Send "account already exists" flag when creating registration sessions

2026-04-21 16:08:05 +01:00 · 2023-03-14 17:25:49 -04:00
parent 2052e62c01
commit 35606a9afd
7 changed files with 96 additions and 39 deletions
--- a/service/src/main/java/org/whispersystems/textsecuregcm/controllers/AccountController.java
+++ b/service/src/main/java/org/whispersystems/textsecuregcm/controllers/AccountController.java
@@ -238,7 +238,7 @@ public class AccountController {
          storedVerificationCode = existingStoredVerificationCode;
        }
      } else {
-        final byte[] sessionId = createRegistrationSession(phoneNumber);
+        final byte[] sessionId = createRegistrationSession(phoneNumber, accounts.getByE164(number).isPresent());
        storedVerificationCode = new StoredVerificationCode(null, clock.millis(), generatePushChallenge(), sessionId);
        new StoredVerificationCode(null, clock.millis(), generatePushChallenge(), sessionId);
      }
@@ -345,8 +345,9 @@ public class AccountController {

    // During the transition to explicit session creation, some previously-stored records may not have a session ID;
    // after the transition, we can assume that any existing record has an associated session ID.
-    final byte[] sessionId =  maybeStoredVerificationCode.isPresent() && maybeStoredVerificationCode.get().sessionId() != null ?
-        maybeStoredVerificationCode.get().sessionId() : createRegistrationSession(phoneNumber);
+    final byte[] sessionId =  maybeStoredVerificationCode.isPresent() && maybeStoredVerificationCode.get().sessionId() != null
+        ? maybeStoredVerificationCode.get().sessionId()
+        : createRegistrationSession(phoneNumber, accounts.getByE164(number).isPresent());

    sendVerificationCode(sessionId, messageTransport, clientType, acceptLanguage);

@@ -859,10 +860,11 @@ public class AccountController {
    return HexFormat.of().formatHex(challenge);
  }

-  private byte[] createRegistrationSession(final Phonenumber.PhoneNumber phoneNumber) throws RateLimitExceededException {
+  private byte[] createRegistrationSession(final Phonenumber.PhoneNumber phoneNumber,
+      final boolean accountExistsWithPhoneNumber) throws RateLimitExceededException {

    try {
-      return registrationServiceClient.createRegistrationSession(phoneNumber, REGISTRATION_RPC_TIMEOUT).join();
+      return registrationServiceClient.createRegistrationSession(phoneNumber, accountExistsWithPhoneNumber, REGISTRATION_RPC_TIMEOUT).join();
    } catch (final CompletionException e) {
      rethrowRateLimitException(e);

--- a/service/src/main/java/org/whispersystems/textsecuregcm/controllers/VerificationController.java
+++ b/service/src/main/java/org/whispersystems/textsecuregcm/controllers/VerificationController.java
@@ -76,6 +76,7 @@ import org.whispersystems.textsecuregcm.registration.RegistrationServiceExceptio
 import org.whispersystems.textsecuregcm.registration.RegistrationServiceSenderException;
 import org.whispersystems.textsecuregcm.registration.VerificationSession;
 import org.whispersystems.textsecuregcm.spam.FilterSpam;
+import org.whispersystems.textsecuregcm.storage.AccountsManager;
 import org.whispersystems.textsecuregcm.storage.RegistrationRecoveryPasswordsManager;
 import org.whispersystems.textsecuregcm.storage.VerificationSessionManager;
 import org.whispersystems.textsecuregcm.util.ExceptionUtils;
@@ -112,6 +113,7 @@ public class VerificationController {
  private final RegistrationCaptchaManager registrationCaptchaManager;
  private final RegistrationRecoveryPasswordsManager registrationRecoveryPasswordsManager;
  private final RateLimiters rateLimiters;
+  private final AccountsManager accountsManager;

  private final Clock clock;

@@ -119,7 +121,9 @@ public class VerificationController {
      final VerificationSessionManager verificationSessionManager,
      final PushNotificationManager pushNotificationManager,
      final RegistrationCaptchaManager registrationCaptchaManager,
-      final RegistrationRecoveryPasswordsManager registrationRecoveryPasswordsManager, final RateLimiters rateLimiters,
+      final RegistrationRecoveryPasswordsManager registrationRecoveryPasswordsManager,
+      final RateLimiters rateLimiters,
+      final AccountsManager accountsManager,
      final Clock clock) {
    this.registrationServiceClient = registrationServiceClient;
    this.verificationSessionManager = verificationSessionManager;
@@ -127,6 +131,7 @@ public class VerificationController {
    this.registrationCaptchaManager = registrationCaptchaManager;
    this.registrationRecoveryPasswordsManager = registrationRecoveryPasswordsManager;
    this.rateLimiters = rateLimiters;
+    this.accountsManager = accountsManager;
    this.clock = clock;
  }

@@ -151,6 +156,7 @@ public class VerificationController {
    final RegistrationServiceSession registrationServiceSession;
    try {
      registrationServiceSession = registrationServiceClient.createRegistrationSessionSession(phoneNumber,
+          accountsManager.getByE164(request.getNumber()).isPresent(),
          REGISTRATION_RPC_TIMEOUT).join();
    } catch (final CancellationException e) {