Compare commits
1 commit
main
...
expect_pro
Author | SHA1 | Date | |
---|---|---|---|
|
c506c85f8a |
9 changed files with 159 additions and 596 deletions
|
@ -1,49 +0,0 @@
|
|||
---
|
||||
|
||||
stages:
|
||||
- lint
|
||||
|
||||
.python-3.9:
|
||||
image: python:3.9
|
||||
|
||||
.python-3.10:
|
||||
image: python:3.10
|
||||
|
||||
.pylint:
|
||||
stage: lint
|
||||
script:
|
||||
- apt update && apt install -y libidn11-dev build-essential cmake
|
||||
- pip3 install pylint pyasn1-modules cffi --upgrade
|
||||
- pip3 install -e git+https://github.com/syndace/python-omemo#egg=omemo
|
||||
- pip3 install -e git+https://github.com/syndace/python-omemo-backend-signal#egg=omemo-backend-signal
|
||||
- pip3 install -e git+https://lab.louiz.org/poezio/slixmpp.git#egg=slixmpp
|
||||
- python3 setup.py install
|
||||
- pylint -E slixmpp_omemo
|
||||
allow_failure: true
|
||||
|
||||
.mypy:
|
||||
stage: lint
|
||||
script:
|
||||
- pip3 install mypy
|
||||
- mypyc --ignore-missing-imports ./slixmpp_omemo
|
||||
allow_failure: true
|
||||
|
||||
lint-3.9-pylint:
|
||||
extends:
|
||||
- .python-3.9
|
||||
- .pylint
|
||||
|
||||
lint-3.9-mypy:
|
||||
extends:
|
||||
- .python-3.9
|
||||
- .mypy
|
||||
|
||||
lint-3.10-pylint:
|
||||
extends:
|
||||
- .python-3.10
|
||||
- .pylint
|
||||
|
||||
lint-3.10-mypy:
|
||||
extends:
|
||||
- .python-3.10
|
||||
- .mypy
|
65
ChangeLog
65
ChangeLog
|
@ -1,65 +0,0 @@
|
|||
Version 0.9.0:
|
||||
2022-10-19 Maxime “pep” Buquet <pep@bouah.net>
|
||||
* Added:
|
||||
- Coroutines in asyncio.wait is now deprecated. Added create_task calls
|
||||
- Replaced all ensure_future calls by create_task
|
||||
Version 0.8.0:
|
||||
2022-08-23 Maxime “pep” Buquet <pep@bouah.net>
|
||||
* Breaking:
|
||||
- get_devices and get_active_devices now return Iterable[int] instead of Iterable[str]
|
||||
* Changes:
|
||||
- fetch_bundle and fetch_device methods are now public
|
||||
- my_fingerprint doesn't traceback anymore on normal operation
|
||||
* Added:
|
||||
- New fetch_bundles method to fetch all bundles at once
|
||||
- Add upper bound on OMEMO lib version requirements as it'll become significant
|
||||
Version 0.7.0:
|
||||
2022-04-03 Maxime “pep” Buquet <pep@bouah.net>
|
||||
* Breaking:
|
||||
- Removed get_device_list method in favor of newly added get_devices and
|
||||
get_active_devices methods.
|
||||
- Renamed make_heartbeat to send_heartbeat and make it send the message as
|
||||
well.
|
||||
* Improvements:
|
||||
- Added py.typed to the repository for static type checking tools
|
||||
- New delete_session method
|
||||
Version 0.6.1:
|
||||
2022-03-14 Maxime “pep” Buquet <pep@bouah.net>
|
||||
* Improvements:
|
||||
- Add minimal version requirements in requirements.txt and setup.py
|
||||
Version 0.6.0:
|
||||
2022-03-12 Maxime “pep” Buquet <pep@bouah.net>
|
||||
* Improvements:
|
||||
- Ensure device list is published even if we're already connected (#10)
|
||||
- Ensure bundles are republished on decrypt
|
||||
* Added:
|
||||
- Heartbeat messages. Signal to other devices we're still active after
|
||||
some amount of messages. Stop raising exceptions when there is no payload.
|
||||
- Ensure heartbeats are stored in the archive.
|
||||
- Commands to echo_bot. (verbose, error)
|
||||
Version 0.5.0:
|
||||
2021-07-12 Maxime “pep” Buquet <pep@bouah.net>
|
||||
* Added:
|
||||
- New my_fingerprint method
|
||||
* Breaking:
|
||||
- Raise exception when no data dir is specified instead of simply logging
|
||||
- Removed colons from output format of fp_from_ik helper
|
||||
- Raise exception when payload is not of the form we expect (missing
|
||||
payload, key, or iv element)
|
||||
Version 0.4.0:
|
||||
2020-03-10 Maxime “pep” Buquet <pep@bouah.net>
|
||||
* Improvements:
|
||||
- Add more fine errors during plugin setup.
|
||||
- Ensure variable is available when publish-options is not available. (!5)
|
||||
- Don't just catch precondition-not-met, ensure the node is being
|
||||
configured and published. Add logging.
|
||||
Version 0.3.0:
|
||||
2019-12-29 Maxime “pep” Buquet <pep@bouah.net>
|
||||
* Breaking:
|
||||
- Require lib omemo 0.11
|
||||
* Improvements:
|
||||
- Ensure correct types are passed to the omemo lib via expect_problems. (!3)
|
||||
- Implement fallback on precondition-not-met when publishing devicelist (!2)
|
||||
and bundle
|
||||
* Changes:
|
||||
- Support only from Python 3.7
|
24
README.rst
24
README.rst
|
@ -8,6 +8,17 @@ License
|
|||
|
||||
This plugin is licensed under GPLv3.
|
||||
|
||||
The python-omemo library being used is a reimplementation of libsignal
|
||||
in python and plans to stay away from the GPL license as possible. For
|
||||
the moment, the OMEMO library has to reuse parts of the original
|
||||
libsignal implementation, (the wireformat), which makes it GPL. Efforts
|
||||
are being made in order to not have to reuse these libsignal bits, and
|
||||
move to a more permissive license.
|
||||
|
||||
As long as this is not the case, this plugin will stay GPLv3 as well,
|
||||
and it will not be possible to merge it without changing Slixmpp's
|
||||
license itself.
|
||||
|
||||
Note on the underlying OMEMO library
|
||||
------------------------------------
|
||||
|
||||
|
@ -27,19 +38,6 @@ Installation
|
|||
- PIP: `slixmpp-omemo`
|
||||
- Manual: `python3 setup.py install`
|
||||
|
||||
Examples
|
||||
--------
|
||||
|
||||
The repository contains an example bot that contains many comments, and
|
||||
can be used to test against other setups. To use it:
|
||||
|
||||
```
|
||||
python examples/echo_bot.py --debug -j foo@bar -p passwd --data-dir /foo/bar
|
||||
```
|
||||
|
||||
It also contains commands. Feel free to open merge requests or issues to
|
||||
add new useful ones.
|
||||
|
||||
Credits
|
||||
-------
|
||||
|
||||
|
|
|
@ -11,8 +11,8 @@
|
|||
"""
|
||||
|
||||
import os
|
||||
import re
|
||||
import sys
|
||||
import asyncio
|
||||
import logging
|
||||
from getpass import getpass
|
||||
from argparse import ArgumentParser
|
||||
|
@ -20,8 +20,6 @@ from argparse import ArgumentParser
|
|||
from slixmpp import ClientXMPP, JID
|
||||
from slixmpp.exceptions import IqTimeout, IqError
|
||||
from slixmpp.stanza import Message
|
||||
from slixmpp.xmlstream.handler import CoroutineCallback
|
||||
from slixmpp.xmlstream.matcher import MatchXPath
|
||||
import slixmpp_omemo
|
||||
from slixmpp_omemo import PluginCouldNotLoad, MissingOwnKey, EncryptionPrepareException
|
||||
from slixmpp_omemo import UndecidedException, UntrustedException, NoAvailableSession
|
||||
|
@ -29,10 +27,6 @@ from omemo.exceptions import MissingBundleException
|
|||
|
||||
log = logging.getLogger(__name__)
|
||||
|
||||
# Used by the EchoBot
|
||||
LEVEL_DEBUG = 0
|
||||
LEVEL_ERROR = 1
|
||||
|
||||
|
||||
class EchoBot(ClientXMPP):
|
||||
|
||||
|
@ -45,20 +39,12 @@ class EchoBot(ClientXMPP):
|
|||
"""
|
||||
|
||||
eme_ns = 'eu.siacs.conversations.axolotl'
|
||||
cmd_prefix = '!'
|
||||
debug_level: int = LEVEL_DEBUG # or LEVEL_ERROR
|
||||
|
||||
def __init__(self, jid, password):
|
||||
ClientXMPP.__init__(self, jid, password)
|
||||
|
||||
self.prefix_re: re.Pattern = re.compile('^%s' % self.cmd_prefix)
|
||||
self.cmd_re: re.Pattern = re.compile('^%s(?P<command>\w+)(?:\s+(?P<args>.*))?' % self.cmd_prefix)
|
||||
|
||||
self.add_event_handler("session_start", self.start)
|
||||
self.register_handler(CoroutineCallback('Messages',
|
||||
MatchXPath(f'{{{self.default_ns}}}message'),
|
||||
self.message_handler,
|
||||
))
|
||||
self.add_event_handler("message", self.message_handler)
|
||||
|
||||
def start(self, _event) -> None:
|
||||
"""
|
||||
|
@ -76,47 +62,10 @@ class EchoBot(ClientXMPP):
|
|||
self.send_presence()
|
||||
self.get_roster()
|
||||
|
||||
def is_command(self, body: str) -> bool:
|
||||
return self.prefix_re.match(body) is not None
|
||||
def message_handler(self, msg: Message) -> None:
|
||||
asyncio.ensure_future(self.message(msg))
|
||||
|
||||
async def handle_command(self, mto: JID, mtype: str, body: str) -> None:
|
||||
match = self.cmd_re.match(body)
|
||||
if match is None:
|
||||
return None
|
||||
|
||||
groups = match.groupdict()
|
||||
cmd = groups['command']
|
||||
# args = groups['args']
|
||||
|
||||
if cmd == 'help':
|
||||
await self.cmd_help(mto, mtype)
|
||||
elif cmd == 'verbose':
|
||||
await self.cmd_verbose(mto, mtype)
|
||||
elif cmd == 'error':
|
||||
await self.cmd_error(mto, mtype)
|
||||
|
||||
return None
|
||||
|
||||
async def cmd_help(self, mto: JID, mtype: str) -> None:
|
||||
body = (
|
||||
'I\'m the slixmpp-omemo echo bot! '
|
||||
'The following commands are available:\n'
|
||||
f'{self.cmd_prefix}verbose Send message or reply with log messages\n'
|
||||
f'{self.cmd_prefix}error Send message or reply only on error\n'
|
||||
)
|
||||
return await self.encrypted_reply(mto, mtype, body)
|
||||
|
||||
async def cmd_verbose(self, mto: JID, mtype: str) -> None:
|
||||
self.debug_level = LEVEL_DEBUG
|
||||
body = '''Debug level set to 'verbose'.'''
|
||||
return await self.encrypted_reply(mto, mtype, body)
|
||||
|
||||
async def cmd_error(self, mto: JID, mtype: str) -> None:
|
||||
self.debug_level = LEVEL_ERROR
|
||||
body = '''Debug level set to 'error'.'''
|
||||
return await self.encrypted_reply(mto, mtype, body)
|
||||
|
||||
async def message_handler(self, msg: Message, allow_untrusted: bool = False) -> None:
|
||||
async def message(self, msg: Message, allow_untrusted: bool = False) -> None:
|
||||
"""
|
||||
Process incoming message stanzas. Be aware that this also
|
||||
includes MUC messages and error messages. It is usually
|
||||
|
@ -128,36 +77,28 @@ class EchoBot(ClientXMPP):
|
|||
for stanza objects and the Message stanza to see
|
||||
how it may be used.
|
||||
"""
|
||||
mfrom = mto = msg['from']
|
||||
mtype = msg['type']
|
||||
|
||||
if mtype not in ('chat', 'normal'):
|
||||
if msg['type'] not in ('chat', 'normal'):
|
||||
return None
|
||||
|
||||
if not self['xep_0384'].is_encrypted(msg):
|
||||
if self.debug_level == LEVEL_DEBUG:
|
||||
await self.plain_reply(mto, mtype, f"Echo unencrypted message: {msg['body']}")
|
||||
await self.plain_reply(msg, 'This message was not encrypted.\n%(body)s' % msg)
|
||||
return None
|
||||
|
||||
try:
|
||||
mfrom = msg['from']
|
||||
encrypted = msg['omemo_encrypted']
|
||||
body = await self['xep_0384'].decrypt_message(encrypted, mfrom, allow_untrusted)
|
||||
# decrypt_message returns Optional[str]. It is possible to get
|
||||
# body-less OMEMO message (see KeyTransportMessages), currently
|
||||
# used for example to send heartbeats to other devices.
|
||||
if body is not None:
|
||||
decoded = body.decode('utf8')
|
||||
if self.is_command(decoded):
|
||||
await self.handle_command(mto, mtype, decoded)
|
||||
elif self.debug_level == LEVEL_DEBUG:
|
||||
await self.encrypted_reply(mto, mtype, f'Echo: {decoded}')
|
||||
body = self['xep_0384'].decrypt_message(encrypted, mfrom, allow_untrusted)
|
||||
await self.encrypted_reply(msg, 'Thanks for sending\n%s' % body.decode("utf8"))
|
||||
return None
|
||||
except (MissingOwnKey,):
|
||||
# The message is missing our own key, it was not encrypted for
|
||||
# us, and we can't decrypt it.
|
||||
await self.plain_reply(
|
||||
mto, mtype,
|
||||
'Error: Message not encrypted for me.',
|
||||
msg,
|
||||
'I can\'t decrypt this message as it is not encrypted for me.',
|
||||
)
|
||||
return None
|
||||
except (NoAvailableSession,) as exn:
|
||||
# We received a message from that contained a session that we
|
||||
# don't know about (deleted session storage, etc.). We can't
|
||||
|
@ -166,10 +107,11 @@ class EchoBot(ClientXMPP):
|
|||
# best if we send an encrypted message directly. XXX: Is it
|
||||
# where we talk about self-healing messages?
|
||||
await self.encrypted_reply(
|
||||
mto, mtype,
|
||||
'Error: Message uses an encrypted '
|
||||
msg,
|
||||
'I can\'t decrypt this message as it uses an encrypted '
|
||||
'session I don\'t know about.',
|
||||
)
|
||||
return None
|
||||
except (UndecidedException, UntrustedException) as exn:
|
||||
# We received a message from an untrusted device. We can
|
||||
# choose to decrypt the message nonetheless, with the
|
||||
|
@ -180,34 +122,40 @@ class EchoBot(ClientXMPP):
|
|||
# trusted, or in undecided state, if they decide to decrypt it
|
||||
# anyway.
|
||||
await self.plain_reply(
|
||||
mto, mtype,
|
||||
f"Error: Your device '{exn.device}' is not in my trusted devices.",
|
||||
msg,
|
||||
"Your device '%s' is not in my trusted devices." % exn.device,
|
||||
)
|
||||
# We resend, setting the `allow_untrusted` parameter to True.
|
||||
await self.message_handler(msg, allow_untrusted=True)
|
||||
await self.message(msg, allow_untrusted=True)
|
||||
return None
|
||||
except (EncryptionPrepareException,):
|
||||
# Slixmpp tried its best, but there were errors it couldn't
|
||||
# resolve. At this point you should have seen other exceptions
|
||||
# and given a chance to resolve them already.
|
||||
await self.plain_reply(mto, mtype, 'Error: I was not able to decrypt the message.')
|
||||
await self.plain_reply(msg, 'I was not able to decrypt the message.')
|
||||
return None
|
||||
except (Exception,) as exn:
|
||||
await self.plain_reply(mto, mtype, 'Error: Exception occured while attempting decryption.\n%r' % exn)
|
||||
await self.plain_reply(msg, 'An error occured while attempting decryption.\n%r' % exn)
|
||||
raise
|
||||
|
||||
return None
|
||||
|
||||
async def plain_reply(self, mto: JID, mtype: str, body):
|
||||
async def plain_reply(self, original_msg, body):
|
||||
"""
|
||||
Helper to reply to messages
|
||||
"""
|
||||
|
||||
mto = original_msg['from']
|
||||
mtype = original_msg['type']
|
||||
msg = self.make_message(mto=mto, mtype=mtype)
|
||||
msg['body'] = body
|
||||
return msg.send()
|
||||
|
||||
async def encrypted_reply(self, mto: JID, mtype: str, body):
|
||||
async def encrypted_reply(self, original_msg, body):
|
||||
"""Helper to reply with encrypted messages"""
|
||||
|
||||
mto = original_msg['from']
|
||||
mtype = original_msg['type']
|
||||
msg = self.make_message(mto=mto, mtype=mtype)
|
||||
msg['eme']['namespace'] = self.eme_ns
|
||||
msg['eme']['name'] = self['xep_0380'].mechanisms[self.eme_ns]
|
||||
|
@ -235,7 +183,7 @@ class EchoBot(ClientXMPP):
|
|||
# untrusted/undecided barejid, so we need to make a decision here.
|
||||
# This is where you prompt your user to ask what to do. In
|
||||
# this bot we will automatically trust undecided recipients.
|
||||
await self['xep_0384'].trust(exn.bare_jid, exn.device, exn.ik)
|
||||
self['xep_0384'].trust(exn.bare_jid, exn.device, exn.ik)
|
||||
# TODO: catch NoEligibleDevicesException
|
||||
except EncryptionPrepareException as exn:
|
||||
# This exception is being raised when the library has tried
|
||||
|
@ -253,22 +201,22 @@ class EchoBot(ClientXMPP):
|
|||
# generic message. The receiving end-user at this
|
||||
# point can bring up the issue if it happens.
|
||||
self.plain_reply(
|
||||
mto, mtype,
|
||||
f'Could not find keys for device "{error.device}"'
|
||||
f' of recipient "{error.bare_jid}". Skipping.',
|
||||
original_msg,
|
||||
'Could not find keys for device "%d" of recipient "%s". Skipping.' %
|
||||
(error.device, error.bare_jid),
|
||||
)
|
||||
jid = JID(error.bare_jid)
|
||||
device_list = expect_problems.setdefault(jid, [])
|
||||
device_list.append(error.device)
|
||||
except (IqError, IqTimeout) as exn:
|
||||
self.plain_reply(
|
||||
mto, mtype,
|
||||
original_msg,
|
||||
'An error occured while fetching information on a recipient.\n%r' % exn,
|
||||
)
|
||||
return None
|
||||
except Exception as exn:
|
||||
await self.plain_reply(
|
||||
mto, mtype,
|
||||
original_msg,
|
||||
'An error occured while attempting to encrypt.\n%r' % exn,
|
||||
)
|
||||
raise
|
||||
|
|
|
@ -1,3 +1,3 @@
|
|||
slixmpp>=1.8.0
|
||||
omemo-backend-signal>=0.3.0
|
||||
omemo>=0.14.0,<0.15
|
||||
slixmpp
|
||||
omemo
|
||||
omemo-backend-signal
|
||||
|
|
13
setup.py
13
setup.py
|
@ -40,9 +40,9 @@ CLASSIFIERS = [
|
|||
'Intended Audience :: Developers',
|
||||
'License :: OSI Approved :: GNU General Public License v3 (GPLv3)',
|
||||
'Programming Language :: Python',
|
||||
'Programming Language :: Python :: 3.9',
|
||||
'Programming Language :: Python :: 3.10',
|
||||
'Programming Language :: Python :: 3.11',
|
||||
'Programming Language :: Python :: 3.5',
|
||||
'Programming Language :: Python :: 3.6',
|
||||
'Programming Language :: Python :: 3.7',
|
||||
'Topic :: Internet :: XMPP',
|
||||
'Topic :: Security :: Cryptography',
|
||||
'Topic :: Software Development :: Libraries :: Python Modules',
|
||||
|
@ -59,12 +59,7 @@ setup(
|
|||
url='https://lab.louiz.org/poezio/slixmpp-omemo',
|
||||
license='GPLv3',
|
||||
platforms=['any'],
|
||||
package_data={'slixmpp_omemo': ['py.typed']},
|
||||
packages=['slixmpp_omemo'],
|
||||
install_requires=[
|
||||
'slixmpp>=1.8.0',
|
||||
'omemo-backend-signal>=0.3.0',
|
||||
'omemo>=0.14.0,<0.15',
|
||||
],
|
||||
install_requires=['slixmpp', 'omemo', 'omemo-backend-signal'],
|
||||
classifiers=CLASSIFIERS,
|
||||
)
|
||||
|
|
|
@ -11,18 +11,13 @@
|
|||
|
||||
import logging
|
||||
|
||||
from typing import Any, Dict, Iterable, List, Optional, Set, Tuple, Union
|
||||
from typing import Any, Dict, List, Optional, Set, Tuple, Union
|
||||
|
||||
import os
|
||||
import json
|
||||
import base64
|
||||
import codecs
|
||||
import asyncio
|
||||
from functools import reduce
|
||||
|
||||
# Not available in Python 3.7, and slixmpp already imports the right things
|
||||
# for me
|
||||
from slixmpp.types import TypedDict
|
||||
|
||||
from slixmpp.plugins.xep_0060.stanza import Items, EventItems
|
||||
from slixmpp.plugins.xep_0004 import Form
|
||||
from slixmpp.plugins.base import BasePlugin, register_plugin
|
||||
|
@ -37,17 +32,14 @@ from .stanza import Bundle, Devices, Device, Encrypted, Key, PreKeyPublic
|
|||
|
||||
log = logging.getLogger(__name__)
|
||||
|
||||
HAS_OMEMO = False
|
||||
HAS_OMEMO_BACKEND = False
|
||||
HAS_OMEMO = True
|
||||
try:
|
||||
import omemo.exceptions
|
||||
from omemo import SessionManager, ExtendedPublicBundle, DefaultOTPKPolicy
|
||||
from omemo.util import generateDeviceID
|
||||
from omemo.implementations import JSONFileStorage
|
||||
from omemo.backends import Backend
|
||||
HAS_OMEMO = True
|
||||
from omemo_backend_signal import BACKEND as SignalBackend
|
||||
HAS_OMEMO_BACKEND = True
|
||||
except (ImportError,):
|
||||
class Backend:
|
||||
pass
|
||||
|
@ -58,6 +50,8 @@ except (ImportError,):
|
|||
class SignalBackend:
|
||||
pass
|
||||
|
||||
HAS_OMEMO = False
|
||||
|
||||
TRUE_VALUES = {True, 'true', '1'}
|
||||
PUBLISH_OPTIONS_NODE = 'http://jabber.org/protocol/pubsub#publish-options'
|
||||
PUBSUB_ERRORS = 'http://jabber.org/protocol/pubsub#errors'
|
||||
|
@ -88,7 +82,7 @@ def _load_device_id(data_dir: str) -> int:
|
|||
|
||||
def fp_from_ik(identity_key: bytes) -> str:
|
||||
"""Convert identityKey to a string representation (fingerprint)"""
|
||||
return "".join("{:02x}".format(octet) for octet in identity_key)
|
||||
return codecs.getencoder("hex")(identity_key)[0].decode("US-ASCII").upper()
|
||||
|
||||
|
||||
def _parse_bundle(backend: Backend, bundle: Bundle) -> ExtendedPublicBundle:
|
||||
|
@ -114,10 +108,9 @@ def _generate_encrypted_payload(encrypted) -> Encrypted:
|
|||
|
||||
tag['header']['sid'] = str(encrypted['sid'])
|
||||
tag['header']['iv']['value'] = b64enc(encrypted['iv'])
|
||||
if 'payload' in encrypted:
|
||||
tag['payload']['value'] = b64enc(encrypted['payload'])
|
||||
tag['payload']['value'] = b64enc(encrypted['payload'])
|
||||
|
||||
for devices in encrypted['keys'].values():
|
||||
for bare_jid, devices in encrypted['keys'].items():
|
||||
for rid, device in devices.items():
|
||||
key = Key()
|
||||
key['value'] = b64enc(device['data'])
|
||||
|
@ -158,9 +151,6 @@ class MissingOwnKey(XEP0384): pass
|
|||
class NoAvailableSession(XEP0384): pass
|
||||
|
||||
|
||||
class UninitializedOMEMOSession(XEP0384): pass
|
||||
|
||||
|
||||
class EncryptionPrepareException(XEP0384):
|
||||
def __init__(self, errors):
|
||||
self.errors = errors
|
||||
|
@ -180,15 +170,6 @@ class UndecidedException(XEP0384):
|
|||
self.ik = ik
|
||||
|
||||
|
||||
class ErroneousPayload(XEP0384):
|
||||
"""To be raised when the payload is not of the form we expect"""
|
||||
|
||||
|
||||
class ErroneousParameter(XEP0384):
|
||||
"""To be raised when parameters to the `encrypt_message` method aren't
|
||||
used as expected."""
|
||||
|
||||
|
||||
class XEP_0384(BasePlugin):
|
||||
|
||||
"""
|
||||
|
@ -197,55 +178,54 @@ class XEP_0384(BasePlugin):
|
|||
|
||||
name = 'xep_0384'
|
||||
description = 'XEP-0384 OMEMO'
|
||||
dependencies = {'xep_0004', 'xep_0030', 'xep_0060', 'xep_0163', 'xep_0334'}
|
||||
dependencies = {'xep_0004', 'xep_0060', 'xep_0163'}
|
||||
default_config = {
|
||||
'data_dir': None,
|
||||
'storage_backend': None,
|
||||
'otpk_policy': DefaultOTPKPolicy,
|
||||
'omemo_backend': SignalBackend,
|
||||
'auto_heartbeat': True,
|
||||
'heartbeat_after': 53,
|
||||
# TODO: 'drop_inactive_after': 300,
|
||||
}
|
||||
|
||||
backend_loaded = HAS_OMEMO and HAS_OMEMO_BACKEND
|
||||
backend_loaded = HAS_OMEMO
|
||||
|
||||
# OMEMO Bundles used for encryption
|
||||
bundles = {} # type: Dict[str, Dict[int, ExtendedPublicBundle]]
|
||||
|
||||
# Used at startup to prevent publishing device list and bundles multiple times
|
||||
_initial_publish_done = False
|
||||
|
||||
# Initiated once the OMEMO session is created.
|
||||
__omemo_session: Optional[SessionManager] = None
|
||||
|
||||
def plugin_init(self) -> None:
|
||||
if not self.backend_loaded:
|
||||
log_str = ("xep_0384 cannot be loaded as the backend omemo library "
|
||||
"is not available. ")
|
||||
if not HAS_OMEMO_BACKEND:
|
||||
log_str += ("Make sure you have a python OMEMO backend "
|
||||
"(python-omemo-backend-signal) installed")
|
||||
else:
|
||||
log_str += "Make sure you have the python OMEMO library installed."
|
||||
log.error(log_str)
|
||||
log.info("xep_0384 cannot be loaded as the backend omemo library "
|
||||
"is not available")
|
||||
raise PluginCouldNotLoad
|
||||
|
||||
if not self.data_dir:
|
||||
raise PluginCouldNotLoad("xep_0384 cannot be loaded as there is "
|
||||
"no data directory specified.")
|
||||
log.info("xep_0384 cannot be loaded as there is not data directory "
|
||||
"specified")
|
||||
return None
|
||||
|
||||
storage = self.storage_backend
|
||||
if self.storage_backend is None:
|
||||
storage = JSONFileStorage(self.data_dir)
|
||||
|
||||
otpkpolicy = self.otpk_policy
|
||||
bare_jid = self.xmpp.boundjid.bare
|
||||
self._device_id = _load_device_id(self.data_dir)
|
||||
asyncio.create_task(self.session_start_omemo())
|
||||
|
||||
try:
|
||||
self._omemo = SessionManager.create(
|
||||
storage,
|
||||
otpkpolicy,
|
||||
self.omemo_backend,
|
||||
bare_jid,
|
||||
self._device_id,
|
||||
)
|
||||
except:
|
||||
log.error("Couldn't load the OMEMO object; ¯\\_(ツ)_/¯")
|
||||
raise PluginCouldNotLoad
|
||||
|
||||
self.xmpp.add_event_handler('session_start', self.session_start)
|
||||
self.xmpp['xep_0060'].map_node_event(OMEMO_DEVICES_NS, 'omemo_device_list')
|
||||
self.xmpp.add_event_handler('omemo_device_list_publish', self._receive_device_list)
|
||||
|
||||
# If this plugin is loaded after 'session_start' has fired, we still
|
||||
# need to publish bundles
|
||||
if self.xmpp.is_connected and not self._initial_publish_done:
|
||||
asyncio.create_task(self._initial_publish())
|
||||
return None
|
||||
|
||||
def plugin_end(self):
|
||||
if not self.backend_loaded:
|
||||
|
@ -255,53 +235,17 @@ class XEP_0384(BasePlugin):
|
|||
self.xmpp.remove_event_handler('omemo_device_list_publish', self._receive_device_list)
|
||||
self.xmpp['xep_0163'].remove_interest(OMEMO_DEVICES_NS)
|
||||
|
||||
async def session_start_omemo(self):
|
||||
"""Creates the OMEMO session object"""
|
||||
|
||||
storage = self.storage_backend
|
||||
if self.storage_backend is None:
|
||||
storage = JSONFileStorage(self.data_dir)
|
||||
|
||||
otpkpolicy = self.otpk_policy
|
||||
bare_jid = self.xmpp.boundjid.bare
|
||||
|
||||
try:
|
||||
self.__omemo_session = await SessionManager.create(
|
||||
storage,
|
||||
otpkpolicy,
|
||||
self.omemo_backend,
|
||||
bare_jid,
|
||||
self._device_id,
|
||||
)
|
||||
except Exception as exn:
|
||||
log.error("Couldn't load the OMEMO object; ¯\\_(ツ)_/¯")
|
||||
raise PluginCouldNotLoad from exn
|
||||
|
||||
def _omemo(self) -> SessionManager:
|
||||
"""Helper method to unguard potentially uninitialized SessionManager"""
|
||||
if self.__omemo_session is None:
|
||||
raise UninitializedOMEMOSession
|
||||
return self.__omemo_session
|
||||
|
||||
async def session_start(self, _jid):
|
||||
await self._initial_publish()
|
||||
|
||||
async def _initial_publish(self):
|
||||
if self.backend_loaded:
|
||||
self.xmpp['xep_0163'].add_interest(OMEMO_DEVICES_NS)
|
||||
await asyncio.wait([
|
||||
asyncio.create_task(self._set_device_list()),
|
||||
asyncio.create_task(self._publish_bundle()),
|
||||
self._set_device_list(),
|
||||
self._publish_bundle(),
|
||||
])
|
||||
self._initial_publish_done = True
|
||||
|
||||
def my_device_id(self) -> int:
|
||||
return self._device_id
|
||||
|
||||
async def my_fingerprint(self) -> str:
|
||||
bundle = self._omemo().public_bundle.serialize(self.omemo_backend)
|
||||
return fp_from_ik(bundle['ik'])
|
||||
|
||||
def _set_node_config(
|
||||
self,
|
||||
node: str,
|
||||
|
@ -348,11 +292,11 @@ class XEP_0384(BasePlugin):
|
|||
form,
|
||||
)
|
||||
|
||||
async def _generate_bundle_iq(self, publish_options: bool = True) -> Iq:
|
||||
bundle = self._omemo().public_bundle.serialize(self.omemo_backend)
|
||||
async def _generate_bundle_iq(self) -> Iq:
|
||||
bundle = self._omemo.public_bundle.serialize(self.omemo_backend)
|
||||
|
||||
jid = self.xmpp.boundjid
|
||||
disco = await self.xmpp['xep_0030'].get_info(jid=jid.bare, local=False)
|
||||
disco = await self.xmpp['xep_0030'].get_info(jid.bare)
|
||||
publish_options = PUBLISH_OPTIONS_NODE in disco['disco_info'].get_features()
|
||||
|
||||
iq = self.xmpp.Iq(stype='set')
|
||||
|
@ -377,7 +321,7 @@ class XEP_0384(BasePlugin):
|
|||
prekeys.append(prekey)
|
||||
payload['prekeys'] = prekeys
|
||||
|
||||
if publish_options and publish_options:
|
||||
if publish_options:
|
||||
options = _make_publish_options_form({
|
||||
'pubsub#persist_items': True,
|
||||
'pubsub#access_model': 'open',
|
||||
|
@ -387,17 +331,15 @@ class XEP_0384(BasePlugin):
|
|||
return iq
|
||||
|
||||
async def _publish_bundle(self) -> None:
|
||||
log.debug('Publishing our own bundle. Do we need to?')
|
||||
if self._omemo().republish_bundle:
|
||||
log.debug('Publishing.')
|
||||
if self._omemo.republish_bundle:
|
||||
iq = await self._generate_bundle_iq()
|
||||
try:
|
||||
await iq.send()
|
||||
except IqError as exn:
|
||||
except IqError as e:
|
||||
# TODO: Slixmpp should handle pubsub#errors so we don't have to
|
||||
# fish the element ourselves
|
||||
precondition = exn.iq['error'].xml.find(
|
||||
f'{{{PUBSUB_ERRORS}}}precondition-not-met'
|
||||
precondition = e.iq['error'].xml.find(
|
||||
'{%s}%s' % (PUBSUB_ERRORS, 'precondition-not-met'),
|
||||
)
|
||||
if precondition is not None:
|
||||
log.debug('The node we tried to publish was already '
|
||||
|
@ -405,78 +347,42 @@ class XEP_0384(BasePlugin):
|
|||
'Trying to configure manually..')
|
||||
# TODO: We should attempt setting this node to the same
|
||||
# access_model as the devicelist node for completness.
|
||||
try:
|
||||
await self._set_node_config(OMEMO_BUNDLES_NS)
|
||||
except IqError:
|
||||
log.debug('Failed to set node to persistent after precondition-not-met')
|
||||
raise
|
||||
iq = await self._generate_bundle_iq(publish_options=False)
|
||||
await iq.send()
|
||||
else:
|
||||
log.debug('Not publishing.')
|
||||
await self._set_node_config(OMEMO_BUNDLES_NS)
|
||||
|
||||
async def fetch_bundle(self, jid: JID, device_id: int) -> None:
|
||||
"""
|
||||
Fetch bundle for specified jid / device_id pair.
|
||||
"""
|
||||
log.debug('Fetching bundle for JID: %r, device: %r', jid, device_id)
|
||||
node = f'{OMEMO_BUNDLES_NS}:{device_id}'
|
||||
async def _fetch_bundle(self, jid: str, device_id: int) -> Optional[ExtendedPublicBundle]:
|
||||
node = '%s:%d' % (OMEMO_BUNDLES_NS, device_id)
|
||||
try:
|
||||
iq = await self.xmpp['xep_0060'].get_items(jid, node)
|
||||
except (IqError, IqTimeout):
|
||||
return None
|
||||
bundle = iq['pubsub']['items']['item']['bundle']
|
||||
|
||||
bundle = _parse_bundle(self.omemo_backend, bundle)
|
||||
if bundle is not None:
|
||||
log.debug('Encryption: Bundle %r found!', device_id)
|
||||
devices = self.bundles.setdefault(jid.bare, {})
|
||||
devices[device_id] = bundle
|
||||
else:
|
||||
log.debug('Encryption: Bundle %r not found!', device_id)
|
||||
return _parse_bundle(self.omemo_backend, bundle)
|
||||
|
||||
async def fetch_bundles(self, jid: JID) -> None:
|
||||
"""
|
||||
Fetch bundles of active devices for specified JID.
|
||||
|
||||
This is a helper function to allow the user to request a store
|
||||
update. Failed bundles are not retried.
|
||||
"""
|
||||
# Ignore failures
|
||||
await asyncio.gather(
|
||||
*map(
|
||||
lambda did: self.fetch_bundle(jid, did),
|
||||
await self.get_active_devices(jid)
|
||||
),
|
||||
return_exceptions=True,
|
||||
)
|
||||
|
||||
async def fetch_devices(self, jid: JID) -> None:
|
||||
"""
|
||||
Manually query PEP OMEMO_DEVICES_NS nodes
|
||||
"""
|
||||
log.debug('Fetching device list for JID: %r', jid)
|
||||
iq = await self.xmpp['xep_0060'].get_items(jid.full, OMEMO_DEVICES_NS)
|
||||
async def _fetch_device_list(self, jid: JID) -> None:
|
||||
"""Manually query PEP OMEMO_DEVICES_NS nodes"""
|
||||
jid = JID(jid)
|
||||
iq = await self.xmpp['xep_0060'].get_items(jid, OMEMO_DEVICES_NS)
|
||||
return await self._read_device_list(jid, iq['pubsub']['items'])
|
||||
|
||||
async def _store_device_ids(self, jid: str, items: Union[Items, EventItems]) -> None:
|
||||
def _store_device_ids(self, jid: str, items: Union[Items, EventItems]) -> None:
|
||||
"""Store Device list"""
|
||||
device_ids = [] # type: List[int]
|
||||
items = list(items)
|
||||
if items:
|
||||
device_ids = [int(d['id']) for d in items[0]['devices']]
|
||||
return await self._omemo().newDeviceList(str(jid), device_ids)
|
||||
return self._omemo.newDeviceList(str(jid), device_ids)
|
||||
|
||||
def _receive_device_list(self, msg: Message) -> None:
|
||||
"""Handler for received PEP OMEMO_DEVICES_NS payloads"""
|
||||
asyncio.create_task(
|
||||
asyncio.ensure_future(
|
||||
self._read_device_list(msg['from'], msg['pubsub_event']['items']),
|
||||
)
|
||||
|
||||
async def _read_device_list(self, jid: JID, items: Union[Items, EventItems]) -> None:
|
||||
"""Read items and devices if we need to set the device list again or not"""
|
||||
bare_jid = jid.bare
|
||||
await self._store_device_ids(bare_jid, items)
|
||||
self._store_device_ids(bare_jid, items)
|
||||
|
||||
items = list(items)
|
||||
device_ids = []
|
||||
|
@ -489,7 +395,7 @@ class XEP_0384(BasePlugin):
|
|||
|
||||
return None
|
||||
|
||||
async def _set_device_list(self, device_ids: Optional[Iterable[int]] = None) -> None:
|
||||
async def _set_device_list(self, device_ids: Optional[Set[int]] = None) -> None:
|
||||
own_jid = self.xmpp.boundjid
|
||||
|
||||
try:
|
||||
|
@ -497,15 +403,15 @@ class XEP_0384(BasePlugin):
|
|||
own_jid.bare, OMEMO_DEVICES_NS,
|
||||
)
|
||||
items = iq['pubsub']['items']
|
||||
await self._store_device_ids(own_jid.bare, items)
|
||||
self._store_device_ids(own_jid.bare, items)
|
||||
except IqError as iq_err:
|
||||
if iq_err.condition == "item-not-found":
|
||||
await self._store_device_ids(own_jid.bare, [])
|
||||
self._store_device_ids(own_jid.bare, [])
|
||||
else:
|
||||
return # XXX: Handle this!
|
||||
|
||||
if device_ids is None:
|
||||
device_ids = await self.get_active_devices(own_jid)
|
||||
device_ids = self.get_device_list(own_jid)
|
||||
|
||||
devices = []
|
||||
for i in device_ids:
|
||||
|
@ -516,10 +422,9 @@ class XEP_0384(BasePlugin):
|
|||
payload['devices'] = devices
|
||||
|
||||
jid = self.xmpp.boundjid
|
||||
disco = await self.xmpp['xep_0030'].get_info(jid=jid.bare, local=False)
|
||||
disco = await self.xmpp['xep_0030'].get_info(jid.bare)
|
||||
publish_options = PUBLISH_OPTIONS_NODE in disco['disco_info'].get_features()
|
||||
|
||||
options = None
|
||||
if publish_options:
|
||||
options = _make_publish_options_form({
|
||||
'pubsub#persist_items': True,
|
||||
|
@ -531,7 +436,6 @@ class XEP_0384(BasePlugin):
|
|||
})
|
||||
|
||||
try:
|
||||
log.debug('Setting own device list to %r', device_ids)
|
||||
await self.xmpp['xep_0060'].publish(
|
||||
own_jid.bare, OMEMO_DEVICES_NS, payload=payload, options=options,
|
||||
)
|
||||
|
@ -545,122 +449,19 @@ class XEP_0384(BasePlugin):
|
|||
log.debug('The node we tried to publish was already '
|
||||
'existing with a different configuration. '
|
||||
'Trying to configure manually..')
|
||||
try:
|
||||
await self._set_node_config(OMEMO_DEVICES_NS)
|
||||
except IqError:
|
||||
log.debug('Failed to set node to persistent after precondition-not-met')
|
||||
raise
|
||||
await self.xmpp['xep_0060'].publish(
|
||||
own_jid.bare, OMEMO_DEVICES_NS, payload=payload,
|
||||
)
|
||||
await self._set_node_config(OMEMO_DEVICES_NS)
|
||||
|
||||
async def get_devices(self, jid: JID) -> Iterable[int]:
|
||||
"""
|
||||
Get all devices for a JID.
|
||||
"""
|
||||
devices = await self._omemo().getDevices(jid.bare)
|
||||
return map(int, set(devices.get('active', []) + devices.get('inactive', [])))
|
||||
def get_device_list(self, jid: JID) -> List[str]:
|
||||
"""Return active device ids. Always contains our own device id."""
|
||||
return self._omemo.getDevices(jid.bare).get('active', [])
|
||||
|
||||
async def get_active_devices(self, jid: JID) -> Iterable[int]:
|
||||
"""
|
||||
Return active device ids. Always contains our own device id.
|
||||
"""
|
||||
devices = await self._omemo().getDevices(jid.bare)
|
||||
return map(int, set(devices.get('active', [])))
|
||||
def trust(self, jid: JID, device_id: int, ik: bytes) -> None:
|
||||
self._omemo.trust(jid.bare, device_id, ik)
|
||||
|
||||
async def _should_heartbeat(self, jid: JID, device_id: int, prekey: bool) -> bool:
|
||||
"""
|
||||
Internal helper for :py:func:`XEP_0384.should_heartbeat`.
|
||||
def distrust(self, jid: JID, device_id: int, ik: bytes) -> None:
|
||||
self._omemo.distrust(jid.bare, device_id, ik)
|
||||
|
||||
Returns whether we should send a heartbeat message for (JID,
|
||||
device_id).
|
||||
|
||||
We check if the message is a prekey message, in which case we
|
||||
assume it's a new session and we want to ACK relatively early.
|
||||
|
||||
Otherwise we look at the number of messages since we have last
|
||||
replied and if above a certain threshold we notify them that we're
|
||||
still active.
|
||||
"""
|
||||
|
||||
length = await self._omemo().receiving_chain_length(jid.bare, device_id)
|
||||
inactive_session = (length or 0) > self.heartbeat_after
|
||||
log.debug(
|
||||
'Chain length for %r / %d: %d -> inactive_session? %r',
|
||||
jid, device_id, length, inactive_session,
|
||||
)
|
||||
log.debug('Is this a prekey message: %r', prekey)
|
||||
|
||||
res = prekey or inactive_session
|
||||
log.debug('Should heartbeat? %r', res)
|
||||
|
||||
return res
|
||||
|
||||
async def should_heartbeat(self, jid: JID, msg: Union[Message, Encrypted]) -> bool:
|
||||
"""
|
||||
Returns whether we should send a heartbeat message to the sender
|
||||
device. See notes about heartbeat in
|
||||
https://xmpp.org/extensions/xep-0384.html#rules.
|
||||
|
||||
This method will return True if this session (to the sender
|
||||
device) is not yet confirmed, or if it hasn't been answered in a
|
||||
while.
|
||||
"""
|
||||
|
||||
prekey: bool = False
|
||||
|
||||
# Get prekey information from message
|
||||
encrypted = msg
|
||||
if isinstance(msg, Message):
|
||||
encrypted = msg['omemo_encrypted']
|
||||
|
||||
header = encrypted['header']
|
||||
sid = header['sid']
|
||||
key = header.xml.find("{%s}key[@rid='%s']" % (
|
||||
OMEMO_BASE_NS, self._device_id))
|
||||
# Don't error out. If it's not encrypted to us we don't need to send a
|
||||
# heartbeat.
|
||||
prekey = False
|
||||
if key is not None:
|
||||
key = Key(key)
|
||||
prekey = key['prekey'] in TRUE_VALUES
|
||||
|
||||
return await self._should_heartbeat(jid, sid, prekey)
|
||||
|
||||
async def send_heartbeat(self, jid: JID, device_id: int) -> None:
|
||||
"""
|
||||
Returns a heartbeat message.
|
||||
|
||||
This is mainly used to tell receiving clients that our device is
|
||||
still active. This is an empty key transport message of which we
|
||||
won't use the generated shared secret.
|
||||
"""
|
||||
|
||||
msg = self.xmpp.make_message(mto=jid)
|
||||
encrypted = await self.encrypt_message(
|
||||
plaintext=None,
|
||||
recipients=[jid],
|
||||
expect_problems=None,
|
||||
_ignore_trust=True,
|
||||
_device_id=device_id,
|
||||
)
|
||||
msg.append(encrypted)
|
||||
msg.enable('store')
|
||||
msg.send()
|
||||
|
||||
async def delete_session(self, jid: JID, device_id: int) -> None:
|
||||
"""
|
||||
Delete the session for the provided jid/device_id pair.
|
||||
"""
|
||||
await self._omemo().deleteSession(jid.bare, device_id)
|
||||
|
||||
async def trust(self, jid: JID, device_id: int, ik: bytes) -> None:
|
||||
await self._omemo().setTrust(jid.bare, device_id, ik, True)
|
||||
|
||||
async def distrust(self, jid: JID, device_id: int, ik: bytes) -> None:
|
||||
await self._omemo().setTrust(jid.bare, device_id, ik, False)
|
||||
|
||||
async def get_trust_for_jid(self, jid: JID) -> Dict[str, List[Optional[Dict[str, Any]]]]:
|
||||
def get_trust_for_jid(self, jid: JID) -> Dict[str, List[Optional[Dict[str, Any]]]]:
|
||||
"""
|
||||
Fetches trust for JID. The returned dictionary will contain active
|
||||
and inactive devices. Each of these dict will contain device ids
|
||||
|
@ -681,23 +482,19 @@ class XEP_0384(BasePlugin):
|
|||
}
|
||||
"""
|
||||
|
||||
return await self._omemo().getTrustForJID(jid.bare)
|
||||
return self._omemo.getTrustForJID(jid.bare)
|
||||
|
||||
@staticmethod
|
||||
def is_encrypted(msg: Message) -> bool:
|
||||
def is_encrypted(self, msg: Message) -> bool:
|
||||
return msg.xml.find('{%s}encrypted' % OMEMO_BASE_NS) is not None
|
||||
|
||||
async def decrypt_message(
|
||||
def decrypt_message(
|
||||
self,
|
||||
encrypted: Encrypted,
|
||||
sender: JID,
|
||||
allow_untrusted: bool = False,
|
||||
) -> Optional[str]:
|
||||
header = encrypted['header']
|
||||
|
||||
payload = None
|
||||
if encrypted['payload']['value'] is not None:
|
||||
payload = b64dec(encrypted['payload']['value'])
|
||||
payload = b64dec(encrypted['payload']['value'])
|
||||
|
||||
jid = sender.bare
|
||||
sid = int(header['sid'])
|
||||
|
@ -709,37 +506,22 @@ class XEP_0384(BasePlugin):
|
|||
|
||||
key = Key(key)
|
||||
isPrekeyMessage = key['prekey'] in TRUE_VALUES
|
||||
if key['value'] is None:
|
||||
raise ErroneousPayload('The key element was empty')
|
||||
message = b64dec(key['value'])
|
||||
if header['iv']['value'] is None:
|
||||
raise ErroneousPayload('The iv element was empty')
|
||||
iv = b64dec(header['iv']['value'])
|
||||
|
||||
# XXX: 'cipher' is part of KeyTransportMessages and is used when no payload
|
||||
# is passed. We do not implement this yet.
|
||||
try:
|
||||
log.debug('Decryption: Attempt to decrypt message from JID: %r', sender)
|
||||
if payload is None:
|
||||
await self._omemo().decryptRatchetForwardingMessage(
|
||||
jid,
|
||||
sid,
|
||||
iv,
|
||||
message,
|
||||
isPrekeyMessage,
|
||||
allow_untrusted=allow_untrusted,
|
||||
)
|
||||
body = None
|
||||
else:
|
||||
body = await self._omemo().decryptMessage(
|
||||
jid,
|
||||
sid,
|
||||
iv,
|
||||
message,
|
||||
isPrekeyMessage,
|
||||
payload,
|
||||
allow_untrusted=allow_untrusted,
|
||||
)
|
||||
body = self._omemo.decryptMessage(
|
||||
jid,
|
||||
sid,
|
||||
iv,
|
||||
message,
|
||||
isPrekeyMessage,
|
||||
payload,
|
||||
allow_untrusted=allow_untrusted,
|
||||
)
|
||||
return body
|
||||
except (omemo.exceptions.NoSessionException,):
|
||||
# This might happen when the sender is sending using a session
|
||||
# that we don't know about (deleted session storage, etc.). In
|
||||
|
@ -748,31 +530,18 @@ class XEP_0384(BasePlugin):
|
|||
raise NoAvailableSession(jid, sid)
|
||||
except (omemo.exceptions.TrustException,) as exn:
|
||||
if exn.problem == 'undecided':
|
||||
log.debug('Decryption: trust state for JID: %r, device: %r, is undecided', exn.bare_jid, exn.device)
|
||||
raise UndecidedException(exn.bare_jid, exn.device, exn.ik)
|
||||
if exn.problem == 'untrusted':
|
||||
log.debug('Decryption: trust state for JID: %r, device: %r, set to untrusted', exn.bare_jid, exn.device)
|
||||
raise UntrustedException(exn.bare_jid, exn.device, exn.ik)
|
||||
raise
|
||||
finally:
|
||||
asyncio.create_task(self._publish_bundle())
|
||||
|
||||
if self.auto_heartbeat:
|
||||
log.debug('Checking if heartbeat is required. auto_hearbeat enabled.')
|
||||
should_heartbeat = await self._should_heartbeat(sender, sid, isPrekeyMessage)
|
||||
if should_heartbeat:
|
||||
log.debug('Decryption: Sending hearbeat to %s / %d', jid, sid)
|
||||
await self.send_heartbeat(JID(jid), sid)
|
||||
|
||||
return body
|
||||
asyncio.ensure_future(self._publish_bundle())
|
||||
|
||||
async def encrypt_message(
|
||||
self,
|
||||
plaintext: Optional[str],
|
||||
plaintext: str,
|
||||
recipients: List[JID],
|
||||
expect_problems: Optional[Dict[JID, List[int]]] = None,
|
||||
_ignore_trust: bool = False,
|
||||
_device_id: Optional[int] = None,
|
||||
) -> Encrypted:
|
||||
"""
|
||||
Returns an encrypted payload to be placed into a message.
|
||||
|
@ -780,22 +549,9 @@ class XEP_0384(BasePlugin):
|
|||
The API for getting an encrypted payload consists of trying first
|
||||
and fixing errors progressively. The actual sending happens once the
|
||||
application (us) thinks we're good to go.
|
||||
|
||||
If `plaintext` is specified, this will generate a full OMEMO payload. If
|
||||
not, if `_ignore_trust` is True, this will generate a ratchet forwarding
|
||||
message, and otherwise it will generate a key transport message.
|
||||
|
||||
These are rather technical details to the user and fiddling with
|
||||
parameters else than `plaintext` and `recipients` should be rarely
|
||||
needed.
|
||||
|
||||
The `_device_id` parameter is required in the case of a ratchet
|
||||
forwarding message. That is, `plaintext` to None, and `_ignore_trust`
|
||||
to True. If specified, a single recipient JID is required. If not all
|
||||
these conditions are met, ErroneousParameter will be raised.
|
||||
"""
|
||||
|
||||
barejids: List[str] = [jid.bare for jid in recipients]
|
||||
recipients = [jid.bare for jid in recipients]
|
||||
|
||||
old_errors = None # type: Optional[List[Tuple[Exception, Any, Any]]]
|
||||
while True:
|
||||
|
@ -803,52 +559,33 @@ class XEP_0384(BasePlugin):
|
|||
# or if we hit the same set of errors.
|
||||
errors = [] # type: List[omemo.exceptions.OMEMOException]
|
||||
|
||||
if expect_problems is None:
|
||||
expect_problems = {}
|
||||
|
||||
expect_problems = {jid.bare: did for (jid, did) in expect_problems.items()}
|
||||
if expect_problems is not None:
|
||||
expect_problems = {jid.bare: did for (jid, did) in expect_problems.items()}
|
||||
|
||||
try:
|
||||
log.debug('Encryption: attempt to encrypt for JIDs: %r', barejids)
|
||||
if plaintext is not None:
|
||||
encrypted = await self._omemo().encryptMessage(
|
||||
barejids,
|
||||
plaintext.encode('utf-8'),
|
||||
bundles=self.bundles,
|
||||
expect_problems=expect_problems,
|
||||
)
|
||||
elif _ignore_trust:
|
||||
if not _device_id or len(barejids) != 1:
|
||||
raise ErroneousParameter
|
||||
bundle = self.bundles.get(barejids[0], {}).get(_device_id, None)
|
||||
encrypted = await self._omemo().encryptRatchetForwardingMessage(
|
||||
bare_jid=barejids[0],
|
||||
device_id=_device_id,
|
||||
bundle=bundle,
|
||||
)
|
||||
else:
|
||||
encrypted = await self._omemo().encryptKeyTransportMessage(
|
||||
barejids,
|
||||
bundles=self.bundles,
|
||||
expect_problems=expect_problems,
|
||||
)
|
||||
encrypted = self._omemo.encryptMessage(
|
||||
recipients,
|
||||
plaintext.encode('utf-8'),
|
||||
self.bundles,
|
||||
expect_problems=expect_problems,
|
||||
)
|
||||
return _generate_encrypted_payload(encrypted)
|
||||
except omemo.exceptions.EncryptionProblemsException as exception:
|
||||
errors = exception.problems
|
||||
except omemo.exceptions.EncryptionProblemsException as exn:
|
||||
errors = exn.problems
|
||||
|
||||
if errors == old_errors:
|
||||
log.debug('Encryption: Still not possible after another iteration.')
|
||||
raise EncryptionPrepareException(errors)
|
||||
|
||||
old_errors = errors
|
||||
|
||||
for exn in errors:
|
||||
if isinstance(exn, omemo.exceptions.NoDevicesException):
|
||||
log.debug('Encryption: Missing device list for JID: %r', exn.bare_jid)
|
||||
await self.fetch_devices(JID(exn.bare_jid))
|
||||
await self._fetch_device_list(exn.bare_jid)
|
||||
elif isinstance(exn, omemo.exceptions.MissingBundleException):
|
||||
log.debug('Encryption: Missing bundle for JID: %r, device: %r', exn.bare_jid, exn.device)
|
||||
await self.fetch_bundle(JID(exn.bare_jid), exn.device)
|
||||
bundle = await self._fetch_bundle(exn.bare_jid, exn.device)
|
||||
if bundle is not None:
|
||||
devices = self.bundles.setdefault(exn.bare_jid, {})
|
||||
devices[exn.device] = bundle
|
||||
elif isinstance(exn, omemo.exceptions.TrustException):
|
||||
# On TrustException, there are two possibilities.
|
||||
# Either trust has not been explicitely set yet, and is
|
||||
|
@ -857,7 +594,6 @@ class XEP_0384(BasePlugin):
|
|||
# a choice. If untrusted, then we can safely tell the
|
||||
# OMEMO lib to not encrypt to this device
|
||||
if exn.problem == 'undecided':
|
||||
log.debug('Encryption: Trust state not set for JID: %r, device: %r', exn.bare_jid, exn.device)
|
||||
raise UndecidedException(exn.bare_jid, exn.device, exn.ik)
|
||||
distrusted_jid = JID(exn.bare_jid)
|
||||
expect_problems.setdefault(distrusted_jid, []).append(exn.device)
|
||||
|
@ -869,7 +605,7 @@ class XEP_0384(BasePlugin):
|
|||
# This does the heavy lifting of state management, and
|
||||
# seeing if it's possible to encrypt at all, or not.
|
||||
# This exception is only passed to the user, that should
|
||||
# decide what to do with it, as there isn't much we can do if
|
||||
# decide what to do with it, as there isn't much we can if
|
||||
# other issues can't be resolved.
|
||||
continue
|
||||
|
||||
|
|
|
@ -9,5 +9,5 @@
|
|||
See the file LICENSE for copying permission.
|
||||
"""
|
||||
|
||||
__version__ = "0.9.0"
|
||||
__version_info__ = (0, 9, 0)
|
||||
__version__ = "0.2.0"
|
||||
__version_info__ = (0, 2, 0)
|
||||
|
|
Loading…
Reference in a new issue