matrix-org · hughns · Mar 2, 2023 · Mar 2, 2023 · Mar 9, 2023 · Mar 9, 2023
@@ -16,20 +16,69 @@ limitations under the License.
 
 import { UnstableValue } from "matrix-events-sdk";
 
-import { RendezvousChannel, RendezvousFailureListener, RendezvousFailureReason, RendezvousIntent } from ".";
+import {
+    RendezvousChannel,
+    RendezvousFailureListener,
+    RendezvousFailureReason,
+    RendezvousFlow,
+    RendezvousIntent,
+    SETUP_ADDITIONAL_DEVICE_FLOW_V1,
+} from ".";
 import { MatrixClient } from "../client";
 import { CrossSigningInfo } from "../crypto/CrossSigning";
 import { DeviceInfo } from "../crypto/deviceinfo";
 import { buildFeatureSupportMap, Feature, ServerSupport } from "../feature";
 import { logger } from "../logger";
 import { sleep } from "../utils";
 
+/**
+ * These are the possible types of payload that are used in
+ * [MSC3906](https://github.com/matrix-org/matrix-spec-proposals/pull/3906) payloads.
+ * The values are used in the `type` field.
+ */
 enum PayloadType {
-    Start = "m.login.start",
+    /**
+     * @deprecated Only used in MSC3906 v1
+     */
     Finish = "m.login.finish",
+    /**
+     * Indicates that a new device is ready to proceed with the setup process.
+     */
     Progress = "m.login.progress",
+    /**
+     * Used by the new device to indicate which protocol to use.
+     */
+    Protocol = "m.login.protocol",
+    /**
+     * Used for the new device to indicate which protocols are supported by the existing device and
+     * homeserver.
+     */
+    Protocols = "m.login.protocols",
+    /**
+     * Indicates that the sign of the new device was approved by the user on the existing device.
+     */
+    Approved = "m.login.approved",
+    /**
+     * Indicates that the new device has signed in successfully.
+     */
+    Success = "m.login.success",
+    /**
+     * Indicates that the new device has been successfully verified by the existing device.
+     */
+    Verified = "m.login.verified",
+    /**
+     * Indicates that the login failed.
+     */
+    Failure = "m.login.failure",
+    /**
+     * Indicates that the user declined the login on the existing device.
+     */
+    Declined = "m.login.declined",
 }
 
+/**
+ * @deprecated Only used in MSC3906 v1
+ */
 enum Outcome {
     Success = "success",
     Failure = "failure",
@@ -38,10 +87,28 @@ enum Outcome {
     Unsupported = "unsupported",
 }
 
+/**
+ * Used in the `reason` field of the `m.login.failure` payload.
+ */
+enum FailureReason {
+    Cancelled = "cancelled",
+    Unsupported = "unsupported",
+    E2EESecurityError = "e2ee_security_error",
+    IncompatibleIntent = "incompatible_intent",
+}
+
+/**
+ * This represents an [MSC3906](https://github.com/matrix-org/matrix-spec-proposals/pull/3906) payload.
+ */
 export interface MSC3906RendezvousPayload {
+    /** The type of the payload */
     type: PayloadType;
     intent?: RendezvousIntent;
+    /**
+     * @deprecated Only used in MSC3906 v1. Instead the type field should be used in future
+     */
     outcome?: Outcome;
+    reason?: FailureReason;
     device_id?: string;
     device_key?: string;
     verifying_device_id?: string;
@@ -53,48 +120,75 @@ export interface MSC3906RendezvousPayload {
     homeserver?: string;
 }
 
+/**
+ * Represents the use of an `m.login.token` obtained from an existing device to sign in on a new device.
+ */
 const LOGIN_TOKEN_PROTOCOL = new UnstableValue("login_token", "org.matrix.msc3906.login_token");
 
 /**
- * Implements MSC3906 to allow a user to sign in on a new device using QR code.
- * This implementation only supports generating a QR code on a device that is already signed in.
+ * This class can be used to complete a "rendezvous flow" as defined in MSC3906.
+ *
+ * Currently it only supports being used on a device that is already signed in that wishes to help sign in
+ * another device.
+ *
  * Note that this is UNSTABLE and may have breaking changes without notice.
  */
 export class MSC3906Rendezvous {
     private newDeviceId?: string;
     private newDeviceKey?: string;
     private ourIntent: RendezvousIntent = RendezvousIntent.RECIPROCATE_LOGIN_ON_EXISTING_DEVICE;
+    // if true then we follow the v1 flow, otherwise we follow the v2 flow
+    private usingV1Flow: boolean;
     private _code?: string;
 
     /**
-     * @param channel - The secure channel used for communication
-     * @param client - The Matrix client in used on the device already logged in
-     * @param onFailure - Callback for when the rendezvous fails
+     * Creates an instance that can be used to manage the execution of a rendezvous flow.
+     *
+     * @param channel - The rendezvous channel that should be used for communication with the other device
+     * @param client - The Matrix client that should be used.
+     * @param onFailure - Optional callback function to be notified of rendezvous failures.
+     * @param flow - The rendezvous flow to use. Defaults to setting up an additional device using MSC3906 v1,
+     * for backwards compatibility.
      */
     public constructor(
         private channel: RendezvousChannel<MSC3906RendezvousPayload>,
         private client: MatrixClient,
         public onFailure?: RendezvousFailureListener,
-    ) {}
+        private flow: RendezvousFlow = SETUP_ADDITIONAL_DEVICE_FLOW_V1,
+    ) {
+        this.usingV1Flow = flow === SETUP_ADDITIONAL_DEVICE_FLOW_V1;
+    }
 
     /**
-     * Returns the code representing the rendezvous suitable for rendering in a QR code or undefined if not generated yet.
+     * @returns The code representing the rendezvous suitable for rendering in a QR code or undefined if not generated yet.
      */
     public get code(): string | undefined {
         return this._code;
     }
 
     /**
-     * Generate the code including doing partial set up of the channel where required.
+     * Generate the code including doing partial set up of the channel where required. This code could be encoded in a QR.
      */
     public async generateCode(): Promise<void> {
         if (this._code) {
             return;
         }
 
-        this._code = JSON.stringify(await this.channel.generateCode(this.ourIntent));
+        const raw = this.usingV1Flow
+            ? await this.channel.generateCode(this.ourIntent)
+            : await this.channel.generateCode(this.ourIntent, this.flow);
+        this._code = JSON.stringify(raw);
     }
 
+    /**
+     * Call this after the code has been shown to the user (perhaps in a QR). It will poll for the other device
+     * at the rendezvous point and start the process of setting up the new device.
+     *
+     * If successful then the user should be asked to approve the login of the other device whilst displaying the
+     * returned checksum code which the user should verify matches the code shown on the other device.
+     *
+     * @returns the checksum of the secure channel if the rendezvous set up was successful, otherwise undefined
+     */
     public async startAfterShowingCode(): Promise<string | undefined> {
         const checksum = await this.channel.connect();
 
@@ -104,39 +198,114 @@ export class MSC3906Rendezvous {
         // determine available protocols
         if (features.get(Feature.LoginTokenRequest) === ServerSupport.Unsupported) {
             logger.info("Server doesn't support MSC3882");
-            await this.send({ type: PayloadType.Finish, outcome: Outcome.Unsupported });
+            await this.send(
+                this.usingV1Flow
+                    ? { type: PayloadType.Finish, outcome: Outcome.Unsupported }
+                    : { type: PayloadType.Failure, reason: FailureReason.Unsupported },
+            );
             await this.cancel(RendezvousFailureReason.HomeserverLacksSupport);
             return undefined;
         }
 
-        await this.send({ type: PayloadType.Progress, protocols: [LOGIN_TOKEN_PROTOCOL.name] });
+        await this.send({
+            type: this.usingV1Flow ? PayloadType.Progress : PayloadType.Protocols,
+            protocols: [LOGIN_TOKEN_PROTOCOL.name],
+        });
 
         logger.info("Waiting for other device to chose protocol");
-        const { type, protocol, outcome } = await this.receive();
+        const nextPayload = await this.receive();
 
+        // even if we didn't start in v1 mode we might detect that the other device is v1:
+        // - the finish payload is only used in v1
+        // - a progress payload is only sent at this point in v1, in v2 the use of it is different
+        if (nextPayload.type === PayloadType.Finish || nextPayload.type === PayloadType.Progress) {
+            this.usingV1Flow = true;
+        }
+
+        const protocol = this.usingV1Flow
+            ? await this.handleV1ProtocolPayload(nextPayload)
+            : await this.handleV2ProtocolPayload(nextPayload);
+
+        // invalid protocol
+        if (!protocol || !LOGIN_TOKEN_PROTOCOL.matches(protocol)) {
+            await this.cancel(RendezvousFailureReason.UnsupportedAlgorithm);
+            return undefined;
+        }
+
+        return checksum;
+    }
+
+    private async handleV1ProtocolPayload({
+        type,
+        protocol,
+        outcome,
+        reason,
+        intent,
+    }: MSC3906RendezvousPayload): Promise<string | void> {
         if (type === PayloadType.Finish) {
             // new device decided not to complete
-            switch (outcome ?? "") {
-                case "unsupported":
-                    await this.cancel(RendezvousFailureReason.UnsupportedAlgorithm);
-                    break;
-                default:
-                    await this.cancel(RendezvousFailureReason.Unknown);
+            let reason: RendezvousFailureReason;
+            if (intent) {
+                reason =
+                    this.ourIntent === RendezvousIntent.LOGIN_ON_NEW_DEVICE
+                        ? RendezvousFailureReason.OtherDeviceNotSignedIn
+                        : RendezvousFailureReason.OtherDeviceAlreadySignedIn;
+            } else if (outcome === Outcome.Unsupported) {
+                reason = RendezvousFailureReason.UnsupportedAlgorithm;
+            } else {
+                reason = RendezvousFailureReason.Unknown;
             }
-            return undefined;
+            await this.cancel(reason);
+            return;
         }
 
+        // unexpected payload
         if (type !== PayloadType.Progress) {
             await this.cancel(RendezvousFailureReason.Unknown);
-            return undefined;
+            return;
         }
 
-        if (!protocol || !LOGIN_TOKEN_PROTOCOL.matches(protocol)) {
-            await this.cancel(RendezvousFailureReason.UnsupportedAlgorithm);
-            return undefined;
+        return protocol;
+    }
+
+    private async handleV2ProtocolPayload({
+        type,
+        protocol,
+        outcome,
+        reason,
+        intent,
+    }: MSC3906RendezvousPayload): Promise<string | void> {
+        // v2 flow
+        if (type === PayloadType.Failure) {
+            // new device decided not to complete
+            let failureReason: RendezvousFailureReason;
+            switch (reason ?? "") {
+                case FailureReason.Cancelled:
+                    failureReason = RendezvousFailureReason.UserCancelled;
+                    break;
+                case FailureReason.IncompatibleIntent:
+                    failureReason =
+                        this.ourIntent === RendezvousIntent.LOGIN_ON_NEW_DEVICE
+                            ? RendezvousFailureReason.OtherDeviceNotSignedIn
+                            : RendezvousFailureReason.OtherDeviceAlreadySignedIn;
+                    break;
+                case FailureReason.Unsupported:
+                    failureReason = RendezvousFailureReason.UnsupportedAlgorithm;
+                    break;
+                default:
+                    failureReason = RendezvousFailureReason.Unknown;
+            }
+            await this.cancel(failureReason);
+            return;
         }
 
-        return checksum;
+        // unexpected payload
+        if (type !== PayloadType.Protocol) {
+            await this.cancel(RendezvousFailureReason.Unknown);
+            return;
+        }
+
+        return protocol;
     }
 
     private async receive(): Promise<MSC3906RendezvousPayload> {
@@ -147,23 +316,38 @@ export class MSC3906Rendezvous {
         await this.channel.send(payload);
     }
 
+    /**
+     * Call this if the user has declined the login.
+     */
     public async declineLoginOnExistingDevice(): Promise<void> {
         logger.info("User declined sign in");
-        await this.send({ type: PayloadType.Finish, outcome: Outcome.Declined });
+        await this.send(
+            this.usingV1Flow ? { type: PayloadType.Finish, outcome: Outcome.Declined } : { type: PayloadType.Declined },
+        );
     }
 
+    /**
+     * Call this if the user has approved the login.
+     *
+     * @param loginToken - the login token to send to the new device for it to complete the login flow
+     * @returns if the new device successfully completed the login flow and provided their device id then the device id is
+     * returned, otherwise undefined
+     */
     public async approveLoginOnExistingDevice(loginToken: string): Promise<string | undefined> {
-        // eslint-disable-next-line camelcase
-        await this.send({ type: PayloadType.Progress, login_token: loginToken, homeserver: this.client.baseUrl });
+        await this.channel.send({
+            type: this.usingV1Flow ? PayloadType.Progress : PayloadType.Approved,
+            login_token: loginToken,
+            homeserver: this.client.baseUrl,
+        });
 
         logger.info("Waiting for outcome");
         const res = await this.receive();
         if (!res) {
             return undefined;
         }
-        const { outcome, device_id: deviceId, device_key: deviceKey } = res;
+        const { type, outcome, device_id: deviceId, device_key: deviceKey } = res;
 
-        if (outcome !== "success") {
+        if ((this.usingV1Flow && outcome !== "success") || (!this.usingV1Flow && type !== PayloadType.Success)) {
             throw new Error("Linking failed");
         }
 
@@ -201,8 +385,8 @@ export class MSC3906Rendezvous {
         const masterPublicKey = this.client.crypto.crossSigningInfo.getId("master")!;
 
         await this.send({
-            type: PayloadType.Finish,
-            outcome: Outcome.Verified,
+            type: this.usingV1Flow ? PayloadType.Finish : PayloadType.Verified,
+            outcome: this.usingV1Flow ? Outcome.Verified : undefined,
             verifying_device_id: this.client.getDeviceId()!,
             verifying_device_key: this.client.getDeviceEd25519Key()!,
             master_key: masterPublicKey,
@@ -212,7 +396,8 @@ export class MSC3906Rendezvous {
     }
 
     /**
-     * Verify the device and cross-sign it.
+     * Wait for a device to be visible via the homeserver and then verify/cross-sign it.
+     *
      * @param timeout - time in milliseconds to wait for device to come online
      * @returns the new device info if the device was verified
      */