update pods

signalapp · Nov 16, 2018 · 766456e · 766456e
1 parent f37c2be
commit 766456e
Show file tree

Hide file tree

Showing 2 changed files with 131 additions and 88 deletions.
diff --git a/Manifest.lock b/Manifest.lock
@@ -268,7 +268,7 @@ CHECKOUT OPTIONS:
     :commit: b60dc7d58dfc93ca6eafbb3ea5300c6d67ebc69a
     :git: https://github.com/signalapp/SignalCoreKit.git
   SignalMetadataKit:
-    :commit: 8a586363921b4546bea99b07c06bf5c93eab7973
+    :commit: a5473c8d33602775e00253afce78eef01a69260e
     :git: https://github.com/signalapp/SignalMetadataKit
   SocketRocket:
     :commit: 9f9563a83cd8960503074aa8de72206f83fb7a69

diff --git a/SignalMetadataKit/SignalMetadataKit/src/SMKSecretSessionCipher.swift b/SignalMetadataKit/SignalMetadataKit/src/SMKSecretSessionCipher.swift
@@ -4,6 +4,33 @@
 
 import Foundation
 
+@objc
+public class SecretSessionKnownSenderError: NSObject, CustomNSError {
+    @objc
+    public static let kSenderRecipientIdKey = "kSenderRecipientIdKey"
+
+    @objc
+    public static let kSenderDeviceIdKey = "kSenderDeviceIdKey"
+
+    let senderRecipientId: String
+    let senderDeviceId: UInt32
+    let underlyingError: Error
+
+    init(senderRecipientId: String, senderDeviceId: UInt32, underlyingError: Error) {
+        self.senderRecipientId = senderRecipientId
+        self.senderDeviceId = senderDeviceId
+        self.underlyingError = underlyingError
+    }
+
+    public var errorUserInfo: [String : Any] {
+        return [
+            type(of: self).kSenderRecipientIdKey: self.senderRecipientId,
+            type(of: self).kSenderDeviceIdKey: self.senderDeviceId,
+            NSUnderlyingErrorKey: underlyingError
+        ]
+    }
+}
+
 @objc
 public enum SMKSecretSessionCipherError: Int, Error {
     case selfSentMessage
@@ -245,97 +272,113 @@ public class SMKDecryptResult: NSObject {
                                           localDeviceId: Int32,
                                           protocolContext: Any?) throws -> SMKDecryptResult {
 
-            guard timestamp > 0 else {
-                throw SMKError.assertionError(description: "\(logTag) invalid timestamp")
-            }
-
-            //        IdentityKeyPair ourIdentity    = signalProtocolStore.getIdentityKeyPair();
-            guard let ourIdentityKeyPair = identityStore.identityKeyPair(protocolContext) else {
-                throw SMKError.assertionError(description: "\(logTag) Missing our identity key pair.")
-            }
-
-            // UnidentifiedSenderMessage wrapper = new UnidentifiedSenderMessage(ciphertext);
-            let wrapper = try SMKUnidentifiedSenderMessage.parse(dataAndPrefix: cipherTextData)
-
-            // byte[] ephemeralSalt = ByteUtil.combine("UnidentifiedDelivery".getBytes(),
-            // ourIdentity.getPublicKey().getPublicKey().serialize(), wrapper.getEphemeral().serialize());
-            guard let prefixData = kUDPrefixString.data(using: String.Encoding.utf8) else {
-                throw SMKError.assertionError(description: "\(logTag) Could not encode prefix.")
-            }
-            let ephemeralSalt = NSData.join([
-                prefixData,
-                try ourIdentityKeyPair.ecPublicKey().serialized,
-                wrapper.ephemeralKey.serialized
-                ])
-
-            // EphemeralKeys ephemeralKeys = calculateEphemeralKeys(wrapper.getEphemeral(), ourIdentity.getPrivateKey(),
-            // ephemeralSalt);
-            let ephemeralKeys = try throwswrapped_calculateEphemeralKeys(ephemeralPublicKey: wrapper.ephemeralKey,
-                                                                      ephemeralPrivateKey: ourIdentityKeyPair.ecPrivateKey(),
-                                                                      salt: ephemeralSalt)
-
-            // byte[] staticKeyBytes = decrypt(ephemeralKeys.cipherKey, ephemeralKeys.macKey, wrapper.getEncryptedStatic());
-            let staticKeyBytes = try decrypt(cipherKey: ephemeralKeys.cipherKey,
-                                             macKey: ephemeralKeys.macKey,
-                                             cipherTextWithMac: wrapper.encryptedStatic)
-
-            // ECPublicKey staticKey = Curve.decodePoint(staticKeyBytes, 0);
-            let staticKey = try ECPublicKey(serializedKeyData: staticKeyBytes)
-
-            // byte[] staticSalt = ByteUtil.combine(ephemeralKeys.chainKey, wrapper.getEncryptedStatic());
-            let staticSalt = NSData.join([
-                ephemeralKeys.chainKey,
-                wrapper.encryptedStatic
-                ])
-
-            // StaticKeys staticKeys = calculateStaticKeys(staticKey, ourIdentity.getPrivateKey(), staticSalt);
-            let staticKeys = try throwswrapped_calculateStaticKeys(staticPublicKey: staticKey,
-                                                                staticPrivateKey: ourIdentityKeyPair.ecPrivateKey(),
-                                                                salt: staticSalt)
-
-            // byte[] messageBytes = decrypt(staticKeys.cipherKey, staticKeys.macKey, wrapper.getEncryptedMessage());
-            let messageBytes = try decrypt(cipherKey: staticKeys.cipherKey,
-                                           macKey: staticKeys.macKey,
-                                           cipherTextWithMac: wrapper.encryptedMessage)
-
-            // content = new UnidentifiedSenderMessageContent(messageBytes);
-            let messageContent = try SMKUnidentifiedSenderMessageContent.parse(data: messageBytes)
-
-            guard messageContent.senderCertificate.senderRecipientId != localRecipientId ||
-                  messageContent.senderCertificate.senderDeviceId != localDeviceId else {
+        guard timestamp > 0 else {
+            throw SMKError.assertionError(description: "\(logTag) invalid timestamp")
+        }
+
+        //        IdentityKeyPair ourIdentity    = signalProtocolStore.getIdentityKeyPair();
+        guard let ourIdentityKeyPair = identityStore.identityKeyPair(protocolContext) else {
+            throw SMKError.assertionError(description: "\(logTag) Missing our identity key pair.")
+        }
+
+        // UnidentifiedSenderMessage wrapper = new UnidentifiedSenderMessage(ciphertext);
+        let wrapper = try SMKUnidentifiedSenderMessage.parse(dataAndPrefix: cipherTextData)
+
+        // byte[] ephemeralSalt = ByteUtil.combine("UnidentifiedDelivery".getBytes(),
+        // ourIdentity.getPublicKey().getPublicKey().serialize(), wrapper.getEphemeral().serialize());
+        guard let prefixData = kUDPrefixString.data(using: String.Encoding.utf8) else {
+            throw SMKError.assertionError(description: "\(logTag) Could not encode prefix.")
+        }
+        let ephemeralSalt = NSData.join([
+            prefixData,
+            try ourIdentityKeyPair.ecPublicKey().serialized,
+            wrapper.ephemeralKey.serialized
+            ])
+
+        // EphemeralKeys ephemeralKeys = calculateEphemeralKeys(wrapper.getEphemeral(), ourIdentity.getPrivateKey(),
+        // ephemeralSalt);
+        let ephemeralKeys = try throwswrapped_calculateEphemeralKeys(ephemeralPublicKey: wrapper.ephemeralKey,
+                                                                     ephemeralPrivateKey: ourIdentityKeyPair.ecPrivateKey(),
+                                                                     salt: ephemeralSalt)
+
+        // byte[] staticKeyBytes = decrypt(ephemeralKeys.cipherKey, ephemeralKeys.macKey, wrapper.getEncryptedStatic());
+        let staticKeyBytes = try decrypt(cipherKey: ephemeralKeys.cipherKey,
+                                         macKey: ephemeralKeys.macKey,
+                                         cipherTextWithMac: wrapper.encryptedStatic)
+
+        // ECPublicKey staticKey = Curve.decodePoint(staticKeyBytes, 0);
+        let staticKey = try ECPublicKey(serializedKeyData: staticKeyBytes)
+
+        // byte[] staticSalt = ByteUtil.combine(ephemeralKeys.chainKey, wrapper.getEncryptedStatic());
+        let staticSalt = NSData.join([
+            ephemeralKeys.chainKey,
+            wrapper.encryptedStatic
+            ])
+
+        // StaticKeys staticKeys = calculateStaticKeys(staticKey, ourIdentity.getPrivateKey(), staticSalt);
+        let staticKeys = try throwswrapped_calculateStaticKeys(staticPublicKey: staticKey,
+                                                               staticPrivateKey: ourIdentityKeyPair.ecPrivateKey(),
+                                                               salt: staticSalt)
+
+        // byte[] messageBytes = decrypt(staticKeys.cipherKey, staticKeys.macKey, wrapper.getEncryptedMessage());
+        let messageBytes = try decrypt(cipherKey: staticKeys.cipherKey,
+                                       macKey: staticKeys.macKey,
+                                       cipherTextWithMac: wrapper.encryptedMessage)
+
+        // content = new UnidentifiedSenderMessageContent(messageBytes);
+        let messageContent = try SMKUnidentifiedSenderMessageContent.parse(data: messageBytes)
+
+        let senderRecipientId = messageContent.senderCertificate.senderRecipientId
+        let senderDeviceId = messageContent.senderCertificate.senderDeviceId
+
+        guard senderRecipientId != localRecipientId || senderDeviceId != localDeviceId else {
                 Logger.info("Discarding self-sent message")
                 throw SMKSecretSessionCipherError.selfSentMessage
-            }
+        }
+
+        // validator.validate(content.getSenderCertificate(), timestamp);
 
-            // validator.validate(content.getSenderCertificate(), timestamp);
+        let wrapAsKnownSenderError = { (underlyingError: Error) in
+            return SecretSessionKnownSenderError(senderRecipientId: senderRecipientId, senderDeviceId: senderDeviceId, underlyingError: underlyingError)
+        }
+
+        do {
             try certificateValidator.throwswrapped_validate(senderCertificate: messageContent.senderCertificate,
-                                                         validationTime: timestamp)
-
-            // if (!MessageDigest.isEqual(content.getSenderCertificate().getKey().serialize(), staticKeyBytes)) {
-            // throw new InvalidKeyException("Sender's certificate key does not match key used in message");
-            // }
-            //
-            // NOTE: Constant time comparison.
-            guard messageContent.senderCertificate.key.serialized.ows_constantTimeIsEqual(to: staticKeyBytes) else {
-                throw SMKError.assertionError(description: "\(logTag) Sender's certificate key does not match key used in message.")
-            }
-
-            let paddedMessagePlaintext = try throwswrapped_decrypt(messageContent: messageContent, protocolContext: protocolContext)
-
-            // return new Pair<>(new SignalProtocolAddress(content.getSenderCertificate().getSender(),
-            // content.getSenderCertificate().getSenderDeviceId()),
-            // decrypt(content));
-            //
-            // NOTE: We use the sender properties from the sender certificate, not from this class' properties.
-            let senderRecipientId = messageContent.senderCertificate.senderRecipientId
-            let senderDeviceId = messageContent.senderCertificate.senderDeviceId
-            guard senderDeviceId >= 0 && senderDeviceId <= INT_MAX else {
-                throw SMKError.assertionError(description: "\(logTag) Invalid senderDeviceId.")
-            }
-            return SMKDecryptResult(senderRecipientId: senderRecipientId,
-                                    senderDeviceId: Int(senderDeviceId),
-                                    paddedPayload: paddedMessagePlaintext,
-                                    messageType: messageContent.messageType)
+                                                            validationTime: timestamp)
+        } catch {
+            throw wrapAsKnownSenderError(error)
+        }
+
+        // if (!MessageDigest.isEqual(content.getSenderCertificate().getKey().serialize(), staticKeyBytes)) {
+        // throw new InvalidKeyException("Sender's certificate key does not match key used in message");
+        // }
+        //
+        // NOTE: Constant time comparison.
+        guard messageContent.senderCertificate.key.serialized.ows_constantTimeIsEqual(to: staticKeyBytes) else {
+            let underlyingError = SMKError.assertionError(description: "\(logTag) Sender's certificate key does not match key used in message.")
+            throw wrapAsKnownSenderError(underlyingError)
+        }
+
+        let paddedMessagePlaintext: Data
+        do {
+             paddedMessagePlaintext = try throwswrapped_decrypt(messageContent: messageContent, protocolContext: protocolContext)
+        } catch {
+            throw wrapAsKnownSenderError(error)
+        }
+
+        // return new Pair<>(new SignalProtocolAddress(content.getSenderCertificate().getSender(),
+        // content.getSenderCertificate().getSenderDeviceId()),
+        // decrypt(content));
+        //
+        // NOTE: We use the sender properties from the sender certificate, not from this class' properties.
+        guard senderDeviceId >= 0 && senderDeviceId <= INT_MAX else {
+            let underlyingError = SMKError.assertionError(description: "\(logTag) Invalid senderDeviceId.")
+            throw wrapAsKnownSenderError(underlyingError)
+        }
+        return SMKDecryptResult(senderRecipientId: senderRecipientId,
+                                senderDeviceId: Int(senderDeviceId),
+                                paddedPayload: paddedMessagePlaintext,
+                                messageType: messageContent.messageType)
     }
 
     // MARK: - Encrypt