Make sure source fingerprint is updated on sync

[rmol]

Description

It was missing from the list of attributes updated on existing sources during sync, so a source which had no key when first synced would never be completed, even once the keypair were generated on the server, and journalists would never be able to reply to them.

Fixes #1091.

Test Plan

Tough to test manually, as the failure is dependent on a new source being synced before having its keypair generated.

Checklist

If these changes modify code paths involving cryptography, the opening of files in VMs or network (via the RPC service) traffic, Qubes testing in the staging environment is required. For fine tuning of the graphical user interface, testing in any environment in Qubes is required. Please check as applicable:

• I have tested these changes in the appropriate Qubes environment
• I do not have an appropriate Qubes OS workstation set up (the reviewer will need to test these changes)
• These changes should not need testing in Qubes

If these changes add or remove files other than client code, the AppArmor profile may need to be updated. Please check as applicable:

• I have updated the AppArmor profile
• No update to the AppArmor profile is required for these changes
• I don't know and would appreciate guidance

If these changes modify the database schema, you should include a database migration. Please check as applicable:

• I have written a migration and upgraded a test database based on master and confirmed that the migration applies cleanly
• I have written a migration but have not upgraded a test database based on master and would like the reviewer to do so
• I need help writing a database migration
• No database schema changes are needed

[kushaldas]

Looks good, approved. I will wait for someone who reproduced the issue to verify the patch in their Qubes system. Then we can merge.

[sssoleileraaa]

this change makes sense and I see why this fixes #1091 because the issue was that new sources don't always come with a key and fingerprint, so we need to make sure we update the key and fingerprint every sync. I have to verify this, but my guess is that the server still creates sources during a "source surge" without new keys, and instead of waiting until the keys are generated, the server tells the client about the new sources ahead of time.

[sssoleileraaa]

Just needs a unit test for this case:

1. A new source is returned from the server without a key or fingerprint
2. The replybox is disabled
3. A sync happens with the source, and this time it has a key and fingerprint
4. The replybox is enabled

[rmol]

Test added.

[sssoleileraaa]

Looks good, if you add one more assertion to your test then you'll have added a regression check:

diff --git a/tests/gui/test_widgets.py b/tests/gui/test_widgets.py
index f3884ff..abf50f2 100644
--- a/tests/gui/test_widgets.py
+++ b/tests/gui/test_widgets.py
@@ -4211,6 +4211,7 @@ def test_ReplyBoxWidget_enable_after_source_gets_key(mocker, session, session_ma
         rbw._on_synced("synced")
 
         # ... and the widget should be enabled
+        assert rbw.source.fingerprint
         assert rbw.source.public_key
         assert rbw.replybox.isEnabled()
         assert rbw.text_edit.isEnabled()

This currently fails on master

[rmol]

Yep, thanks. Both are also checked in test_storage.test_update_sources, but belt and braces.