ContentElement.java

  1. /**
  2.  *
  3.  * Copyright 2020 Paul Schaub
  4.  *
  5.  * Licensed under the Apache License, Version 2.0 (the "License");
  6.  * you may not use this file except in compliance with the License.
  7.  * You may obtain a copy of the License at
  8.  *
  9.  *     http://www.apache.org/licenses/LICENSE-2.0
  10.  *
  11.  * Unless required by applicable law or agreed to in writing, software
  12.  * distributed under the License is distributed on an "AS IS" BASIS,
  13.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  14.  * See the License for the specific language governing permissions and
  15.  * limitations under the License.
  16.  */
  17. package org.jivesoftware.smackx.stanza_content_encryption.element;

  19. import java.util.ArrayList;
  20. import java.util.Arrays;
  21. import java.util.Collections;
  22. import java.util.Date;
  23. import java.util.HashSet;
  24. import java.util.List;
  25. import java.util.Set;

  27. import javax.xml.namespace.QName;

  29. import org.jivesoftware.smack.packet.ExtensionElement;
  30. import org.jivesoftware.smack.packet.XmlElement;
  31. import org.jivesoftware.smack.packet.XmlEnvironment;
  32. import org.jivesoftware.smack.util.Objects;
  33. import org.jivesoftware.smack.util.XmlStringBuilder;

  35. import org.jivesoftware.smackx.address.packet.MultipleAddresses;
  36. import org.jivesoftware.smackx.hints.element.MessageProcessingHint;
  37. import org.jivesoftware.smackx.sid.element.StanzaIdElement;

  39. import org.jxmpp.jid.Jid;

  41. /**
  42.  * Extension element that holds the payload element, as well as a list of affix elements.
  43.  * In SCE, the XML representation of this element is what will be encrypted using the encryption mechanism of choice.
  44.  */
  45. public class ContentElement implements ExtensionElement {

  47.     private static final String NAMESPACE_UNVERSIONED = "urn:xmpp:sce";
  48.     public static final String NAMESPACE_0 = NAMESPACE_UNVERSIONED + ":0";
  49.     public static final String NAMESPACE = NAMESPACE_0;
  50.     public static final String ELEMENT = "content";
  51.     public static final QName QNAME = new QName(NAMESPACE, ELEMENT);

  53.     private final PayloadElement payload;
  54.     private final List<AffixElement> affixElements;

  56.     ContentElement(PayloadElement payload, List<AffixElement> affixElements) {
  57.         this.payload = payload;
  58.         this.affixElements = Collections.unmodifiableList(affixElements);
  59.     }

  61.     /**
  62.      * Return the {@link PayloadElement} which holds the sensitive payload extensions.
  63.      *
  64.      * @return payload element
  65.      */
  66.     public PayloadElement getPayload() {
  67.         return payload;
  68.     }

  70.     /**
  71.      * Return a list of affix elements.
  72.      * Those are elements that need to be verified upon reception by the encryption mechanisms implementation.
  73.      *
  74.      * @see <a href="https://xmpp.org/extensions/xep-0420.html#affix_elements">
  75.      *     XEP-0420: Stanza Content Encryption - §4. Affix Elements</a>
  76.      *
  77.      * @return list of affix elements
  78.      */
  79.     public List<AffixElement> getAffixElements() {
  80.         return affixElements;
  81.     }

  83.     @Override
  84.     public String getNamespace() {
  85.         return NAMESPACE;
  86.     }

  88.     @Override
  89.     public String getElementName() {
  90.         return ELEMENT;
  91.     }

  93.     @Override
  94.     public XmlStringBuilder toXML(XmlEnvironment xmlEnvironment) {
  95.         XmlStringBuilder xml = new XmlStringBuilder(this).rightAngleBracket();
  96.         xml.append(affixElements);
  97.         xml.append(payload);
  98.         return xml.closeElement(this);
  99.     }

  101.     @Override
  102.     public QName getQName() {
  103.         return QNAME;
  104.     }

  106.     /**
  107.      * Return a {@link Builder} that can be used to build the {@link ContentElement}.
  108.      * @return builder
  109.      */
  110.     public static Builder builder() {
  111.         return new Builder();
  112.     }

  114.     public static final class Builder {
  115.         private static final Set<String> BLACKLISTED_NAMESPACES = Collections.singleton(MessageProcessingHint.NAMESPACE);
  116.         private static final Set<QName> BLACKLISTED_QNAMES = Collections.unmodifiableSet(new HashSet<>(Arrays.asList(
  117.                 StanzaIdElement.QNAME,
  118.                 MultipleAddresses.QNAME
  119.         )));

  121.         private FromAffixElement from = null;
  122.         private TimestampAffixElement timestamp = null;
  123.         private RandomPaddingAffixElement rpad = null;

  125.         private final List<AffixElement> otherAffixElements = new ArrayList<>();
  126.         private final List<XmlElement> payloadItems = new ArrayList<>();

  128.         private Builder() {

  130.         }

  132.         /**
  133.          * Add an affix element of type 'to' which addresses one recipient.
  134.          * The jid in the 'to' element SHOULD be a bare jid.
  135.          *
  136.          * @param jid jid
  137.          * @return builder
  138.          */
  139.         public Builder addTo(Jid jid) {
  140.             return addTo(new ToAffixElement(jid));
  141.         }

  143.         /**
  144.          * Add an affix element of type 'to' which addresses one recipient.
  145.          *
  146.          * @param to affix element
  147.          * @return builder
  148.          */
  149.         public Builder addTo(ToAffixElement to) {
  150.             this.otherAffixElements.add(Objects.requireNonNull(to, "'to' affix element MUST NOT be null."));
  151.             return this;
  152.         }

  154.         /**
  155.          * Set the senders jid as a 'from' affix element.
  156.          *
  157.          * @param jid jid of the sender
  158.          * @return builder
  159.          */
  160.         public Builder setFrom(Jid jid) {
  161.             return setFrom(new FromAffixElement(jid));
  162.         }

  164.         /**
  165.          * Set the senders jid as a 'from' affix element.
  166.          *
  167.          * @param from affix element
  168.          * @return builder
  169.          */
  170.         public Builder setFrom(FromAffixElement from) {
  171.             this.from = Objects.requireNonNull(from, "'form' affix element MUST NOT be null.");
  172.             return this;
  173.         }

  175.         /**
  176.          * Set the given date as a 'time' affix element.
  177.          *
  178.          * @param date timestamp as date
  179.          * @return builder
  180.          */
  181.         public Builder setTimestamp(Date date) {
  182.             return setTimestamp(new TimestampAffixElement(date));
  183.         }

  185.         /**
  186.          * Set the timestamp of the message as a 'time' affix element.
  187.          *
  188.          * @param timestamp timestamp affix element
  189.          * @return builder
  190.          */
  191.         public Builder setTimestamp(TimestampAffixElement timestamp) {
  192.             this.timestamp = Objects.requireNonNull(timestamp, "'time' affix element MUST NOT be null.");
  193.             return this;
  194.         }

  196.         /**
  197.          * Set some random length random content padding.
  198.          *
  199.          * @return builder
  200.          */
  201.         public Builder setRandomPadding() {
  202.             this.rpad = new RandomPaddingAffixElement();
  203.             return this;
  204.         }

  206.         /**
  207.          * Set the given string as padding.
  208.          * The padding should be of length between 1 and 200 characters.
  209.          *
  210.          * @param padding padding string
  211.          * @return builder
  212.          */
  213.         public Builder setRandomPadding(String padding) {
  214.             return setRandomPadding(new RandomPaddingAffixElement(padding));
  215.         }

  217.         /**
  218.          * Set a padding affix element.
  219.          *
  220.          * @param padding affix element
  221.          * @return builder
  222.          */
  223.         public Builder setRandomPadding(RandomPaddingAffixElement padding) {
  224.             this.rpad = Objects.requireNonNull(padding, "'rpad' affix element MUST NOT be empty.");
  225.             return this;
  226.         }

  228.         /**
  229.          * Add an additional, SCE profile specific affix element.
  230.          *
  231.          * @param customAffixElement additional affix element
  232.          * @return builder
  233.          */
  234.         public Builder addFurtherAffixElement(AffixElement customAffixElement) {
  235.             this.otherAffixElements.add(Objects.requireNonNull(customAffixElement,
  236.                     "Custom affix element MUST NOT be null."));
  237.             return this;
  238.         }

  240.         /**
  241.          * Add a payload item as child element of the payload element.
  242.          * There are some items that are not allowed as payload.
  243.          * Adding those will throw an exception.
  244.          *
  245.          * @see <a href="https://xmpp.org/extensions/xep-0420.html#server-processed">
  246.          *     XEP-0420: Stanza Content Encryption - §9. Server-processed Elements</a>
  247.          *
  248.          * @param payloadItem extension element
  249.          * @return builder
  250.          * @throws IllegalArgumentException in case an extension element from the blacklist is added.
  251.          */
  252.         public Builder addPayloadItem(XmlElement payloadItem) {
  253.             Objects.requireNonNull(payloadItem, "Payload item MUST NOT be null.");
  254.             this.payloadItems.add(checkForIllegalPayloadsAndPossiblyThrow(payloadItem));
  255.             return this;
  256.         }

  258.         /**
  259.          * Construct a content element from this builder.
  260.          *
  261.          * @return content element
  262.          */
  263.         public ContentElement build() {
  264.             List<AffixElement> allAffixElements = collectAffixElements();
  265.             PayloadElement payloadElement = new PayloadElement(payloadItems);
  266.             return new ContentElement(payloadElement, allAffixElements);
  267.         }

  269.         private static XmlElement checkForIllegalPayloadsAndPossiblyThrow(XmlElement payloadItem) {
  270.             QName qName = payloadItem.getQName();
  271.             if (BLACKLISTED_QNAMES.contains(qName)) {
  272.                 throw new IllegalArgumentException("Element identified by " + qName +
  273.                         " is not allowed as payload item. See https://xmpp.org/extensions/xep-0420.html#server-processed");
  274.             }

  276.             String namespace = payloadItem.getNamespace();
  277.             if (BLACKLISTED_NAMESPACES.contains(namespace)) {
  278.                 throw new IllegalArgumentException("Elements of namespace '" + namespace +
  279.                         "' are not allowed as payload items. See https://xmpp.org/extensions/xep-0420.html#server-processed");
  280.             }

  282.             return payloadItem;
  283.         }

  285.         private List<AffixElement> collectAffixElements() {
  286.             List<AffixElement> allAffixElements = new ArrayList<>(Arrays.asList(rpad, from, timestamp));
  287.             allAffixElements.addAll(otherAffixElements);
  288.             return allAffixElements;
  289.         }
  290.     }
  291. }
Created with JaCoCo 0.8.6.202009150832