/* Copyright 2020 Bruno Windels Copyright 2020, 2021 The Matrix.org Foundation C.I.C. Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. */ import {createEnum} from "../utils/enum.js"; import {lookupHomeserver} from "./well-known.js"; import {AbortableOperation} from "../utils/AbortableOperation"; import {ObservableValue} from "../observable/ObservableValue"; import {HomeServerApi} from "./net/HomeServerApi.js"; import {Reconnector, ConnectionStatus} from "./net/Reconnector.js"; import {ExponentialRetryDelay} from "./net/ExponentialRetryDelay.js"; import {MediaRepository} from "./net/MediaRepository.js"; import {RequestScheduler} from "./net/RequestScheduler.js"; import {Sync, SyncStatus} from "./Sync.js"; import {Session} from "./Session.js"; import {PasswordLoginMethod} from "./login/PasswordLoginMethod.js"; import {TokenLoginMethod} from "./login/TokenLoginMethod.js"; import {SSOLoginHelper} from "./login/SSOLoginHelper.js"; export const LoadStatus = createEnum( "NotLoading", "Login", "LoginFailed", "QueryAccount", // check for dehydrated device after login "SetupAccount", // asked to restore from dehydrated device if present, call sc.accountSetup.finish() to progress to the next stage "Loading", "SessionSetup", // upload e2ee keys, ... "Migrating", //not used atm, but would fit here "FirstSync", "Error", "Ready", ); export const LoginFailure = createEnum( "Connection", "Credentials", "Unknown", ); export class SessionContainer { constructor({platform, olmPromise, workerPromise}) { this._platform = platform; this._sessionStartedByReconnector = false; this._status = new ObservableValue(LoadStatus.NotLoading); this._error = null; this._loginFailure = null; this._reconnector = null; this._session = null; this._sync = null; this._sessionId = null; this._storage = null; this._requestScheduler = null; this._olmPromise = olmPromise; this._workerPromise = workerPromise; } createNewSessionId() { return (Math.floor(this._platform.random() * Number.MAX_SAFE_INTEGER)).toString(); } get sessionId() { return this._sessionId; } async startWithExistingSession(sessionId) { if (this._status.get() !== LoadStatus.NotLoading) { return; } this._status.set(LoadStatus.Loading); await this._platform.logger.run("load session", async log => { log.set("id", sessionId); try { const sessionInfo = await this._platform.sessionInfoStorage.get(sessionId); if (!sessionInfo) { throw new Error("Invalid session id: " + sessionId); } await this._loadSessionInfo(sessionInfo, null, log); log.set("status", this._status.get()); } catch (err) { log.catch(err); this._error = err; this._status.set(LoadStatus.Error); } }); } _parseLoginOptions(options, homeserver) { /* Take server response and return new object which has two props password and sso which implements LoginMethod */ const flows = options.flows; const result = {homeserver}; for (const flow of flows) { if (flow.type === "m.login.password") { result.password = (username, password) => new PasswordLoginMethod({homeserver, username, password}); } else if (flow.type === "m.login.sso" && flows.find(flow => flow.type === "m.login.token")) { result.sso = new SSOLoginHelper(homeserver); } else if (flow.type === "m.login.token") { result.token = loginToken => new TokenLoginMethod({homeserver, loginToken}); } } return result; } queryLogin(homeserver) { return new AbortableOperation(async setAbortable => { homeserver = await lookupHomeserver(homeserver, (url, options) => { return setAbortable(this._platform.request(url, options)); }); const hsApi = new HomeServerApi({homeserver, request: this._platform.request}); const response = await setAbortable(hsApi.getLoginFlows()).response(); return this._parseLoginOptions(response, homeserver); }); } async startWithLogin(loginMethod) { const currentStatus = this._status.get(); if (currentStatus !== LoadStatus.LoginFailed && currentStatus !== LoadStatus.NotLoading && currentStatus !== LoadStatus.Error) { return; } this._resetStatus(); await this._platform.logger.run("login", async log => { this._status.set(LoadStatus.Login); const clock = this._platform.clock; let sessionInfo; try { const request = this._platform.request; const hsApi = new HomeServerApi({homeserver: loginMethod.homeserver, request}); const loginData = await loginMethod.login(hsApi, "Hydrogen", log); const sessionId = this.createNewSessionId(); sessionInfo = { id: sessionId, deviceId: loginData.device_id, userId: loginData.user_id, homeServer: loginMethod.homeserver, // deprecate this over time homeserver: loginMethod.homeserver, accessToken: loginData.access_token, lastUsed: clock.now() }; log.set("id", sessionId); } catch (err) { this._error = err; if (err.name === "HomeServerError") { if (err.errcode === "M_FORBIDDEN") { this._loginFailure = LoginFailure.Credentials; } else { this._loginFailure = LoginFailure.Unknown; } log.set("loginFailure", this._loginFailure); this._status.set(LoadStatus.LoginFailed); } else if (err.name === "ConnectionError") { this._loginFailure = LoginFailure.Connection; this._status.set(LoadStatus.LoginFailed); } else { this._status.set(LoadStatus.Error); } return; } const dehydratedDevice = await this._inspectAccountAfterLogin(sessionInfo); if (dehydratedDevice) { sessionInfo.deviceId = dehydratedDevice.deviceId; } await this._platform.sessionInfoStorage.add(sessionInfo); // loading the session can only lead to // LoadStatus.Error in case of an error, // so separate try/catch try { await this._loadSessionInfo(sessionInfo, dehydratedDevice, log); log.set("status", this._status.get()); } catch (err) { log.catch(err); this._error = err; this._status.set(LoadStatus.Error); } }); } async _loadSessionInfo(sessionInfo, dehydratedDevice, log) { log.set("appVersion", this._platform.version); const clock = this._platform.clock; this._sessionStartedByReconnector = false; this._status.set(LoadStatus.Loading); this._reconnector = new Reconnector({ onlineStatus: this._platform.onlineStatus, retryDelay: new ExponentialRetryDelay(clock.createTimeout), createMeasure: clock.createMeasure }); const hsApi = new HomeServerApi({ homeserver: sessionInfo.homeServer, accessToken: sessionInfo.accessToken, request: this._platform.request, reconnector: this._reconnector, }); this._sessionId = sessionInfo.id; this._storage = await this._platform.storageFactory.create(sessionInfo.id, log); // no need to pass access token to session const filteredSessionInfo = { id: sessionInfo.id, deviceId: sessionInfo.deviceId, userId: sessionInfo.userId, homeserver: sessionInfo.homeServer, }; const olm = await this._olmPromise; let olmWorker = null; if (this._workerPromise) { olmWorker = await this._workerPromise; } this._requestScheduler = new RequestScheduler({hsApi, clock}); this._requestScheduler.start(); const mediaRepository = new MediaRepository({ homeserver: sessionInfo.homeServer, platform: this._platform, }); this._session = new Session({ storage: this._storage, sessionInfo: filteredSessionInfo, hsApi: this._requestScheduler.hsApi, olm, olmWorker, mediaRepository, platform: this._platform, }); await this._session.load(log); if (dehydratedDevice) { await log.wrap("dehydrateIdentity", log => await this._session.dehydrateIdentity(dehydratedDevice, log)); } else if (!this._session.hasIdentity) { this._status.set(LoadStatus.SessionSetup); await log.wrap("createIdentity", log => this._session.createIdentity(log)); } this._sync = new Sync({hsApi: this._requestScheduler.hsApi, storage: this._storage, session: this._session, logger: this._platform.logger}); // notify sync and session when back online this._reconnectSubscription = this._reconnector.connectionStatus.subscribe(state => { if (state === ConnectionStatus.Online) { this._platform.logger.runDetached("reconnect", async log => { // needs to happen before sync and session or it would abort all requests this._requestScheduler.start(); this._sync.start(); this._sessionStartedByReconnector = true; await log.wrap("session start", log => this._session.start(this._reconnector.lastVersionsResponse, log)); }); } }); await log.wrap("wait first sync", () => this._waitForFirstSync()); if (this._isDisposed) { return; } this._status.set(LoadStatus.Ready); // if the sync failed, and then the reconnector // restored the connection, it would have already // started to session, so check first // to prevent an extra /versions request if (!this._sessionStartedByReconnector) { const lastVersionsResponse = await hsApi.versions({timeout: 10000, log}).response(); if (this._isDisposed) { return; } // log as ref as we don't want to await it await log.wrap("session start", log => this._session.start(lastVersionsResponse, log)); } } async _waitForFirstSync() { this._sync.start(); this._status.set(LoadStatus.FirstSync); // only transition into Ready once the first sync has succeeded this._waitForFirstSyncHandle = this._sync.status.waitFor(s => { if (s === SyncStatus.Stopped) { // keep waiting if there is a ConnectionError // as the reconnector above will call // sync.start again to retry in this case return this._sync.error?.name !== "ConnectionError"; } return s === SyncStatus.Syncing; }); try { await this._waitForFirstSyncHandle.promise; if (this._sync.status.get() === SyncStatus.Stopped && this._sync.error) { throw this._sync.error; } } catch (err) { // if dispose is called from stop, bail out if (err.name === "AbortError") { return; } throw err; } finally { this._waitForFirstSyncHandle = null; } } async _inspectAccountAfterLogin(sessionInfo) { this._status.set(LoadStatus.QueryAccount); const hsApi = new HomeServerApi({ homeserver: sessionInfo.homeServer, accessToken: sessionInfo.accessToken, request: this._platform.request, }); const olm = await this._olmPromise; const encryptedDehydratedDevice = await getDehydratedDevice(hsApi, olm); if (encryptedDehydratedDevice) { let resolveStageFinish; const promiseStageFinish = new Promise(r => resolveStageFinish = r); this._accountSetup = new AccountSetup(encryptedDehydratedDevice, resolveStageFinish); this._status.set(LoadStatus.SetupAccount); await promiseStageFinish; const dehydratedDevice = this._accountSetup?._dehydratedDevice; this._accountSetup = null; return dehydratedDevice; } } get accountSetup() { return this._accountSetup; } get loadStatus() { return this._status; } get loadError() { return this._error; } get loginFailure() { return this._loginFailure; } /** only set at loadStatus InitialSync, CatchupSync or Ready */ get sync() { return this._sync; } /** only set at loadStatus InitialSync, CatchupSync or Ready */ get session() { return this._session; } get reconnector() { return this._reconnector; } get _isDisposed() { return !this._reconnector; } dispose() { if (this._reconnectSubscription) { this._reconnectSubscription(); this._reconnectSubscription = null; } this._reconnector = null; if (this._requestScheduler) { this._requestScheduler.stop(); } if (this._sync) { this._sync.stop(); } if (this._session) { this._session.dispose(); } if (this._waitForFirstSyncHandle) { this._waitForFirstSyncHandle.dispose(); this._waitForFirstSyncHandle = null; } if (this._storage) { this._storage.close(); this._storage = null; } } async deleteSession(log) { if (this._sessionId) { // need to dispose first, so the storage is closed, // and also first sync finishing won't call Session.start anymore, // which assumes that the storage works. this.dispose(); // if one fails, don't block the other from trying // also, run in parallel await Promise.all([ log.wrap("storageFactory", () => this._platform.storageFactory.delete(this._sessionId)), log.wrap("sessionInfoStorage", () => this._platform.sessionInfoStorage.delete(this._sessionId)), ]); this._sessionId = null; } } _resetStatus() { this._status.set(LoadStatus.NotLoading); this._error = null; this._loginFailure = null; } } class AccountSetup { constructor(encryptedDehydratedDevice, finishStage) { this._encryptedDehydratedDevice = encryptedDehydratedDevice; this._dehydratedDevice = undefined; this._finishStage = finishStage; } get encryptedDehydratedDevice() { return this._encryptedDehydratedDevice; } finish(dehydratedDevice) { this._dehydratedDevice = dehydratedDevice; this._finishStage(); } }