WTelegramClient/src/Session.cs

using System;
using System.Buffers.Binary;
using System.Collections.Generic;
using System.IO;
using System.Linq;
using System.Net;
using System.Security.Cryptography;
using System.Text.Json;

namespace WTelegram
{
	internal class Session
	{
		public long UserId;
		public int MainDC;
		public Dictionary<int, DCSession> DCSessions = new();
		public TL.DcOption[] DcOptions;

		public class DCSession
		{
			public long Id;
			public long AuthKeyID;
			public byte[] AuthKey;      // 2048-bit = 256 bytes
			public long UserId;
			public long Salt;
			public int Seqno;
			public long ServerTicksOffset;
			public long LastSentMsgId;
			public TL.DcOption DataCenter;

			internal Client Client;
			internal int DcID => DataCenter?.id ?? 0;
			internal IPEndPoint EndPoint => DataCenter == null ? null : new(IPAddress.Parse(DataCenter.ip_address), DataCenter.port);
			internal void Renew() { Helpers.Log(3, $"Renewing session on DC {DcID}..."); Id = Helpers.RandomLong(); Seqno = 0; LastSentMsgId = 0; }
		}

		public DateTime SessionStart => _sessionStart;
		private readonly DateTime _sessionStart = DateTime.UtcNow;
		private readonly SHA256 _sha256 = SHA256.Create();
		private FileStream _fileStream;
		private int _nextPosition;
		private byte[] _apiHash;	// used as AES key for encryption of session file
		private static readonly Aes aes = Aes.Create();

		internal static Session LoadOrCreate(string pathname, byte[] apiHash)
		{
			var header = new byte[8];
			var fileStream = new FileStream(pathname, FileMode.OpenOrCreate, FileAccess.ReadWrite, FileShare.None, 1); // no buffering
			if (fileStream.Read(header, 0, 8) == 8)
			{
				try
				{
					var position = BinaryPrimitives.ReadInt32LittleEndian(header);
					var length = BinaryPrimitives.ReadInt32LittleEndian(header.AsSpan(4));
					if (position < 0 || length < 0 || position >= 65536 || length >= 32768){ position = 0; length = (int)fileStream.Length; }
					var input = new byte[length];
					fileStream.Position = position;
					if (fileStream.Read(input, 0, length) != length)
						throw new ApplicationException($"Can't read session block ({position}, {length})");
					var session = Load(input, apiHash);
					session._fileStream = fileStream;
					session._nextPosition = position + length;
					session._apiHash = apiHash;
					Helpers.Log(2, "Loaded previous session");
					return session;
				}
				catch (Exception ex)
				{
					throw new ApplicationException($"Exception while reading session file: {ex.Message}\nDelete the file to start a new session", ex);
				}
			}
			return new Session { _fileStream = fileStream, _nextPosition = 8, _apiHash = apiHash };
		}

		internal void Dispose() => _fileStream.Dispose();

		internal static Session Load(byte[] input, byte[] apiHash)
		{
			using var sha256 = SHA256.Create();
			using var decryptor = aes.CreateDecryptor(apiHash, input[0..16]);
			var utf8Json = decryptor.TransformFinalBlock(input, 16, input.Length - 16);
			if (!sha256.ComputeHash(utf8Json, 32, utf8Json.Length - 32).SequenceEqual(utf8Json[0..32]))
				throw new ApplicationException("Integrity check failed in session loading");
			return JsonSerializer.Deserialize<Session>(utf8Json.AsSpan(32), Helpers.JsonOptions);
		}

		internal void Save()
		{
			var utf8Json = JsonSerializer.SerializeToUtf8Bytes(this, Helpers.JsonOptions);
			var finalBlock = new byte[16];
			var output = new byte[(16 + 32 + utf8Json.Length + 16) & ~15];
			Encryption.RNG.GetBytes(output, 0, 16);
			using var encryptor = aes.CreateEncryptor(_apiHash, output[0..16]);
			encryptor.TransformBlock(_sha256.ComputeHash(utf8Json), 0, 32, output, 16);
			encryptor.TransformBlock(utf8Json, 0, utf8Json.Length & ~15, output, 48);
			utf8Json.AsSpan(utf8Json.Length & ~15).CopyTo(finalBlock);
			encryptor.TransformFinalBlock(finalBlock, 0, utf8Json.Length & 15).CopyTo(output.AsMemory(48 + utf8Json.Length & ~15));
			lock (this)
			{
				if (_nextPosition > output.Length * 3) _nextPosition = 8;
				_fileStream.Position = _nextPosition;
				_fileStream.Write(output, 0, output.Length);
				BinaryPrimitives.WriteInt32LittleEndian(finalBlock, _nextPosition);
				BinaryPrimitives.WriteInt32LittleEndian(finalBlock.AsSpan(4), output.Length);
				_nextPosition += output.Length;
				_fileStream.Position = 0;
				_fileStream.Write(finalBlock, 0, 8);
			}
		}
	}
}
-												Add project files.

											
										
										
											2021-08-04 00:40:09 +02:00
+								using System;
-												Improved session file writes

											
										
										
											2022-01-23 01:28:10 +01:00
+								using System.Buffers.Binary;
-												Support multi-DC sessions

											
										
										
											2021-09-23 09:27:52 +02:00
+								using System.Collections.Generic;
-												Add project files.

											
										
										
											2021-08-04 00:40:09 +02:00
+								using System.IO;
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+								using System.Linq;
-												Support multi-DC sessions

											
										
										
											2021-09-23 09:27:52 +02:00
+								using System.Net;
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+								using System.Security.Cryptography;
-												Add project files.

											
										
										
											2021-08-04 00:40:09 +02:00
+								using System.Text.Json;
 								namespace WTelegram
 								{
 									internal class Session
 									{
-												We don't need to store full User in session file anymore

											
										
										
											2021-11-07 09:09:15 +01:00
+										public long UserId;
-												Support multi-DC sessions

											
										
										
											2021-09-23 09:27:52 +02:00
+										public int MainDC;
 										public Dictionary<int, DCSession> DCSessions = new();
-												Better IPv6 support/fallback. Support RpcError in response to an API returning an array

											
										
										
											2021-10-01 02:22:26 +02:00
+										public TL.DcOption[] DcOptions;
-												Support multi-DC sessions

											
										
										
											2021-09-23 09:27:52 +02:00
 										public class DCSession
 										{
-												MULTIPLE-CONNECTION! First version that implement parallel active connections to DCs (through Client instances dependent of the main Client instance)
Also improved on:
- reconnection/retry/resent strategy
- start of multiple parallel downloads triggering a new DC connection

											
										
										
											2021-09-28 16:12:20 +02:00
+											public long Id;
-												Support multi-DC sessions

											
										
										
											2021-09-23 09:27:52 +02:00
+											public long AuthKeyID;
 											public byte[] AuthKey;      // 2048-bit = 256 bytes
-												Avoid unnecessary Auth_ExportAuthorization. More reliable DownloadFileAsync

											
										
										
											2021-09-25 19:43:39 +02:00
+											public long UserId;
-												Support multi-DC sessions

											
										
										
											2021-09-23 09:27:52 +02:00
+											public long Salt;
 											public int Seqno;
 											public long ServerTicksOffset;
 											public long LastSentMsgId;
 											public TL.DcOption DataCenter;
-												MULTIPLE-CONNECTION! First version that implement parallel active connections to DCs (through Client instances dependent of the main Client instance)
Also improved on:
- reconnection/retry/resent strategy
- start of multiple parallel downloads triggering a new DC connection

											
										
										
											2021-09-28 16:12:20 +02:00
+											internal Client Client;
 											internal int DcID => DataCenter?.id ?? 0;
-												Support multi-DC sessions

											
										
										
											2021-09-23 09:27:52 +02:00
+											internal IPEndPoint EndPoint => DataCenter == null ? null : new(IPAddress.Parse(DataCenter.ip_address), DataCenter.port);
-												Handle BadMsgNotification 32/33 by renewing session

											
										
										
											2021-12-04 00:14:15 +01:00
+											internal void Renew() { Helpers.Log(3, $"Renewing session on DC {DcID}..."); Id = Helpers.RandomLong(); Seqno = 0; LastSentMsgId = 0; }
-												Support multi-DC sessions

											
										
										
											2021-09-23 09:27:52 +02:00
+										}
-												Add project files.

											
										
										
											2021-08-04 00:40:09 +02:00
 										public DateTime SessionStart => _sessionStart;
 										private readonly DateTime _sessionStart = DateTime.UtcNow;
-												Fix SHA corruption due to concurrent use of static instance

											
										
										
											2021-09-29 04:38:39 +02:00
+										private readonly SHA256 _sha256 = SHA256.Create();
-												Improved session file writes

											
										
										
											2022-01-23 01:28:10 +01:00
+										private FileStream _fileStream;
 										private int _nextPosition;
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+										private byte[] _apiHash;	// used as AES key for encryption of session file
-												reduce allocations for encryption

											
										
										
											2022-01-07 01:14:16 +01:00
+										private static readonly Aes aes = Aes.Create();
-												Add project files.

											
										
										
											2021-08-04 00:40:09 +02:00
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+										internal static Session LoadOrCreate(string pathname, byte[] apiHash)
-												Add project files.

											
										
										
											2021-08-04 00:40:09 +02:00
+										{
-												Improved session file writes

											
										
										
											2022-01-23 01:28:10 +01:00
+											var header = new byte[8];
 											var fileStream = new FileStream(pathname, FileMode.OpenOrCreate, FileAccess.ReadWrite, FileShare.None, 1); // no buffering
 											if (fileStream.Read(header, 0, 8) == 8)
-												Add project files.

											
										
										
											2021-08-04 00:40:09 +02:00
+											{
 												try
 												{
-												Improved session file writes

											
										
										
											2022-01-23 01:28:10 +01:00
+													var position = BinaryPrimitives.ReadInt32LittleEndian(header);
 													var length = BinaryPrimitives.ReadInt32LittleEndian(header.AsSpan(4));
 													if (position < 0 || length < 0 || position >= 65536 || length >= 32768){ position = 0; length = (int)fileStream.Length; }
 													var input = new byte[length];
 													fileStream.Position = position;
 													if (fileStream.Read(input, 0, length) != length)
 														throw new ApplicationException($"Can't read session block ({position}, {length})");
 													var session = Load(input, apiHash);
 													session._fileStream = fileStream;
 													session._nextPosition = position + length;
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+													session._apiHash = apiHash;
-												Added logger system

											
										
										
											2021-08-04 10:11:07 +02:00
+													Helpers.Log(2, "Loaded previous session");
-												Add project files.

											
										
										
											2021-08-04 00:40:09 +02:00
+													return session;
 												}
 												catch (Exception ex)
 												{
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+													throw new ApplicationException($"Exception while reading session file: {ex.Message}\nDelete the file to start a new session", ex);
-												Add project files.

											
										
										
											2021-08-04 00:40:09 +02:00
+												}
 											}
-												Improved session file writes

											
										
										
											2022-01-23 01:28:10 +01:00
+											return new Session { _fileStream = fileStream, _nextPosition = 8, _apiHash = apiHash };
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+										}
-												Improved session file writes

											
										
										
											2022-01-23 01:28:10 +01:00
+										internal void Dispose() => _fileStream.Dispose();
 										internal static Session Load(byte[] input, byte[] apiHash)
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+										{
-												Fix SHA corruption due to concurrent use of static instance

											
										
										
											2021-09-29 04:38:39 +02:00
+											using var sha256 = SHA256.Create();
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+											using var decryptor = aes.CreateDecryptor(apiHash, input[0..16]);
 											var utf8Json = decryptor.TransformFinalBlock(input, 16, input.Length - 16);
-												Fix SHA corruption due to concurrent use of static instance

											
										
										
											2021-09-29 04:38:39 +02:00
+											if (!sha256.ComputeHash(utf8Json, 32, utf8Json.Length - 32).SequenceEqual(utf8Json[0..32]))
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+												throw new ApplicationException("Integrity check failed in session loading");
-												We don't need to store full User in session file anymore

											
										
										
											2021-11-07 09:09:15 +01:00
+											return JsonSerializer.Deserialize<Session>(utf8Json.AsSpan(32), Helpers.JsonOptions);
-												Add project files.

											
										
										
											2021-08-04 00:40:09 +02:00
+										}
 										internal void Save()
 										{
-												We don't need to store full User in session file anymore

											
										
										
											2021-11-07 09:09:15 +01:00
+											var utf8Json = JsonSerializer.SerializeToUtf8Bytes(this, Helpers.JsonOptions);
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+											var finalBlock = new byte[16];
-												Added 2FA support

											
										
										
											2021-08-10 08:25:37 +02:00
+											var output = new byte[(16 + 32 + utf8Json.Length + 16) & ~15];
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+											Encryption.RNG.GetBytes(output, 0, 16);
 											using var encryptor = aes.CreateEncryptor(_apiHash, output[0..16]);
-												Fix SHA corruption due to concurrent use of static instance

											
										
										
											2021-09-29 04:38:39 +02:00
+											encryptor.TransformBlock(_sha256.ComputeHash(utf8Json), 0, 32, output, 16);
-												Implemented several of the TODOs:
- Encrypt session file
- Export/Import user authorization on DC migration.
- Implemented SignUpRequired
- function requests moved to class Fn, generation fix

											
										
										
											2021-08-06 07:28:54 +02:00
+											encryptor.TransformBlock(utf8Json, 0, utf8Json.Length & ~15, output, 48);
 											utf8Json.AsSpan(utf8Json.Length & ~15).CopyTo(finalBlock);
 											encryptor.TransformFinalBlock(finalBlock, 0, utf8Json.Length & 15).CopyTo(output.AsMemory(48 + utf8Json.Length & ~15));
-												Fix System.IO.IOException: 'Unable to remove the file to be replaced. ' #10
Based on: https://github.com/gitextensions/gitextensions/pull/4252/commits/00416bc92f642c4aff81b6cbcc5a1df38bf4990a

											
										
										
											2021-12-13 08:15:37 +01:00
+											lock (this)
 											{
-												Improved session file writes

											
										
										
											2022-01-23 01:28:10 +01:00
+												if (_nextPosition > output.Length * 3) _nextPosition = 8;
 												_fileStream.Position = _nextPosition;
 												_fileStream.Write(output, 0, output.Length);
 												BinaryPrimitives.WriteInt32LittleEndian(finalBlock, _nextPosition);
 												BinaryPrimitives.WriteInt32LittleEndian(finalBlock.AsSpan(4), output.Length);
 												_nextPosition += output.Length;
 												_fileStream.Position = 0;
 												_fileStream.Write(finalBlock, 0, 8);
-												Fix System.IO.IOException: 'Unable to remove the file to be replaced. ' #10
Based on: https://github.com/gitextensions/gitextensions/pull/4252/commits/00416bc92f642c4aff81b6cbcc5a1df38bf4990a

											
										
										
											2021-12-13 08:15:37 +01:00
+											}
-												Add project files.

											
										
										
											2021-08-04 00:40:09 +02:00
+										}
 									}
 								}