Merge pull request #6 from status-im/features/delete-skipped-messages

Change handling of skipped/deleted keys

Author: cammellos

keys_storage.go

@@ -1,18 +1,26 @@
 package doubleratchet
 
+import (
+	"bytes"
+	"sort"
+)
+
 // KeysStorage is an interface of an abstract in-memory or persistent keys storage.
 type KeysStorage interface {
 	// Get returns a message key by the given key and message number.
 	Get(k Key, msgNum uint) (mk Key, ok bool, err error)
 
 	// Put saves the given mk under the specified key and msgNum.
-	Put(k Key, msgNum uint, mk Key) error
+	Put(sessionID []byte, k Key, msgNum uint, mk Key, keySeqNum uint) error
 
 	// DeleteMk ensures there's no message key under the specified key and msgNum.
 	DeleteMk(k Key, msgNum uint) error
 
-	// DeletePk ensures there's no message keys under the specified key.
-	DeletePk(k Key) error
+	// DeleteOldMKeys deletes old message keys for a session.
+	DeleteOldMks(sessionID []byte, deleteUntilSeqKey uint) error
+
+	// TruncateMks truncates the number of keys to maxKeys.
+	TruncateMks(sessionID []byte, maxKeys int) error
 
 	// Count returns number of message keys stored under the specified key.
 	Count(k Key) (uint, error)
@@ -23,10 +31,10 @@ type KeysStorage interface {
 
 // KeysStorageInMemory is an in-memory message keys storage.
 type KeysStorageInMemory struct {
-	keys map[Key]map[uint]Key
+	keys map[Key]map[uint]InMemoryKey
 }
 
-// See KeysStorage.
+// Get returns a message key by the given key and message number.
 func (s *KeysStorageInMemory) Get(pubKey Key, msgNum uint) (Key, bool, error) {
 	if s.keys == nil {
 		return Key{}, false, nil
@@ -39,22 +47,32 @@ func (s *KeysStorageInMemory) Get(pubKey Key, msgNum uint) (Key, bool, error) {
 	if !ok {
 		return Key{}, false, nil
 	}
-	return mk, true, nil
+	return mk.messageKey, true, nil
+}
+
+type InMemoryKey struct {
+	messageKey Key
+	seqNum     uint
+	sessionID  []byte
 }
 
-// See KeysStorage.
-func (s *KeysStorageInMemory) Put(pubKey Key, msgNum uint, mk Key) error {
+// Put saves the given mk under the specified key and msgNum.
+func (s *KeysStorageInMemory) Put(sessionID []byte, pubKey Key, msgNum uint, mk Key, seqNum uint) error {
 	if s.keys == nil {
-		s.keys = make(map[Key]map[uint]Key)
+		s.keys = make(map[Key]map[uint]InMemoryKey)
 	}
 	if _, ok := s.keys[pubKey]; !ok {
-		s.keys[pubKey] = make(map[uint]Key)
+		s.keys[pubKey] = make(map[uint]InMemoryKey)
+	}
+	s.keys[pubKey][msgNum] = InMemoryKey{
+		sessionID:  sessionID,
+		messageKey: mk,
+		seqNum:     seqNum,
 	}
-	s.keys[pubKey][msgNum] = mk
 	return nil
 }
 
-// See KeysStorage.
+// DeleteMk ensures there's no message key under the specified key and msgNum.
 func (s *KeysStorageInMemory) DeleteMk(pubKey Key, msgNum uint) error {
 	if s.keys == nil {
 		return nil
@@ -72,27 +90,75 @@ func (s *KeysStorageInMemory) DeleteMk(pubKey Key, msgNum uint) error {
 	return nil
 }
 
-// See KeysStorage.
-func (s *KeysStorageInMemory) DeletePk(pubKey Key) error {
-	if s.keys == nil {
-		return nil
+// TruncateMks truncates the number of keys to maxKeys.
+func (s *KeysStorageInMemory) TruncateMks(sessionID []byte, maxKeys int) error {
+	var seqNos []uint
+	// Collect all seq numbers
+	for _, keys := range s.keys {
+		for _, inMemoryKey := range keys {
+			if bytes.Equal(inMemoryKey.sessionID, sessionID) {
+				seqNos = append(seqNos, inMemoryKey.seqNum)
+			}
+		}
 	}
-	if _, ok := s.keys[pubKey]; !ok {
+
+	// Nothing to do if we haven't reached the limit
+	if len(seqNos) <= maxKeys {
 		return nil
 	}
-	delete(s.keys, pubKey)
+
+	// Take the sequence numbers we care about
+	sort.Slice(seqNos, func(i, j int) bool { return seqNos[i] < seqNos[j] })
+	toDeleteSlice := seqNos[:len(seqNos)-maxKeys]
+
+	// Put in map for easier lookup
+	toDelete := make(map[uint]bool)
+
+	for _, seqNo := range toDeleteSlice {
+		toDelete[seqNo] = true
+	}
+
+	for pubKey, keys := range s.keys {
+		for i, inMemoryKey := range keys {
+			if toDelete[inMemoryKey.seqNum] && bytes.Equal(inMemoryKey.sessionID, sessionID) {
+				delete(s.keys[pubKey], i)
+			}
+		}
+	}
+
 	return nil
 }
 
-// See KeysStorage.
+// DeleteOldMKeys deletes old message keys for a session.
+func (s *KeysStorageInMemory) DeleteOldMks(sessionID []byte, deleteUntilSeqKey uint) error {
+	for pubKey, keys := range s.keys {
+		for i, inMemoryKey := range keys {
+			if inMemoryKey.seqNum <= deleteUntilSeqKey && bytes.Equal(inMemoryKey.sessionID, sessionID) {
+				delete(s.keys[pubKey], i)
+			}
+		}
+	}
+	return nil
+}
+
+// Count returns number of message keys stored under the specified key.
 func (s *KeysStorageInMemory) Count(pubKey Key) (uint, error) {
 	if s.keys == nil {
 		return 0, nil
 	}
 	return uint(len(s.keys[pubKey])), nil
 }
 
-// See KeysStorage.
+// All returns all the keys
 func (s *KeysStorageInMemory) All() (map[Key]map[uint]Key, error) {
-	return s.keys, nil
+	response := make(map[Key]map[uint]Key)
+
+	for pubKey, keys := range s.keys {
+		response[pubKey] = make(map[uint]Key)
+		for n, key := range keys {
+			response[pubKey][n] = key.messageKey
+		}
+	}
+
+	return response, nil
 }

keys_storage_test.go

@@ -29,7 +29,7 @@ func TestKeysStorageInMemory_Put(t *testing.T) {
 	ks := &KeysStorageInMemory{}
 
 	// Act and assert.
-	err := ks.Put(pubKey1, 0, mk)
+	err := ks.Put([]byte("session-id"), pubKey1, 0, mk, 1)
 	require.NoError(t, err)
 }
 
@@ -58,15 +58,9 @@ func TestKeysStorageInMemory_Flow(t *testing.T) {
 	// Arrange.
 	ks := &KeysStorageInMemory{}
 
-	t.Run("delete non-existent pubkey", func(t *testing.T) {
-		// Act and assert.
-		err := ks.DeletePk(pubKey1)
-		require.NoError(t, err)
-	})
-
 	t.Run("put and get existing", func(t *testing.T) {
 		// Act.
-		err := ks.Put(pubKey1, 0, mk)
+		err := ks.Put([]byte("session-id"), pubKey1, 0, mk, 1)
 		require.NoError(t, err)
 
 		k, ok, err := ks.Get(pubKey1, 0)
@@ -138,32 +132,4 @@ func TestKeysStorageInMemory_Flow(t *testing.T) {
 		require.NoError(t, err)
 		require.EqualValues(t, 0, cnt)
 	})
-
-	t.Run("delete existing pubkey", func(t *testing.T) {
-		// Act.
-		err := ks.Put(pubKey1, 0, mk)
-		require.NoError(t, err)
-
-		err = ks.Put(pubKey2, 0, mk)
-		require.NoError(t, err)
-
-		err = ks.DeletePk(pubKey1)
-		require.NoError(t, err)
-
-		err = ks.DeletePk(pubKey1)
-		require.NoError(t, err)
-
-		err = ks.DeletePk(pubKey2)
-		require.NoError(t, err)
-
-		cn1, err := ks.Count(pubKey1)
-		require.NoError(t, err)
-
-		cn2, err := ks.Count(pubKey2)
-		require.NoError(t, err)
-
-		// Assert.
-		require.Empty(t, cn1)
-		require.Empty(t, cn2)
-	})
 }

options.go

@@ -17,7 +17,7 @@ func WithMaxSkip(n int) option {
 	}
 }
 
-// WithMaxKeep specifies the maximum number of ratchet steps before a message is deleted.
+// WithMaxKeep specifies how long we keep message keys, counted in number of messages received
 // nolint: golint
 func WithMaxKeep(n int) option {
 	return func(s *State) error {
@@ -29,6 +29,18 @@ func WithMaxKeep(n int) option {
 	}
 }
 
+// WithMaxMessageKeysPerSession specifies the maximum number of message keys per session
+// nolint: golint
+func WithMaxMessageKeysPerSession(n int) option {
+	return func(s *State) error {
+		if n < 0 {
+			return fmt.Errorf("n must be non-negative")
+		}
+		s.MaxMessageKeysPerSession = n
+		return nil
+	}
+}
+
 // WithKeysStorage replaces the default keys storage with the specified.
 // nolint: golint
 func WithKeysStorage(ks KeysStorage) option {

session.go

@@ -130,15 +130,13 @@ func (s *sessionState) RatchetDecrypt(m Message, ad []byte) ([]byte, error) {
 	)
 
 	// Is there a new ratchet key?
-	isDHStepped := false
 	if m.Header.DH != sc.DHr {
 		if skippedKeys1, err = sc.skipMessageKeys(sc.DHr, uint(m.Header.PN)); err != nil {
 			return nil, fmt.Errorf("can't skip previous chain message keys: %s", err)
 		}
 		if err = sc.dhRatchet(m.Header); err != nil {
 			return nil, fmt.Errorf("can't perform ratchet step: %s", err)
 		}
-		isDHStepped = true
 	}
 
 	// After all, update the current chain.
@@ -151,18 +149,14 @@ func (s *sessionState) RatchetDecrypt(m Message, ad []byte) ([]byte, error) {
 		return nil, fmt.Errorf("can't decrypt: %s", err)
 	}
 
+	// Increment the number of keys
+	sc.KeysCount++
+
 	// Apply changes.
-	if err := s.applyChanges(sc, append(skippedKeys1, skippedKeys2...)); err != nil {
+	if err := s.applyChanges(sc, s.id, append(skippedKeys1, skippedKeys2...)); err != nil {
 		return nil, err
 	}
 
-	if isDHStepped {
-		err = s.deleteSkippedKeys(s.DHr)
-		if err != nil {
-			return nil, err
-		}
-	}
-
 	// Store state
 	if err := s.store(); err != nil {
 		return nil, err

session_he.go

@@ -103,12 +103,9 @@ func (s *sessionHE) RatchetDecrypt(m MessageHE, ad []byte) ([]byte, error) {
 		return nil, fmt.Errorf("can't decrypt: %s", err)
 	}
 
-	if err = s.applyChanges(sc, append(skippedKeys1, skippedKeys2...)); err != nil {
+	if err = s.applyChanges(sc, []byte("FIXME"), append(skippedKeys1, skippedKeys2...)); err != nil {
 		return nil, fmt.Errorf("failed to apply changes: %s", err)
 	}
-	if step {
-		_ = s.deleteSkippedKeys(s.HKr)
-	}
 
 	return plaintext, nil
 }