Support for contact discovery service - Part 1

Reflects signalapp/libsignal-service-java@69bd207

SigningCertificate.cs isn't fully implemented. There's some changes because of what looks like bugs in Java Part 1.

Author: golf1052

libsignal-service-dotnet-tests/ConnectionTest.cs

@@ -1,4 +1,4 @@
-using libsignalservice;
+using libsignalservice;
 using libsignalservice.configuration;
 using libsignalservice.push.exceptions;
 using Microsoft.VisualStudio.TestTools.UnitTesting;
@@ -14,7 +14,7 @@ namespace libsignal_service_dotnet_tests
     public class ConnectionTest
     {
         public static SignalServiceUrl[] ServiceUrls = new SignalServiceUrl[] { new SignalServiceUrl("https://textsecure-service.whispersystems.org") };
-        public static SignalServiceConfiguration ServiceConfiguration = new SignalServiceConfiguration(ServiceUrls, null);
+        public static SignalServiceConfiguration ServiceConfiguration = new SignalServiceConfiguration(ServiceUrls, null, null);
         public static string UserAgent = "libsignal-service-dotnet-tests";
 
         [TestMethod]

libsignal-service-dotnet/HelperMethods.cs

@@ -0,0 +1,25 @@
+namespace libsignalservice
+{
+    public static class HelperMethods
+    {
+        // taken from https://stackoverflow.com/a/14333437/6681022
+        public static string ByteArrayToHexString(byte[]? bytes)
+        {
+            if (bytes == null)
+            {
+                return string.Empty;
+            }
+
+            char[] c = new char[bytes.Length * 2];
+            int b;
+            for (int i = 0; i < bytes.Length; i++)
+            {
+                b = bytes[i] >> 4;
+                c[i * 2] = (char)(55 + b + (((b-10)>>31)&-7));
+                b = bytes[i] & 0xF;
+                c[i * 2 + 1] = (char)(55 + b + (((b-10)>>31)&-7));
+            }
+            return new string(c);
+        }
+    }
+}

libsignal-service-dotnet/SignalServiceAccountManager.cs

@@ -6,12 +6,16 @@
 using libsignal.util;
 using libsignal_service_dotnet.messages.calls;
 using libsignalservice.configuration;
+using libsignalservice.contacts.crypto;
+using libsignalservice.contacts.entities;
 using libsignalservice.crypto;
 using libsignalservice.messages.multidevice;
 using libsignalservice.push;
 using libsignalservice.push.http;
 using libsignalservice.util;
 using libsignalservice.websocket;
+using org.whispersystems.curve25519;
+using Org.BouncyCastle.Crypto;
 using Strilanc.Value;
 using System;
 using System.Collections.Generic;
@@ -248,6 +252,61 @@ public async Task<List<ContactTokenDetails>> GetContacts(CancellationToken token
             return activeTokens;
         }
 
+        public async Task<IList<string>> GetRegisteredUsers(IList<string> e164numbers, string mrenclave, CancellationToken? token = null)
+        {
+            if (token == null)
+            {
+                token = CancellationToken.None;
+            }
+            try
+            {
+                string authorizationToken = await PushServiceSocket.GetContactDiscoveryAuthorization(token);
+                Curve25519 curve = Curve25519.getInstance(Curve25519.BEST);
+                org.whispersystems.curve25519.Curve25519KeyPair keyPair = curve.generateKeyPair();
+
+                ContactDiscoveryCipher cipher = new ContactDiscoveryCipher();
+                RemoteAttestationRequest attestationRequest = new RemoteAttestationRequest(keyPair.getPublicKey());
+                (RemoteAttestationResponse, IList<string>) attestationResponse = await PushServiceSocket.GetContactDiscoveryRemoteAttestation(authorizationToken, attestationRequest, mrenclave, token);
+
+                RemoteAttestationKeys keys = new RemoteAttestationKeys(keyPair, attestationResponse.Item1.ServerEphemeralPublic!, attestationResponse.Item1.ServerStaticPublic!);
+                Quote quote = new Quote(attestationResponse.Item1.Quote!);
+                byte[] requestId = cipher.GetRequestId(keys, attestationResponse.Item1);
+
+                cipher.VerifyServerQuote(quote, attestationResponse.Item1.ServerStaticPublic!, mrenclave);
+                cipher.VerifyIasSignature(attestationResponse.Item1.Certificates!, attestationResponse.Item1.SignatureBody!, attestationResponse.Item1.Signature!, quote);
+
+                RemoteAttestation remoteAttestation = new RemoteAttestation(requestId, keys);
+                List<string> addressBook = new List<string>();
+
+                foreach (string e164number in e164numbers)
+                {
+                    addressBook.Add(e164number.Substring(1));
+                }
+
+                DiscoveryRequest request = cipher.CreateDiscoveryRequest(addressBook, remoteAttestation);
+                DiscoveryResponse response = await PushServiceSocket.GetContactDiscoveryRegisteredUsers(authorizationToken, request, attestationResponse.Item2, mrenclave, token);
+                byte[] data = cipher.GetDiscoveryResponseData(response, remoteAttestation);
+
+                IEnumerator<string> addressBookIterator = addressBook.GetEnumerator();
+                List<string> results = new List<string>();
+
+                foreach (byte aData in data)
+                {
+                    addressBookIterator.MoveNext();
+                    string candidate = addressBookIterator.Current;
+
+                    if (aData != 0)
+                        results.Add($"+{candidate}");
+                }
+
+                return results;
+            }
+            catch (InvalidCipherTextException ex)
+            {
+                throw new UnauthenticatedResponseException(ex);
+            }
+        }
+
         /// <summary>
         /// Request a UUID from the server for linking as a new device.
         /// Called by the new device.

libsignal-service-dotnet/configuration/SignalCdnUrl.cs

@@ -1,13 +1,15 @@
-using System;
-using System.Collections.Generic;
-using System.Text;
+using libsignalservice.push;
 
 namespace libsignalservice.configuration
 {
-#pragma warning disable CS1591 // Missing XML comment for publicly visible type or member
     public class SignalCdnUrl : SignalUrl
     {
-        public SignalCdnUrl(string url, string hostHeader) : base(url, hostHeader) { }
+        public SignalCdnUrl(string url) : base(url)
+        {
+        }
+
+        public SignalCdnUrl(string url, string? hostHeader) : base(url, hostHeader)
+        {
+        }
     }
-#pragma warning restore CS1591 // Missing XML comment for publicly visible type or member
 }

libsignal-service-dotnet/configuration/SignalContactDiscoveryUrl.cs

@@ -0,0 +1,15 @@
+using libsignalservice.push;
+
+namespace libsignalservice.configuration
+{
+    public class SignalContactDiscoveryUrl : SignalUrl
+    {
+        public SignalContactDiscoveryUrl(string url) : base(url)
+        {
+        }
+
+        public SignalContactDiscoveryUrl(string url, string? hostHeader) : base(url, hostHeader)
+        {
+        }
+    }
+}

libsignal-service-dotnet/configuration/SignalServiceConfiguration.cs

@@ -1,16 +1,16 @@
-namespace libsignalservice.configuration
+namespace libsignalservice.configuration
 {
-#pragma warning disable CS1591 // Missing XML comment for publicly visible type or member
     public class SignalServiceConfiguration
     {
         public SignalServiceUrl[] SignalServiceUrls { get; }
         public SignalCdnUrl[] SignalCdnUrls { get; }
+        public SignalContactDiscoveryUrl[] SignalContactDiscoveryUrls { get; }
 
-        public SignalServiceConfiguration(SignalServiceUrl[] signalServiceUrls, SignalCdnUrl[] signalCdnUrls)
+        public SignalServiceConfiguration(SignalServiceUrl[] signalServiceUrls, SignalCdnUrl[] signalCdnUrls, SignalContactDiscoveryUrl[] signalContactDiscoveryUrls)
         {
             SignalServiceUrls = signalServiceUrls;
             SignalCdnUrls = signalCdnUrls;
+            SignalContactDiscoveryUrls = signalContactDiscoveryUrls;
         }
     }
-#pragma warning restore CS1591 // Missing XML comment for publicly visible type or member
 }

libsignal-service-dotnet/configuration/SignalServiceUrl.cs

@@ -1,11 +1,11 @@
-namespace libsignalservice.configuration
+using libsignalservice.push;
+
+namespace libsignalservice.configuration
 {
-#pragma warning disable CS1591 // Missing XML comment for publicly visible type or member
-    public class SignalServiceUrl : SignalUrl
-    {
-        public SignalServiceUrl(string url): this(url, null) {}
-
-        public SignalServiceUrl(string url, string hostHeader) : base(url, hostHeader) {}
+    public class SignalServiceUrl : SignalUrl
+    {
+        public SignalServiceUrl(string url) : base(url) {}
+
+        public SignalServiceUrl(string url, string? hostHeader) : base(url, hostHeader) {}
     }
-#pragma warning restore CS1591 // Missing XML comment for publicly visible type or member
-}
+}

libsignal-service-dotnet/configuration/SignalUrl.cs

@@ -1,22 +1,20 @@
-using System;
-using System.Collections.Generic;
-using System.Text;
+using libsignalservice.push;
 
 namespace libsignalservice.configuration
 {
-#pragma warning disable CS1591 // Missing XML comment for publicly visible type or member
     public class SignalUrl
     {
         public string Url { get; }
         public string? HostHeader { get; }
 
-        public SignalUrl(string url) : this(url, null) { }
+        public SignalUrl(string url) : this(url, null)
+        {
+        }
 
-        public SignalUrl(string url, string hostHeader)
+        public SignalUrl(string url, string? hostHeader)
         {
             Url = url;
             HostHeader = hostHeader;
         }
     }
-#pragma warning restore CS1591 // Missing XML comment for publicly visible type or member
 }

libsignal-service-dotnet/contacts/ContactDiscoveryClient.cs

@@ -0,0 +1,94 @@
+using System.Collections.Generic;
+using System.IO;
+using System.Threading;
+using System.Threading.Tasks;
+using libsignalservice.contacts.crypto;
+using libsignalservice.contacts.entities;
+using libsignalservice.push;
+using org.whispersystems.curve25519;
+using Org.BouncyCastle.Crypto;
+
+namespace libsignalservice.contacts
+{
+    public class ContactDiscoveryClient
+    {
+        private readonly PushServiceSocket socket;
+
+        public ContactDiscoveryClient(PushServiceSocket socket)
+        {
+            this.socket = socket;
+        }
+
+        public async Task<RemoteAttestation> GetRemoteAttestation(string mrenclave, CancellationToken? token)
+        {
+            if (token == null)
+            {
+                token = CancellationToken.None;
+            }
+            try
+            {
+                Curve25519 curve = Curve25519.getInstance(Curve25519.BEST);
+                Curve25519KeyPair keyPair = curve.generateKeyPair();
+
+                ContactDiscoveryCipher cipher = new ContactDiscoveryCipher();
+                RemoteAttestationRequest request = new RemoteAttestationRequest(keyPair.getPublicKey());
+                RemoteAttestationResponse response = (await socket.GetContactDiscoveryRemoteAttestation("", request, mrenclave, token.Value)).Item1;
+
+                RemoteAttestationKeys keys = new RemoteAttestationKeys(keyPair, response.ServerEphemeralPublic!, response.ServerStaticPublic!);
+                Quote quote = new Quote(response.Quote!);
+                byte[] requestId = cipher.GetRequestId(keys, response);
+
+                cipher.VerifyServerQuote(quote, response.ServerStaticPublic!, mrenclave);
+                cipher.VerifyIasSignature(response.Certificates!, response.SignatureBody!, response.Signature!, quote);
+
+                return new RemoteAttestation(requestId, keys);
+            }
+            catch (InvalidCipherTextException ex)
+            {
+                throw new UnauthenticatedResponseException(ex);
+            }
+        }
+
+        /// <summary>
+        /// 
+        /// </summary>
+        /// <param name="addressBook"></param>
+        /// <param name="remoteAttestation"></param>
+        /// <param name="mrenclave"></param>
+        /// <param name="token"></param>
+        /// <returns></returns>
+        /// <exception cref="IOException"></exception>
+        public async Task<IList<string>> GetRegisteredUsers(IList<string> addressBook, RemoteAttestation remoteAttestation, string mrenclave, CancellationToken? token)
+        {
+            if (token == null)
+            {
+                token = CancellationToken.None;
+            }
+            try
+            {
+                ContactDiscoveryCipher cipher = new ContactDiscoveryCipher();
+                DiscoveryRequest request = cipher.CreateDiscoveryRequest(addressBook, remoteAttestation);
+                DiscoveryResponse response = await socket.GetContactDiscoveryRegisteredUsers("", request, new List<string>(), mrenclave, token.Value);
+                byte[] data = cipher.GetDiscoveryResponseData(response, remoteAttestation);
+
+                IEnumerator<string> addressBookIterator = addressBook.GetEnumerator();
+                List<string> results = new List<string>();
+
+                foreach (byte aData in data)
+                {
+                    addressBookIterator.MoveNext();
+                    string candidate = addressBookIterator.Current;
+
+                    if (aData != 0)
+                        results.Add(candidate);
+                }
+
+                return results;
+            }
+            catch (InvalidCipherTextException ex)
+            {
+                throw new IOException(null, ex);
+            }
+        }
+    }
+}