadVariant: SessionThread.Variant,
message: ClosedGroupControlMessage
) throws {
guard
let messageKind: ClosedGroupControlMessage.Kind = message.kind,
case let .membersAdded(membersAsData) = message.kind
else { return }
try processIfValid(
db,
threadId: threadId,
threadVariant: threadVariant,
message: message,
messageKind: messageKind,
infoMessageVariant: .infoClosedGroupUpdated,
legacyGroupChanges: { sender, closedGroup, allMembers in
// Update the group
let addedMembers: [String] = membersAsData.map { $0.toHexString() }
let currentMemberIds: Set<String> = allMembers
.filter { $0.role == .standard }
.map { $0.profileId }
.asSet()
// Update libSession
try? SessionUtil.update(
db,
groupPublicKey: threadId,
members: allMembers
.filter { $0.role == .standard || $0.role == .zombie }
.map { $0.profileId }
.asSet()
.union(addedMembers),
admins: allMembers
.filter { $0.role == .admin }
.map { $0.profileId }
.asSet()
)
// Create records for any new members
try addedMembers
.filter { !currentMemberIds.contains($0) }
.forEach { memberId in
try GroupMember(
groupId: threadId,
profileId: memberId,
role: .standard,
isHidden: false
).save(db)
}
// Send the latest encryption key pair to the added members if the current user is
// the admin of the group
//
// This fixes a race condition where:
// A member removes another member.
// A member adds someone to the group and sends them the latest group key pair.
// The admin is offline during all of this.
// When the admin comes back online they see the member removed message and generate +
// distribute a new key pair, but they don't know about the added member yet.
// Now they see the member added message.
//
// Without the code below, the added member(s) would never get the key pair that was
// generated by the admin when they saw the member removed message.
let userPublicKey: String = getUserHexEncodedPublicKey(db)
if allMembers.contains(where: { $0.role == .admin && $0.profileId == userPublicKey }) {
addedMembers.forEach { memberId in
MessageSender.sendLatestEncryptionKeyPair(db, to: memberId, for: threadId)
}
}
// Remove any 'zombie' versions of the added members (in case they were re-added)
_ = try GroupMember
.filter(GroupMember.Columns.groupId == threadId)
.filter(GroupMember.Columns.role == GroupMember.Role.zombie)
.filter(addedMembers.contains(GroupMember.Columns.profileId))
.deleteAll(db)
}
)
}
/// Removes the given members from the group IF
/// it wasn't the admin that was removed (that should happen through a `MEMBER_LEFT` message).
/// the admin sent the message (only the admin can truly remove members).
/// If we're among the users that were removed, delete all encryption key pairs and the group public key, unsubscribe
/// from push notifications for this closed group, and remove the given members from the zombie list for this group.
private static func handleClosedGroupMembersRemoved(
_ db: Database,
threadId: String,
threadVariant: SessionThread.Variant,
message: ClosedGroupControlMessage
) throws {
guard
let messageKind: ClosedGroupControlMessage.Kind = message.kind,
case let .membersRemoved(membersAsData) = messageKind
else { return }
let userPublicKey: String = getUserHexEncodedPublicKey(db)
let removedMemberIds: [String] = membersAsData.map { $0.toHexString() }
try processIfValid(
db,
threadId: threadId,
threadVariant: threadVariant,
message: message,
messageKind: messageKind,
infoMessageVariant: (removedMemberIds.contains(userPublicKey) ?
.infoClosedGroupCurrentUserLeft :
.infoClosedGroupUpdated
),
legacyGroupChanges: { sender, closedGroup, allMembers in
let removedMembers = membersAsData.map { $0.toHexString() }
let currentMemberIds: Set<String> = allMembers
.filter { $0.role == .standard }
.map { $0.profileId }
.asSet()
let members = currentMemberIds.subtracting(removedMembers)
// Check that the group creator is still a member and that the message was
// sent by a group admin
guard
let firstAdminId: String = allMembers.filter({ $0.role == .admin })
.first?
.profileId,
members.contains(firstAdminId),
allMembers
.filter({ $0.role == .admin })
.contains(where: { $0.profileId == sender })
else { return SNLog("Ignoring invalid closed group update.") }
// Update libSession
try? SessionUtil.update(
db,
groupPublicKey: threadId,
members: allMembers
.filter { $0.role == .standard || $0.role == .zombie }
.map { $0.profileId }
.asSet()
.subtracting(removedMembers),
admins: allMembers
.filter { $0.role == .admin }
.map { $0.profileId }
.asSet()
)
// Delete the removed members
try GroupMember
.filter(GroupMember.Columns.groupId == threadId)
.filter(removedMembers.contains(GroupMember.Columns.profileId))
.filter([ GroupMember.Role.standard, GroupMember.Role.zombie ].contains(GroupMember.Columns.role))
.deleteAll(db)
// If the current user was removed:
// Stop polling for the group
// Remove the key pairs associated with the group
// Notify the PN server
let wasCurrentUserRemoved: Bool = !members.contains(userPublicKey)
if wasCurrentUserRemoved {
try ClosedGroup.removeKeysAndUnsubscribe(
db,
threadId: threadId,
removeGroupData: true,
calledFromConfigHandling: false
)
}
}
)
}
/// If a regular member left:
/// Mark them as a zombie (to be removed by the admin later).
/// If the admin left:
/// Unsubscribe from PNs, delete the group public key, etc. as the group will be disbanded.
private static func handleClosedGroupMemberLeft(
_ db: Database,
threadId: String,
threadVariant: SessionThread.Variant,
message: ClosedGroupControlMessage
) throws {
guard
let messageKind: ClosedGroupControlMessage.Kind = message.kind,
case .memberLeft = messageKind
else { return }
try processIfValid(
db,
threadId: threadId,
threadVariant: threadVariant,
message: message,
messageKind: messageKind,
infoMessageVariant: .infoClosedGroupUpdated,
legacyGroupChanges: { sender, closedGroup, allMembers in
let userPublicKey: String = getUserHexEncodedPublicKey(db)
let didAdminLeave: Bool = allMembers.contains(where: { member in
member.role == .admin && member.profileId == sender
})
let members: [GroupMember] = allMembers.filter { $0.role == .standard }
let memberIdsToRemove: [String] = members
.filter { member in
didAdminLeave || // If the admin leaves the group is disbanded
member.profileId == sender
}
.map { $0.profileId }
// Update libSession
try? SessionUtil.update(
db,
groupPublicKey: threadId,
members: allMembers
.filter { $0.role == .standard || $0.role == .zombie }
.map { $0.profileId }
.asSet()
.subtracting(memberIdsToRemove),
admins: allMembers
.filter { $0.role == .admin }
.map { $0.profileId }
.asSet()
)
// Delete the members to remove
try GroupMember
.filter(GroupMember.Columns.groupId == threadId)
.filter(memberIdsToRemove.contains(GroupMember.Columns.profileId))
.deleteAll(db)
if didAdminLeave || sender == userPublicKey {
try ClosedGroup.removeKeysAndUnsubscribe(
db,
threadId: threadId,
removeGroupData: (sender == userPublicKey),
calledFromConfigHandling: false
)
}
// Re-add the removed member as a zombie (unless the admin left which disbands the
// group)
if !didAdminLeave {
try GroupMember(
groupId: threadId,
profileId: sender,
role: .zombie,
isHidden: false
).save(db)
}
}
)
}
// MARK: - Convenience
private static func processIfValid(
_ db: Database,
threadId: String,
threadVariant: SessionThread.Variant,
message: ClosedGroupControlMessage,
messageKind: ClosedGroupControlMessage.Kind,
infoMessageVariant: Interaction.Variant,
legacyGroupChanges: (String, ClosedGroup, [GroupMember]) throws -> ()
) throws {
guard let sender: String = message.sender else { return }
guard let closedGroup: ClosedGroup = try? ClosedGroup.fetchOne(db, id: threadId) else {
return SNLog("Ignoring group update for nonexistent group.")
}
let timestampMs: Int64 = (
message.sentTimestamp.map { Int64($0) } ??
SnodeAPI.currentOffsetTimestampMs()
)
// Only actually make the change if SessionUtil says we can (we always want to insert the info
// message though)
if SessionUtil.canPerformChange(db, threadId: threadId, targetConfig: .userGroups, changeTimestampMs: timestampMs) {
// Legacy groups used these control messages for making changes, new groups only use them
// for information purposes
switch threadVariant {
case .legacyGroup:
// Check that the message isn't from before the group was created
guard Double(message.sentTimestamp ?? 0) > closedGroup.formationTimestamp else {
return SNLog("Ignoring legacy group update from before thread was created.")
}
// If these values are missing then we probably won't be able to validly handle the message
guard
let allMembers: [GroupMember] = try? closedGroup.allMembers.fetchAll(db),
allMembers.contains(where: { $0.profileId == sender })
else { return SNLog("Ignoring legacy group update from non-member.") }
try legacyGroupChanges(sender, closedGroup, allMembers)
case .group:
break
default: return // Ignore as invalid
}
}
// Ensure the group still exists before inserting the info message
guard ClosedGroup.filter(id: threadId).isNotEmpty(db) else { return }
// Insert the info message for this group control message
_ = try Interaction(
serverHash: message.serverHash,
threadId: threadId,
authorId: sender,
variant: infoMessageVariant,
body: messageKind
.infoMessage(db, sender: sender),
timestampMs: (
message.sentTimestamp.map { Int64($0) } ??
SnodeAPI.currentOffsetTimestampMs()
)
).inserted(db)
}
}
Reference in New Issue View Git Blame Copy Permalink