Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | add more debugging to certificate checks after new omemo session was established | Daniel Gultsch | 2015-12-19 | 1 | -0/+4 |
| | |||||
* | some more NPE checks | Daniel Gultsch | 2015-12-10 | 1 | -1/+1 |
| | |||||
* | also verify sessions in CBE mode that got created by key transport messages | Daniel Gultsch | 2015-12-08 | 1 | -2/+14 |
| | |||||
* | indicate cbe in chat message hint | Daniel Gultsch | 2015-10-31 | 1 | -0/+16 |
| | |||||
* | explicitly mark verified omemo keys in UI | Daniel Gultsch | 2015-10-31 | 2 | -5/+29 |
| | |||||
* | fixed session objects not being build on start up | Daniel Gultsch | 2015-10-30 | 1 | -1/+0 |
| | |||||
* | push CN into nick pep node when uploading certificate. subscribe to nick node | Daniel Gultsch | 2015-10-29 | 1 | -0/+1 |
| | |||||
* | don't retry building broken omemo keys | Daniel Gultsch | 2015-10-17 | 1 | -4/+15 |
| | |||||
* | load axolotl session cache on first device update | Daniel Gultsch | 2015-10-17 | 1 | -2/+6 |
| | |||||
* | improved error reporting in trust keys activity | Daniel Gultsch | 2015-10-17 | 1 | -7/+19 |
| | |||||
* | introduced code to verify omemo device keys with x509 certificates. | Daniel Gultsch | 2015-10-16 | 1 | -19/+67 |
| | | | | cleaned up TrustKeysActivity to automatically close if there is nothing to do | ||||
* | add config variable to enable x509 verification | Daniel Gultsch | 2015-10-12 | 1 | -3/+3 |
| | |||||
* | code clean up | Daniel Gultsch | 2015-10-12 | 1 | -13/+1 |
| | |||||
* | add menu item in account details to renew certificate | Daniel Gultsch | 2015-10-11 | 1 | -23/+82 |
| | |||||
* | Clean up | Andreas Straub | 2015-10-11 | 2 | -13/+5 |
| | | | | Fixes some random linter warnings. | ||||
* | be more careful when publishing device bundle | Daniel Gultsch | 2015-09-17 | 1 | -0/+14 |
| | |||||
* | indicate broken pep in server info | Daniel Gultsch | 2015-09-06 | 1 | -0/+4 |
| | |||||
* | Only show that have sessions in fingerprint list | Andreas Straub | 2015-09-06 | 2 | -5/+21 |
| | | | | | | | | | Doesn't access database directly anymore but goes through AxolotlService now to obtain list of fingerprints associated with an Account/Contact. This should prevent orphaned keys littering the UI which previously couldn't be removed through the Clear Devices function. Together with 1c79982da84964c1d81179a0927d9cd1eadf53de this fixes #1393 | ||||
* | Don't manually add keys to the store | Andreas Straub | 2015-09-06 | 1 | -2/+0 |
| | | | | | | | There is no need to preemptively add the keys to the store oneself. SessionBuilder will take care of this for us. What's more, this will prevent IdentityKeys from otherwise invalid bundles to show up in our UI. | ||||
* | Never build a session with oneself | Andreas Straub | 2015-09-05 | 2 | -9/+12 |
| | | | | | | | | | | | | | | If we detect our own ID is not in our own devicelist on receiving an update, we reannounce ourselves. This used to have the side effect of modifying the list of devices we thought were in the update set, causing us to accidentally build a session with ourselves. This lead to our own key being set to TRUSTED_INACTIVE, resulting in red lock icons on messages sent by the own device. We fix this by having publishOwnDeviceId() operate on a copy of the original set. This commit also includes a db migration which deletes sessions with oneself and sets own keys back to TRUSTED. | ||||
* | Fix error handling for announce check retrieval | Andreas Straub | 2015-08-26 | 1 | -3/+3 |
| | | | | | Only aborts when a timeout was received. Error conditions (most notably item-not-found) are interpreted as no other devices existing. | ||||
* | Only announce device after publishing bundle | Andreas Straub | 2015-08-26 | 1 | -6/+18 |
| | |||||
* | Fix key publishing | Andreas Straub | 2015-08-26 | 1 | -72/+68 |
| | | | | | | | Remove invalid check for result code, which prevented publishing if the node was empty to begin with. Fix pepBroken check | ||||
* | Add more logging to pep attemp counter logic | Andreas Straub | 2015-08-25 | 1 | -0/+1 |
| | |||||
* | Limit number of PEP publish tries | Andreas Straub | 2015-08-25 | 1 | -9/+42 |
| | | | | | | If PEP publish tries are repeatedly triggered by empty PEP updates, stop attempting to publish after 3 tries. This should work around broken PEP implementations in older ejabberd and OpenFire versions. | ||||
* | Pass through device IDs when updating own list | Andreas Straub | 2015-08-25 | 1 | -17/+17 |
| | |||||
* | cleared up some error messages in axolotl service and execute ↵ | Daniel Gultsch | 2015-08-25 | 1 | -3/+7 |
| | | | | publishOwnDevicesWhenNeeded() only if processing our own jid | ||||
* | Add error handling to OMEMO PEP code | Andreas Straub | 2015-08-23 | 1 | -116/+131 |
| | | | | Log received errors and abort processing | ||||
* | Increase number of published prekeys for release | Andreas Straub | 2015-08-07 | 1 | -1/+1 |
| | |||||
* | Let UNTRUSTED/UNDECIDED keys become INACTIVE | Andreas Straub | 2015-08-01 | 3 | -79/+94 |
| | |||||
* | Provide process function for key transport message | Andreas Straub | 2015-07-31 | 3 | -18/+83 |
| | |||||
* | Refactor axolotl message processing workflow | Andreas Straub | 2015-07-31 | 3 | -152/+116 |
| | | | | | | | | | | | | | | XmppAxolotlMessage is now entirely responsible for handling encryption and decryption of messages, only leveraging XmppAxolotlSession as a packing/unpacking primitive for payload keys. Removed pseudo-dead session generation code step from prepareMessage function, as sessions have been created by invoking the TrustKeysActivity for a while now. Added prepareKeyTransportMessage function, which creates a message with no payload. The key that is packed into the header keyElements can then be used for other purposes (e.g. encrypted file transfer). | ||||
* | Reformat code | Andreas Straub | 2015-07-31 | 3 | -86/+87 |
| | |||||
* | Change to new wire protocol version | Andreas Straub | 2015-07-31 | 4 | -72/+111 |
| | |||||
* | Fix NPE: consider unknown keys UNDECIDED | Andreas Straub | 2015-07-29 | 1 | -1/+2 |
| | |||||
* | Refactor out inner classes, cache trust store | Andreas Straub | 2015-07-29 | 4 | -563/+613 |
| | | | | | | | Moves SQLiteAxolotlStore and XmppAxolotlSession into proper classes. IdentityKeys trust statuses are now cached in an LruCache to prevent hammering the database when rendering the UI. | ||||
* | Always build own device session automatically | Andreas Straub | 2015-07-22 | 1 | -6/+13 |
| | |||||
* | Add INACTIVE state for removed keys | Andreas Straub | 2015-07-21 | 1 | -11/+43 |
| | | | | | | | | | | | | | We introduce a new trust state: INACTIVE. This state is intended for old keys that have been removed. When a TRUSTED device is removed from the PEP devicelist, it's status will be set to INACTIVE. INACTIVE keys are shown in the UI as greyed out, non-interactible key rows. Messages are not encrypted for INACTIVE devices. When an INACTIVE device reappears in PEP, or a message is received from an INACTIVE device, it is set back to trusted. | ||||
* | Fill own device sessions into SessionMap | Andreas Straub | 2015-07-21 | 1 | -7/+14 |
| | |||||
* | Use properly fixed numeral values in Trust enum | Andreas Straub | 2015-07-21 | 1 | -4/+26 |
| | | | | Why, oh God, why?! #thanksjamesgosling | ||||
* | Remove unused import | Andreas Straub | 2015-07-21 | 1 | -1/+0 |
| | |||||
* | Switch payload encryption to AES-GCM | Andreas Straub | 2015-07-21 | 3 | -17/+46 |
| | | | | This also ensures that the IV is generated with proper randomness. | ||||
* | Also decrypt messages from UNTRUSTED sessions | Andreas Straub | 2015-07-20 | 1 | -1/+1 |
| | |||||
* | Refactor axolotl send processing/caching flow | Andreas Straub | 2015-07-20 | 1 | -9/+8 |
| | |||||
* | Start TrustKeysActivity if no keys are TRUSTED | Andreas Straub | 2015-07-20 | 1 | -6/+6 |
| | | | | | If there are no UNDECIDED keys, but none of the contact's keys are trusted, redirect the user to the TrustKeysActivity | ||||
* | Add purge axolotl key option | Andreas Straub | 2015-07-20 | 2 | -30/+61 |
| | | | | Can now long-press a key to permanently purge it. | ||||
* | attempt to fix the delay problem | Daniel Gultsch | 2015-07-20 | 1 | -5/+5 |
| | |||||
* | Lock TrustKeys if no trusted keys are available | Andreas Straub | 2015-07-20 | 1 | -0/+8 |
| | |||||
* | Optimize imports | Andreas Straub | 2015-07-20 | 2 | -4/+1 |
| | |||||
* | Ask for key trust when sending messages | Andreas Straub | 2015-07-19 | 1 | -37/+88 |
| | | | | | | If the contact (or the own account) has keys that have UNDECIDED trust, we now drop the user into the new TrustKeysActivity, where they have to decide for each new key whether it should be TRUSTED or UNTRUSTED. |