init

2026-02-16 15:50:16 +03:00
commit afb81b8278
13816 changed files with 3689732 additions and 0 deletions
--- a/Telegram/SourceFiles/tde2e/tde2e_api.cpp
+++ b/Telegram/SourceFiles/tde2e/tde2e_api.cpp
@@ -0,0 +1,526 @@
+/*
+This file is part of Telegram Desktop,
+the official desktop application for the Telegram messaging service.
+
+For license and copyright information please follow this link:
+https://github.com/telegramdesktop/tdesktop/blob/master/LEGAL
+*/
+#include "tde2e/tde2e_api.h"
+
+#include "base/assertion.h"
+#include "base/debug_log.h"
+
+#include <td/e2e/e2e_api.h>
+
+#define LOG_ERROR(error) \
+	LOG(("TdE2E Error %1: %2").arg(int(error.code)).arg(error.message.c_str()))
+
+#define LOG_AND_FAIL(error, reason) \
+	LOG_ERROR(error); \
+	fail(reason)
+
+#define LOG_APPLY(subchain, slice) \
+	DEBUG_LOG(("TdE2E Apply[%1]: %2").arg(subchain).arg(WrapForLog(slice)))
+
+namespace TdE2E {
+namespace {
+
+constexpr auto kPermissionAdd = 1;
+constexpr auto kPermissionRemove = 2;
+constexpr auto kShortPollChainBlocksTimeout = 5 * crl::time(1000);
+constexpr auto kShortPollChainBlocksWaitFor = crl::time(1000);
+
+[[nodiscard]] tde2e_api::Slice Slice(const QByteArray &data) {
+	return {
+		data.constData(),
+		std::string_view::size_type(data.size())
+	};
+}
+
+[[nodiscard]] tde2e_api::Slice Slice(const std::vector<uint8_t> &data) {
+	return {
+		reinterpret_cast<const char*>(data.data()),
+		std::string_view::size_type(data.size()),
+	};
+}
+
+[[nodiscard]] ParticipantsSet ParseParticipantsSet(
+		const tde2e_api::CallState &state) {
+	auto result = ParticipantsSet();
+	const auto &list = state.participants;
+	result.list.reserve(list.size());
+	for (const auto &entry : list) {
+		result.list.emplace(UserId{ uint64(entry.user_id) });
+	}
+	return result;
+}
+
+[[nodiscard]] QString WrapForLog(std::string_view v) {
+	auto result = QString();
+	const auto count = std::min(int(v.size()), 16);
+	result.reserve(count * 3 + 2);
+	for (auto i = 0; i != count; ++i) {
+		const auto byte = uint8(v[i]);
+		result += QString::number(byte, 16).rightJustified(2, '0');
+		if (i + 1 != count) {
+			result += ' ';
+		}
+	}
+	if (v.size() > count) {
+		result += "...";
+	}
+	return result.toUpper();
+}
+
+} // namespace
+
+auto EncryptDecrypt::callback()
+-> Fn<EncryptionBuffer(const EncryptionBuffer&, int64_t, bool, int32_t)> {
+	return [that = shared_from_this()](
+			const EncryptionBuffer &data,
+			int64_t userId,
+			bool encrypt,
+			int32_t unencryptedPrefixSize) -> EncryptionBuffer {
+		const auto libId = that->_id.load();
+		if (!libId) {
+			return {};
+		}
+		const auto channelId = tde2e_api::CallChannelId(0);
+		const auto slice = Slice(data);
+		const auto result = encrypt
+			? tde2e_api::call_encrypt(
+				libId,
+				channelId,
+				slice,
+				size_t(unencryptedPrefixSize))
+			: tde2e_api::call_decrypt(libId, userId, channelId, slice);
+		if (!result.is_ok()) {
+			return {};
+		}
+		const auto &value = result.value();
+		const auto start = reinterpret_cast<const uint8_t*>(value.data());
+		const auto end = start + value.size();
+		return { start, end };
+	};
+}
+
+void EncryptDecrypt::setCallId(CallId id) {
+	Expects(id.v != 0);
+
+	_id.store(id.v);
+}
+
+void EncryptDecrypt::clearCallId(CallId fromId) {
+	Expects(fromId.v != 0);
+
+	_id.compare_exchange_strong(fromId.v, 0);
+}
+
+Call::Call(UserId myUserId)
+: _myUserId(myUserId) {
+	const auto id = tde2e_api::key_generate_temporary_private_key();
+	Assert(id.is_ok());
+	_myKeyId = { .v = uint64(id.value()) };
+
+	const auto key = tde2e_api::key_to_public_key(_myKeyId.v);
+	Assert(key.is_ok());
+	Assert(key.value().size() == sizeof(_myKey));
+	memcpy(&_myKey, key.value().data(), sizeof(_myKey));
+}
+
+Call::~Call() {
+	if (const auto id = libId()) {
+		if (const auto raw = _encryptDecrypt.get()) {
+			raw->clearCallId(_id);
+		}
+		tde2e_api::call_destroy(id);
+	}
+}
+
+void Call::fail(CallFailure reason) {
+	_emojiHash = QByteArray();
+	_failure = reason;
+	_failures.fire_copy(reason);
+}
+
+PublicKey Call::myKey() const {
+	return _myKey;
+}
+
+bool Call::hasLastBlock0() const {
+	return _lastBlock0.has_value();
+}
+
+void Call::refreshLastBlock0(std::optional<Block> block) {
+	_lastBlock0 = std::move(block);
+}
+
+Block Call::makeJoinBlock() {
+	if (failed()) {
+		return {};
+	}
+
+	const auto publicKeyView = std::string_view{
+		reinterpret_cast<const char*>(&_myKey),
+		sizeof(_myKey),
+	};
+	const auto publicKeyId = tde2e_api::key_from_public_key(publicKeyView);
+	Assert(publicKeyId.is_ok());
+
+	const auto myKeyId = std::int64_t(_myKeyId.v);
+	const auto myParticipant = tde2e_api::CallParticipant{
+		.user_id = std::int64_t(_myUserId.v),
+		.public_key_id = publicKeyId.value(),
+		.permissions = kPermissionAdd | kPermissionRemove,
+	};
+
+	const auto result = _lastBlock0
+		? tde2e_api::call_create_self_add_block(
+			myKeyId,
+			Slice(_lastBlock0->data),
+			myParticipant)
+		: tde2e_api::call_create_zero_block(myKeyId, {
+			.height = 0,
+			.participants = { myParticipant },
+		});
+	if (!result.is_ok()) {
+		LOG_AND_FAIL(result.error(), CallFailure::Unknown);
+		return {};
+	}
+
+	return {
+		.data = QByteArray::fromStdString(result.value()),
+	};
+}
+
+Block Call::makeRemoveBlock(const base::flat_set<UserId> &ids) {
+	if (failed() || !_id) {
+		return {};
+	}
+
+	auto state = tde2e_api::call_get_state(libId());
+	if (!state.is_ok()) {
+		LOG_AND_FAIL(state.error(), CallFailure::Unknown);
+		return {};
+	}
+	auto found = false;
+	auto updated = state.value();
+	auto &list = updated.participants;
+	for (auto i = begin(list); i != end(list);) {
+		const auto userId = UserId{ uint64(i->user_id) };
+		if (userId != _myUserId && ids.contains(userId)) {
+			i = list.erase(i);
+			found = true;
+		} else {
+			++i;
+		}
+	}
+	if (!found) {
+		return {};
+	}
+	const auto result = tde2e_api::call_create_change_state_block(
+		libId(),
+		updated);
+	if (!result.is_ok()) {
+		LOG_AND_FAIL(result.error(), CallFailure::Unknown);
+		return {};
+	}
+	return {
+		.data = QByteArray::fromStdString(result.value()),
+	};
+}
+
+rpl::producer<ParticipantsSet> Call::participantsSetValue() const {
+	return _participantsSet.value();
+}
+
+void Call::joined() {
+	if (!_id) {
+		LOG(("TdE2E Error: Call::joined() without id."));
+		_failure = CallFailure::Unknown;
+		return;
+	}
+	shortPoll(0);
+	shortPoll(1);
+}
+
+void Call::apply(int subchain, const Block &last) {
+	Expects(_id || !subchain);
+
+	auto verification = std::optional<tde2e_api::CallVerificationState>();
+	const auto guard = gsl::finally([&] {
+		if (failed() || !_id) {
+			return;
+		} else if (!verification) {
+			const auto id = libId();
+			auto result = tde2e_api::call_get_verification_state(id);
+			if (!result.is_ok()) {
+				LOG_AND_FAIL(result.error(), CallFailure::Unknown);
+				return;
+			}
+			verification = std::move(result.value());
+		}
+		_emojiHash = verification->emoji_hash.has_value()
+			? QByteArray::fromStdString(*verification->emoji_hash)
+			: QByteArray();
+		checkForOutboundMessages();
+	});
+
+	if (subchain) {
+		LOG_APPLY(1, Slice(last.data));
+		auto result = tde2e_api::call_receive_inbound_message(
+			libId(),
+			Slice(last.data));
+		if (!result.is_ok()) {
+			LOG_AND_FAIL(result.error(), CallFailure::Unknown);
+		} else {
+			verification = std::move(result.value());
+		}
+		return;
+	} else if (_id) {
+		LOG_APPLY(0, Slice(last.data));
+		const auto result = tde2e_api::call_apply_block(
+			libId(),
+			Slice(last.data));
+		if (!result.is_ok()) {
+			LOG_AND_FAIL(result.error(), CallFailure::Unknown);
+		} else {
+			_participantsSet = ParseParticipantsSet(result.value());
+		}
+		return;
+	}
+	LOG_APPLY(-1, Slice(last.data));
+	const auto id = tde2e_api::call_create(
+		std::int64_t(_myUserId.v),
+		std::int64_t(_myKeyId.v),
+		Slice(last.data));
+	if (!id.is_ok()) {
+		LOG_AND_FAIL(id.error(), CallFailure::Unknown);
+		return;
+	}
+	setId({ uint64(id.value()) });
+
+	for (auto i = 0; i != kSubChainsCount; ++i) {
+		auto &entry = _subchains[i];
+		entry.waitingTimer.setCallback([=] {
+			checkWaitingBlocks(i, true);
+		});
+		entry.shortPollTimer.setCallback([=] {
+			shortPoll(i);
+		});
+		if (!entry.waitingTimer.isActive()) {
+			entry.shortPollTimer.callOnce(kShortPollChainBlocksTimeout);
+		}
+	}
+
+	const auto state = tde2e_api::call_get_state(libId());
+	if (!state.is_ok()) {
+		LOG_AND_FAIL(state.error(), CallFailure::Unknown);
+		return;
+	}
+	_participantsSet = ParseParticipantsSet(state.value());
+}
+
+void Call::setId(CallId id) {
+	Expects(!_id);
+
+	_id = id;
+	if (const auto raw = _encryptDecrypt.get()) {
+		raw->setCallId(id);
+	}
+}
+
+void Call::checkForOutboundMessages() {
+	Expects(_id);
+
+	const auto result = tde2e_api::call_pull_outbound_messages(libId());
+	if (!result.is_ok()) {
+		LOG_AND_FAIL(result.error(), CallFailure::Unknown);
+		return;
+	} else if (!result.value().empty()) {
+		_outboundBlocks.fire(
+			QByteArray::fromStdString(result.value().back()));
+	}
+}
+
+void Call::apply(
+		int subchain,
+		int indexAfterLast,
+		const std::vector<Block> &blocks,
+		bool fromShortPoll) {
+	Expects(subchain >= 0 && subchain < kSubChainsCount);
+
+	if (!subchain && !blocks.empty() && indexAfterLast > _lastBlock0Height) {
+		_lastBlock0 = blocks.back();
+		_lastBlock0Height = indexAfterLast;
+	}
+
+	auto &entry = _subchains[subchain];
+	if (fromShortPoll) {
+		auto i = begin(entry.waiting);
+		while (i != end(entry.waiting) && i->first < indexAfterLast) {
+			++i;
+		}
+		entry.waiting.erase(begin(entry.waiting), i);
+
+		if (subchain && !_id && !blocks.empty()) {
+			LOG(("TdE2E Error: Broadcast shortpoll block without id."));
+			fail(CallFailure::Unknown);
+			return;
+		}
+	} else {
+		entry.lastUpdate = crl::now();
+	}
+	if (failed()) {
+		return;
+	}
+
+	auto index = indexAfterLast - int(blocks.size());
+	if (!fromShortPoll && (index > entry.height || (!_id && subchain))) {
+		for (const auto &block : blocks) {
+			entry.waiting.emplace(index++, block);
+		}
+	} else {
+		for (const auto &block : blocks) {
+			if (!_id || (entry.height == index)) {
+				apply(subchain, block);
+			}
+			entry.height = std::max(entry.height, ++index);
+		}
+		entry.height = std::max(entry.height, indexAfterLast);
+	}
+	checkWaitingBlocks(subchain);
+}
+
+void Call::checkWaitingBlocks(int subchain, bool waited) {
+	Expects(subchain >= 0 && subchain < kSubChainsCount);
+
+	if (failed()) {
+		return;
+	}
+
+	auto &entry = _subchains[subchain];
+	if (!_id) {
+		entry.waitingTimer.callOnce(kShortPollChainBlocksWaitFor);
+		return;
+	} else if (entry.shortPolling) {
+		return;
+	}
+	auto &waiting = entry.waiting;
+	entry.shortPollTimer.cancel();
+	while (!waiting.empty()) {
+		const auto index = waiting.begin()->first;
+		if (index > entry.height) {
+			if (waited) {
+				shortPoll(subchain);
+			} else {
+				entry.waitingTimer.callOnce(kShortPollChainBlocksWaitFor);
+			}
+			return;
+		} else if (index == entry.height) {
+			const auto slice = Slice(waiting.begin()->second.data);
+			if (subchain) {
+				LOG_APPLY(1, slice);
+				auto result = tde2e_api::call_receive_inbound_message(
+					libId(),
+					slice);
+				if (!result.is_ok()) {
+					LOG_AND_FAIL(result.error(), CallFailure::Unknown);
+					return;
+				}
+				_emojiHash = result.value().emoji_hash.has_value()
+					? QByteArray::fromStdString(*result.value().emoji_hash)
+					: QByteArray();
+				checkForOutboundMessages();
+			} else {
+				LOG_APPLY(0, slice);
+				const auto result = tde2e_api::call_apply_block(
+					libId(),
+					slice);
+				if (!result.is_ok()) {
+					LOG_AND_FAIL(result.error(), CallFailure::Unknown);
+					return;
+				}
+				_participantsSet = ParseParticipantsSet(result.value());
+			}
+			entry.height = std::max(entry.height, index + 1);
+		}
+		waiting.erase(waiting.begin());
+	}
+	entry.waitingTimer.cancel();
+	entry.shortPollTimer.callOnce(kShortPollChainBlocksTimeout);
+}
+
+void Call::shortPoll(int subchain) {
+	Expects(subchain >= 0 && subchain < kSubChainsCount);
+
+	auto &entry = _subchains[subchain];
+	entry.waitingTimer.cancel();
+	entry.shortPollTimer.cancel();
+	if (subchain && !_id) {
+		// Not ready.
+		entry.waitingTimer.callOnce(kShortPollChainBlocksWaitFor);
+		return;
+	}
+	entry.shortPolling = true;
+	_subchainRequests.fire({ subchain, entry.height });
+}
+
+std::int64_t Call::libId() const {
+	return std::int64_t(_id.v);
+}
+
+rpl::producer<Call::SubchainRequest> Call::subchainRequests() const {
+	return _subchainRequests.events();
+}
+
+void Call::subchainBlocksRequestFinished(int subchain) {
+	Expects(subchain >= 0 && subchain < kSubChainsCount);
+
+	if (failed()) {
+		return;
+	}
+
+	auto &entry = _subchains[subchain];
+	entry.shortPolling = false;
+	checkWaitingBlocks(subchain);
+}
+
+rpl::producer<QByteArray> Call::sendOutboundBlock() const {
+	return _outboundBlocks.events();
+}
+
+std::optional<CallFailure> Call::failed() const {
+	return _failure;
+}
+
+rpl::producer<CallFailure> Call::failures() const {
+	if (_failure) {
+		return rpl::single(*_failure);
+	}
+	return _failures.events();
+}
+
+QByteArray Call::emojiHash() const {
+	return _emojiHash.current();
+}
+
+rpl::producer<QByteArray> Call::emojiHashValue() const {
+	return _emojiHash.value();
+}
+
+void Call::registerEncryptDecrypt(std::shared_ptr<EncryptDecrypt> object) {
+	Expects(object != nullptr);
+	Expects(_encryptDecrypt == nullptr);
+
+	_encryptDecrypt = std::move(object);
+	if (_id) {
+		_encryptDecrypt->setCallId(_id);
+	}
+}
+
+rpl::lifetime &Call::lifetime() {
+	return _lifetime;
+}
+
+} // namespace TdE2E
--- a/Telegram/SourceFiles/tde2e/tde2e_api.h
+++ b/Telegram/SourceFiles/tde2e/tde2e_api.h
@@ -0,0 +1,171 @@
+/*
+This file is part of Telegram Desktop,
+the official desktop application for the Telegram messaging service.
+
+For license and copyright information please follow this link:
+https://github.com/telegramdesktop/tdesktop/blob/master/LEGAL
+*/
+#pragma once
+
+#include "base/basic_types.h"
+#include "base/flat_set.h"
+#include "base/timer.h"
+
+#include <rpl/event_stream.h>
+#include <rpl/lifetime.h>
+#include <rpl/producer.h>
+#include <rpl/variable.h>
+
+#include <crl/crl_time.h>
+
+namespace TdE2E {
+
+struct UserId {
+	uint64 v = 0;
+
+	friend inline constexpr auto operator<=>(UserId, UserId) = default;
+	friend inline constexpr bool operator==(UserId, UserId) = default;
+};
+
+struct PrivateKeyId {
+	uint64 v = 0;
+};
+
+struct CallId {
+	uint64 v = 0;
+
+	explicit operator bool() const {
+		return v != 0;
+	}
+};
+
+struct PublicKey {
+	uint64 a = 0;
+	uint64 b = 0;
+	uint64 c = 0;
+	uint64 d = 0;
+};
+
+struct ParticipantState {
+	UserId id;
+	PublicKey key;
+};
+
+struct ParticipantsSet {
+	base::flat_set<UserId> list;
+
+	friend inline bool operator==(
+		const ParticipantsSet &,
+		const ParticipantsSet &) = default;
+};
+
+struct Block {
+	QByteArray data;
+};
+
+enum class CallFailure {
+	Unknown,
+};
+
+using EncryptionBuffer = std::vector<uint8_t>;
+
+class EncryptDecrypt final
+	: public std::enable_shared_from_this<EncryptDecrypt> {
+public:
+	[[nodiscard]] auto callback()
+	-> Fn<EncryptionBuffer(const EncryptionBuffer&, int64_t, bool, int32_t)>;
+
+	void setCallId(CallId id);
+	void clearCallId(CallId fromId);
+
+private:
+	std::atomic<uint64> _id = 0;
+
+};
+
+class Call final {
+public:
+	explicit Call(UserId myUserId);
+	~Call();
+
+	[[nodiscard]] PublicKey myKey() const;
+
+	void joined();
+	void apply(
+		int subchain,
+		int indexAfterLast,
+		const std::vector<Block> &blocks,
+		bool fromShortPoll);
+
+	struct SubchainRequest {
+		int subchain = 0;
+		int height = 0;
+	};
+	[[nodiscard]] rpl::producer<SubchainRequest> subchainRequests() const;
+	void subchainBlocksRequestFinished(int subchain);
+
+	[[nodiscard]] rpl::producer<QByteArray> sendOutboundBlock() const;
+
+	[[nodiscard]] std::optional<CallFailure> failed() const;
+	[[nodiscard]] rpl::producer<CallFailure> failures() const;
+
+	[[nodiscard]] QByteArray emojiHash() const;
+	[[nodiscard]] rpl::producer<QByteArray> emojiHashValue() const;
+
+	[[nodiscard]] bool hasLastBlock0() const;
+	void refreshLastBlock0(std::optional<Block> block);
+	[[nodiscard]] Block makeJoinBlock();
+	[[nodiscard]] Block makeRemoveBlock(const base::flat_set<UserId> &ids);
+
+	[[nodiscard]] auto participantsSetValue() const
+		-> rpl::producer<ParticipantsSet>;
+
+	void registerEncryptDecrypt(std::shared_ptr<EncryptDecrypt> object);
+
+	[[nodiscard]] rpl::lifetime &lifetime();
+
+private:
+	static constexpr int kSubChainsCount = 2;
+
+	struct SubChainState {
+		base::Timer shortPollTimer;
+		base::Timer waitingTimer;
+		crl::time lastUpdate = 0;
+		base::flat_map<int, Block> waiting;
+		bool shortPolling = true;
+		int height = 0;
+	};
+
+	void setId(CallId id);
+	void apply(int subchain, const Block &last);
+	void fail(CallFailure reason);
+
+	void checkForOutboundMessages();
+	void checkWaitingBlocks(int subchain, bool waited = false);
+	void shortPoll(int subchain);
+
+	[[nodiscard]] std::int64_t libId() const;
+
+	CallId _id;
+	UserId _myUserId;
+	PrivateKeyId _myKeyId;
+	PublicKey _myKey;
+	std::optional<CallFailure> _failure;
+	rpl::event_stream<CallFailure> _failures;
+	std::shared_ptr<EncryptDecrypt> _encryptDecrypt;
+
+	SubChainState _subchains[kSubChainsCount];
+	rpl::event_stream<SubchainRequest> _subchainRequests;
+	rpl::event_stream<QByteArray> _outboundBlocks;
+
+	std::optional<Block> _lastBlock0;
+	int _lastBlock0Height = 0;
+
+	rpl::variable<ParticipantsSet> _participantsSet;
+	rpl::variable<QByteArray> _emojiHash;
+
+	rpl::lifetime _lifetime;
+
+};
+
+} // namespace TdE2E
--- a/Telegram/SourceFiles/tde2e/tde2e_integration.cpp
+++ b/Telegram/SourceFiles/tde2e/tde2e_integration.cpp
@@ -0,0 +1,27 @@
+/*
+This file is part of Telegram Desktop,
+the official desktop application for the Telegram messaging service.
+
+For license and copyright information please follow this link:
+https://github.com/telegramdesktop/tdesktop/blob/master/LEGAL
+*/
+#include "tde2e/tde2e_integration.h"
+
+#include "data/data_user.h"
+#include "tde2e/tde2e_api.h"
+
+namespace TdE2E {
+
+UserId MakeUserId(not_null<UserData*> user) {
+	return MakeUserId(peerToUser(user->id));
+}
+
+UserId MakeUserId(::UserId id) {
+	return { .v = id.bare };
+}
+
+MTPint256 PublicKeyToMTP(const PublicKey &key) {
+	return MTP_int256(MTP_int128(key.a, key.b), MTP_int128(key.c, key.d));
+}
+
+} // namespace TdE2E
--- a/Telegram/SourceFiles/tde2e/tde2e_integration.h
+++ b/Telegram/SourceFiles/tde2e/tde2e_integration.h
@@ -0,0 +1,20 @@
+/*
+This file is part of Telegram Desktop,
+the official desktop application for the Telegram messaging service.
+
+For license and copyright information please follow this link:
+https://github.com/telegramdesktop/tdesktop/blob/master/LEGAL
+*/
+#pragma once
+
+namespace TdE2E {
+
+struct UserId;
+struct PublicKey;
+
+[[nodiscard]] UserId MakeUserId(not_null<UserData*> user);
+[[nodiscard]] UserId MakeUserId(::UserId id);
+
+[[nodiscard]] MTPint256 PublicKeyToMTP(const PublicKey &key);
+
+} // namespace TdE2E