9 changed files with 29 additions and 258 deletions
--- a/example/omemo_dart_example.dart
+++ b/example/omemo_dart_example.dart
@ -1,155 +1,5 @@
-import 'dart:convert';
-import 'package:omemo_dart/omemo_dart.dart';
+//import 'package:omemo_dart/omemo_dart.dart';

-/// This example aims to demonstrate how omemo_dart is used. Since omemo_dart is not
-/// dependent on any XMPP library, you need to convert stanzas to the appropriate
-/// intermediary format and back.
-void main() async {
-  const aliceJid = 'alice@some.server';
-  const bobJid = 'bob@other.serve';
-
-  // You are Alice and want to begin using OMEMO, so you first create a SessionManager
-  final aliceSession = await OmemoSessionManager.generateNewIdentity(
-    // The bare Jid of Alice as a String
-    aliceJid,
-    // The trust manager we want to use. In this case, we use the provided one that
-    // implements "Blind Trust Before Verification". To make things simpler, we keep
-    // no persistent data and can thus use the MemoryBTBVTrustManager. If we wanted to keep
-    // the state, we would have to override BlindTrustBeforeVerificationTrustManager.
-    MemoryBTBVTrustManager(),
-    // Here we specify how many Onetime Prekeys we want to have. XEP-0384 recommends around
-    // 100 OPKs, so let's generate 100. The parameter defaults to 100.
-    //opkAmount: 100,
-  );
-
-  // Alice now wants to chat with Bob at his bare Jid "bob@other.server". To make things
-  // simple, we just generate the identity bundle ourselves. In the real world, we would
-  // request it using PEP and then convert the device bundle into a OmemoBundle object.
-  final bobSession = await OmemoSessionManager.generateNewIdentity(
-    bobJid,
-    MemoryBTBVTrustManager(),
-    // Just for illustrative purposes
-    opkAmount: 1,
-  );
-
-  // Alice prepares to send the message to Bob, so she builds the message stanza and
-  // collects all the children of the stanza that should be encrypted into a string.
-  const aliceMessageStanzaBody = '''
-  <body>Hello Bob, it's me, Alice!</body>
-  <super-secret-element xmlns='super-secret-element' />
-  ''';
-
-  // Since OMEMO 0.8.3 mandates usage of XEP-0420: Stanza Content Encryption, we have to
-  // wrap our acual payload - aliceMessageStanzaBody - into an SCE envelope. Note that
-  // the rpad element must contain a random string. See XEP-0420 for recommendations.
-  // OMEMO makes the <time /> element optional, but let's use for this example.
-  const envelope = '''
-<envelope xmlns='urn:xmpp:sce:1'>
-  <content>
-    $aliceMessageStanzaBody
-  </content>
-  <rpad>s0m3-r4nd0m-b9t3s</rpad>
-  <from jid='$aliceJid' />
-  <time stamp='1969-07-20T21:56:15-05:00' />
-</envelope>
-''';
- 
-  // Since Alice has no open session with Bob, we need to tell the session manager to build
-  // it when sending the message.
-  final message = await aliceSession.encryptToJid(
-    // The bare receiver Jid
-    bobJid,
-    // The envelope we want to encrypt
-    envelope,
-    // Since this is the first time Alice contacts Bob from this device, we need to create
-    // a new session. Let's also assume that Bob only has one device. We may, however,
-    // add more bundles to newSessions, if we know of more.
-    newSessions: [
-      await (await bobSession.getDevice()).toBundle(),
-    ],
-  );
-
-  // Alice now builds the actual message stanza for Bob
-  final payload = base64.encode(message.ciphertext!);
-  final aliceDevice = await aliceSession.getDevice();
-  // ignore: unused_local_variable
-  final bobDevice = await bobSession.getDevice();
-  // Since we know we have just one key for Bob, we take a shortcut. However, in the real
-  // world, we have to serialise every EncryptedKey to a <key /> element and group them
-  // per Jid.
-  final key = message.encryptedKeys[0];
-
-  // Note that the key's "kex" attribute refers to key.kex. It just means that the
-  // encrypted key also contains the required data for Bob to build a session with Alice.
-  // ignore: unused_local_variable
-  final aliceStanza = '''
-<message from='$aliceJid/device1' to='$bobJid/device2'>
-  <encrypted xmlns='urn:xmpp:omemo:2'>
-    <header sid='${aliceDevice.id}'>
-      <keys jid='$bobJid'>
-        <key rid='${key.rid} kex='true'>
-          ${key.value}
-        </key>
-      </keys>
-    </header>
-    <payload>
-      $payload
-    </payload>
-  </encrypted>
-</message>
-''';
-
-  // Alice can now send this message to Bob using our preferred XMPP library.
-  // ...
-
-  // Bob now receives an OMEMO encrypted message from Alice and wants to decrypt it.
-  // Since we have just one key, let's just deserialise the one key by hand.
-  final keys = [
-    EncryptedKey(bobJid, key.rid, key.value, true),
-  ];
-
-  // Bob extracts the payload and attempts to decrypt it.
-  // ignore: unused_local_variable
-  final bobMessage = await bobSession.decryptMessage(
-    // base64 decode the payload
-    base64.decode(payload),
-    // Specify the Jid of the sender
-    aliceJid,
-    // Specify the device identifier of the sender (the "sid" attribute of <header />)
-    aliceDevice.id,
-    // The deserialised keys
-    keys,
-  );
-
-  // All Bob has to do now is replace the OMEMO wrapper element 
-  // <encrypted xmlns='urn:xmpp:omemo:2' />) with the content of the <content /> element
-  // of the envelope we just decrypted.
-
-  // Bob now has a session with Alice and can send encrypted message to her.
-  // Since they both used the BlindTrustBeforeVerificationTrustManager, they currently
-  // use blind trust, meaning that both Alice and Bob accept new devices without any
-  // hesitation. If Alice, however, decides to verify one of Bob's devices and sets
-  // it as verified using
-  // ```
-  // await aliceSession.trustManager.setDeviceTrust(bobJid, bobDevice.id, BTBVTrustState.verified)
-  // ```
-  // then Alice's OmemoSessionManager won't encrypt to new devices unless they are also
-  // verified. To prevent user confusion, you should check if every device is trusted
-  // before sending the message and ask the user for a trust decision.
-  // If you want to make the BlindTrustBeforeVerificationTrustManager persistent, then
-  // you need to subclass it and override the `Future<void> commitState()` and
-  // `Future<void> loadState()` functions. commitState is called everytime the internal
-  // state gets changed. loadState never gets automatically called but is more of a
-  // function for the user to restore the trust manager. In those functions you have
-  // access to `ratchetMap`, which maps a `RatchetMapKey` - essentially a tuple consisting
-  // of a bare Jid and the device identifier - to the trust state, and `devices` which
-  // maps a bare Jid to its device identifiers.
-  // To make the entire OmemoSessionManager persistent, you have two options:
-  // - use the provided `toJson()` and `fromJson()` functions. They, however, serialise
-  //   and deserialise *ALL* known sessions, so it might be slow.
-  // - subscribe to the session manager's `eventStream`. There, events get triggered
-  //   everytime a ratchet changes, our own device changes or the internal ratchet map
-  //   gets changed. This give finer control over the the serialisation. The session
-  //   manager can then be restored using its constructor. For a list of events, see
-  //   lib/src/omemo/events.dart.
+void main() {
+  // TODO(PapaTutuWawa): Currently NOOP
 }
--- a/lib/omemo_dart.dart
+++ b/lib/omemo_dart.dart
@ -2,15 +2,14 @@ library omemo_dart;

 export 'src/double_ratchet/double_ratchet.dart';
 export 'src/errors.dart';
+export 'src/events.dart';
 export 'src/helpers.dart';
 export 'src/keys.dart';
 export 'src/omemo/bundle.dart';
 export 'src/omemo/device.dart';
 export 'src/omemo/encrypted_key.dart';
 export 'src/omemo/encryption_result.dart';
-export 'src/omemo/events.dart';
 export 'src/omemo/fingerprint.dart';
-export 'src/omemo/ratchet_map_key.dart';
 export 'src/omemo/sessionmanager.dart';
 export 'src/trust/base.dart';
 export 'src/trust/btbv.dart';
--- a/lib/src/omemo/events.dart
+++ b/lib/src/omemo/events.dart
--- a/lib/src/omemo/ratchet_map_key.dart
+++ b/lib/src/omemo/ratchet_map_key.dart
@ -1,5 +1,6 @@
 import 'package:meta/meta.dart';

+@internal
@immutable
 class RatchetMapKey {

--- a/lib/src/omemo/sessionmanager.dart
+++ b/lib/src/omemo/sessionmanager.dart
@ -7,13 +7,13 @@ import 'package:meta/meta.dart';
 import 'package:omemo_dart/src/crypto.dart';
 import 'package:omemo_dart/src/double_ratchet/double_ratchet.dart';
 import 'package:omemo_dart/src/errors.dart';
+import 'package:omemo_dart/src/events.dart';
 import 'package:omemo_dart/src/helpers.dart';
 import 'package:omemo_dart/src/keys.dart';
 import 'package:omemo_dart/src/omemo/bundle.dart';
 import 'package:omemo_dart/src/omemo/device.dart';
 import 'package:omemo_dart/src/omemo/encrypted_key.dart';
 import 'package:omemo_dart/src/omemo/encryption_result.dart';
-import 'package:omemo_dart/src/omemo/events.dart';
 import 'package:omemo_dart/src/omemo/fingerprint.dart';
 import 'package:omemo_dart/src/omemo/ratchet_map_key.dart';
 import 'package:omemo_dart/src/protobuf/omemo_authenticated_message.dart';
@ -78,7 +78,6 @@ class OmemoSessionManager {

  /// The trust manager
  final TrustManager _trustManager;
-  TrustManager get trustManager => _trustManager;
  
  /// A stream that receives events regarding the session
  Stream<OmemoEvent> get eventStream => _eventStreamController.stream;
@ -225,11 +224,8 @@ class OmemoSessionManager {
      // We assume that the user already checked if the session exists
      for (final jid in jids) {
        for (final deviceId in _deviceMap[jid]!) {
-          // Empty OMEMO messages are allowed to bypass trust
-          if (plaintext != null) {
-            // Only encrypt to devices that are trusted
-            if (!(await _trustManager.isTrusted(jid, deviceId))) continue;
-          }
+          // Only encrypt to devices that are trusted
+          if (!(await _trustManager.isTrusted(jid, deviceId))) continue;

          final ratchetKey = RatchetMapKey(jid, deviceId);
          final ratchet = _ratchetMap[ratchetKey]!;
--- a/lib/src/trust/btbv.dart
+++ b/lib/src/trust/btbv.dart
@ -13,33 +13,29 @@ enum BTBVTrustState {
  verified,
 }

-/// A TrustManager that implements the idea of Blind Trust Before Verification.
-/// See https://gultsch.de/trust.html for more details.
-abstract class BlindTrustBeforeVerificationTrustManager extends TrustManager {
+class BlindTrustBeforeVerificationTrustManager extends TrustManager {
  BlindTrustBeforeVerificationTrustManager()
-    : trustCache = {},
-      devices = {},
+    : _trustCache = {},
+      _devices = {},
      _lock = Lock();

  /// The cache for Mapping a RatchetMapKey to its trust state
-  @protected
-  final Map<RatchetMapKey, BTBVTrustState> trustCache;
+  final Map<RatchetMapKey, BTBVTrustState> _trustCache;

  /// Mapping of Jids to their device identifiers
-  @protected
-  final Map<String, List<int>> devices;
+  final Map<String, List<int>> _devices;

-  /// The lock for devices and trustCache
+  /// The lock for _devices and _trustCache
  final Lock _lock;

  /// Returns true if [jid] has at least one device that is verified. If not, returns false.
-  /// Note that this function accesses devices and trustCache, which requires that the
+  /// Note that this function accesses _devices and _trustCache, which requires that the
  /// lock for those two maps (_lock) has been aquired before calling.
  bool _hasAtLeastOneVerifiedDevice(String jid) {
-    if (!devices.containsKey(jid)) return false;
+    if (!_devices.containsKey(jid)) return false;

-    return devices[jid]!.any((id) {
-      return trustCache[RatchetMapKey(jid, id)]! == BTBVTrustState.verified;
+    return _devices[jid]!.any((id) {
+      return _trustCache[RatchetMapKey(jid, id)]! == BTBVTrustState.verified;
    });
  }
  
@ -47,7 +43,7 @@ abstract class BlindTrustBeforeVerificationTrustManager extends TrustManager {
  Future<bool> isTrusted(String jid, int deviceId) async {
    var returnValue = false;
    await _lock.synchronized(() async {
-      final trustCacheValue = trustCache[RatchetMapKey(jid, deviceId)];
+      final trustCacheValue = _trustCache[RatchetMapKey(jid, deviceId)];
      if (trustCacheValue == BTBVTrustState.notTrusted) {
        returnValue = false;
        return;
@ -75,19 +71,16 @@ abstract class BlindTrustBeforeVerificationTrustManager extends TrustManager {
  Future<void> onNewSession(String jid, int deviceId) async {
    await _lock.synchronized(() async {
      if (_hasAtLeastOneVerifiedDevice(jid)) {
-        trustCache[RatchetMapKey(jid, deviceId)] = BTBVTrustState.notTrusted;
+        _trustCache[RatchetMapKey(jid, deviceId)] = BTBVTrustState.notTrusted;
      } else {
-        trustCache[RatchetMapKey(jid, deviceId)] = BTBVTrustState.blindTrust;
+        _trustCache[RatchetMapKey(jid, deviceId)] = BTBVTrustState.blindTrust;
      }

-      if (devices.containsKey(jid)) {
-        devices[jid]!.add(deviceId);
+      if (_devices.containsKey(jid)) {
+        _devices[jid]!.add(deviceId);
      } else {
-        devices[jid] = List<int>.from([deviceId]);
+        _devices[jid] = List<int>.from([deviceId]);
      }
-
-      // Commit the state
-      await commitState();
    });
  }
  
@ -96,8 +89,8 @@ abstract class BlindTrustBeforeVerificationTrustManager extends TrustManager {
    final map = <int, BTBVTrustState>{};

    await _lock.synchronized(() async {
-      for (final deviceId in devices[jid]!) {
-        map[deviceId] = trustCache[RatchetMapKey(jid, deviceId)]!;
+      for (final deviceId in _devices[jid]!) {
+        map[deviceId] = _trustCache[RatchetMapKey(jid, deviceId)]!;
      }
    });

@ -107,33 +100,10 @@ abstract class BlindTrustBeforeVerificationTrustManager extends TrustManager {
  /// Sets the trust of [jid]'s device with identifier [deviceId] to [state].
  Future<void> setDeviceTrust(String jid, int deviceId, BTBVTrustState state) async {
    await _lock.synchronized(() async {
-      trustCache[RatchetMapKey(jid, deviceId)] = state;
-
-      // Commit the state
-      await commitState();
+      _trustCache[RatchetMapKey(jid, deviceId)] = state;
    });
  }

-  /// Called when the state of the trust manager has been changed. Allows the user to
-  /// commit the trust state to persistent storage.
-  @visibleForOverriding
-  Future<void> commitState();
-
-  /// Called when the user wants to restore the state of the trust manager. The format
-  /// and actual storage mechanism is left to the user.
-  @visibleForOverriding
-  Future<void> loadState();
-  
  @visibleForTesting
-  BTBVTrustState getDeviceTrust(String jid, int deviceId) => trustCache[RatchetMapKey(jid, deviceId)]!;
-}
-
-/// A BTBV TrustManager that does not commit its state to persistent storage. Well suited
-/// for testing.
-class MemoryBTBVTrustManager extends BlindTrustBeforeVerificationTrustManager {
-  @override
-  Future<void> commitState() async {}
-
-  @override
-  Future<void> loadState() async {}
+  BTBVTrustState getDeviceTrust(String jid, int deviceId) => _trustCache[RatchetMapKey(jid, deviceId)]!;
 }
--- a/lib/src/trust/never.dart
+++ b/lib/src/trust/never.dart
@ -1,14 +0,0 @@
-import 'package:meta/meta.dart';
-import 'package:omemo_dart/src/trust/base.dart';
-
-/// Only use for testing!
-/// An implementation of TrustManager that never trusts any device and thus
-/// has no internal state.
-@visibleForTesting
-class NeverTrustingTrustManager extends TrustManager {
-  @override
-  Future<bool> isTrusted(String jid, int deviceId) async => false;
-
-  @override
-  Future<void> onNewSession(String jid, int deviceId) async {}
-}
--- a/test/omemo_test.dart
+++ b/test/omemo_test.dart
@ -1,6 +1,5 @@
 import 'package:omemo_dart/omemo_dart.dart';
 import 'package:omemo_dart/src/trust/always.dart';
-import 'package:omemo_dart/src/trust/never.dart';
 import 'package:test/test.dart';

 void main() {
@ -337,34 +336,4 @@ void main() {
    );
    expect(messagePlaintext, bobMessage);
  });
-
-  test('Test trust bypassing with empty OMEMO messages', () async {
-    const aliceJid = 'alice@server.example';
-    const bobJid = 'bob@other.server.example';
-      
-    // Alice and Bob generate their sessions
-    final aliceSession = await OmemoSessionManager.generateNewIdentity(
-      aliceJid,
-      NeverTrustingTrustManager(),
-      opkAmount: 1,
-    );
-    final bobSession = await OmemoSessionManager.generateNewIdentity(
-      bobJid,
-      NeverTrustingTrustManager(),
-      opkAmount: 1,
-    );
-
-    // Alice encrypts an empty message for Bob
-    final aliceMessage = await aliceSession.encryptToJid(
-      bobJid,
-      null,
-      newSessions: [
-        await (await bobSession.getDevice()).toBundle(),
-      ],
-    );
-
-    // Despite Alice not trusting Bob's device, we should have encrypted it for his
-    // untrusted device.
-    expect(aliceMessage.encryptedKeys.length, 1);
-  });
 }
--- a/test/trust_test.dart
+++ b/test/trust_test.dart
@ -4,7 +4,7 @@ import 'package:test/test.dart';
 void main() {
  test('Test the Blind Trust Before Verification TrustManager', () async {
    // Caroline's BTBV manager
-    final btbv = MemoryBTBVTrustManager();
+    final btbv = BlindTrustBeforeVerificationTrustManager();
    // Example data
    const aliceJid = 'alice@some.server';
    const bobJid = 'bob@other.server';