crypto: Add a method to check if our own device has been signed by our identity
This commit is contained in:
Damir Jelić
parent
0598bdebc7
commit
8d7fe5e575
2 changed files with 29 additions and 2 deletions
|
|
@ -124,6 +124,19 @@ impl OwnUserIdentity {
|
||||||
self.request_verification_helper(Some(methods)).await
|
self.request_verification_helper(Some(methods)).await
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/// Does our user identity trust our own device, i.e. have we signed our
|
||||||
|
/// own device keys with our self-signing key.
|
||||||
|
pub async fn trusts_our_own_device(&self) -> Result<bool, CryptoStoreError> {
|
||||||
|
Ok(if let Some(signatures) = self.verification_machine.store.device_signatures().await? {
|
||||||
|
let mut device_keys = self.verification_machine.store.account.device_keys().await;
|
||||||
|
device_keys.signatures = signatures;
|
||||||
|
|
||||||
|
self.inner.self_signing_key().verify_device_keys(device_keys).is_ok()
|
||||||
|
} else {
|
||||||
|
false
|
||||||
|
})
|
||||||
|
}
|
||||||
|
|
||||||
async fn request_verification_helper(
|
async fn request_verification_helper(
|
||||||
&self,
|
&self,
|
||||||
methods: Option<Vec<VerificationMethod>>,
|
methods: Option<Vec<VerificationMethod>>,
|
||||||
|
|
|
||||||
|
|
@ -19,7 +19,10 @@ mod qrcode;
|
||||||
mod requests;
|
mod requests;
|
||||||
mod sas;
|
mod sas;
|
||||||
|
|
||||||
use std::{collections::HashMap, sync::Arc};
|
use std::{
|
||||||
|
collections::{BTreeMap, HashMap},
|
||||||
|
sync::Arc,
|
||||||
|
};
|
||||||
|
|
||||||
use event_enums::OutgoingContent;
|
use event_enums::OutgoingContent;
|
||||||
pub use machine::VerificationMachine;
|
pub use machine::VerificationMachine;
|
||||||
|
|
@ -36,7 +39,7 @@ use ruma::{
|
||||||
},
|
},
|
||||||
AnyMessageEventContent, AnyToDeviceEventContent,
|
AnyMessageEventContent, AnyToDeviceEventContent,
|
||||||
},
|
},
|
||||||
DeviceId, DeviceIdBox, EventId, RoomId, UserId,
|
DeviceId, DeviceIdBox, DeviceKeyId, EventId, RoomId, UserId,
|
||||||
};
|
};
|
||||||
pub use sas::{AcceptSettings, Sas};
|
pub use sas::{AcceptSettings, Sas};
|
||||||
use tracing::{error, info, trace, warn};
|
use tracing::{error, info, trace, warn};
|
||||||
|
|
@ -91,6 +94,17 @@ impl VerificationStore {
|
||||||
self.inner.get_sessions(sender_key).await
|
self.inner.get_sessions(sender_key).await
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/// Get the signatures that have signed our own device.
|
||||||
|
pub async fn device_signatures(
|
||||||
|
&self,
|
||||||
|
) -> Result<Option<BTreeMap<UserId, BTreeMap<DeviceKeyId, String>>>, CryptoStoreError> {
|
||||||
|
Ok(self
|
||||||
|
.inner
|
||||||
|
.get_device(self.account.user_id(), self.account.device_id())
|
||||||
|
.await?
|
||||||
|
.map(|d| d.signatures().to_owned()))
|
||||||
|
}
|
||||||
|
|
||||||
pub fn inner(&self) -> &dyn CryptoStore {
|
pub fn inner(&self) -> &dyn CryptoStore {
|
||||||
&*self.inner
|
&*self.inner
|
||||||
}
|
}
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue