e467fe341e
Staying connected to a MUC room hosted on a remote server can be challenging. If a server reboots it will usually send a shut down notification to all participants. However even if a client knows that a server was shut down it doesn’t know when it comes up again. In some corner cases that shut down notification might not even be delivered successfully leaving the client in a state where it thinks it is connected but it really isn’t. The possible work around implemented in this commit is to register the clients full JID (user@domain.tld/Conversations.r4nd) as an App Server according to XEP-0357 with the room. (Conversations checks for the push:0 namespace on the room.) After cycling through a reboot the first message send to a room will trigger pubsub notifications to each registered full JID. This event will be used to trigger a XEP-0410 ping and if necessary a subsequent rejoin of the MUC. If the resource has become unavailable during down time of the MUC server the user’s server will respond with an IQ error which in turn leads to the MUC server disabling that push target. Leaving a MUC will send a `disable` command. If sending that disable command failed for some reason (network outage) and the client receives a pubsub notification for a room it is no longer joined in it will respond with an item-not-found IQ error which also disables subsequent pushes from the server. Note: We 0410-ping before a join to avoid unnecessary full joins which can be quite costly. Further client side optimazations will also surpress pings when a ping is already in flight to further save traffic.
421 lines
20 KiB
Java
421 lines
20 KiB
Java
package eu.siacs.conversations.parser;
|
|
|
|
import android.support.annotation.NonNull;
|
|
import android.util.Base64;
|
|
import android.util.Log;
|
|
import android.util.Pair;
|
|
|
|
import org.whispersystems.libsignal.IdentityKey;
|
|
import org.whispersystems.libsignal.ecc.Curve;
|
|
import org.whispersystems.libsignal.ecc.ECPublicKey;
|
|
import org.whispersystems.libsignal.state.PreKeyBundle;
|
|
|
|
import java.io.ByteArrayInputStream;
|
|
import java.security.cert.CertificateException;
|
|
import java.security.cert.CertificateFactory;
|
|
import java.security.cert.X509Certificate;
|
|
import java.util.ArrayList;
|
|
import java.util.Collection;
|
|
import java.util.HashMap;
|
|
import java.util.HashSet;
|
|
import java.util.List;
|
|
import java.util.Map;
|
|
import java.util.Set;
|
|
|
|
import eu.siacs.conversations.Config;
|
|
import eu.siacs.conversations.crypto.axolotl.AxolotlService;
|
|
import eu.siacs.conversations.entities.Account;
|
|
import eu.siacs.conversations.entities.Contact;
|
|
import eu.siacs.conversations.entities.Conversation;
|
|
import eu.siacs.conversations.services.XmppConnectionService;
|
|
import eu.siacs.conversations.xml.Namespace;
|
|
import eu.siacs.conversations.xml.Element;
|
|
import eu.siacs.conversations.xmpp.InvalidJid;
|
|
import eu.siacs.conversations.xmpp.OnIqPacketReceived;
|
|
import eu.siacs.conversations.xmpp.OnUpdateBlocklist;
|
|
import eu.siacs.conversations.xmpp.stanzas.IqPacket;
|
|
import rocks.xmpp.addr.Jid;
|
|
|
|
public class IqParser extends AbstractParser implements OnIqPacketReceived {
|
|
|
|
public IqParser(final XmppConnectionService service) {
|
|
super(service);
|
|
}
|
|
|
|
private void rosterItems(final Account account, final Element query) {
|
|
final String version = query.getAttribute("ver");
|
|
if (version != null) {
|
|
account.getRoster().setVersion(version);
|
|
}
|
|
for (final Element item : query.getChildren()) {
|
|
if (item.getName().equals("item")) {
|
|
final Jid jid = InvalidJid.getNullForInvalid(item.getAttributeAsJid("jid"));
|
|
if (jid == null) {
|
|
continue;
|
|
}
|
|
final String name = item.getAttribute("name");
|
|
final String subscription = item.getAttribute("subscription");
|
|
final Contact contact = account.getRoster().getContact(jid);
|
|
boolean bothPre = contact.getOption(Contact.Options.TO) && contact.getOption(Contact.Options.FROM);
|
|
if (!contact.getOption(Contact.Options.DIRTY_PUSH)) {
|
|
contact.setServerName(name);
|
|
contact.parseGroupsFromElement(item);
|
|
}
|
|
if ("remove".equals(subscription)) {
|
|
contact.resetOption(Contact.Options.IN_ROSTER);
|
|
contact.resetOption(Contact.Options.DIRTY_DELETE);
|
|
contact.resetOption(Contact.Options.PREEMPTIVE_GRANT);
|
|
} else {
|
|
contact.setOption(Contact.Options.IN_ROSTER);
|
|
contact.resetOption(Contact.Options.DIRTY_PUSH);
|
|
contact.parseSubscriptionFromElement(item);
|
|
}
|
|
boolean both = contact.getOption(Contact.Options.TO) && contact.getOption(Contact.Options.FROM);
|
|
if ((both != bothPre) && both) {
|
|
Log.d(Config.LOGTAG, account.getJid().asBareJid() + ": gained mutual presence subscription with " + contact.getJid());
|
|
AxolotlService axolotlService = account.getAxolotlService();
|
|
if (axolotlService != null) {
|
|
axolotlService.clearErrorsInFetchStatusMap(contact.getJid());
|
|
}
|
|
}
|
|
mXmppConnectionService.getAvatarService().clear(contact);
|
|
}
|
|
}
|
|
mXmppConnectionService.updateConversationUi();
|
|
mXmppConnectionService.updateRosterUi();
|
|
mXmppConnectionService.getShortcutService().refresh();
|
|
mXmppConnectionService.syncRoster(account);
|
|
}
|
|
|
|
public String avatarData(final IqPacket packet) {
|
|
final Element pubsub = packet.findChild("pubsub", Namespace.PUBSUB);
|
|
if (pubsub == null) {
|
|
return null;
|
|
}
|
|
final Element items = pubsub.findChild("items");
|
|
if (items == null) {
|
|
return null;
|
|
}
|
|
return super.avatarData(items);
|
|
}
|
|
|
|
public Element getItem(final IqPacket packet) {
|
|
final Element pubsub = packet.findChild("pubsub", Namespace.PUBSUB);
|
|
if (pubsub == null) {
|
|
return null;
|
|
}
|
|
final Element items = pubsub.findChild("items");
|
|
if (items == null) {
|
|
return null;
|
|
}
|
|
return items.findChild("item");
|
|
}
|
|
|
|
@NonNull
|
|
public Set<Integer> deviceIds(final Element item) {
|
|
Set<Integer> deviceIds = new HashSet<>();
|
|
if (item != null) {
|
|
final Element list = item.findChild("list");
|
|
if (list != null) {
|
|
for (Element device : list.getChildren()) {
|
|
if (!device.getName().equals("device")) {
|
|
continue;
|
|
}
|
|
try {
|
|
Integer id = Integer.valueOf(device.getAttribute("id"));
|
|
deviceIds.add(id);
|
|
} catch (NumberFormatException e) {
|
|
Log.e(Config.LOGTAG, AxolotlService.LOGPREFIX + " : " + "Encountered invalid <device> node in PEP (" + e.getMessage() + "):" + device.toString() + ", skipping...");
|
|
continue;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
return deviceIds;
|
|
}
|
|
|
|
public Integer signedPreKeyId(final Element bundle) {
|
|
final Element signedPreKeyPublic = bundle.findChild("signedPreKeyPublic");
|
|
if (signedPreKeyPublic == null) {
|
|
return null;
|
|
}
|
|
try {
|
|
return Integer.valueOf(signedPreKeyPublic.getAttribute("signedPreKeyId"));
|
|
} catch (NumberFormatException e) {
|
|
return null;
|
|
}
|
|
}
|
|
|
|
public ECPublicKey signedPreKeyPublic(final Element bundle) {
|
|
ECPublicKey publicKey = null;
|
|
final Element signedPreKeyPublic = bundle.findChild("signedPreKeyPublic");
|
|
if (signedPreKeyPublic == null) {
|
|
return null;
|
|
}
|
|
try {
|
|
publicKey = Curve.decodePoint(Base64.decode(signedPreKeyPublic.getContent(), Base64.DEFAULT), 0);
|
|
} catch (Throwable e) {
|
|
Log.e(Config.LOGTAG, AxolotlService.LOGPREFIX + " : " + "Invalid signedPreKeyPublic in PEP: " + e.getMessage());
|
|
}
|
|
return publicKey;
|
|
}
|
|
|
|
public byte[] signedPreKeySignature(final Element bundle) {
|
|
final Element signedPreKeySignature = bundle.findChild("signedPreKeySignature");
|
|
if (signedPreKeySignature == null) {
|
|
return null;
|
|
}
|
|
try {
|
|
return Base64.decode(signedPreKeySignature.getContent(), Base64.DEFAULT);
|
|
} catch (Throwable e) {
|
|
Log.e(Config.LOGTAG, AxolotlService.LOGPREFIX + " : Invalid base64 in signedPreKeySignature");
|
|
return null;
|
|
}
|
|
}
|
|
|
|
public IdentityKey identityKey(final Element bundle) {
|
|
IdentityKey identityKey = null;
|
|
final Element identityKeyElement = bundle.findChild("identityKey");
|
|
if (identityKeyElement == null) {
|
|
return null;
|
|
}
|
|
try {
|
|
identityKey = new IdentityKey(Base64.decode(identityKeyElement.getContent(), Base64.DEFAULT), 0);
|
|
} catch (Throwable e) {
|
|
Log.e(Config.LOGTAG, AxolotlService.LOGPREFIX + " : " + "Invalid identityKey in PEP: " + e.getMessage());
|
|
}
|
|
return identityKey;
|
|
}
|
|
|
|
public Map<Integer, ECPublicKey> preKeyPublics(final IqPacket packet) {
|
|
Map<Integer, ECPublicKey> preKeyRecords = new HashMap<>();
|
|
Element item = getItem(packet);
|
|
if (item == null) {
|
|
Log.d(Config.LOGTAG, AxolotlService.LOGPREFIX + " : " + "Couldn't find <item> in bundle IQ packet: " + packet);
|
|
return null;
|
|
}
|
|
final Element bundleElement = item.findChild("bundle");
|
|
if (bundleElement == null) {
|
|
return null;
|
|
}
|
|
final Element prekeysElement = bundleElement.findChild("prekeys");
|
|
if (prekeysElement == null) {
|
|
Log.d(Config.LOGTAG, AxolotlService.LOGPREFIX + " : " + "Couldn't find <prekeys> in bundle IQ packet: " + packet);
|
|
return null;
|
|
}
|
|
for (Element preKeyPublicElement : prekeysElement.getChildren()) {
|
|
if (!preKeyPublicElement.getName().equals("preKeyPublic")) {
|
|
Log.d(Config.LOGTAG, AxolotlService.LOGPREFIX + " : " + "Encountered unexpected tag in prekeys list: " + preKeyPublicElement);
|
|
continue;
|
|
}
|
|
Integer preKeyId = null;
|
|
try {
|
|
preKeyId = Integer.valueOf(preKeyPublicElement.getAttribute("preKeyId"));
|
|
final ECPublicKey preKeyPublic = Curve.decodePoint(Base64.decode(preKeyPublicElement.getContent(), Base64.DEFAULT), 0);
|
|
preKeyRecords.put(preKeyId, preKeyPublic);
|
|
} catch (NumberFormatException e) {
|
|
Log.e(Config.LOGTAG, AxolotlService.LOGPREFIX + " : " + "could not parse preKeyId from preKey " + preKeyPublicElement.toString());
|
|
} catch (Throwable e) {
|
|
Log.e(Config.LOGTAG, AxolotlService.LOGPREFIX + " : " + "Invalid preKeyPublic (ID=" + preKeyId + ") in PEP: " + e.getMessage() + ", skipping...");
|
|
}
|
|
}
|
|
return preKeyRecords;
|
|
}
|
|
|
|
public Pair<X509Certificate[], byte[]> verification(final IqPacket packet) {
|
|
Element item = getItem(packet);
|
|
Element verification = item != null ? item.findChild("verification", AxolotlService.PEP_PREFIX) : null;
|
|
Element chain = verification != null ? verification.findChild("chain") : null;
|
|
Element signature = verification != null ? verification.findChild("signature") : null;
|
|
if (chain != null && signature != null) {
|
|
List<Element> certElements = chain.getChildren();
|
|
X509Certificate[] certificates = new X509Certificate[certElements.size()];
|
|
try {
|
|
CertificateFactory certificateFactory = CertificateFactory.getInstance("X.509");
|
|
int i = 0;
|
|
for (Element cert : certElements) {
|
|
certificates[i] = (X509Certificate) certificateFactory.generateCertificate(new ByteArrayInputStream(Base64.decode(cert.getContent(), Base64.DEFAULT)));
|
|
++i;
|
|
}
|
|
return new Pair<>(certificates, Base64.decode(signature.getContent(), Base64.DEFAULT));
|
|
} catch (CertificateException e) {
|
|
return null;
|
|
}
|
|
} else {
|
|
return null;
|
|
}
|
|
}
|
|
|
|
public PreKeyBundle bundle(final IqPacket bundle) {
|
|
Element bundleItem = getItem(bundle);
|
|
if (bundleItem == null) {
|
|
return null;
|
|
}
|
|
final Element bundleElement = bundleItem.findChild("bundle");
|
|
if (bundleElement == null) {
|
|
return null;
|
|
}
|
|
ECPublicKey signedPreKeyPublic = signedPreKeyPublic(bundleElement);
|
|
Integer signedPreKeyId = signedPreKeyId(bundleElement);
|
|
byte[] signedPreKeySignature = signedPreKeySignature(bundleElement);
|
|
IdentityKey identityKey = identityKey(bundleElement);
|
|
if (signedPreKeyId == null || signedPreKeyPublic == null || identityKey == null) {
|
|
return null;
|
|
}
|
|
|
|
return new PreKeyBundle(0, 0, 0, null,
|
|
signedPreKeyId, signedPreKeyPublic, signedPreKeySignature, identityKey);
|
|
}
|
|
|
|
public List<PreKeyBundle> preKeys(final IqPacket preKeys) {
|
|
List<PreKeyBundle> bundles = new ArrayList<>();
|
|
Map<Integer, ECPublicKey> preKeyPublics = preKeyPublics(preKeys);
|
|
if (preKeyPublics != null) {
|
|
for (Integer preKeyId : preKeyPublics.keySet()) {
|
|
ECPublicKey preKeyPublic = preKeyPublics.get(preKeyId);
|
|
bundles.add(new PreKeyBundle(0, 0, preKeyId, preKeyPublic,
|
|
0, null, null, null));
|
|
}
|
|
}
|
|
|
|
return bundles;
|
|
}
|
|
|
|
@Override
|
|
public void onIqPacketReceived(final Account account, final IqPacket packet) {
|
|
final boolean isGet = packet.getType() == IqPacket.TYPE.GET;
|
|
if (packet.getType() == IqPacket.TYPE.ERROR || packet.getType() == IqPacket.TYPE.TIMEOUT) {
|
|
return;
|
|
}
|
|
if (packet.hasChild("query", Namespace.ROSTER) && packet.fromServer(account)) {
|
|
final Element query = packet.findChild("query");
|
|
// If this is in response to a query for the whole roster:
|
|
if (packet.getType() == IqPacket.TYPE.RESULT) {
|
|
account.getRoster().markAllAsNotInRoster();
|
|
}
|
|
this.rosterItems(account, query);
|
|
} else if ((packet.hasChild("block", Namespace.BLOCKING) || packet.hasChild("blocklist", Namespace.BLOCKING)) &&
|
|
packet.fromServer(account)) {
|
|
// Block list or block push.
|
|
Log.d(Config.LOGTAG, "Received blocklist update from server");
|
|
final Element blocklist = packet.findChild("blocklist", Namespace.BLOCKING);
|
|
final Element block = packet.findChild("block", Namespace.BLOCKING);
|
|
final Collection<Element> items = blocklist != null ? blocklist.getChildren() :
|
|
(block != null ? block.getChildren() : null);
|
|
// If this is a response to a blocklist query, clear the block list and replace with the new one.
|
|
// Otherwise, just update the existing blocklist.
|
|
if (packet.getType() == IqPacket.TYPE.RESULT) {
|
|
account.clearBlocklist();
|
|
account.getXmppConnection().getFeatures().setBlockListRequested(true);
|
|
}
|
|
if (items != null) {
|
|
final Collection<Jid> jids = new ArrayList<>(items.size());
|
|
// Create a collection of Jids from the packet
|
|
for (final Element item : items) {
|
|
if (item.getName().equals("item")) {
|
|
final Jid jid = InvalidJid.getNullForInvalid(item.getAttributeAsJid("jid"));
|
|
if (jid != null) {
|
|
jids.add(jid);
|
|
}
|
|
}
|
|
}
|
|
account.getBlocklist().addAll(jids);
|
|
if (packet.getType() == IqPacket.TYPE.SET) {
|
|
boolean removed = false;
|
|
for (Jid jid : jids) {
|
|
removed |= mXmppConnectionService.removeBlockedConversations(account, jid);
|
|
}
|
|
if (removed) {
|
|
mXmppConnectionService.updateConversationUi();
|
|
}
|
|
}
|
|
}
|
|
// Update the UI
|
|
mXmppConnectionService.updateBlocklistUi(OnUpdateBlocklist.Status.BLOCKED);
|
|
if (packet.getType() == IqPacket.TYPE.SET) {
|
|
final IqPacket response = packet.generateResponse(IqPacket.TYPE.RESULT);
|
|
mXmppConnectionService.sendIqPacket(account, response, null);
|
|
}
|
|
} else if (packet.hasChild("unblock", Namespace.BLOCKING) &&
|
|
packet.fromServer(account) && packet.getType() == IqPacket.TYPE.SET) {
|
|
Log.d(Config.LOGTAG, "Received unblock update from server");
|
|
final Collection<Element> items = packet.findChild("unblock", Namespace.BLOCKING).getChildren();
|
|
if (items.size() == 0) {
|
|
// No children to unblock == unblock all
|
|
account.getBlocklist().clear();
|
|
} else {
|
|
final Collection<Jid> jids = new ArrayList<>(items.size());
|
|
for (final Element item : items) {
|
|
if (item.getName().equals("item")) {
|
|
final Jid jid = InvalidJid.getNullForInvalid(item.getAttributeAsJid("jid"));
|
|
if (jid != null) {
|
|
jids.add(jid);
|
|
}
|
|
}
|
|
}
|
|
account.getBlocklist().removeAll(jids);
|
|
}
|
|
mXmppConnectionService.updateBlocklistUi(OnUpdateBlocklist.Status.UNBLOCKED);
|
|
final IqPacket response = packet.generateResponse(IqPacket.TYPE.RESULT);
|
|
mXmppConnectionService.sendIqPacket(account, response, null);
|
|
} else if (packet.hasChild("open", "http://jabber.org/protocol/ibb")
|
|
|| packet.hasChild("data", "http://jabber.org/protocol/ibb")
|
|
|| packet.hasChild("close", "http://jabber.org/protocol/ibb")) {
|
|
mXmppConnectionService.getJingleConnectionManager()
|
|
.deliverIbbPacket(account, packet);
|
|
} else if (packet.hasChild("query", "http://jabber.org/protocol/disco#info")) {
|
|
final IqPacket response = mXmppConnectionService.getIqGenerator().discoResponse(account, packet);
|
|
mXmppConnectionService.sendIqPacket(account, response, null);
|
|
} else if (packet.hasChild("query", "jabber:iq:version") && isGet) {
|
|
final IqPacket response = mXmppConnectionService.getIqGenerator().versionResponse(packet);
|
|
mXmppConnectionService.sendIqPacket(account, response, null);
|
|
} else if (packet.hasChild("ping", "urn:xmpp:ping") && isGet) {
|
|
final IqPacket response = packet.generateResponse(IqPacket.TYPE.RESULT);
|
|
mXmppConnectionService.sendIqPacket(account, response, null);
|
|
} else if (packet.hasChild("time", "urn:xmpp:time") && isGet) {
|
|
final IqPacket response;
|
|
if (mXmppConnectionService.useTorToConnect() || account.isOnion()) {
|
|
response = packet.generateResponse(IqPacket.TYPE.ERROR);
|
|
final Element error = response.addChild("error");
|
|
error.setAttribute("type", "cancel");
|
|
error.addChild("not-allowed", "urn:ietf:params:xml:ns:xmpp-stanzas");
|
|
} else {
|
|
response = mXmppConnectionService.getIqGenerator().entityTimeResponse(packet);
|
|
}
|
|
mXmppConnectionService.sendIqPacket(account, response, null);
|
|
} else if (packet.hasChild("pubsub", Namespace.PUBSUB) && packet.getType() == IqPacket.TYPE.SET) {
|
|
final Jid server = packet.getFrom();
|
|
final Element pubsub = packet.findChild("pubsub", Namespace.PUBSUB);
|
|
final Element publish = pubsub == null ? null : pubsub.findChild("publish");
|
|
final String node = publish == null ? null : publish.getAttribute("node");
|
|
final Element item = publish == null ? null : publish.findChild("item");
|
|
final Element notification = item == null ? null : item.findChild("notification", Namespace.PUSH);
|
|
if (notification != null && node != null && server != null) {
|
|
final Conversation conversation = mXmppConnectionService.findConversationByUuid(node);
|
|
if (conversation != null && conversation.getAccount() == account && conversation.getJid().getDomain().equals(server.getDomain())) {
|
|
Log.d(Config.LOGTAG,account.getJid().asBareJid()+": received muc push event for "+conversation.getJid().asBareJid());
|
|
mXmppConnectionService.sendIqPacket(account, packet.generateResponse(IqPacket.TYPE.RESULT), null);
|
|
mXmppConnectionService.mucSelfPingAndRejoin(conversation);
|
|
} else {
|
|
Log.d(Config.LOGTAG,account.getJid().asBareJid()+": received push event for unknown conference from "+server);
|
|
final IqPacket response = packet.generateResponse(IqPacket.TYPE.ERROR);
|
|
final Element error = response.addChild("error");
|
|
error.setAttribute("type", "cancel");
|
|
error.addChild("item-not-found", "urn:ietf:params:xml:ns:xmpp-stanzas");
|
|
mXmppConnectionService.sendIqPacket(account, response, null);
|
|
}
|
|
}
|
|
|
|
} else {
|
|
if (packet.getType() == IqPacket.TYPE.GET || packet.getType() == IqPacket.TYPE.SET) {
|
|
final IqPacket response = packet.generateResponse(IqPacket.TYPE.ERROR);
|
|
final Element error = response.addChild("error");
|
|
error.setAttribute("type", "cancel");
|
|
error.addChild("feature-not-implemented", "urn:ietf:params:xml:ns:xmpp-stanzas");
|
|
account.getXmppConnection().sendIqPacket(response, null);
|
|
}
|
|
}
|
|
}
|
|
|
|
}
|