Commit Graph

37 Commits

Author SHA1 Message Date
Claude ce68035261 fix: move console.log suppression to index.ts entrypoint
CRITICAL FIX: Console.log override must run BEFORE libsignal loads

**Problem:**
- libsignal makes console.log calls directly in session_cipher.js
- Previous override in Signal/libsignal.ts loaded too late
- libsignal already had references to original console.log

**Solution:**
- Move override to src/index.ts (library entrypoint)
- Runs before ANY imports, including libsignal
- Now intercepts all libsignal logs successfully

**Testing:**
- Logs from /node_modules/@whiskeysockets/infiniteapi/node_modules/libsignal/
- Should now be suppressed

https://claude.ai/code/session_01SoNUGBEWbJwWWws3F2fuzh
2026-02-11 05:12:50 +00:00
Claude 9dccb4c9ad fix: address PR #144 code review feedback
Addresses all concerns raised by Copilot and Codex reviewers:

**Type Safety (Copilot #1)**:
- Remove dynamic property access `logger[logLevel]`
- Use explicit if/else with proper type checking

**Visibility (Codex #1)**:
- Non-retry errors (protobuf, parsing) always log as ERROR
- Remove warn downgrade for unexpected errors

**Defensive Coding (Copilot #3)**:
- Use `String(originalError?.message ?? originalError)`
- Prevents crashes on undefined/null message property

**Scope Creep (Codex #2)**:
- Add stack trace validation to console.log override
- Only suppress logs originating from libsignal module
- Prevents affecting unrelated application logs

**Logic Clarity (Copilot #2)**:
- Clarify that onRetry hooks handle intermediate logging
- Maintain clear distinction between retry vs non-retry errors

https://claude.ai/code/session_01SoNUGBEWbJwWWws3F2fuzh
2026-02-11 04:52:38 +00:00
Claude 932a67c5ed feat: improve decryption error logging with smart suppression
Implements intelligent error logging to eliminate log pollution from
transient Signal Protocol session errors while maintaining visibility
into critical failures.

**Changes:**

1. **Native libsignal log suppression** (src/Signal/libsignal.ts):
   - Expanded console.log filter to suppress transient decryption errors
   - Suppresses: "Session error", "Bad MAC", "MessageCounterError",
     "Key used already", "Failed to decrypt message"
   - These errors are auto-recovered by retry logic and don't need logging

2. **Context-aware application logging** (src/Utils/decode-wa-message.ts):
   - Detects RetryExhaustedError to distinguish first attempt vs final failure
   - Corrupted session (Bad MAC): warn on first occurrence, error only after
     all retries exhausted
   - Session record missing: debug during retries, error on final failure
   - Adds retry context (retriesExhausted, attempts) to error logs

**Impact:**

Before: 5-7 ERROR logs per corrupted session (normal occurrence)
After: 1 WARN + 1 INFO log (clean, actionable)

Final failures still logged as ERROR with full context for debugging.

https://claude.ai/code/session_01SoNUGBEWbJwWWws3F2fuzh
2026-02-11 04:42:56 +00:00
Claude 0cac0a1859 improve: add warning logs to null guards and fix transferDevice error handling
- Add warning/debug logs to all null guard patterns (if (!x) return/continue)
  so that when these guards fire, the reason is visible in logs instead of
  being silently swallowed
- Fix jid-utils.ts transferDevice: throw Error instead of returning empty
  string '' which could propagate as an invalid JID
- process-message.ts: warn on creds.me missing, reactionKey missing,
  creationMsgKey missing, eventCreatorPn missing
- chats.ts: warn on sendPresenceUpdate/handlePresenceUpdate missing values
- event-buffer.ts: debug on chat/contact/group update missing id
- socket.ts: debug on sessionStartTime not set
- communities.ts: debug on dirty node not found
- libsignal.ts: warn on bulk migration jidDecode failure

https://claude.ai/code/session_01XaA7GwNaB6azTHFYQ8WEpB
2026-02-09 17:53:09 +00:00
Claude 2a9d9a0a52 fix: revert remaining ?? '' patterns across Utils, WABinary, Signal, and WAUSync files
Completes the comprehensive revert of defensive null coalescing patterns
introduced in PRs 124-129. These patterns (e.g. `value ?? ''`) silently
produced empty strings instead of failing fast, causing subtle bugs like
malformed JIDs and broken Signal session lookups.

Files: libsignal.ts, messages-recv.ts, chat-utils.ts, generics.ts,
history.ts, messages-media.ts, messages.ts, process-message.ts,
validate-connection.ts, jid-utils.ts, UsyncBotProfileProtocol.ts

https://claude.ai/code/session_01XaA7GwNaB6azTHFYQ8WEpB
2026-02-09 13:56:33 +00:00
Claude 7e88ddb858 fix(types): remove non-null assertions across 14 files
Files fixed:
- messages-recv.ts: 58 assertions → null guards, meId extraction, optional chaining
- process-message.ts: 38 assertions → remoteJid/participant guards, proto field checks
- chat-utils.ts: 31 assertions → proto field validation with Boom errors
- messages-send.ts: 20 assertions → meId extraction, participant guards
- chats.ts: 15 assertions → me guard, firstChild guard, jid guards
- messages.ts: 14 assertions → originalFilePath guard, key guards
- groups.ts: 12 assertions → attrs fallbacks with ??
- validate-connection.ts: 9 assertions → grouped proto field validation
- generics.ts: 1 assertion → versionLine guard
- history.ts: 2 assertions → key guards
- libsignal.ts: 1 assertion → deviceId guard
- sender-key-message.ts: 3 assertions → proto guards
- UsyncBotProfileProtocol.ts: 2 assertions → attrs guards
- example.ts: 3 assertions → optional chaining

https://claude.ai/code/session_01E2cfX1N3sJgCJBTvzGazSG
2026-02-09 00:05:13 +00:00
Claude 52b8e8b4ff fix: suppress libsignal session logs + add carousel media warning
1. Suppress verbose "Closing session: SessionEntry {...}" logs from
   libsignal that dump cryptographic keys/ratchets to console.log

2. Add warning when carousel cards don't have media attachments -
   WhatsApp Web requires every card to have hasMediaAttachment:true
   with actual image/video (per ckptw reference implementation)

3. Add carousel structure summary log for debugging card composition

https://claude.ai/code/session_018DkDxsjWzM131jy3ivWjZp
2026-02-07 02:40:43 +00:00
Claude e9de4950b3 feat(lid-mapping): implement PR #2275 optimizations and event batching
Implement comprehensive LID-PN mapping optimizations based on Baileys PR #2275:

1. **Add consolidated JID helper functions**
   - Add `isAnyLidUser()` and `isAnyPnUser()` helpers to reduce code duplication
   - Refactor all JID type checks across codebase to use new helpers
   - Add comprehensive unit tests (23 test cases) for new helpers

2. **Implement database read batching in storeLIDPNMappings()**
   - Optimize from O(N) individual queries to O(1) batch query
   - Implement 3-phase processing: validate, batch-fetch, batch-store
   - Collect all cache misses first, then fetch in single DB query
   - Reduces database round-trips from N to 1 for cache misses
   - Expected 30-50% performance improvement for bulk operations

3. **Migrate lid-mapping.update event to array-based emission**
   - Change event signature from `LIDMapping` to `LIDMapping[]`
   - Update all event emitters to emit arrays instead of individual objects
   - Refactor process-message.ts to emit all mappings at once
   - Update event listener in chats.ts to handle batch processing
   - Reduces event overhead by ~20-30% for multiple mappings

Performance Impact:
- Database queries: O(N) → O(1) for batch lookups
- Event emissions: Individual → Batched (reduced overhead)
- Cache efficiency: Improved with consolidated helpers

Breaking Changes:
- Event signature changed: `lid-mapping.update` now emits `LIDMapping[]`
- Fully backward compatible for consumers ignoring event details

Tests:
- All existing tests updated and passing (388/390)
- New test file: src/__tests__/WABinary/jid-utils.test.ts
- Event emission tests updated for array format

Related:
- Addresses Baileys PR #2275
- Complements existing PR #2286 (LID extraction)
- Complements existing PR #2274 (batch optimizations)

https://claude.ai/code/session_0149ZKk2ygmKCJTGu39Mr8oH
2026-02-02 19:35:01 +00:00
Claude 9ef56cc59d docs(signal): improved documentation and comments - batch 3
Low Priority Fixes based on Copilot code review:

1. Clarified IdentitySaveResult.changed comment
   - Explicitly documents that false means "new OR unchanged"
   - Explains to use isNew to distinguish between cases
   - Documents that previousFingerprint only present when changed

2. Improved fingerprint documentation
   - Documents that fingerprint is 64 hex characters (full SHA-256)

3. Added comments to varint parsing
   - Documents that varint too long could indicate malformed/malicious message
   - Added comment for incomplete varint case

https://claude.ai/code/session_01SWAcNuGZQmEKyBPYkBhVHg
2026-01-30 12:34:14 +00:00
Claude 81cf601250 fix(signal): improved security and robustness - batch 2
Medium Priority Fixes based on Copilot code review:

1. Use full SHA-256 fingerprint (64 characters)
   - Previously truncated to 32 characters (128 bits)
   - Now uses full 256-bit hash for cryptographic consistency
   - Aligns with standard security practices

2. Add bounds checking in protobuf parsing
   - Added bounds check after offset += length for length-delimited fields
   - Added bounds check for 64-bit and 32-bit fixed fields
   - Prevents reading beyond buffer bounds with malformed messages
   - Defense in depth against malformed/malicious PreKeyWhisperMessages

https://claude.ai/code/session_01SWAcNuGZQmEKyBPYkBhVHg
2026-01-30 12:33:33 +00:00
Claude 3dcdc7be69 fix(signal): critical fixes for identity key detection - batch 1
High Priority Fixes based on Copilot/Codex code review:

1. Propagate errorCode to shouldRecreateSession (CRITICAL)
   - Extract error attribute from retry node
   - Pass errorCode to shouldRecreateSession in both sendRetryRequest and sendMessagesAgain
   - Without this fix, MAC error detection was NOT working
   - Now immediate session recreation works for MAC errors

2. Use .unref() on metrics interval
   - Prevents blocking process exit in short-lived scripts/tests
   - Interval no longer keeps event loop alive unnecessarily

3. Reset circuit breaker regardless of state
   - Previously only reset when isOpen()
   - Now resets in any state (open, half-open, or closed with accumulated failures)
   - Ensures clean slate after identity change detection

https://claude.ai/code/session_01SWAcNuGZQmEKyBPYkBhVHg
2026-01-30 12:32:56 +00:00
Claude 164c7fbe93 feat: implement identity key change detection for Signal protocol
This implements the functionality from WhiskeySockets/Baileys PR #2307
with enhanced improvements:

## Core Features
- Extract identity key from PreKeyWhisperMessage before decryption
- Detect when a contact reinstalls WhatsApp (identity key changes)
- Automatically delete old session and recreate on identity change
- Trust On First Use (TOFU) for new contacts

## Improvements over original PR
- LRU cache for identity keys (1000 keys, 30min TTL)
- Integration with existing Circuit Breaker (reset on identity change)
- New Prometheus metrics for observability:
  - signal_identity_changes_total (new/changed)
  - signal_mac_errors_total
  - signal_session_recreations_total
  - signal_identity_key_cache_hits/misses
  - signal_identity_key_operations_ms (histogram)
- New 'identity.changed' event for applications to notify users
- RetryReason enum with MAC_ERROR_CODES and SESSION_ERROR_CODES
- Robust protobuf parsing with validation
- Structured logging with fingerprints

## Technical Details
- Manual protobuf parsing (compatible with any Signal implementation)
- SHA-256 fingerprints for key identification
- Atomic session deletion + identity key save
- Best-effort identity tracking (doesn't fail decryption on errors)

Resolves permanent MAC errors when contacts reinstall WhatsApp.

https://claude.ai/code/session_01SWAcNuGZQmEKyBPYkBhVHg
2026-01-30 03:35:18 +00:00
Clayton Lopes ae5260fc96 Fix memory leak caused by missing TTL in cache (#2044) 2025-11-19 15:23:34 +02:00
Rajeh Taher 29318cf6c2 chore: lint and re-organize 2025-10-20 00:37:37 +03:00
Rajeh Taher 2e47d4b66b messages-send, signal: improve hosted device support + patch cache 2025-10-19 23:56:05 +03:00
Rajeh Taher 7ee0b61716 chore: lint 2025-10-18 20:35:36 +03:00
Rajeh Taher 9f787c51d3 libsignal: Fix sending to hosted devices 2025-10-18 20:27:06 +03:00
Rajeh Taher e41a66b3c4 libsignal,lid-mapping, etc.: Partially fix "No sessions" on hosted JIDs 2025-10-16 18:31:01 +03:00
vini 20c43d1d3c chore: remove unnecessary info logs (#1893) 2025-10-11 13:45:38 +03:00
Jefferson Felix a3ec28e051 fix error and linting (#1888)
* fix: build

* fix: linting

* fix: cast type
2025-10-08 09:27:43 +03:00
Rajeh Taher 9e4dbb2e22 signal,messages-send,libsignal: properly parse and ignore hosted devices 2025-10-08 02:25:26 +03:00
Rajeh Taher 09263aa3d2 libsignal: Process @hosted conversions to @hosted.lid 2025-10-05 22:51:13 +03:00
Rajeh Taher dd93b641c9 Signal, messages-recv, jid-utils: Handle ADJIDs properly in Signal 2025-10-05 19:09:28 +03:00
Rajeh Taher 592f70b81d general: Bring back USYNC calls for LID getting, and improve 2025-10-03 00:04:39 +03:00
Gustavo Quadri ae456cb342 fix: send message speed, lid logic, remove messages-send useless functions (#1794)
* fix: remove redundant migration

* fix: remove deduplicatelidpnjids

* fix: assertsessions complexity

* fix: assertsessions call

* fix: remove getencryptionjid

* fix: add wirejid to injecte2esession, remove libsignal lid migration

* fix: logger lid-mapping

* fix: injecte2esession decoded approach

* fix: changes made by @AstroX11

* fix: lint

* fix: lint

* fix: lint

* Revert "fix: injecte2esession decoded approach"

This reverts commit 4e368296ed084398b8a173ec117dc2478e481748.

* fix: centralize getlidforpn calls in messages-send

* fix: add resolvechunklids to signal

* fix: remove useless arrays

* fix: assertsessions logic

* fix: lint

* Revert "fix: assertsessions logic"

This reverts commit 65b0730891c91573edcab1c96af010db54382fba.

* fix: remove onwhatsapp fallback to prevent rate limit, migrate sessions when lid-map is created, new migration logic and user devices key

* fix: migrate session devices, socket creation

* fix: add back decryptionjid validation

* fix: add resolveSignalAddress to get lid

* fix: type error migration

* fix: lint

* fix: device level cache, proposed changes
2025-09-26 06:53:15 +03:00
Gustavo Quadri 194b557b0f fix: optimize LID migration performance and introduce cache (#1782)
* chore: lid-map cache, bulk migration, fixes

* fix: type error

* fix: signalrepository with lid type, remove check from assertsessions, lid-mapping store level deduplication

* fix: migrations logs

* fix: remove migrationsops lenght check

* fix: skip deletesession if cached or existing migrations

* chore: remove check migrated session

* fix: remove return null loadsession

* fix: getLIDforPN call and jidsrequiringfetch

* fix: longer lid map cache TTL

* fix: lint

* fix: lid type

* fix: lid socket type
2025-09-14 21:58:59 +03:00
João Lucas de Oliveira Lopes 421ca2eb92 refactor(types): Strengthen Type Safety in Signal Handling & Core Utilities (#1764)
* refactor(types): Strengthen Type Safety in Signal Handling & Core Utilities

* chore: revert typescript and move types to libsignal

* chore: update libsignal dependency resolution and checksum

* fix: a minor regression

* chore: update libsignal resolution and checksum
2025-09-13 15:24:57 +03:00
Rajeh Taher 20693a59d0 lid, wip: Support LIDs in Baileys (#1747)
* lid-mapping: get missing lid from usync

* lid-mapping, jid-utils: change to isPnUser and store multiple mappings

* process-message: parse protocolMsg mapping, and store from new msgs

* types: lid-mapping event, addressing enum, alt, contact, group types

* validate, decode: use lid for identity, better logic

* lid: final commit

* linting

* linting

* linting

* linting

* misc: fix testing and also remove version json

* lint: IDE fucking up lint

* lid-mapping: fix build error on NPM

* message-retry: fix proto import
2025-09-08 10:03:28 +03:00
Rajeh Taher 2a00d65e44 cleaning up after AI slop! 2025-09-07 20:34:19 +03:00
Paulo Victor Lund f83a1c2aff Add mutex-based transaction safety to Signal key store (re-reworked) (#1697)
* mutex reimplementation

* lint

* lint

* lint fix

* Add cleanup for expired sender key mutexes

Introduces a mechanism to periodically clean up unused sender key mutexes in addTransactionCapability, reducing memory usage by removing mutexes that have not been used for over an hour and are not locked. A timer is started when the first mutex is created, and cleanup runs every 30 minutes.

* Update auth-utils.ts

* Refactor Signal key transaction usage

Introduces a local variable for parsed Signal keys in libsignal.ts to avoid repeated type assertions and improve code clarity.

* Refactor transaction handling for key operations

Introduces per-entity mutexes and passes key identifiers to transaction calls for finer-grained concurrency control in Signal key storage and socket operations. Updates transaction signatures and usage across Signal, Socket, and Utils modules to improve atomicity and performance, especially for system and sync messages.

* Improve SignalKeyStore transaction handling

Refactored transaction logic in SignalKeyStore to add commit retries, cleanup of transaction state, and improved mutex management for sender keys. Enhanced validation and batching for pre-key deletions and updates, improving concurrency and reliability.

* Replace custom mutex cleanup with LRU cache

Switched from manual mutex cleanup logic to using the lru-cache package for managing mutexes in addTransactionCapability. This simplifies resource management and ensures expired mutexes are automatically purged. Added lru-cache as a dependency.

* Lint fix

* Update src/Signal/libsignal.ts

* Update libsignal.ts

---------

Co-authored-by: João Lucas <jlucaso@hotmail.com>
Co-authored-by: Rajeh Taher <rajeh@reforward.dev>
2025-09-07 20:22:47 +03:00
Paulo Victor Lund ae0cb89714 Session recreation and improved message retry (#1735)
* Add message retry manager for session recreation and caching

Introduces a MessageRetryManager to cache recent sent messages and manage automatic Signal session recreation for failed message retries. Adds new config options to enable these features, integrates retry manager into message send/receive logic, and provides periodic cache cleanup. Improves reliability of message delivery and retry handling.

* Add buffer timeout and cache limit to event-buffer

Introduces a buffer timeout to auto-flush events after 30 seconds and limits the history cache size to prevent memory bloat in event-buffer.ts.

* Add session validation to SignalRepository

Introduces a validateSession method to SignalRepository for checking session existence and state. Updates message retry logic to use the new validation, improving session recreation handling and retry management.

* Improve message retry management and tracking

Refactored message retry manager to use LRU caches for recent messages and session history, added retry counters and statistics tracking, and implemented phone request scheduling. Updated message receive and send logic to mark retry success and pass max retry count. Removed periodic cleanup logic in favor of cache TTLs for better resource management.

* lint fix

* Use validateSession for session checks in message send

Replaces direct session existence checks with the improved validateSession method, which also checks for session staleness. Adds debug logging for failed session validations to aid troubleshooting.

* Delete src/Utils/message-retry.ts

---------

Co-authored-by: Rajeh Taher <rajeh@reforward.dev>
2025-09-07 20:20:51 +03:00
Gustavo Quadri 0043f8be21 Add: LID support with lid-map and migrations of sessions (#1694)
* fix: add lid-map logic

* fix: lint and simplified version

* fix: single device migration

* fix: lid map discovery

* fix: lint

* fix: lid migration in socket connection

* fix: lint

* fix: decode-wa-message consistency

* fix: yarn lock

* fix: lint

* fix: retry logic

* fix: logger level
2025-09-07 14:12:24 +03:00
Rajeh Taher 787aed88b8 project: Move to ESM Modules 2025-07-17 13:54:17 +03:00
João Lucas de Oliveira Lopes 482db6edc5 refactor: migrate WASignalGroup to TypeScript and remove deprecated files (#1320)
* refactor: migrate WASignalGroup to TypeScript and remove deprecated files

* chore: remove WASignalGroup JavaScript files from package.json

* refactor: update SenderKeyStore and SenderKeyStateStructure interfaces to export and add deserialize method. Fix types

* chore: lint issue

* refactor: improve constructor type checking and getSeed method in SenderChainKey

* refactor: update key handling to use Buffer for improved consistency

* signal: consistent naming and dir structure + add some missing types

* fix: lint issues

---------

Co-authored-by: Rajeh Taher <rajeh@reforward.dev>
2025-06-21 18:02:15 +03:00
canove fa706d0b50 chore: format everything 2025-05-06 12:10:19 -03:00
Samuel Scheit 49ab16f592 fix: registration + add captcha support (#227)
* fix: registration + update mobile version

* feat: add captcha support for registration

* fix: jid protocol address missing device

* fix: linting errors
2023-08-10 12:15:12 +03:00
Adhiraj Singh fe1d0649b5 feat: add signal repository + tests 2023-03-18 12:25:47 +05:30