diff options
| author | Patrick | 2023-06-19 21:21:16 +0200 |
|---|---|---|
| committer | Patrick | 2023-06-19 21:21:16 +0200 |
| commit | ad9d01050b7b6d592a83ce14eeef7068bd981028 (patch) | |
| tree | f6263c85f4c9905bccb1887e50d2777c61b24405 /src/matrix.c | |
| parent | d382d193cb2d550cc769afa76e55823865a39023 (diff) | |
| download | matrix_esp_thesis-ad9d01050b7b6d592a83ce14eeef7068bd981028.tar.gz matrix_esp_thesis-ad9d01050b7b6d592a83ce14eeef7068bd981028.zip | |
olm session management
Diffstat (limited to 'src/matrix.c')
| -rw-r--r-- | src/matrix.c | 566 |
1 files changed, 552 insertions, 14 deletions
diff --git a/src/matrix.c b/src/matrix.c index 7cc4de9..28e7634 100644 --- a/src/matrix.c +++ b/src/matrix.c @@ -9,21 +9,153 @@ #define LOGIN_RESPONSE_SIZE 1024
#define LOGIN_URL "/_matrix/client/v3/login"
-#define ROOMEVENT_REQUEST_SIZE 1024
+#define ENCRYPTED_REQUEST_SIZE 512
+#define ENCRYPTED_EVENT_SIZE 1024
+#define ROOMEVENT_REQUEST_SIZE 256
#define ROOMEVENT_RESPONSE_SIZE 1024
#define ROOMEVENT_URL "/_matrix/client/v3/rooms/%s/send/%s/%d"
+#define TODEVICE_EVENT_SIZE 512
+#define TODEVICE_URL "/_matrix/client/v3/sendToDevice/%s/%d"
+
+#define KEYS_QUERY_URL "/_matrix/client/v3/keys/query"
+#define KEYS_QUERY_REQUEST_SIZE 256
+#define KEYS_QUERY_RESPONSE_SIZE 1024
+
+#define JSON_QUERY_SIZE 128
+
+
+
+void
+Randomize(uint8_t * random, int randomLen)
+{
+ static bool first = false;
+ if (first) { srand(time(0)); first = false; }
+
+ for (int i = 0; i < randomLen; i++)
+ {
+ random[i] = rand() % 256;
+ }
+}
+
+bool
+JsonEscape(
+ char * sIn, int sInLen,
+ char * sOut, int sOutCap)
+{
+ int sOutIndex = 0;
+
+ for (int i = 0; i < sInLen; i++)
+ {
+ if (i >= sOutCap)
+ return false;
+
+ if (sIn[i] == '.' ||
+ sIn[i] == '[' ||
+ sIn[i] == ']'
+ ) {
+ sOut[sOutIndex++] = '\\';
+ }
+ sOut[sOutIndex++] = sIn[i];
+ }
+
+ if (sOutIndex < sOutCap)
+ sOut[sOutIndex] = '\0';
+
+ return true;
+}
+
+// TODO: in/outbound sessions
+bool
+MatrixOlmSessionInit(
+ MatrixOlmSession * session,
+ const char * deviceId)
+{
+ memset(session, 0, sizeof(MatrixOlmSession));
+
+ static uint8_t random[MEGOLM_INIT_RANDOM_SIZE];
+ Randomize(random, MEGOLM_INIT_RANDOM_SIZE);
+
+ session->deviceId = deviceId;
+
+ session->session =
+ olm_session(session->memory);
+
+ return session->session != NULL;
+}
+
+bool
+MatrixOlmSessionEncrypt(
+ MatrixOlmSession * session,
+ const char * plaintext,
+ char * outBuffer, int outBufferCap)
+{
+ static uint8_t random[OLM_ENCRYPT_RANDOM_SIZE];
+ Randomize(random, OLM_ENCRYPT_RANDOM_SIZE);
+
+ size_t res = olm_encrypt(session->session,
+ plaintext, strlen(plaintext),
+ random, OLM_ENCRYPT_RANDOM_SIZE,
+ outBuffer, outBufferCap);
+
+ return res != olm_error();
+}
+
+// https://matrix.org/docs/guides/end-to-end-encryption-implementation-guide#starting-a-megolm-session
+bool
+MatrixMegolmOutSessionInit(
+ MatrixMegolmOutSession * session,
+ const char * roomId)
+{
+ memset(session, 0, sizeof(MatrixMegolmOutSession));
+
+ static uint8_t random[MEGOLM_INIT_RANDOM_SIZE];
+ Randomize(random, MEGOLM_INIT_RANDOM_SIZE);
+
+ session->roomId = roomId;
+
+ session->session =
+ olm_outbound_group_session(session->memory);
+
+ olm_init_outbound_group_session(
+ session->session,
+ random,
+ MEGOLM_INIT_RANDOM_SIZE);
+
+ olm_outbound_group_session_id(session->session,
+ (uint8_t *)session->id,
+ MEGOLM_SESSION_ID_SIZE);
+
+ olm_outbound_group_session_key(session->session,
+ (uint8_t *)session->key,
+ MEGOLM_SESSION_KEY_SIZE);
+
+ return true;
+}
+
+bool
+MatrixMegolmOutSessionEncrypt(
+ MatrixMegolmOutSession * session,
+ const char * plaintext,
+ char * outBuffer, int outBufferCap)
+{
+ size_t res = olm_group_encrypt(session->session,
+ (uint8_t *)plaintext, strlen(plaintext),
+ (uint8_t *)outBuffer, outBufferCap);
+
+ return res != olm_error();
+}
+
+
bool
MatrixClientInit(
MatrixClient * client,
const char * server)
{
- strcpy_s(
- client->server,
- SERVER_SIZE,
- server
- );
+ memset(client, 0, sizeof(MatrixClient));
+
+ strcpy(client->server, server);
return true;
}
@@ -39,7 +171,7 @@ MatrixClientSetAccessToken( return false;
for (int i = 0; i < accessTokenLen; i++)
- client->accessTokenBuffer[i] = accessToken[i];
+ client->accessToken[i] = accessToken[i];
return true;
}
@@ -83,20 +215,21 @@ MatrixClientLoginPassword( mjson_get_string(responseBuffer, responseLen,
"$.access_token",
- client->accessTokenBuffer, ACCESS_TOKEN_SIZE);
+ client->accessToken, ACCESS_TOKEN_SIZE);
mjson_get_string(responseBuffer, responseLen,
"$.device_id",
- client->deviceIdBuffer, DEVICE_ID_SIZE);
+ client->deviceId, DEVICE_ID_SIZE);
mjson_get_string(responseBuffer, responseLen,
"$.expires_in_ms",
- client->expireMsBuffer, EXPIRE_MS_SIZE);
+ client->expireMs, EXPIRE_MS_SIZE);
mjson_get_string(responseBuffer, responseLen,
"$.refresh_token",
- client->refreshTokenBuffer, REFRESH_TOKEN_SIZE);
+ client->refreshToken, REFRESH_TOKEN_SIZE);
return true;
}
-
+
+// https://spec.matrix.org/v1.6/client-server-api/#put_matrixclientv3roomsroomidsendeventtypetxnid
bool
MatrixClientSendEvent(
MatrixClient * client,
@@ -105,8 +238,8 @@ MatrixClientSendEvent( const char * msgBody)
{
static char requestUrl[MAX_URL_LEN];
- sprintf_s(requestUrl, MAX_URL_LEN,
- ROOMEVENT_URL, roomId, msgType, time(NULL));
+ sprintf(requestUrl,
+ ROOMEVENT_URL, roomId, msgType, (int)time(NULL));
static char responseBuffer[ROOMEVENT_RESPONSE_SIZE];
bool result =
@@ -119,3 +252,408 @@ MatrixClientSendEvent( return result;
}
+// https://spec.matrix.org/v1.6/client-server-api/#mroomencrypted
+// https://matrix.org/docs/guides/end-to-end-encryption-implementation-guide#sending-an-encrypted-message-event
+bool
+MatrixClientSendEventEncrypted(
+ MatrixClient * client,
+ const char * roomId,
+ const char * msgType,
+ const char * msgBody)
+{
+ // event json
+ static char requestBuffer[ROOMEVENT_REQUEST_SIZE];
+ sprintf(requestBuffer,
+ "{"
+ "\"type\":\"%s\","
+ "\"content\":%s,"
+ "\"room_id\":\"%s\""
+ "}",
+ msgType,
+ msgBody,
+ roomId);
+
+ // get megolm session
+ MatrixMegolmOutSession * outSession;
+ MatrixClientGetMegolmOutSession(client, roomId, &outSession);
+
+ // encrypt
+ static char encryptedBuffer[ENCRYPTED_REQUEST_SIZE];
+ MatrixMegolmOutSessionEncrypt(outSession,
+ requestBuffer,
+ encryptedBuffer, ENCRYPTED_REQUEST_SIZE);
+
+ // encrypted event json
+ const char * senderKey = client->deviceKey;
+ const char * sessionId = outSession->id;
+ const char * deviceId = client->deviceId;
+
+ static char encryptedEventBuffer[ENCRYPTED_EVENT_SIZE];
+ sprintf(encryptedEventBuffer,
+ "{"
+ "\"algorithm\":\"m.megolm.v1.aes-sha2\","
+ "\"sender_key\":\"%s\","
+ "\"ciphertext\":\"%s\","
+ "\"session_id\":%s,"
+ "\"device_id\":\"%s\""
+ "}",
+ senderKey,
+ encryptedBuffer,
+ sessionId,
+ deviceId);
+
+ // send
+ return MatrixClientSendEvent(client,
+ roomId,
+ "m.room.encrypted",
+ encryptedEventBuffer);
+}
+
+// https://spec.matrix.org/v1.6/client-server-api/#get_matrixclientv3sync
+bool
+MatrixClientSync(
+ MatrixClient * client,
+ char * outSyncBuffer, int outSyncCap)
+{
+ return
+ MatrixHttpGet(client,
+ "/_matrix/client/v3/sync",
+ outSyncBuffer, outSyncCap,
+ true);
+}
+
+bool
+MatrixClientShareMegolmOutSession(
+ MatrixClient * client,
+ const char * deviceId,
+ MatrixMegolmOutSession * session)
+{
+ // generate room key event
+ char eventBuffer[KEY_SHARE_EVENT_LEN];
+ sprintf(eventBuffer,
+ "{"
+ "\"algorithm\":\"m.megolm.v1.aes-sha2\","
+ "\"room_id\":\"%s\","
+ "\"session_id\":\"%s\","
+ "\"session_key\":\"%s\""
+ "}",
+ session->roomId,
+ session->id,
+ session->key
+ );
+
+ // get olm session
+ MatrixOlmSession * olmSession;
+ MatrixClientGetOlmSession(client, deviceId, &olmSession);
+
+ // encrypt
+ char encryptedBuffer[KEY_SHARE_EVENT_LEN];
+ MatrixOlmSessionEncrypt(olmSession,
+ eventBuffer,
+ encryptedBuffer, KEY_SHARE_EVENT_LEN);
+
+ // send
+ MatrixClientSendToDeviceEncrypted(client,
+ client->userId,
+ deviceId,
+ encryptedBuffer,
+ "m.room_key");
+
+ return true;
+}
+
+// bool
+// MatrixClientSetMegolmOutSession(
+// MatrixClient * client,
+// const char * roomId,
+// MatrixMegolmOutSession session)
+// {
+// if (client->numMegolmOutSessions < 10)
+// {
+// session.roomId = roomId;
+// client->megolmOutSessions[client->numMegolmOutSessions] = session;
+// client->numMegolmOutSessions++;
+
+// return true;
+// }
+// return false;
+// }
+
+bool
+MatrixClientGetMegolmOutSession(
+ MatrixClient * client,
+ const char * roomId,
+ MatrixMegolmOutSession ** outSession)
+{
+ for (int i = 0; i < client->numMegolmOutSessions; i++)
+ {
+ if (strcmp(client->megolmOutSessions[i].roomId, roomId) == 0)
+ {
+ *outSession = &client->megolmOutSessions[i];
+ return true;
+ }
+ }
+
+ if (client->numMegolmOutSessions < NUM_MEGOLM_SESSIONS)
+ {
+ MatrixMegolmOutSessionInit(
+ &client->megolmOutSessions[client->numMegolmOutSessions],
+ roomId);
+
+ *outSession = &client->megolmOutSessions[client->numMegolmOutSessions];
+
+ client->numMegolmOutSessions++;
+
+ return true;
+ }
+
+ return false;
+}
+
+bool
+MatrixClientGetOlmSession(
+ MatrixClient * client,
+ const char * deviceId,
+ MatrixOlmSession ** outSession)
+{
+ for (int i = 0; i < client->numOlmSessions; i++)
+ {
+ if (strcmp(client->olmSessions[i].deviceId, deviceId) == 0)
+ {
+ *outSession = &client->olmSessions[i];
+ return true;
+ }
+ }
+
+ if (client->numOlmSessions < NUM_OLM_SESSIONS)
+ {
+ MatrixOlmSessionInit(
+ &client->olmSessions[client->numOlmSessions],
+ deviceId);
+
+ *outSession = &client->olmSessions[client->numOlmSessions];
+
+ client->numOlmSessions++;
+
+ return true;
+ }
+
+ return false;
+}
+
+// https://spec.matrix.org/v1.6/client-server-api/#put_matrixclientv3sendtodeviceeventtypetxnid
+bool
+MatrixClientSendToDevice(
+ MatrixClient * client,
+ const char * userId,
+ const char * deviceId,
+ const char * message,
+ const char * msgType)
+{
+ static char requestUrl[MAX_URL_LEN];
+ sprintf(requestUrl,
+ TODEVICE_URL, msgType, (int)time(NULL));
+
+ static char eventBuffer[TODEVICE_EVENT_SIZE];
+ snprintf(eventBuffer, TODEVICE_EVENT_SIZE,
+ "{"
+ "\"messages\": {"
+ "\"%s\": {"
+ "\"%s\":%s"
+ "}"
+ "}"
+ "}",
+ userId,
+ deviceId,
+ message);
+
+ static char responseBuffer[ROOMEVENT_RESPONSE_SIZE];
+ bool result =
+ MatrixHttpPut(client,
+ requestUrl,
+ eventBuffer,
+ responseBuffer, ROOMEVENT_RESPONSE_SIZE,
+ true);
+
+ return result;
+}
+
+bool
+MatrixClientSendToDeviceEncrypted(
+ MatrixClient * client,
+ const char * userId,
+ const char * deviceId,
+ const char * message,
+ const char * msgType)
+{
+ // get olm session
+ MatrixOlmSession * olmSession;
+ MatrixClientGetOlmSession(client, deviceId, &olmSession);
+
+ // create event json
+ char deviceKey[DEVICE_KEY_SIZE];
+ MatrixClientGetDeviceKey(client, deviceId, deviceKey, DEVICE_KEY_SIZE);
+ const char * senderKey = client->deviceKey;
+
+ static char eventBuffer[TODEVICE_EVENT_SIZE];
+ sprintf(eventBuffer,
+ "{"
+ "\"type\": \"%s\","
+ "\"content\": \"%s\","
+ "\"sender\": \"%s\","
+ "\"recipient\": \"%s\","
+ "\"recipient_keys\": {"
+ "\"ed25519\": \"%s\""
+ "},"
+ "\"keys\": {"
+ "\"ed25519\": \"%s\""
+ "}"
+ "}",
+ msgType,
+ message,
+ client->userId,
+ userId, // recipient user id
+ deviceKey, // recipient device key
+ client->deviceKey);
+
+ // encrypt
+ static char encryptedBuffer[ENCRYPTED_REQUEST_SIZE];
+ MatrixOlmSessionEncrypt(olmSession,
+ eventBuffer,
+ encryptedBuffer, ENCRYPTED_REQUEST_SIZE);
+
+ static char encryptedEventBuffer[ENCRYPTED_EVENT_SIZE];
+ sprintf(encryptedEventBuffer,
+ "{"
+ "\"algorithm\":\"m.megolm.v1.aes-sha2\","
+ "\"sender_key\":\"%s\","
+ "\"ciphertext\":{"
+ "\"%s\":{"
+ "\"body\":\"%s\","
+ "\"type\":\"%d\""
+ "}"
+ "}"
+ "}",
+ senderKey,
+ deviceKey,
+ encryptedBuffer,
+ olmSession->type);
+
+ // send
+ return MatrixClientSendToDevice(
+ client,
+ userId,
+ deviceId,
+ encryptedEventBuffer,
+ "m.room.encrypted");
+}
+
+bool
+MatrixClientFindDevice(
+ MatrixClient * client,
+ const char * deviceId,
+ MatrixDevice ** outDevice)
+{
+ MatrixClientRequestDeviceKeys(client);
+
+ for (int i = 0; i < client->numDevices; i++)
+ {
+ if (strcmp(client->devices[i].deviceId, deviceId) == 0)
+ {
+ *outDevice = &client->devices[i];
+ return true;
+ }
+ }
+
+ *outDevice = NULL;
+ return false;
+}
+
+bool
+MatrixClientGetDeviceKey(
+ MatrixClient * client,
+ const char * deviceId,
+ char * outDeviceKey, int outDeviceKeyCap)
+{
+ MatrixClientRequestDeviceKeys(client);
+
+ MatrixDevice * device;
+ if (MatrixClientFindDevice(client, deviceId, &device))
+ {
+ strncpy(outDeviceKey, device->deviceKey, outDeviceKeyCap);
+ return true;
+ }
+
+ return false;
+}
+
+// https://spec.matrix.org/v1.6/client-server-api/#post_matrixclientv3keysquery
+bool
+MatrixClientRequestDeviceKeys(
+ MatrixClient * client)
+{
+ char userIdEscaped[USER_ID_SIZE];
+ JsonEscape(client->userId, strlen(client->userId),
+ userIdEscaped, USER_ID_SIZE);
+
+ char request[KEYS_QUERY_REQUEST_SIZE];
+ snprintf(request, KEYS_QUERY_REQUEST_SIZE,
+ "{\"device_keys\":{\"%s\":[]}}", userIdEscaped);
+
+ char responseBuffer[KEYS_QUERY_RESPONSE_SIZE];
+ bool requestResult = MatrixHttpPost(client,
+ KEYS_QUERY_URL,
+ request,
+ responseBuffer, KEYS_QUERY_RESPONSE_SIZE,
+ true);
+
+ if (requestResult)
+ {
+ // query for retrieving device keys for user id
+ char query[JSON_QUERY_SIZE];
+ snprintf(query, JSON_QUERY_SIZE,
+ "$.device_keys.%s", userIdEscaped);
+
+ const char * s;
+ int slen;
+ mjson_find(responseBuffer, strlen(responseBuffer),
+ query, &s, &slen);
+
+ // loop over keys
+
+ int koff, klen, voff, vlen, vtype, off;
+ for (off = 0; (off = mjson_next(s, slen, off, &koff, &klen,
+ &voff, &vlen, &vtype)) != 0; ) {
+ const char * key = s + koff;
+ const char * val = s + voff;
+
+ // set device id, "key" is the JSON key
+ MatrixDevice d;
+ strncpy(d.deviceId, key, klen);
+
+ // look for device key in value
+ char deviceKeyQuery[JSON_QUERY_SIZE];
+ snprintf(deviceKeyQuery, JSON_QUERY_SIZE,
+ "$.keys.curve25519:%.*s", klen, key);
+ mjson_get_string(val, vlen,
+ deviceKeyQuery, d.deviceKey, DEVICE_KEY_SIZE);
+
+ // add device
+ if (client->numDevices < NUM_DEVICES)
+ {
+ client->devices[client->numDevices] = d;
+ client->numDevices++;
+ }
+ else
+ {
+ return false;
+ }
+ }
+
+ return true;
+ }
+ else
+ {
+ return false;
+ }
+}
|