Richard van der Hoff
77eaaa3d5f
prepare v2.2.2
2017-03-01 16:21:37 +00:00
Richard van der Hoff
b185229c2b
Prep v2.2.1
2017-01-18 18:16:32 +00:00
Richard van der Hoff
150c360e82
Bump version numbers to 2.2.0
2017-01-18 16:03:02 +00:00
Richard van der Hoff
a2f0c93a93
Implement importing group session data
...
olm_import_inbound_group_session, which reads the format written by
olm_export_inbound_group_session to initialise a group session.
2017-01-09 17:45:46 +00:00
Richard van der Hoff
5fbeb3e29b
Enable exporting inbound group session keys
...
A pair of functions which allow you to export the megolm keys for an inbound
group session, so that an application can save/restore them.
2017-01-06 16:41:56 +00:00
Richard van der Hoff
86b64b653a
Bump version numbers throughout
2016-12-22 15:03:00 +00:00
Richard van der Hoff
e2e398bd94
Add some tests for the Javascript wrappers
...
These would have helped avoid the recent FRV.
2016-12-19 09:43:58 +00:00
Richard van der Hoff
8e554ab5ef
Avoid buffer overrun on encryption
...
Make sure we null-terminate encrypted strings before passing them to
UTF8ToString.
This used to work when we allocated the buffer on the stack, because it turns
out that allocate() zeroinits the returned memory. malloc(), of course, does
not.
2016-12-16 14:42:41 +00:00
Richard van der Hoff
7fd63bcac7
Merge pull request #39 from matrix-org/rav/messages_on_heap
...
Allocate memory for message blobs on the heap
2016-12-15 16:54:39 +00:00
Richard van der Hoff
09b3e1eecd
typo
2016-12-15 16:28:30 +00:00
Richard van der Hoff
8356fa37ad
zero out plaintext buffers
...
Avoid leaving copies of the plaintext sitting around in the emscripten heap.
2016-12-15 13:37:34 +00:00
Richard van der Hoff
76610c0a3a
Allocate memory for message blobs on the heap
...
Messages can be very large, so we don't really want to allocate them on the
stack. Switch to using the heap for them, and try to clean up some of the
string handling while we're at it.
2016-12-14 12:05:56 +00:00
Richard van der Hoff
51b141ecb6
Let apps override emscripten settings
...
Read settings from OLM_OPTIONS to allow apps to configure some options. In
particular, this is useful for setting the heap size.
2016-12-14 11:46:12 +00:00
Richard van der Hoff
1bf807bf33
Better handling of exceptions during loading
...
If we get an exception during load, don't define half of window.Olm (which
confuses apps).
This is a partial fix to https://github.com/vector-im/riot-web/issues/2726 .
2016-12-12 16:52:03 +00:00
Richard van der Hoff
27c7b4a767
Version bump for 2.0.0
2016-10-25 11:35:20 +01:00
Mark Haines
653790eacb
Return the message index when decrypting group messages.
...
Applications can use the index to detect replays of the same message.
2016-10-20 09:58:55 +01:00
Mark Haines
ec7d968623
Changelog and version bump for 1.3.0
2016-09-14 13:55:54 +01:00
Mark Haines
6dfa64342a
Fix the group javascript demo
2016-09-14 11:10:05 +01:00
Mark Haines
f274adfe24
Merge remote-tracking branch 'matrix/master'
2016-09-13 17:55:21 +01:00
Mark Haines
d7bc00c81d
Merge pull request #23 from matrix-org/markjh/remove_message_index
...
Remove the messsage index from olm_init_inbound_group_session
2016-09-13 17:54:14 +01:00
Mark Haines
a628ef41bd
Remove the messsage index from olm_init_inbound_group_session since it is read from the session_key
2016-09-13 17:51:02 +01:00
Mark Haines
6971f54fea
Add a olm_inbound_group_session_id method
2016-09-13 17:02:36 +01:00
Matthew Hodgson
576c6ad292
call double ratchet what it is
2016-09-06 22:46:58 +01:00
Richard van der Hoff
49ca6aca98
Bump version numbers to 1.2.0
2016-09-06 22:26:24 +01:00
Richard van der Hoff
50cd2b2a43
Clean up some typos
...
Remove redundant args from some js funcs, and fix a comment typo
2016-09-06 14:06:43 +01:00
Richard van der Hoff
c2b51207ee
Fix error handling for group sessions
...
Fix a couple of places where we were using the wrong method to get the last
error.
2016-09-05 19:42:04 +01:00
Richard van der Hoff
2aad4cfa86
Merge pull request #15 from matrix-org/rav/has_received_message
...
OlmSession.has_received_message
2016-09-05 10:38:41 +01:00
Richard van der Hoff
1d4c13c798
Fix megolm decryption of UTF-8
...
Repeat the fix from b10f90d for megolm messages.
It turns out that the 'length' argument to 'Pointer_stringify' doesn't work if
the input includes characters >= 128.
Rather than try to figure out which methods can return UTF-8, and which always
return plain ascii, replace all uses of Pointer_stringify with a 'length'
argument with the version that expects a NULL-terminated input, and extend the
buffer by a byte to allow space for a null-terminator.
In the case of decrypt, we need to add the null ourself.
Fixes https://github.com/vector-im/vector-web/issues/2078 .
2016-09-05 00:49:36 +01:00
Richard van der Hoff
2e9021c2e7
OlmSession.has_received_message
...
I find myself wanting to know if an OlmSession is in the pre-key state or not,
to help debugging at the application level.
2016-09-04 23:41:10 +01:00
Richard van der Hoff
0c3f527dfd
Bump version in package.json
...
... to match the Makefile
2016-09-01 14:31:34 +01:00
Richard van der Hoff
0c462cff11
Fix Ed25519 keypair generation
...
Ed25519 private keys, it turns out, have 64 bytes, not 32.
We were previously generating only 32 bytes (which is all that is required to
generate the public key), and then using the public key as the upper 32 bytes
when generating the per-message session key. This meant that everything
appeared to work, but the security of the private key was severely compromised.
By way of fixes:
* Use the correct algorithm for generating the Ed25519 private key, and store
all 512 bits of it.
* Update the account pickle format and refuse to load the old format (since we
should consider it compromised).
* Bump the library version, and add a function to retrieve the library
version, so that applications can verify that they are linked against a
fixed version of the library.
* Remove the curve25519_{sign, verify} functions which were unused and of
dubious quality.
2016-09-01 13:35:23 +01:00
Richard van der Hoff
f3b9c3bbbb
Prepare 1.0.0 release
2016-07-11 12:50:11 +01:00
Richard van der Hoff
939aa747dd
JS: make sure returned strings are null-terminated
...
It turns out that the 'length' argument to 'Pointer_stringify' doesn't work if
the input includes characters >= 128.
Rather than try to figure out which methods can return UTF-8, and which always
return plain ascii, replace all uses of Pointer_stringify with a 'length'
argument with the version that expects a NULL-terminated input, and extend the
buffer by a byte to allow space for a null-terminator.
In the case of decrypt, we need to add the null ourself.
Fixes https://github.com/vector-im/vector-web/issues/1719 .
2016-07-06 22:32:51 +01:00
Richard van der Hoff
803672931a
Put a signature on sent group messages
...
It's important that group messages be signed by the sender, rather than by a
secret derived from the shared secret.
2016-05-26 18:01:02 +01:00
Richard van der Hoff
7c5ab63fd8
js group demo: use a remoteOps object
...
To make sure that we don't sneakily use methods which we wouldn't be able to
for remote users, expose an interface object which contains the remote
interface.
2016-05-26 17:14:33 +01:00
Richard van der Hoff
389a181ea8
javascript/olm_inbound_group_session.js: fix length arg
...
message.length counts codepoints; we need bytes.
2016-05-26 13:57:09 +01:00
Richard van der Hoff
315fbfc921
Add a demo for group messaging via the JS bindings
2016-05-25 17:48:01 +01:00
Richard van der Hoff
013f27f3dc
Javascript bindings for group sessions
2016-05-25 17:48:01 +01:00
Richard van der Hoff
d4c8aae803
Add support for building the JS wrappers to the Makefile
...
Now that we have C and C++, we need to split the compile and link steps
(because we need different flags for the C and C++ files), so this is
easier with a Makefile.
2016-05-20 15:15:40 +01:00
Richard van der Hoff
2a09ccbd63
Remove vestiges of logging
...
Remove the (now non-functional) declarations of olm_set_log_level in the C and
js wrappers.
2016-05-16 11:50:44 +01:00
Richard van der Hoff
11dbf2aab3
Fix a bunch of compiler warnings, and turn on warnings.
2016-04-26 18:10:13 +01:00
Richard van der Hoff
9848f84452
Add some logging to help understand what's going on
2016-04-26 17:55:26 +01:00
Richard van der Hoff
e7a2af1ede
Add a basic logging implementation
2016-04-26 12:30:18 +01:00
Richard van der Hoff
7305649a27
Make 'npm build' build the js lib
2016-04-26 12:12:08 +01:00
Richard van der Hoff
a5fe3f605a
Fix a console error when importing in a browser
...
something about 'global' not defined
2015-12-02 14:06:01 +00:00
Richard van der Hoff
2bb7f3b1e6
Tweak javascript build to make npm better
...
Build into 'javascript' dir and tell package.json exactly which files we care
about.
2015-12-02 14:04:24 +00:00
Matthew Hodgson
28622db92f
switch from /usr/bin/python to /usr/bin/env python. this doesn't help folks whose python path points at python3 (e.g. Arch linux) though, but I see no choice than they have to change the shebangs, as we do on Synapse. For instance, OSX doesn't have a python2 symlink, otherwise we'd use /usr/bin/env python2 shebang.
2015-11-01 13:05:51 +00:00
Mark Haines
41a8fb61af
Add sha256 and ed25519_verify methods to javascript bindings
2015-08-04 11:55:04 +01:00
Mark Haines
411109d893
Add package.json for adding olm to npm
2015-07-21 15:04:27 +01:00
Mark Haines
5a60e543a5
Add more workarounds for closure compiler in javascript bindings
2015-07-21 14:30:46 +01:00
Mark Haines
bb70307b11
Fix javascript bindings: matches_inbound doesn't take an account argument
2015-07-21 10:50:17 +01:00
Mark Haines
f0bb8e03b3
More fixes to the javascript bindings to get them to behave with browserify
2015-07-20 16:33:45 +01:00
Mark Haines
970fc60f8b
Add remove_one_time_keys to the javascript bindings
2015-07-17 18:43:41 +01:00
Mark Haines
3468886e27
Add method getting a session id. Update the python and javascript bindings
2015-07-16 11:45:20 +01:00
Mark Haines
bede3a8499
Tweak the javascript bindings so that they will work with Node.js
2015-07-14 16:45:00 +01:00
Mark Haines
b6e248c9a5
Output simpler JSON for the account keys, don't sign the JSON but instead provide a olm_account_sign method so that the user of the library can sign the JSON themselves
2015-07-10 11:57:53 +01:00
Mark Haines
373acefde7
Add c bindings for the methods for managing one time keys
2015-07-09 18:35:54 +01:00
Mark Haines
0e988237f6
Don't pass a key id when creating a new outbound session
2015-07-08 16:04:18 +01:00
Mark Haines
974e0984bd
Update the javascript bindings and demo to match the format of the identity key JSON
2015-07-08 11:16:00 +01:00
Matthew Hodgson
09d4125ff1
Rename axolotlpp as olm to avoid confusion with Axolotl-the-spec and Axolotl-the-OWS-libraries at moxie's request
2015-06-27 01:15:23 +02:00
Mark Haines
8b29bd4193
Make sure the build dir exists
2015-06-26 17:15:24 +01:00
Mark Haines
e28f0989ad
Add a demo for the javascript bindings
2015-06-26 16:23:31 +01:00
Mark Haines
f2168004a1
Fix javascript bindings to correctly pass the random buffer
2015-06-26 16:16:34 +01:00
Mark Haines
0083a07345
Throw an Error object rather than a string in the javascript bindings.
2015-06-24 10:32:51 +01:00
Mark Haines
07072912cd
Add javascript bindings using emscripten
2015-06-23 17:50:30 +01:00