feat: support EAR with incremental sync - WPB-17302

WireData/Sources/WireData/Schema/ZMEventModel.xcdatamodeld/.xccurrentversion

@@ -3,6 +3,6 @@
 <plist version="1.0">
 <dict>
 	<key>_XCCurrentVersionName</key>
-	<string>ZMEventModel6.0.xcdatamodel</string>
+	<string>ZMEventModel7.0.xcdatamodel</string>
 </dict>
 </plist>

WireData/Sources/WireData/Schema/ZMEventModel.xcdatamodeld/ZMEventModel7.0.xcdatamodel/contents

@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<model type="com.apple.IDECoreDataModeler.DataModel" documentVersion="1.0" lastSavedToolsVersion="24411" systemVersion="24G419" minimumToolsVersion="Xcode 7.0" sourceLanguage="Objective-C" userDefinedModelVersionIdentifier="7.0">
+    <entity name="StoredUpdateEvent" representedClassName="StoredUpdateEvent" syncable="YES">
+        <attribute name="debugInformation" optional="YES" attributeType="String" syncable="YES"/>
+        <attribute name="eventHash" attributeType="Integer 64" defaultValueString="0" usesScalarValueType="NO" syncable="YES"/>
+        <attribute name="isCallEvent" attributeType="Boolean" defaultValueString="NO" usesScalarValueType="NO" syncable="YES"/>
+        <attribute name="isEncrypted" optional="YES" attributeType="Boolean" usesScalarValueType="NO" syncable="YES"/>
+        <attribute name="isTransient" optional="YES" attributeType="Boolean" usesScalarValueType="NO" syncable="YES"/>
+        <attribute name="payload" optional="YES" attributeType="Transformable" valueTransformerName="NSSecureUnarchiveFromData" syncable="YES"/>
+        <attribute name="sortIndex" optional="YES" attributeType="Integer 64" defaultValueString="0" usesScalarValueType="NO" indexed="YES" syncable="YES"/>
+        <attribute name="source" optional="YES" attributeType="Integer 16" defaultValueString="0" usesScalarValueType="NO" syncable="YES"/>
+        <attribute name="uuidString" optional="YES" attributeType="String" syncable="YES"/>
+    </entity>
+    <entity name="StoredUpdateEventEnvelope" representedClassName="WireDataModel.StoredUpdateEventEnvelope" syncable="YES">
+        <attribute name="data" attributeType="Binary" syncable="YES"/>
+        <attribute name="isBackgroundAccessible" optional="YES" attributeType="Boolean" usesScalarValueType="NO" syncable="YES"/>
+        <attribute name="isEncrypted" optional="YES" attributeType="Boolean" usesScalarValueType="NO" syncable="YES"/>
+        <attribute name="sortIndex" attributeType="Integer 64" defaultValueString="0" usesScalarValueType="NO" indexed="YES" syncable="YES"/>
+    </entity>
+</model>

WireDomain/Sources/WireDomain/Components/ClientSessionComponent.swift

@@ -60,6 +60,7 @@
     private let syncContext: NSManagedObjectContext
     private let eventContext: NSManagedObjectContext
 
+    private let earService: any EARServiceInterface
     private let mlsService: any MLSServiceInterface
     private let mlsDecryptionService: any MLSDecryptionServiceInterface
     private let proteusService: any ProteusServiceInterface
@@ -80,6 +81,7 @@
         sharedUserDefaults: UserDefaults,
         syncContext: NSManagedObjectContext,
         eventContext: NSManagedObjectContext,
+        earService: any EARServiceInterface,
         mlsService: any MLSServiceInterface,
         mlsDecryptionService: any MLSDecryptionServiceInterface,
         proteusService: any ProteusServiceInterface,
@@ -97,6 +99,7 @@
         self.sharedUserDefaults = sharedUserDefaults
         self.syncContext = syncContext
         self.eventContext = eventContext
+        self.earService = earService
         self.mlsService = mlsService
         self.mlsDecryptionService = mlsDecryptionService
         self.proteusService = proteusService
@@ -405,7 +408,9 @@
         syncStateSubject: syncStateSubject,
         liveBrokenGroupSubject: liveBrokenGroupSubject,
         journal: journal,
-        mlsGroupRepairAgent: mlsGroupRepairAgent
+        mlsGroupRepairAgent: mlsGroupRepairAgent,
+        earService: earService,
+        notificationContext: syncContext.notificationContext
     )
 
     public lazy var incrementalSyncV2: IncrementalSyncV2 = if let sharedContainerURL {
@@ -423,6 +428,7 @@
             coreCryptoProvider: coreCryptoProvider,
             journal: journal,
             mlsGroupRepairAgent: mlsGroupRepairAgent,
+            earService: earService,
             createPushChannelState: { [selfClientID] in
                 PushChannelState(sharedContainerURL: sharedContainerURL, clientID: selfClientID)
             }
@@ -842,7 +848,7 @@
     )
 
     public lazy var workAgent: WorkAgent = .init(scheduler: PriorityOrderWorkItemScheduler())
 
     public lazy var conversationUpdatesGenerator: IncrementalGeneratorProtocol = ConversationUpdatesGenerator(
         repository: conversationRepository,
         context: syncContext,
@@ -851,7 +857,7 @@
             self?.workAgent.submitItem(workItem)
         }
     )
 
     public lazy var commitPendingProposalsGenerator: LiveGeneratorProtocol = CommitPendingProposalsGenerator(
         repository: conversationRepository,
         mlsService: mlsService,
@@ -888,7 +894,7 @@
         liveBrokenGroupSubject.sink { [weak self]  liveMLSBrokenGroups in
             guard let self else { return }
             WireLogger.mls.debug("detected during live sync \(liveMLSBrokenGroups.count) broken MLS groups")
             let item = RepairBrokenMLSGroupsItem(repairAgent: mlsGroupRepairAgent)
             Task {
                 await self.workAgent.submitItem(item)
             }

WireDomain/Sources/WireDomain/Components/UserSessionComponent.swift

@@ -38,6 +38,7 @@ public final class UserSessionComponent {
     private let syncContext: NSManagedObjectContext
     private let eventContext: NSManagedObjectContext
 
+    private let earService: any EARServiceInterface
     private let mlsService: any MLSServiceInterface
     private let mlsDecryptionService: any MLSDecryptionServiceInterface
     private let proteusService: any ProteusServiceInterface
@@ -58,6 +59,7 @@ public final class UserSessionComponent {
         sharedContainerURL: URL?,
         syncContext: NSManagedObjectContext,
         eventContext: NSManagedObjectContext,
+        earService: any EARServiceInterface,
         mlsService: any MLSServiceInterface,
         mlsDecryptionService: any MLSDecryptionServiceInterface,
         proteusService: any ProteusServiceInterface,
@@ -75,6 +77,7 @@ public final class UserSessionComponent {
         self.sharedUserDefaults = sharedUserDefaults
         self.syncContext = syncContext
         self.eventContext = eventContext
+        self.earService = earService
         self.mlsService = mlsService
         self.mlsDecryptionService = mlsDecryptionService
         self.proteusService = proteusService
@@ -103,6 +106,7 @@ public final class UserSessionComponent {
             sharedUserDefaults: sharedUserDefaults,
             syncContext: syncContext,
             eventContext: eventContext,
+            earService: earService,
             mlsService: mlsService,
             mlsDecryptionService: mlsDecryptionService,
             proteusService: proteusService,

WireDomain/Sources/WireDomain/Helpers/EAREncryptionHelper.swift

@@ -0,0 +1,47 @@
+//
+// Wire
+// Copyright (C) 2026 Wire Swiss GmbH
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+// GNU General Public License for more details.
+//
+// You should have received a copy of the GNU General Public License
+// along with this program. If not, see http://www.gnu.org/licenses/.
+//
+
+import Foundation
+
+enum EAREncryptionHelper {
+    static func encrypt(
+        data: Data,
+        publicKey: SecKey
+    ) -> Data? {
+
+        SecKeyCreateEncryptedData(
+            publicKey,
+            .eciesEncryptionCofactorX963SHA256AESGCM,
+            data as CFData,
+            nil
+        ) as? Data
+    }
+
+    static func decrypt(
+        data: Data,
+        privateKey: SecKey
+    ) -> Data? {
+
+        SecKeyCreateDecryptedData(
+            privateKey,
+            .eciesEncryptionCofactorX963SHA256AESGCM,
+            data as CFData,
+            nil
+        ) as? Data
+    }
+}

WireDomain/Sources/WireDomain/Helpers/ProtobufMessageDecoder.swift

@@ -0,0 +1,78 @@
+//
+// Wire
+// Copyright (C) 2026 Wire Swiss GmbH
+//
+// This program is free software: you can redistribute it and/or modify
+// it under the terms of the GNU General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+// GNU General Public License for more details.
+//
+// You should have received a copy of the GNU General Public License
+// along with this program. If not, see http://www.gnu.org/licenses/.
+//
+
+import Foundation
+import GenericMessageProtocol
+
+struct ProtobufMessageDecoder {
+
+    private init() {}
+
+    static func getProtobufMessage(
+        from base64Message: String,
+        externalData: String? = nil
+    ) -> GenericMessage? {
+        var genericMessage = GenericMessage(from: base64Message, validate: true)
+
+        // If the encrypted payload is bigger than a certain size, an External Message is sent instead of a regular
+        // message.
+        // See `External` section from https://github.com/wireapp/generic-message-proto
+        // See `External messages` section from
+        // https://wearezeta.atlassian.net/wiki/spaces/ENGINEERIN/pages/20545866/Messages
+        if let externalData,
+           case let .some(.external(external)) = genericMessage?.content {
+
+            // Content message is external, we decrypt the external payload
+            // and turns it back into a generic non-external content message.
+            if let decryptedGenericMessage = decryptExternalMessage(
+                externalData: externalData,
+                external: external
+            ) {
+                genericMessage = decryptedGenericMessage
+            } else {
+                return nil
+            }
+        }
+
+        return genericMessage
+    }
+
+    private static func decryptExternalMessage(
+        externalData: String,
+        external: External
+    ) -> GenericMessage? {
+        let externalData = Data(base64Encoded: externalData)
+        let externalSha256 = externalData?.zmSHA256Digest()
+
+        guard externalSha256 == external.sha256 else {
+            return nil
+        }
+
+        let decryptedData = externalData?.zmDecryptPrefixedPlainTextIV(
+            key: external.otrKey
+        )
+
+        guard
+            let base64String = decryptedData?.base64String(),
+            let message = GenericMessage(from: base64String, validate: true)
+        else { return nil }
+
+        return message
+    }
+
+}

WireDomain/Sources/WireDomain/Notifications/Components/NSEClientScope.swift

@@ -55,6 +55,7 @@
     private let localDomain: String
     private let isFederationEnabled: Bool
     private let coreDataStack: CoreDataStack
+    private let earService: EARServiceInterface
 
     private let pushChannelCoordinator: AppExtensionPushChannelCoordinator
     private var currentTask: Task<Void, any Error>?
@@ -68,7 +69,8 @@
         apiVersion: WireNetwork.APIVersion,
         localDomain: String,
         isFederationEnabled: Bool,
-        coreDataStack: CoreDataStack
+        coreDataStack: CoreDataStack,
+        earService: EARServiceInterface
     ) {
         self.clientID = clientID
         self.restNetworkService = restNetworkService
@@ -78,6 +80,7 @@
         self.isFederationEnabled = isFederationEnabled
         self.coreDataStack = coreDataStack
         self.pushChannelCoordinator = AppExtensionPushChannelCoordinator(clientID: clientID)
+        self.earService = earService
 
         super.init(parent: parent)
     }
@@ -88,6 +91,7 @@
     ) async throws {
         // Pull pending update events.
         let eventStream: AsyncStream<[UpdateEvent]>
+        let publicKeys = try earService.fetchPublicKeys()
 
         if dependency.journal[.isConsumableNotificationsEnabled] {
             let (useCase, stream) = syncEventsUseCase()
@@ -107,8 +111,8 @@
                 } catch {
                     throw Failure.pushChannelAlreadyOpened
                 }
 
                 monitoringTask = Task { [weak self] in
                     var request = await self?.pushChannelCoordinator.listenForYieldRequests()
                     if Task.isCancelled {
                         return
@@ -118,7 +122,7 @@
                     request?.acknowledge()
                     WireLogger.sync.debug("notified main App to resume sync", attributes: .incrementalSync, .newNSE)
                 }
 
                 currentTask = Task {
                     do {
                         try Task.checkCancellation()
@@ -144,7 +148,7 @@
             }
 
         } else {
-            eventStream = try await pullEventsUseCase.invoke()
+            eventStream = try await pullEventsUseCase.invoke(publicKeys: publicKeys)
         }
 
         // Generate notifications from events.
@@ -245,7 +249,7 @@
     }
 
     private var coreCryptoProvider: CoreCryptoProvider {
         shared {
             CoreCryptoProvider(
                 selfUserID: dependency.accountID,
                 sharedContainerURL: dependency.appContainerURL,
@@ -303,7 +307,7 @@
     }
 
     private var mlsActionExecutor: MLSActionExecutor {
         shared {
             MLSActionExecutor(
                 coreCryptoProvider: coreCryptoProvider,
                 featureRepository: featureRepository

WireDomain/Sources/WireDomain/Notifications/Components/NSEUserScope.swift

@@ -155,6 +155,13 @@
             throw Failure.mainAppRequired(message: "no self client id")
         }
 
+        let earService = await EARService(
+            accountID: accountID,
+            coreDataStack: coreDataStack,
+            sharedUserDefaults: dependency.sharedUserDefaults,
+            authenticationContext: AuthenticationContext(storage: LAContextStorage())
+        )
+
         // Continue with client.
         let clientScope = clientScope(
             clientID: clientID,
@@ -163,7 +170,8 @@
             apiVersion: metadata.apiVersion,
             localDomain: metadata.domain,
             isFederationEnabled: metadata.isFederationEnabled,
-            coreDataStack: coreDataStack
+            coreDataStack: coreDataStack,
+            earService: earService
         )
 
         try await clientScope.processPayload(
@@ -266,7 +274,7 @@
             throw Failure.mainAppRequired(message: "database migration required")
         }
 
         do {
             try await coreDataStack.load()
         } catch {
             throw Failure.failedToLoadPersistenceStack(error)
@@ -304,7 +312,8 @@
         apiVersion: WireNetwork.APIVersion,
         localDomain: String,
         isFederationEnabled: Bool,
-        coreDataStack: CoreDataStack
+        coreDataStack: CoreDataStack,
+        earService: EARServiceInterface
     ) -> NSEClientScope {
         NSEClientScope(
             parent: self,
@@ -314,7 +323,8 @@
             apiVersion: apiVersion,
             localDomain: localDomain,
             isFederationEnabled: isFederationEnabled,
-            coreDataStack: coreDataStack
+            coreDataStack: coreDataStack,
+            earService: earService
         )
     }
 

WireDomain/Sources/WireDomain/Notifications/PullEventsUseCase.swift

@@ -23,7 +23,7 @@ import WireNetwork
 
 // sourcery: AutoMockable
 protocol PullEventsUseCaseProtocol {
-    func invoke() async throws -> AsyncStream<[UpdateEvent]>
+    func invoke(publicKeys: EARPublicKeys?) async throws -> AsyncStream<[UpdateEvent]>
 }
 
 struct PullEventsUseCase: PullEventsUseCaseProtocol {
@@ -40,14 +40,14 @@ struct PullEventsUseCase: PullEventsUseCaseProtocol {
         self.pendingEventsSync = pendingEventsSync
     }
 
-    func invoke() async throws -> AsyncStream<[UpdateEvent]> {
+    func invoke(publicKeys: EARPublicKeys?) async throws -> AsyncStream<[UpdateEvent]> {
         logger.info(
             "Attempting to fetch pending events",
             attributes: .newNSE, .safePublic
         )
 
         do {
-            return try await pendingEventsSync.pull()
+            return try await pendingEventsSync.pull(publicKeys: publicKeys)
 
         } catch {
             throw Failure.unableToPullPendingEvents(error)

WireDomain/Sources/WireDomain/Repositories/UpdateEvents/Protocols/UpdateEventsLocalStoreProtocol.swift

@@ -17,6 +17,7 @@
 //
 
 import CoreData
+import WireDataModel
 import WireNetwork
 
 // sourcery: AutoMockable
@@ -48,7 +49,8 @@ public protocol UpdateEventsLocalStoreProtocol {
 
     func persistEventEnvelope(
         _ eventEnvelope: UpdateEventEnvelope,
-        index: Int64
+        index: Int64,
+        publicKeys: EARPublicKeys?
     ) async throws
 
     /// Persists an event envelopes locally.
@@ -58,15 +60,19 @@ public protocol UpdateEventsLocalStoreProtocol {
 
     func persistEventEnvelopes(
         _ eventEnvelopes: [UpdateEventEnvelope],
-        index: Int64
+        index: Int64,
+        publicKeys: EARPublicKeys?
     ) async throws
 
     /// Fetches stored event envelopes.
     /// - parameter limit: A fetch limit.
+    /// - parameter privateKeys: The private keys to use for decryption (if needed).
     /// - returns: A list of decoded event envelopes and their related object IDs.
 
     func fetchStoredEventEnvelopes(
-        limit: UInt
+        limit: UInt,
+        privateKeys: EARPrivateKeys?,
+        backgroundAccessibleOnly: Bool
     ) async throws -> [(envelope: UpdateEventEnvelope, objectID: NSManagedObjectID)]
 
     /// Deletes next pending events locally.