mirror of
https://github.com/cwinfo/matterbridge.git
synced 2025-01-14 13:06:29 +00:00
2f33fe86f5
* Update dependencies and build to go1.22 * Fix api changes wrt to dependencies * Update golangci config
343 lines
12 KiB
Go
343 lines
12 KiB
Go
// Copyright (c) 2021 Tulir Asokan
|
|
//
|
|
// This Source Code Form is subject to the terms of the Mozilla Public
|
|
// License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
// file, You can obtain one at http://mozilla.org/MPL/2.0/.
|
|
|
|
package whatsmeow
|
|
|
|
import (
|
|
"crypto/hmac"
|
|
"crypto/sha256"
|
|
"encoding/base64"
|
|
"errors"
|
|
"fmt"
|
|
"io"
|
|
"net"
|
|
"net/http"
|
|
"strings"
|
|
"time"
|
|
|
|
"go.mau.fi/util/retryafter"
|
|
"google.golang.org/protobuf/proto"
|
|
"google.golang.org/protobuf/reflect/protoreflect"
|
|
|
|
"go.mau.fi/whatsmeow/binary/armadillo/waMediaTransport"
|
|
waProto "go.mau.fi/whatsmeow/binary/proto"
|
|
"go.mau.fi/whatsmeow/socket"
|
|
"go.mau.fi/whatsmeow/util/cbcutil"
|
|
"go.mau.fi/whatsmeow/util/hkdfutil"
|
|
)
|
|
|
|
// MediaType represents a type of uploaded file on WhatsApp.
|
|
// The value is the key which is used as a part of generating the encryption keys.
|
|
type MediaType string
|
|
|
|
// The known media types
|
|
const (
|
|
MediaImage MediaType = "WhatsApp Image Keys"
|
|
MediaVideo MediaType = "WhatsApp Video Keys"
|
|
MediaAudio MediaType = "WhatsApp Audio Keys"
|
|
MediaDocument MediaType = "WhatsApp Document Keys"
|
|
MediaHistory MediaType = "WhatsApp History Keys"
|
|
MediaAppState MediaType = "WhatsApp App State Keys"
|
|
|
|
MediaLinkThumbnail MediaType = "WhatsApp Link Thumbnail Keys"
|
|
)
|
|
|
|
// DownloadableMessage represents a protobuf message that contains attachment info.
|
|
//
|
|
// All of the downloadable messages inside a Message struct implement this interface
|
|
// (ImageMessage, VideoMessage, AudioMessage, DocumentMessage, StickerMessage).
|
|
type DownloadableMessage interface {
|
|
proto.Message
|
|
GetDirectPath() string
|
|
GetMediaKey() []byte
|
|
GetFileSha256() []byte
|
|
GetFileEncSha256() []byte
|
|
}
|
|
|
|
// DownloadableThumbnail represents a protobuf message that contains a thumbnail attachment.
|
|
//
|
|
// This is primarily meant for link preview thumbnails in ExtendedTextMessage.
|
|
type DownloadableThumbnail interface {
|
|
proto.Message
|
|
GetThumbnailDirectPath() string
|
|
GetThumbnailSha256() []byte
|
|
GetThumbnailEncSha256() []byte
|
|
GetMediaKey() []byte
|
|
}
|
|
|
|
// All the message types that are intended to be downloadable
|
|
var (
|
|
_ DownloadableMessage = (*waProto.ImageMessage)(nil)
|
|
_ DownloadableMessage = (*waProto.AudioMessage)(nil)
|
|
_ DownloadableMessage = (*waProto.VideoMessage)(nil)
|
|
_ DownloadableMessage = (*waProto.DocumentMessage)(nil)
|
|
_ DownloadableMessage = (*waProto.StickerMessage)(nil)
|
|
_ DownloadableMessage = (*waProto.StickerMetadata)(nil)
|
|
_ DownloadableMessage = (*waProto.HistorySyncNotification)(nil)
|
|
_ DownloadableMessage = (*waProto.ExternalBlobReference)(nil)
|
|
_ DownloadableThumbnail = (*waProto.ExtendedTextMessage)(nil)
|
|
)
|
|
|
|
type downloadableMessageWithLength interface {
|
|
DownloadableMessage
|
|
GetFileLength() uint64
|
|
}
|
|
|
|
type downloadableMessageWithSizeBytes interface {
|
|
DownloadableMessage
|
|
GetFileSizeBytes() uint64
|
|
}
|
|
|
|
type downloadableMessageWithURL interface {
|
|
DownloadableMessage
|
|
GetUrl() string
|
|
}
|
|
|
|
var classToMediaType = map[protoreflect.Name]MediaType{
|
|
"ImageMessage": MediaImage,
|
|
"AudioMessage": MediaAudio,
|
|
"VideoMessage": MediaVideo,
|
|
"DocumentMessage": MediaDocument,
|
|
"StickerMessage": MediaImage,
|
|
"StickerMetadata": MediaImage,
|
|
|
|
"HistorySyncNotification": MediaHistory,
|
|
"ExternalBlobReference": MediaAppState,
|
|
}
|
|
|
|
var classToThumbnailMediaType = map[protoreflect.Name]MediaType{
|
|
"ExtendedTextMessage": MediaLinkThumbnail,
|
|
}
|
|
|
|
var mediaTypeToMMSType = map[MediaType]string{
|
|
MediaImage: "image",
|
|
MediaAudio: "audio",
|
|
MediaVideo: "video",
|
|
MediaDocument: "document",
|
|
MediaHistory: "md-msg-hist",
|
|
MediaAppState: "md-app-state",
|
|
|
|
MediaLinkThumbnail: "thumbnail-link",
|
|
}
|
|
|
|
// DownloadAny loops through the downloadable parts of the given message and downloads the first non-nil item.
|
|
func (cli *Client) DownloadAny(msg *waProto.Message) (data []byte, err error) {
|
|
if msg == nil {
|
|
return nil, ErrNothingDownloadableFound
|
|
}
|
|
switch {
|
|
case msg.ImageMessage != nil:
|
|
return cli.Download(msg.ImageMessage)
|
|
case msg.VideoMessage != nil:
|
|
return cli.Download(msg.VideoMessage)
|
|
case msg.AudioMessage != nil:
|
|
return cli.Download(msg.AudioMessage)
|
|
case msg.DocumentMessage != nil:
|
|
return cli.Download(msg.DocumentMessage)
|
|
case msg.StickerMessage != nil:
|
|
return cli.Download(msg.StickerMessage)
|
|
default:
|
|
return nil, ErrNothingDownloadableFound
|
|
}
|
|
}
|
|
|
|
func getSize(msg DownloadableMessage) int {
|
|
switch sized := msg.(type) {
|
|
case downloadableMessageWithLength:
|
|
return int(sized.GetFileLength())
|
|
case downloadableMessageWithSizeBytes:
|
|
return int(sized.GetFileSizeBytes())
|
|
default:
|
|
return -1
|
|
}
|
|
}
|
|
|
|
// DownloadThumbnail downloads a thumbnail from a message.
|
|
//
|
|
// This is primarily intended for downloading link preview thumbnails, which are in ExtendedTextMessage:
|
|
//
|
|
// var msg *waProto.Message
|
|
// ...
|
|
// thumbnailImageBytes, err := cli.DownloadThumbnail(msg.GetExtendedTextMessage())
|
|
func (cli *Client) DownloadThumbnail(msg DownloadableThumbnail) ([]byte, error) {
|
|
mediaType, ok := classToThumbnailMediaType[msg.ProtoReflect().Descriptor().Name()]
|
|
if !ok {
|
|
return nil, fmt.Errorf("%w '%s'", ErrUnknownMediaType, string(msg.ProtoReflect().Descriptor().Name()))
|
|
} else if len(msg.GetThumbnailDirectPath()) > 0 {
|
|
return cli.DownloadMediaWithPath(msg.GetThumbnailDirectPath(), msg.GetThumbnailEncSha256(), msg.GetThumbnailSha256(), msg.GetMediaKey(), -1, mediaType, mediaTypeToMMSType[mediaType])
|
|
} else {
|
|
return nil, ErrNoURLPresent
|
|
}
|
|
}
|
|
|
|
// GetMediaType returns the MediaType value corresponding to the given protobuf message.
|
|
func GetMediaType(msg DownloadableMessage) MediaType {
|
|
return classToMediaType[msg.ProtoReflect().Descriptor().Name()]
|
|
}
|
|
|
|
// Download downloads the attachment from the given protobuf message.
|
|
//
|
|
// The attachment is a specific part of a Message protobuf struct, not the message itself, e.g.
|
|
//
|
|
// var msg *waProto.Message
|
|
// ...
|
|
// imageData, err := cli.Download(msg.GetImageMessage())
|
|
//
|
|
// You can also use DownloadAny to download the first non-nil sub-message.
|
|
func (cli *Client) Download(msg DownloadableMessage) ([]byte, error) {
|
|
mediaType, ok := classToMediaType[msg.ProtoReflect().Descriptor().Name()]
|
|
if !ok {
|
|
return nil, fmt.Errorf("%w '%s'", ErrUnknownMediaType, string(msg.ProtoReflect().Descriptor().Name()))
|
|
}
|
|
urlable, ok := msg.(downloadableMessageWithURL)
|
|
var url string
|
|
var isWebWhatsappNetURL bool
|
|
if ok {
|
|
url = urlable.GetUrl()
|
|
isWebWhatsappNetURL = strings.HasPrefix(url, "https://web.whatsapp.net")
|
|
}
|
|
if len(url) > 0 && !isWebWhatsappNetURL {
|
|
return cli.downloadAndDecrypt(url, msg.GetMediaKey(), mediaType, getSize(msg), msg.GetFileEncSha256(), msg.GetFileSha256())
|
|
} else if len(msg.GetDirectPath()) > 0 {
|
|
return cli.DownloadMediaWithPath(msg.GetDirectPath(), msg.GetFileEncSha256(), msg.GetFileSha256(), msg.GetMediaKey(), getSize(msg), mediaType, mediaTypeToMMSType[mediaType])
|
|
} else {
|
|
if isWebWhatsappNetURL {
|
|
cli.Log.Warnf("Got a media message with a web.whatsapp.net URL (%s) and no direct path", url)
|
|
}
|
|
return nil, ErrNoURLPresent
|
|
}
|
|
}
|
|
|
|
func (cli *Client) DownloadFB(transport *waMediaTransport.WAMediaTransport_Integral, mediaType MediaType) ([]byte, error) {
|
|
return cli.DownloadMediaWithPath(transport.GetDirectPath(), transport.GetFileEncSHA256(), transport.GetFileSHA256(), transport.GetMediaKey(), -1, mediaType, mediaTypeToMMSType[mediaType])
|
|
}
|
|
|
|
// DownloadMediaWithPath downloads an attachment by manually specifying the path and encryption details.
|
|
func (cli *Client) DownloadMediaWithPath(directPath string, encFileHash, fileHash, mediaKey []byte, fileLength int, mediaType MediaType, mmsType string) (data []byte, err error) {
|
|
var mediaConn *MediaConn
|
|
mediaConn, err = cli.refreshMediaConn(false)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to refresh media connections: %w", err)
|
|
}
|
|
if len(mmsType) == 0 {
|
|
mmsType = mediaTypeToMMSType[mediaType]
|
|
}
|
|
for i, host := range mediaConn.Hosts {
|
|
// TODO omit hash for unencrypted media?
|
|
mediaURL := fmt.Sprintf("https://%s%s&hash=%s&mms-type=%s&__wa-mms=", host.Hostname, directPath, base64.URLEncoding.EncodeToString(encFileHash), mmsType)
|
|
data, err = cli.downloadAndDecrypt(mediaURL, mediaKey, mediaType, fileLength, encFileHash, fileHash)
|
|
if err == nil {
|
|
return
|
|
} else if i >= len(mediaConn.Hosts)-1 {
|
|
return nil, fmt.Errorf("failed to download media from last host: %w", err)
|
|
}
|
|
// TODO there are probably some errors that shouldn't retry
|
|
cli.Log.Warnf("Failed to download media: %s, trying with next host...", err)
|
|
}
|
|
return
|
|
}
|
|
|
|
func (cli *Client) downloadAndDecrypt(url string, mediaKey []byte, appInfo MediaType, fileLength int, fileEncSha256, fileSha256 []byte) (data []byte, err error) {
|
|
iv, cipherKey, macKey, _ := getMediaKeys(mediaKey, appInfo)
|
|
var ciphertext, mac []byte
|
|
if ciphertext, mac, err = cli.downloadPossiblyEncryptedMediaWithRetries(url, fileEncSha256); err != nil {
|
|
|
|
} else if mediaKey == nil && fileEncSha256 == nil && mac == nil {
|
|
// Unencrypted media, just return the downloaded data
|
|
data = ciphertext
|
|
} else if err = validateMedia(iv, ciphertext, macKey, mac); err != nil {
|
|
|
|
} else if data, err = cbcutil.Decrypt(cipherKey, iv, ciphertext); err != nil {
|
|
err = fmt.Errorf("failed to decrypt file: %w", err)
|
|
} else if fileLength >= 0 && len(data) != fileLength {
|
|
err = fmt.Errorf("%w: expected %d, got %d", ErrFileLengthMismatch, fileLength, len(data))
|
|
} else if len(fileSha256) == 32 && sha256.Sum256(data) != *(*[32]byte)(fileSha256) {
|
|
err = ErrInvalidMediaSHA256
|
|
}
|
|
return
|
|
}
|
|
|
|
func getMediaKeys(mediaKey []byte, appInfo MediaType) (iv, cipherKey, macKey, refKey []byte) {
|
|
mediaKeyExpanded := hkdfutil.SHA256(mediaKey, nil, []byte(appInfo), 112)
|
|
return mediaKeyExpanded[:16], mediaKeyExpanded[16:48], mediaKeyExpanded[48:80], mediaKeyExpanded[80:]
|
|
}
|
|
|
|
func shouldRetryMediaDownload(err error) bool {
|
|
var netErr net.Error
|
|
var httpErr DownloadHTTPError
|
|
return errors.As(err, &netErr) ||
|
|
strings.HasPrefix(err.Error(), "stream error:") || // hacky check for http2 errors
|
|
(errors.As(err, &httpErr) && retryafter.Should(httpErr.StatusCode, true))
|
|
}
|
|
|
|
func (cli *Client) downloadPossiblyEncryptedMediaWithRetries(url string, checksum []byte) (file, mac []byte, err error) {
|
|
for retryNum := 0; retryNum < 5; retryNum++ {
|
|
if checksum == nil {
|
|
file, err = cli.downloadMedia(url)
|
|
} else {
|
|
file, mac, err = cli.downloadEncryptedMedia(url, checksum)
|
|
}
|
|
if err == nil || !shouldRetryMediaDownload(err) {
|
|
return
|
|
}
|
|
retryDuration := time.Duration(retryNum+1) * time.Second
|
|
var httpErr DownloadHTTPError
|
|
if errors.As(err, &httpErr) {
|
|
retryDuration = retryafter.Parse(httpErr.Response.Header.Get("Retry-After"), retryDuration)
|
|
}
|
|
cli.Log.Warnf("Failed to download media due to network error: %w, retrying in %s...", err, retryDuration)
|
|
time.Sleep(retryDuration)
|
|
}
|
|
return
|
|
}
|
|
|
|
func (cli *Client) downloadMedia(url string) ([]byte, error) {
|
|
req, err := http.NewRequest(http.MethodGet, url, nil)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to prepare request: %w", err)
|
|
}
|
|
req.Header.Set("Origin", socket.Origin)
|
|
req.Header.Set("Referer", socket.Origin+"/")
|
|
if cli.MessengerConfig != nil {
|
|
req.Header.Set("User-Agent", cli.MessengerConfig.UserAgent)
|
|
}
|
|
// TODO user agent for whatsapp downloads?
|
|
resp, err := cli.http.Do(req)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer resp.Body.Close()
|
|
if resp.StatusCode != http.StatusOK {
|
|
return nil, DownloadHTTPError{Response: resp}
|
|
}
|
|
return io.ReadAll(resp.Body)
|
|
}
|
|
|
|
func (cli *Client) downloadEncryptedMedia(url string, checksum []byte) (file, mac []byte, err error) {
|
|
data, err := cli.downloadMedia(url)
|
|
if err != nil {
|
|
return
|
|
} else if len(data) <= 10 {
|
|
err = ErrTooShortFile
|
|
return
|
|
}
|
|
file, mac = data[:len(data)-10], data[len(data)-10:]
|
|
if len(checksum) == 32 && sha256.Sum256(data) != *(*[32]byte)(checksum) {
|
|
err = ErrInvalidMediaEncSHA256
|
|
}
|
|
return
|
|
}
|
|
|
|
func validateMedia(iv, file, macKey, mac []byte) error {
|
|
h := hmac.New(sha256.New, macKey)
|
|
h.Write(iv)
|
|
h.Write(file)
|
|
if !hmac.Equal(h.Sum(nil)[:10], mac) {
|
|
return ErrInvalidMediaHMAC
|
|
}
|
|
return nil
|
|
}
|