2020-03-13 21:05:18 +01:00
|
|
|
#include "DeviceVerificationFlow.h"
|
2020-06-09 18:36:41 +02:00
|
|
|
#include "ChatPage.h"
|
2020-06-07 13:35:32 +02:00
|
|
|
#include "Logging.h"
|
2020-06-17 20:28:35 +02:00
|
|
|
|
2020-06-04 15:44:15 +02:00
|
|
|
#include <QDateTime>
|
|
|
|
#include <QDebug> // only for debugging
|
2020-03-13 21:05:18 +01:00
|
|
|
#include <QTimer>
|
2020-06-07 13:35:32 +02:00
|
|
|
#include <iostream> // only for debugging
|
2020-03-13 21:05:18 +01:00
|
|
|
|
|
|
|
static constexpr int TIMEOUT = 2 * 60 * 1000; // 2 minutes
|
|
|
|
|
2020-06-09 18:36:41 +02:00
|
|
|
namespace msgs = mtx::events::msg;
|
|
|
|
|
2020-03-13 21:05:18 +01:00
|
|
|
DeviceVerificationFlow::DeviceVerificationFlow(QObject *)
|
|
|
|
{
|
|
|
|
timeout = new QTimer(this);
|
|
|
|
timeout->setSingleShot(true);
|
2020-06-20 14:20:43 +02:00
|
|
|
this->sas = olm::client()->sas_init();
|
2020-03-13 21:05:18 +01:00
|
|
|
connect(timeout, &QTimer::timeout, this, [this]() {
|
|
|
|
emit timedout();
|
|
|
|
this->deleteLater();
|
|
|
|
});
|
2020-06-20 14:20:43 +02:00
|
|
|
|
2020-06-09 18:36:41 +02:00
|
|
|
connect(ChatPage::instance(),
|
2020-06-20 14:20:43 +02:00
|
|
|
&ChatPage::recievedDeviceVerificationStart,
|
2020-06-09 18:36:41 +02:00
|
|
|
this,
|
|
|
|
[this](const mtx::events::collections::DeviceEvents &message) {
|
|
|
|
auto msg =
|
2020-06-20 14:20:43 +02:00
|
|
|
std::get<mtx::events::DeviceEvent<msgs::KeyVerificationStart>>(message);
|
2020-06-09 18:36:41 +02:00
|
|
|
if (msg.content.transaction_id == this->transaction_id) {
|
2020-06-20 14:20:43 +02:00
|
|
|
if (std::find(msg.content.key_agreement_protocols.begin(),
|
|
|
|
msg.content.key_agreement_protocols.end(),
|
|
|
|
"curve25519-hkdf-sha256") !=
|
|
|
|
msg.content.key_agreement_protocols.end() &&
|
|
|
|
std::find(msg.content.hashes.begin(),
|
|
|
|
msg.content.hashes.end(),
|
|
|
|
"sha256") != msg.content.hashes.end() &&
|
|
|
|
(std::find(msg.content.message_authentication_codes.begin(),
|
|
|
|
msg.content.message_authentication_codes.end(),
|
|
|
|
"hmac-sha256") !=
|
|
|
|
msg.content.message_authentication_codes.end() ||
|
|
|
|
std::find(msg.content.message_authentication_codes.begin(),
|
|
|
|
msg.content.message_authentication_codes.end(),
|
|
|
|
"hkdf-hmac-sha256") !=
|
|
|
|
msg.content.message_authentication_codes.end()) &&
|
|
|
|
(std::find(msg.content.short_authentication_string.begin(),
|
|
|
|
msg.content.short_authentication_string.end(),
|
|
|
|
mtx::events::msg::SASMethods::Decimal) !=
|
|
|
|
msg.content.short_authentication_string.end() ||
|
|
|
|
std::find(msg.content.short_authentication_string.begin(),
|
|
|
|
msg.content.short_authentication_string.end(),
|
|
|
|
mtx::events::msg::SASMethods::Emoji) !=
|
|
|
|
msg.content.short_authentication_string.end())) {
|
|
|
|
this->sendVerificationKey(); // Not sure about this maybe
|
|
|
|
// those optional methods
|
|
|
|
this->canonical_json = nlohmann::json(msg);
|
|
|
|
} else {
|
|
|
|
this->cancelVerification();
|
|
|
|
}
|
2020-06-09 18:36:41 +02:00
|
|
|
}
|
|
|
|
});
|
2020-06-20 14:20:43 +02:00
|
|
|
connect(
|
|
|
|
ChatPage::instance(),
|
|
|
|
&ChatPage::recievedDeviceVerificationAccept,
|
|
|
|
this,
|
|
|
|
[this](const mtx::events::collections::DeviceEvents &message) {
|
|
|
|
auto msg =
|
|
|
|
std::get<mtx::events::DeviceEvent<msgs::KeyVerificationAccept>>(message);
|
|
|
|
if (msg.content.transaction_id == this->transaction_id) {
|
|
|
|
if ((msg.content.method ==
|
|
|
|
mtx::events::msg::VerificationMethods::SASv1) &&
|
|
|
|
(msg.content.key_agreement_protocol == "curve25519-hkdf-sha256") &&
|
|
|
|
(msg.content.hash == "sha256") &&
|
|
|
|
((msg.content.message_authentication_code == "hkdf-hmac-sha256") ||
|
|
|
|
(msg.content.message_authentication_code == "hmac-sha256"))) {
|
|
|
|
this->commitment = msg.content.commitment;
|
|
|
|
if (std::find(msg.content.short_authentication_string.begin(),
|
|
|
|
msg.content.short_authentication_string.end(),
|
|
|
|
mtx::events::msg::SASMethods::Emoji) !=
|
|
|
|
msg.content.short_authentication_string.end()) {
|
|
|
|
this->method = DeviceVerificationFlow::Method::Emoji;
|
|
|
|
} else {
|
|
|
|
this->method = DeviceVerificationFlow::Method::Decimal;
|
|
|
|
}
|
|
|
|
this->mac_method = msg.content.message_authentication_code;
|
|
|
|
this->sendVerificationKey();
|
|
|
|
} else {
|
|
|
|
this->cancelVerification();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
});
|
2020-06-09 18:36:41 +02:00
|
|
|
connect(ChatPage::instance(),
|
|
|
|
&ChatPage::recievedDeviceVerificationCancel,
|
|
|
|
this,
|
|
|
|
[this](const mtx::events::collections::DeviceEvents &message) {
|
|
|
|
auto msg =
|
|
|
|
std::get<mtx::events::DeviceEvent<msgs::KeyVerificationCancel>>(message);
|
|
|
|
if (msg.content.transaction_id == this->transaction_id) {
|
2020-06-20 14:20:43 +02:00
|
|
|
emit verificationCanceled();
|
2020-06-09 18:36:41 +02:00
|
|
|
}
|
|
|
|
});
|
2020-06-20 14:20:43 +02:00
|
|
|
connect(
|
|
|
|
ChatPage::instance(),
|
|
|
|
&ChatPage::recievedDeviceVerificationKey,
|
|
|
|
this,
|
|
|
|
[this](const mtx::events::collections::DeviceEvents &message) {
|
|
|
|
auto msg = std::get<mtx::events::DeviceEvent<msgs::KeyVerificationKey>>(message);
|
|
|
|
if (msg.content.transaction_id == this->transaction_id) {
|
|
|
|
this->sas->set_their_key(msg.content.key);
|
|
|
|
std::string info;
|
|
|
|
if (this->sender == true) {
|
|
|
|
info = "MATRIX_KEY_VERIFICATION_SAS|" +
|
|
|
|
http::client()->user_id().to_string() + "|" +
|
|
|
|
http::client()->device_id() + "|" +
|
|
|
|
this->sas->public_key() + "|" +
|
|
|
|
this->toClient.to_string() + "|" +
|
|
|
|
this->deviceId.toStdString() + "|" + msg.content.key +
|
|
|
|
"|" + this->transaction_id;
|
|
|
|
} else {
|
|
|
|
info = "MATRIX_KEY_VERIFICATION_SAS|" +
|
|
|
|
this->toClient.to_string() + "|" +
|
|
|
|
this->deviceId.toStdString() + "|" + msg.content.key +
|
|
|
|
"|" + http::client()->user_id().to_string() + "|" +
|
|
|
|
http::client()->device_id() + "|" +
|
|
|
|
this->sas->public_key() + "|" + this->transaction_id;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (this->method == DeviceVerificationFlow::Method::Emoji) {
|
|
|
|
this->sasList = this->sas->generate_bytes_emoji(info);
|
|
|
|
} else if (this->method == DeviceVerificationFlow::Method::Decimal) {
|
|
|
|
this->sasList = this->sas->generate_bytes_decimal(info);
|
|
|
|
}
|
|
|
|
if (this->sender == false) {
|
|
|
|
emit this->verificationRequestAccepted(this->method);
|
|
|
|
this->sendVerificationKey();
|
|
|
|
} else {
|
|
|
|
if (this->commitment ==
|
|
|
|
mtx::crypto::bin2base64_unpadded(mtx::crypto::sha256(
|
|
|
|
msg.content.key +
|
|
|
|
this->canonical_json["content"].dump()))) {
|
|
|
|
emit this->verificationRequestAccepted(this->method);
|
|
|
|
} else {
|
|
|
|
this->cancelVerification();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
});
|
2020-06-09 18:36:41 +02:00
|
|
|
connect(ChatPage::instance(),
|
|
|
|
&ChatPage::recievedDeviceVerificationMac,
|
|
|
|
this,
|
|
|
|
[this](const mtx::events::collections::DeviceEvents &message) {
|
|
|
|
auto msg =
|
|
|
|
std::get<mtx::events::DeviceEvent<msgs::KeyVerificationMac>>(message);
|
|
|
|
if (msg.content.transaction_id == this->transaction_id) {
|
|
|
|
std::cout << "Recieved Event Mac" << std::endl;
|
|
|
|
}
|
|
|
|
});
|
2020-03-13 21:05:18 +01:00
|
|
|
timeout->start(TIMEOUT);
|
|
|
|
}
|
|
|
|
|
2020-06-17 20:28:35 +02:00
|
|
|
QString
|
|
|
|
DeviceVerificationFlow::getTransactionId()
|
|
|
|
{
|
|
|
|
return QString::fromStdString(this->transaction_id);
|
|
|
|
}
|
|
|
|
|
2020-06-07 13:35:32 +02:00
|
|
|
QString
|
|
|
|
DeviceVerificationFlow::getUserId()
|
2020-06-04 15:44:15 +02:00
|
|
|
{
|
2020-06-07 13:35:32 +02:00
|
|
|
return this->userId;
|
|
|
|
}
|
|
|
|
|
|
|
|
QString
|
|
|
|
DeviceVerificationFlow::getDeviceId()
|
|
|
|
{
|
|
|
|
return this->deviceId;
|
|
|
|
}
|
|
|
|
|
|
|
|
DeviceVerificationFlow::Method
|
|
|
|
DeviceVerificationFlow::getMethod()
|
|
|
|
{
|
|
|
|
return this->method;
|
|
|
|
}
|
|
|
|
|
2020-06-17 20:28:35 +02:00
|
|
|
bool
|
|
|
|
DeviceVerificationFlow::getSender()
|
|
|
|
{
|
|
|
|
return this->sender;
|
|
|
|
}
|
|
|
|
|
2020-06-20 14:20:43 +02:00
|
|
|
std::vector<int>
|
|
|
|
DeviceVerificationFlow::getSasList()
|
|
|
|
{
|
|
|
|
return this->sasList;
|
|
|
|
}
|
|
|
|
|
2020-06-17 20:28:35 +02:00
|
|
|
void
|
|
|
|
DeviceVerificationFlow::setTransactionId(QString transaction_id_)
|
|
|
|
{
|
|
|
|
this->transaction_id = transaction_id_.toStdString();
|
|
|
|
}
|
|
|
|
|
2020-06-07 13:35:32 +02:00
|
|
|
void
|
|
|
|
DeviceVerificationFlow::setUserId(QString userID)
|
|
|
|
{
|
2020-06-17 20:28:35 +02:00
|
|
|
this->userId = userID;
|
2020-06-09 18:36:41 +02:00
|
|
|
this->toClient = mtx::identifiers::parse<mtx::identifiers::User>(userID.toStdString());
|
2020-06-07 13:35:32 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
void
|
|
|
|
DeviceVerificationFlow::setDeviceId(QString deviceID)
|
|
|
|
{
|
|
|
|
this->deviceId = deviceID;
|
|
|
|
}
|
|
|
|
|
|
|
|
void
|
|
|
|
DeviceVerificationFlow::setMethod(DeviceVerificationFlow::Method method_)
|
|
|
|
{
|
|
|
|
this->method = method_;
|
2020-06-04 15:44:15 +02:00
|
|
|
}
|
|
|
|
|
2020-06-17 20:28:35 +02:00
|
|
|
void
|
|
|
|
DeviceVerificationFlow::setSender(bool sender_)
|
|
|
|
{
|
|
|
|
this->sender = sender_;
|
2020-06-20 14:20:43 +02:00
|
|
|
if (this->sender == true)
|
|
|
|
this->transaction_id = http::client()->generate_txn_id();
|
2020-06-17 20:28:35 +02:00
|
|
|
}
|
|
|
|
|
2020-06-04 15:44:15 +02:00
|
|
|
//! accepts a verification
|
2020-03-13 21:05:18 +01:00
|
|
|
void
|
|
|
|
DeviceVerificationFlow::acceptVerificationRequest()
|
|
|
|
{
|
2020-06-04 15:44:15 +02:00
|
|
|
mtx::requests::ToDeviceMessages<mtx::events::msg::KeyVerificationAccept> body;
|
|
|
|
mtx::events::msg::KeyVerificationAccept req;
|
|
|
|
|
|
|
|
req.transaction_id = this->transaction_id;
|
|
|
|
req.method = mtx::events::msg::VerificationMethods::SASv1;
|
2020-06-17 20:28:35 +02:00
|
|
|
req.key_agreement_protocol = "curve25519-hkdf-sha256";
|
2020-06-07 13:35:32 +02:00
|
|
|
req.hash = "sha256";
|
2020-06-17 20:28:35 +02:00
|
|
|
req.message_authentication_code = "hkdf-hmac-sha256";
|
2020-06-20 14:20:43 +02:00
|
|
|
if (this->method == DeviceVerificationFlow::Method::Emoji)
|
|
|
|
req.short_authentication_string = {mtx::events::msg::SASMethods::Emoji};
|
|
|
|
else if (this->method == DeviceVerificationFlow::Method::Decimal)
|
|
|
|
req.short_authentication_string = {mtx::events::msg::SASMethods::Decimal};
|
|
|
|
req.commitment = mtx::crypto::bin2base64_unpadded(
|
|
|
|
mtx::crypto::sha256(this->sas->public_key() + this->canonical_json.dump()));
|
2020-06-04 15:44:15 +02:00
|
|
|
|
2020-06-07 13:35:32 +02:00
|
|
|
body[this->toClient][this->deviceId.toStdString()] = req;
|
|
|
|
|
2020-06-20 14:20:43 +02:00
|
|
|
std::cout << "Accepting the Verification" << std::endl;
|
|
|
|
std::cout << json(body) << std::endl;
|
|
|
|
|
2020-06-07 13:35:32 +02:00
|
|
|
http::client()
|
|
|
|
->send_to_device<mtx::events::msg::KeyVerificationAccept,
|
|
|
|
mtx::events::EventType::KeyVerificationAccept>(
|
2020-06-20 14:20:43 +02:00
|
|
|
this->transaction_id, body, [](mtx::http::RequestErr err) {
|
2020-06-07 13:35:32 +02:00
|
|
|
if (err)
|
|
|
|
nhlog::net()->warn("failed to accept verification request: {} {}",
|
|
|
|
err->matrix_error.error,
|
|
|
|
static_cast<int>(err->status_code));
|
|
|
|
});
|
2020-06-04 15:44:15 +02:00
|
|
|
}
|
|
|
|
//! starts the verification flow
|
|
|
|
void
|
|
|
|
DeviceVerificationFlow::startVerificationRequest()
|
|
|
|
{
|
2020-06-07 13:35:32 +02:00
|
|
|
mtx::requests::ToDeviceMessages<mtx::events::msg::KeyVerificationStart> body;
|
|
|
|
mtx::events::msg::KeyVerificationStart req;
|
|
|
|
|
|
|
|
req.from_device = http::client()->device_id();
|
|
|
|
req.transaction_id = this->transaction_id;
|
|
|
|
req.method = mtx::events::msg::VerificationMethods::SASv1;
|
2020-06-17 20:28:35 +02:00
|
|
|
req.key_agreement_protocols = {"curve25519-hkdf-sha256"};
|
|
|
|
req.hashes = {"sha256"};
|
|
|
|
req.message_authentication_codes = {"hkdf-hmac-sha256", "hmac-sha256"};
|
|
|
|
req.short_authentication_string = {mtx::events::msg::SASMethods::Decimal,
|
|
|
|
mtx::events::msg::SASMethods::Emoji};
|
|
|
|
|
2020-06-07 13:35:32 +02:00
|
|
|
body[this->toClient][this->deviceId.toStdString()] = req;
|
2020-06-20 14:20:43 +02:00
|
|
|
this->canonical_json = nlohmann::json(req);
|
2020-06-07 13:35:32 +02:00
|
|
|
|
|
|
|
http::client()
|
|
|
|
->send_to_device<mtx::events::msg::KeyVerificationStart,
|
|
|
|
mtx::events::EventType::KeyVerificationStart>(
|
2020-06-17 20:28:35 +02:00
|
|
|
this->transaction_id, body, [body](mtx::http::RequestErr err) {
|
2020-06-07 13:35:32 +02:00
|
|
|
if (err)
|
|
|
|
nhlog::net()->warn("failed to start verification request: {} {}",
|
|
|
|
err->matrix_error.error,
|
|
|
|
static_cast<int>(err->status_code));
|
|
|
|
});
|
2020-06-04 15:44:15 +02:00
|
|
|
}
|
|
|
|
//! sends a verification request
|
|
|
|
void
|
|
|
|
DeviceVerificationFlow::sendVerificationRequest()
|
|
|
|
{
|
|
|
|
QDateTime CurrentTime = QDateTime::currentDateTimeUtc();
|
|
|
|
|
|
|
|
mtx::requests::ToDeviceMessages<mtx::events::msg::KeyVerificationRequest> body;
|
|
|
|
mtx::events::msg::KeyVerificationRequest req;
|
|
|
|
|
2020-06-07 13:35:32 +02:00
|
|
|
req.from_device = http::client()->device_id();
|
|
|
|
req.transaction_id = this->transaction_id;
|
2020-06-04 15:44:15 +02:00
|
|
|
req.methods.resize(1);
|
|
|
|
req.methods[0] = mtx::events::msg::VerificationMethods::SASv1;
|
|
|
|
req.timestamp = (uint64_t)CurrentTime.toTime_t();
|
|
|
|
|
2020-06-07 13:35:32 +02:00
|
|
|
body[this->toClient][this->deviceId.toStdString()] = req;
|
|
|
|
|
|
|
|
http::client()
|
|
|
|
->send_to_device<mtx::events::msg::KeyVerificationRequest,
|
|
|
|
mtx::events::EventType::KeyVerificationRequest>(
|
2020-06-17 20:28:35 +02:00
|
|
|
this->transaction_id, body, [](mtx::http::RequestErr err) {
|
2020-06-07 13:35:32 +02:00
|
|
|
if (err)
|
|
|
|
nhlog::net()->warn("failed to send verification request: {} {}",
|
|
|
|
err->matrix_error.error,
|
|
|
|
static_cast<int>(err->status_code));
|
|
|
|
});
|
2020-03-13 21:05:18 +01:00
|
|
|
}
|
|
|
|
//! cancels a verification flow
|
|
|
|
void
|
|
|
|
DeviceVerificationFlow::cancelVerification()
|
|
|
|
{
|
2020-06-04 15:44:15 +02:00
|
|
|
mtx::requests::ToDeviceMessages<mtx::events::msg::KeyVerificationCancel> body;
|
|
|
|
mtx::events::msg::KeyVerificationCancel req;
|
|
|
|
|
|
|
|
req.transaction_id = this->transaction_id;
|
2020-06-07 13:35:32 +02:00
|
|
|
// TODO: Add Proper Error Messages and Code
|
|
|
|
req.reason = "Device Verification Cancelled";
|
|
|
|
req.code = "400";
|
|
|
|
|
|
|
|
body[this->toClient][deviceId.toStdString()] = req;
|
|
|
|
|
2020-06-20 14:20:43 +02:00
|
|
|
emit this->verificationCanceled();
|
|
|
|
|
2020-06-07 13:35:32 +02:00
|
|
|
http::client()
|
|
|
|
->send_to_device<mtx::events::msg::KeyVerificationCancel,
|
|
|
|
mtx::events::EventType::KeyVerificationCancel>(
|
2020-06-17 20:28:35 +02:00
|
|
|
this->transaction_id, body, [this](mtx::http::RequestErr err) {
|
2020-06-07 13:35:32 +02:00
|
|
|
if (err)
|
|
|
|
nhlog::net()->warn("failed to cancel verification request: {} {}",
|
|
|
|
err->matrix_error.error,
|
|
|
|
static_cast<int>(err->status_code));
|
|
|
|
this->deleteLater();
|
|
|
|
});
|
2020-03-13 21:05:18 +01:00
|
|
|
}
|
2020-06-09 18:36:41 +02:00
|
|
|
//! sends the verification key
|
|
|
|
void
|
|
|
|
DeviceVerificationFlow::sendVerificationKey()
|
|
|
|
{
|
|
|
|
mtx::requests::ToDeviceMessages<mtx::events::msg::KeyVerificationKey> body;
|
|
|
|
mtx::events::msg::KeyVerificationKey req;
|
|
|
|
|
2020-06-20 14:20:43 +02:00
|
|
|
req.key = this->sas->public_key();
|
2020-06-09 18:36:41 +02:00
|
|
|
req.transaction_id = this->transaction_id;
|
|
|
|
|
|
|
|
body[this->toClient][deviceId.toStdString()] = req;
|
|
|
|
|
|
|
|
http::client()
|
|
|
|
->send_to_device<mtx::events::msg::KeyVerificationKey,
|
|
|
|
mtx::events::EventType::KeyVerificationKey>(
|
2020-06-17 20:28:35 +02:00
|
|
|
this->transaction_id, body, [](mtx::http::RequestErr err) {
|
2020-06-09 18:36:41 +02:00
|
|
|
if (err)
|
|
|
|
nhlog::net()->warn("failed to send verification key: {} {}",
|
|
|
|
err->matrix_error.error,
|
|
|
|
static_cast<int>(err->status_code));
|
|
|
|
});
|
|
|
|
}
|
|
|
|
//! sends the mac of the keys
|
|
|
|
void
|
|
|
|
DeviceVerificationFlow::sendVerificationMac()
|
|
|
|
{
|
|
|
|
mtx::requests::ToDeviceMessages<mtx::events::msg::KeyVerificationMac> body;
|
|
|
|
mtx::events::msg::KeyVerificationMac req;
|
|
|
|
|
|
|
|
req.transaction_id = this->transaction_id;
|
|
|
|
// req.mac = "";
|
|
|
|
req.keys = "";
|
|
|
|
|
|
|
|
body[this->toClient][deviceId.toStdString()] = req;
|
|
|
|
|
|
|
|
http::client()
|
|
|
|
->send_to_device<mtx::events::msg::KeyVerificationMac,
|
|
|
|
mtx::events::EventType::KeyVerificationMac>(
|
2020-06-17 20:28:35 +02:00
|
|
|
this->transaction_id, body, [](mtx::http::RequestErr err) {
|
2020-06-09 18:36:41 +02:00
|
|
|
if (err)
|
|
|
|
nhlog::net()->warn("failed to send verification MAC: {} {}",
|
|
|
|
err->matrix_error.error,
|
|
|
|
static_cast<int>(err->status_code));
|
|
|
|
});
|
|
|
|
}
|
2020-03-13 21:05:18 +01:00
|
|
|
//! Completes the verification flow
|
|
|
|
void
|
|
|
|
DeviceVerificationFlow::acceptDevice()
|
|
|
|
{
|
|
|
|
emit deviceVerified();
|
|
|
|
this->deleteLater();
|
2020-06-04 15:44:15 +02:00
|
|
|
|
|
|
|
// Yet to add send to_device message
|
2020-03-13 21:05:18 +01:00
|
|
|
}
|