strukturag · fancycode · Aug 7, 2015 · Aug 7, 2015 · Aug 7, 2015 · Aug 7, 2015
diff --git a/src/app/spreed-webrtc-server/channelling.go b/src/app/spreed-webrtc-server/channelling.go
@@ -195,6 +195,11 @@ type DataIncoming struct {
 	Sessions       *DataSessions
 	Room           *DataRoom
 	Iid            string `json:",omitempty"`
+
+	EncryptionRegister         *DataEncryptionRegister
+	EncryptionRequestKeyBundle *DataEncryptionRequestKeyBundle
+	EncryptionKeyBundle        *DataEncryptionKeyBundle
+	Encrypted                  *DataEncrypted
 }
 
 type DataOutgoing struct {
@@ -231,3 +236,38 @@ type DataAuthentication struct {
 	Type           string
 	Authentication *SessionToken
 }
+
+type DataEncryptionRegisterSignedPreKey struct {
+	Id        int64
+	Key       string
+	Signature string
+}
+
+type DataEncryptionRegister struct {
+	RegistrationId         int64
+	Identity               string
+	LastResortSignedPreKey DataEncryptionRegisterSignedPreKey
+}
+
+type DataEncryptionRequestKeyBundle struct {
+	To   string `json:",omitempty"`
+	Type string `json:",omitempty"`
+}
+
+type DataEncryptionKeyBundle struct {
+	To                    string `json:",omitempty"`
+	Type                  string `json:",omitempty"`
+	Identity              string
+	PreKeyId              int64  `json:",omitempty"`
+	PreKey                string `json:",omitempty"`
+	SignedPreKeyId        int64  `json:",omitempty"`
+	SignedPreKey          string `json:",omitempty"`
+	SignedPreKeySignature string `json:",omitempty"`
+}
+
+type DataEncrypted struct {
+	To      string `json:",omitempty"`
+	Type    string `json:",omitempty"`
+	Message string
+	Data    string
+}
diff --git a/src/app/spreed-webrtc-server/channelling_api.go b/src/app/spreed-webrtc-server/channelling_api.go
@@ -156,6 +156,30 @@ func (api *channellingAPI) OnIncoming(sender Sender, session *Session, msg *Data
 		}
 
 		return api.HandleRoom(session, msg.Room)
+	case "EncryptionRegister":
+		if msg.EncryptionRegister == nil {
+			return nil, NewDataError("bad_request", "message did not contain EncryptionRegister")
+		}
+
+		api.HandleEncryptionRegister(session, msg.EncryptionRegister)
+	case "EncryptionRequestKeyBundle":
+		if msg.EncryptionRequestKeyBundle == nil {
+			return nil, NewDataError("bad_request", "message did not contain EncryptionRequestKeyBundle")
+		}
+
+		return api.HandleEncryptionRequestKeyBundle(session, msg.EncryptionRequestKeyBundle)
+	case "EncryptionKeyBundle":
+		if msg.EncryptionKeyBundle == nil {
+			return nil, NewDataError("bad_request", "message did not contain EncryptionKeyBundle")
+		}
+
+		return api.HandleEncryptionKeyBundle(session, msg.EncryptionKeyBundle)
+	case "Encrypted":
+		if msg.Encrypted == nil {
+			return nil, NewDataError("bad_request", "message did not contain Encrypted")
+		}
+
+		return api.HandleEncrypted(session, msg.Encrypted)
 	default:
 		log.Println("OnText unhandled message type", msg.Type)
 	}
@@ -327,3 +351,42 @@ func (api *channellingAPI) HandleRoom(session *Session, room *DataRoom) (*DataRo
 	}
 	return room, err
 }
+
+func (api *channellingAPI) HandleEncryptionRegister(session *Session, register *DataEncryptionRegister) {
+	session.encryptionRegistration = register
+}
+
+func (api *channellingAPI) HandleEncryptionRequestKeyBundle(session *Session, request *DataEncryptionRequestKeyBundle) (interface{}, error) {
+	if request.To == "" {
+		return nil, NewDataError("empty_peer", "cannot send to empty peer")
+	}
+	// TODO(fancycode): Check if peer is online and return bundle based on
+	// registration data if not.
+	message := &DataEncryptionRequestKeyBundle{
+		Type: "EncryptionRequestKeyBundle",
+	}
+	session.Unicast(request.To, message)
+	return nil, nil
+}
+
+func (api *channellingAPI) HandleEncryptionKeyBundle(session *Session, bundle *DataEncryptionKeyBundle) (interface{}, error) {
+	if bundle.To == "" {
+		return nil, NewDataError("empty_peer", "cannot send to empty peer")
+	}
+	message := *bundle
+	message.To = ""
+	message.Type = "EncryptionKeyBundle"
+	session.Unicast(bundle.To, message)
+	return nil, nil
+}
+
+func (api *channellingAPI) HandleEncrypted(session *Session, data *DataEncrypted) (interface{}, error) {
+	if data.To == "" {
+		return nil, NewDataError("empty_peer", "cannot send to empty peer")
+	}
+	message := *data
+	message.To = ""
+	message.Type = "Encrypted"
+	session.Unicast(data.To, message)
+	return nil, nil
+}
diff --git a/src/app/spreed-webrtc-server/session.go b/src/app/spreed-webrtc-server/session.go
@@ -56,6 +56,8 @@ type Session struct {
 	subscribers   map[string]*Session
 	disconnected  bool
 	replaced      bool
+
+	encryptionRegistration *DataEncryptionRegister
 }
 
 func NewSession(manager SessionManager, unicaster Unicaster, broadcaster Broadcaster, rooms RoomStatusManager, buddyImages ImageCache, attestations *securecookie.SecureCookie, id, sid string) *Session {

diff --git a/src/styles/components/_chat.scss b/src/styles/components/_chat.scss
@@ -220,6 +220,19 @@
     }
   }
 
+  .identityhint {
+    color: $chat-typing;
+    font-size: .8em;
+    height: 16px;
+    overflow: hidden;
+    padding: 0 6px;
+    white-space: nowrap;
+
+    @include breakpt($breakpoint-chat-small, max-height) {
+      display: none;
+    }
+  }
+
   .inputbox {
     position: relative;
 
@@ -349,6 +362,15 @@
         width: 12px;
       }
 
+      &:after {
+        float: right;
+        font-family: FontAwesome;
+        left: 0;
+        margin-left: 1em;
+        text-align: center;
+        width: 12px;
+      }
+
       &.unread:before {
         color: $chat-msg-unread-icon-color;
         content: $chat-msg-unread-icon;
@@ -378,6 +400,11 @@
         color: $chat-msg-read-icon-color;
         content: $chat-msg-read-icon;
       }
+
+      &.encrypted:after {
+        color: $chat-msg-encrypted-icon-color;
+        content: $chat-msg-encrypted-icon;
+      }
     }
 
     .buddyPicture {

diff --git a/src/styles/global/_variables.scss b/src/styles/global/_variables.scss
@@ -123,13 +123,15 @@ $chat-msg-sent-icon-color: #5882fa !default;
 $chat-msg-delivered-icon-color: #5882fa !default;
 $chat-msg-received-icon-color: #84b819 !default;
 $chat-msg-read-icon-color: $chat-msg-default-icon-color !default;
+$chat-msg-encrypted-icon-color: $chat-msg-default-icon-color !default;
 
 $chat-msg-unread-icon: '\f0eb' !default;
 $chat-msg-sending-icon: '\f0ec' !default;
 $chat-msg-sent-icon: '\f003' !default;
 $chat-msg-delivered-icon: '\f019' !default;
 $chat-msg-received-icon: '\f06e' !default;
 $chat-msg-read-icon: '\f00c' !default;
+$chat-msg-encrypted-icon: '\f023' !default;
 
 $chat-msg-self-background: #fff !default;
 $chat-msg-self-color: $font-color !default;

diff --git a/static/js/controllers/chatroomcontroller.js b/static/js/controllers/chatroomcontroller.js
@@ -214,7 +214,7 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 
 		}
 
-		$scope.display = function(s, nodes, extra_css, title, picture) {
+		$scope.display = function(s, nodes, extra_css, title, picture, encrypted) {
 
 			var container;
 			var element;
@@ -235,6 +235,9 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 				lastMessageContainer = $("<ul>").appendTo(container);
 				if ($.trim(s)) {
 					element = $("<li>").html(s);
+					if (encrypted) {
+						element.addClass("encrypted");
+					}
 					element.prepend('<div class="timestamp-space">');
 					element.appendTo(lastMessageContainer);
 				}
@@ -267,7 +270,7 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 			$scope.display(s, nodes);
 		});
 
-		$scope.append = function(s, nodes) {
+		$scope.append = function(s, nodes, encrypted) {
 
 			if (!lastMessageContainer) {
 				return;
@@ -276,6 +279,9 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 			var scroll = this.canScroll();
 
 			var li = $("<li>");
+			if (encrypted) {
+				li.addClass("encrypted");
+			}
 			li.html(s)
 			lastMessageContainer.append(li)
 
@@ -325,7 +331,7 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 
 		};
 
-		$scope.showmessage = function(from, timestamp, message, nodes) {
+		$scope.showmessage = function(from, timestamp, message, nodes, encrypted) {
 
 			var sessonid = $scope.$parent.$parent.id;
 
@@ -354,7 +360,7 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 			var strMessage = s.join(" ");
 
 			if (!is_new_message) {
-				var element = this.append(strMessage, nodes);
+				var element = this.append(strMessage, nodes, encrypted);
 				if (element) {
 					return element;
 				}
@@ -375,7 +381,7 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 					nodes = ts;
 				}
 			}
-			return $scope.display(strMessage, nodes, msg.extra_css, msg.title, msg.picture);
+			return $scope.display(strMessage, nodes, msg.extra_css, msg.title, msg.picture, encrypted);
 
 		};
 
@@ -406,7 +412,7 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 			$scope.focus();
 		});
 
-		$scope.$on("received", function(event, from, data) {
+		$scope.$on("received", function(event, from, data, encrypted) {
 
 			var sessionid = $scope.$parent.$parent.id;
 			var mid = data.Mid || null;
@@ -482,7 +488,7 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 							subscope.from = from;
 							fileInfo(subscope, function(clonedElement, scope) {
 								var text = fromself ? translation._("You share file:") : translation._("Incoming file:");
-								element = $scope.showmessage(from, timestamp, text, clonedElement);
+								element = $scope.showmessage(from, timestamp, text, clonedElement, encrypted);
 							});
 							noop = true;
 						}
@@ -494,7 +500,7 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 							subscope.from = from;
 							geoLocation(subscope, function(clonedElement, scope) {
 								var text = fromself ? translation._("You shared your location:") : translation._("Location received:");
-								element = $scope.showmessage(from, timestamp, text, clonedElement);
+								element = $scope.showmessage(from, timestamp, text, clonedElement, encrypted);
 							});
 							noop = true;
 						}
@@ -527,7 +533,7 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 										}
 									}
 								}
-								element = $scope.showmessage(from, timestamp, text, clonedElement);
+								element = $scope.showmessage(from, timestamp, text, clonedElement, encrypted);
 							});
 							noop = true;
 						}
@@ -550,7 +556,7 @@ define(['jquery', 'underscore', 'moment', 'text!partials/fileinfo.html', 'text!p
 							message = safeMessage(data.Message);
 						}
 						// Show the beast.
-						element = $scope.showmessage(from, timestamp, message, nodes);
+						element = $scope.showmessage(from, timestamp, message, nodes, encrypted);
 					}
 
 					if (element && mid && !$scope.isgroupchat) {

diff --git a/static/js/controllers/uicontroller.js b/static/js/controllers/uicontroller.js
@@ -22,7 +22,7 @@
 "use strict";
 define(['jquery', 'underscore', 'bigscreen', 'moment', 'sjcl', 'modernizr', 'webrtc.adapter'], function($, _, BigScreen, moment, sjcl, Modernizr) {
 
-	return ["$scope", "$rootScope", "$element", "$window", "$timeout", "safeDisplayName", "safeApply", "mediaStream", "appData", "playSound", "desktopNotify", "alertify", "toastr", "translation", "fileDownload", "localStorage", "screensharing", "localStatus", "dialogs", "rooms", "constraints", function($scope, $rootScope, $element, $window, $timeout, safeDisplayName, safeApply, mediaStream, appData, playSound, desktopNotify, alertify, toastr, translation, fileDownload, localStorage, screensharing, localStatus, dialogs, rooms, constraints) {
+	return ["$scope", "$rootScope", "$element", "$window", "$timeout", "safeDisplayName", "safeApply", "mediaStream", "appData", "playSound", "desktopNotify", "alertify", "toastr", "translation", "fileDownload", "localStorage", "screensharing", "localStatus", "dialogs", "rooms", "constraints", "endToEndEncryption", function($scope, $rootScope, $element, $window, $timeout, safeDisplayName, safeApply, mediaStream, appData, playSound, desktopNotify, alertify, toastr, translation, fileDownload, localStorage, screensharing, localStatus, dialogs, rooms, constraints, endToEndEncryption) {
 
 		alertify.dialog.registerCustom({
 			baseType: 'notify',
@@ -116,6 +116,7 @@ define(['jquery', 'underscore', 'bigscreen', 'moment', 'sjcl', 'modernizr', 'web
 		$scope.id = $scope.myid = null;
 		$scope.userid = $scope.myuserid = null;
 		$scope.suserid = null;
+		$scope.fingerprint = null;
 		$scope.peer = null;
 		$scope.dialing = null;
 		$scope.conference = null;
@@ -536,6 +537,14 @@ define(['jquery', 'underscore', 'bigscreen', 'moment', 'sjcl', 'modernizr', 'web
 			}
 		});
 
+		endToEndEncryption.events.on("identity.own", function(event, identity) {
+			if (identity) {
+				$scope.fingerprint = identity.getFingerprint();
+			} else {
+				$scope.fingerprint = null;
+			}
+		});
+
 		// Start heartbeat timer.
 		$window.setInterval(function() {
 			mediaStream.api.heartbeat(5000, 11500)

diff --git a/static/js/directives/buddylist.js b/static/js/directives/buddylist.js
@@ -23,7 +23,7 @@
 define(['underscore', 'text!partials/buddylist.html'], function(_, template) {
 
 	// buddyList
-	return ["buddyList", "api", "webrtc", "contacts", function(buddyList, api, webrtc, contacts) {
+	return ["buddyList", "api", "webrtc", "contacts", "endToEndEncryption", function(buddyList, api, webrtc, contacts, endToEndEncryption) {
 
 		//console.log("buddyList directive");
 
@@ -125,6 +125,9 @@ define(['underscore', 'text!partials/buddylist.html'], function(_, template) {
 				onContactUpdated(data);
 			});
 
+			endToEndEncryption.events.on("identity.received", function(event, peer, identity) {
+				buddylist.onIdentityReceived(peer, identity);
+			});
 		}];
 
 		var link = function(scope, iElement, iAttrs, controller) {