Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Send one time key count and unused fallback keys for rust-crypto #3215

Merged
merged 12 commits into from
Mar 22, 2023
Merged

Send one time key count and unused fallback keys for rust-crypto #3215

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
12 commits
Select commit Hold shift + click to select a range
051d1e9
Send one time key count and unused fallback keys for rust-crypto
florianduros Mar 14, 2023
5b39072
Add tests
florianduros Mar 15, 2023
ccfcf19
Merge branch 'develop' into florianduros/feat/add-oldmachine-missing-…
florianduros Mar 15, 2023
677d0bf
Remove useless type in promise return
florianduros Mar 16, 2023
bb2f2ae
Add test for one time key upload
florianduros Mar 16, 2023
ee0d82a
Fix rust-crypto.spec.ts tests
florianduros Mar 17, 2023
a67a474
Remove unneeded code in test
florianduros Mar 17, 2023
7cc770d
Merge branch 'develop' into florianduros/feat/add-oldmachine-missing-…
florianduros Mar 17, 2023
a0410c3
Add key upload request test
florianduros Mar 21, 2023
7dc7d78
Merge branch 'develop' into florianduros/feat/add-oldmachine-missing-…
florianduros Mar 21, 2023
7ea6318
Fix tests
florianduros Mar 22, 2023
9342739
Merge branch 'develop' into florianduros/feat/add-oldmachine-missing-…
florianduros Mar 22, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
66 changes: 66 additions & 0 deletions spec/integ/crypto.spec.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1890,4 +1890,70 @@ describe.each(Object.entries(CRYPTO_BACKENDS))("crypto (%s)", (backend: string,
expect(event.getContent().body).not.toContain("withheld");
});
});

describe("key upload request", () => {
beforeEach(() => {
jest.useFakeTimers();
});

afterEach(() => {
jest.useRealTimers();
});

function listenToUpload(): Promise<number> {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this could do with a better name. awaitKeyUploadRequest, maybe ?

return new Promise((resolve) => {
const listener = (url: string, options: RequestInit) => {
const content = JSON.parse(options.body as string);
const keysCount = Object.keys(content?.one_time_keys || {}).length;
if (keysCount) resolve(keysCount);
return {
one_time_key_counts: {
signed_curve25519: keysCount ? 60 : keysCount,
},
};
Comment on lines +1909 to +1913
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

what's going on here? how did we pick these numbers? why does it depend on keysCount? add some comments please!

};

// catch both r0 and v3 variants
fetchMock.post(
new URL("/_matrix/client/r0/keys/upload", aliceClient.getHomeserverUrl()).toString(),
listener,
{
overwriteRoutes: true,
},
Comment on lines +1920 to +1922
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

why do we overwriteRoutes here? it could do with a comment at least.

);
fetchMock.post(
new URL("/_matrix/client/v3/keys/upload", aliceClient.getHomeserverUrl()).toString(),
listener,
{
overwriteRoutes: true,
},
);
Comment on lines +1917 to +1930
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

maybe to avoid the repetition here, do for (const path in ["/_matrix/client/r0/keys/upload", "/_matrix/client/v3/keys/upload"]).

});
}

it("should make key upload request after sync", async () => {
let uploadPromise = listenToUpload();
expectAliceKeyQuery({ device_keys: { "@alice:localhost": {} }, failures: {} });
await startClientAndAwaitFirstSync();

syncResponder.sendOrQueueSyncResponse(getSyncResponse([]));

await syncPromise(aliceClient);
expect(await uploadPromise).toBeGreaterThan(0);

uploadPromise = listenToUpload();
syncResponder.sendOrQueueSyncResponse({
next_batch: 2,
device_one_time_keys_count: { signed_curve25519: 0 },
});

// Advance local date to 2 minutes
// The old crypto only runs the upload every 60 seconds
jest.setSystemTime(Date.now() + 2 * 60 * 1000);

await syncPromise(aliceClient);

expect(await uploadPromise).toBeGreaterThan(0);
Comment on lines +1935 to +1956
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this could do with some more comments imho. What is going on, what are we checking for?

});
Comment on lines +1934 to +1957
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we could probably do with a test for the fallback keys too.

});
});
12 changes: 11 additions & 1 deletion spec/unit/rust-crypto/rust-crypto.spec.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -53,7 +53,7 @@ describe("RustCrypto", () => {
});
});

describe("to-device messages", () => {
describe("call preprocess methods", () => {
let rustCrypto: RustCrypto;

beforeEach(async () => {
Expand Down Expand Up @@ -92,6 +92,16 @@ describe("RustCrypto", () => {
const res = await rustCrypto.preprocessToDeviceMessages(inputs);
expect(res).toEqual(inputs);
});

it("should pass through one time key counts", async () => {
const oneTimeKeyCounts = new Map<string, number>([["signed_curve25519", 50]]);
await expect(rustCrypto.preprocessOneTimeKeyCounts(oneTimeKeyCounts)).resolves.not.toBeDefined();
});

it("should pass through unused fallback keys", async () => {
const unusedFallbackKeys = new Set(["signed_curve25519"]);
await expect(rustCrypto.preprocessUnusedFallbackKeys(unusedFallbackKeys)).resolves.not.toBeDefined();
});
Comment on lines +96 to +104
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

these tests don't seem to test what they claim to test!

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

(it's probably not necessary to test that they actually pass through the key counts/fallback keys: we have that in the integration tests. But we shouldn't have tests that claim to test things that they do not.)

});

describe("outgoing requests", () => {
Expand Down
28 changes: 28 additions & 0 deletions src/common-crypto/CryptoBackend.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -105,6 +105,34 @@ export interface SyncCryptoCallbacks {
*/
preprocessToDeviceMessages(events: IToDeviceEvent[]): Promise<IToDeviceEvent[]>;

/**
* Called by the /sync loop whenever there are incoming to-device messages.
*
* The implementation may preprocess the received messages (eg, decrypt them) and return an
* updated list of messages for dispatch to the rest of the system.
*
* Note that, unlike {@link ClientEvent.ToDeviceEvent} events, this is called on the raw to-device
* messages, rather than the results of any decryption attempts.
*
* @param oneTimeKeysCounts - the received one time key counts
* @returns A list of preprocessed to-device messages.
*/
Comment on lines +108 to +119
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

These doc-comments are inaccurate: these methods aren't doing anything with received messages, nor returning them.

preprocessOneTimeKeyCounts(oneTimeKeysCounts: Map<string, number>): Promise<void>;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

preprocess... is not a good name for these methods. "Preprocess" implies there is still some "processing" to be done after the "preprocessing" takes place. You can just use "process" here.


/**
* Called by the /sync loop whenever there are incoming to-device messages.
*
* The implementation may preprocess the received messages (eg, decrypt them) and return an
* updated list of messages for dispatch to the rest of the system.
*
* Note that, unlike {@link ClientEvent.ToDeviceEvent} events, this is called on the raw to-device
* messages, rather than the results of any decryption attempts.
*
* @param unusedFallbackKeys - the received unused fallback keys
* @returns A list of preprocessed to-device messages.
*/
preprocessUnusedFallbackKeys(unusedFallbackKeys: Set<string>): Promise<void>;

/**
* Called by the /sync loop whenever an m.room.encryption event is received.
*
Expand Down
11 changes: 11 additions & 0 deletions src/crypto/index.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3207,6 +3207,17 @@ export class Crypto extends TypedEventEmitter<CryptoEvent, CryptoEventHandlerMap
});
}

public preprocessOneTimeKeyCounts(oneTimeKeysCounts: Map<string, number>): Promise<void> {
const currentCount = oneTimeKeysCounts.get("signed_curve25519") || 0;
this.updateOneTimeKeyCount(currentCount);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we should be able to inline updateOneTimeKeyCount and setNeedsNewFallback.

return Promise.resolve();
}

public preprocessUnusedFallbackKeys(unusedFallbackKeys: Set<string>): Promise<void> {
this.setNeedsNewFallback(!unusedFallbackKeys.has("signed_curve25519"));
return Promise.resolve();
}

private onToDeviceEvent = (event: MatrixEvent): void => {
try {
logger.log(
Expand Down
53 changes: 45 additions & 8 deletions src/rust-crypto/rust-crypto.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -180,25 +180,62 @@ export class RustCrypto implements CryptoBackend {
//
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////

/** called by the sync loop to preprocess incoming to-device messages
*
/**
* Apply sync changes to the olm machine
* @param events - the received to-device messages
* @param oneTimeKeysCounts - the received one time key counts
* @param unusedFallbackKeys - the received unused fallback keys
* @returns A list of preprocessed to-device messages.
*/
public async preprocessToDeviceMessages(events: IToDeviceEvent[]): Promise<IToDeviceEvent[]> {
// send the received to-device messages into receiveSyncChanges. We have no info on device-list changes,
// one-time-keys, or fallback keys, so just pass empty data.
private async receiveSyncChanges({
events,
oneTimeKeysCounts = new Map<string, number>(),
unusedFallbackKeys = new Set<string>(),
}: {
events?: IToDeviceEvent[];
oneTimeKeysCounts?: Map<string, number>;
unusedFallbackKeys?: Set<string>;
}): Promise<IToDeviceEvent[]> {
const result = await this.olmMachine.receiveSyncChanges(
JSON.stringify(events),
events ? JSON.stringify(events) : "[]",
new RustSdkCryptoJs.DeviceLists(),
new Map(),
new Set(),
oneTimeKeysCounts,
unusedFallbackKeys,
);

// receiveSyncChanges returns a JSON-encoded list of decrypted to-device messages.
return JSON.parse(result);
}

/** called by the sync loop to preprocess incoming to-device messages
*
* @param events - the received to-device messages
* @returns A list of preprocessed to-device messages.
*/
public preprocessToDeviceMessages(events: IToDeviceEvent[]): Promise<IToDeviceEvent[]> {
// send the received to-device messages into receiveSyncChanges. We have no info on device-list changes,
// one-time-keys, or fallback keys, so just pass empty data.
return this.receiveSyncChanges({ events });
}

/** called by the sync loop to preprocess one time key counts
*
* @param oneTimeKeysCounts - the received one time key counts
* @returns A list of preprocessed to-device messages.
*/
public async preprocessOneTimeKeyCounts(oneTimeKeysCounts: Map<string, number>): Promise<void> {
await this.receiveSyncChanges({ oneTimeKeysCounts });
}

/** called by the sync loop to preprocess unused fallback keys
*
* @param unusedFallbackKeys - the received unused fallback keys
* @returns A list of preprocessed to-device messages.
*/
public async preprocessUnusedFallbackKeys(unusedFallbackKeys: Set<string>): Promise<void> {
await this.receiveSyncChanges({ unusedFallbackKeys });
}

/** called by the sync loop on m.room.encrypted events
*
* @param room - in which the event was received
Expand Down
15 changes: 5 additions & 10 deletions src/sync.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1523,22 +1523,17 @@ export class SyncApi {
}

// Handle one_time_keys_count
if (this.syncOpts.crypto && data.device_one_time_keys_count) {
const currentCount = data.device_one_time_keys_count.signed_curve25519 || 0;
this.syncOpts.crypto.updateOneTimeKeyCount(currentCount);
if (data.device_one_time_keys_count) {
const map = new Map<string, number>(Object.entries(data.device_one_time_keys_count));
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we should leave this conversion into a Map (or Set, below) to the cryptoCallbacks implementation.

this.syncOpts.cryptoCallbacks?.preprocessOneTimeKeyCounts(map);
}
if (
this.syncOpts.crypto &&
(data.device_unused_fallback_key_types || data["org.matrix.msc2732.device_unused_fallback_key_types"])
) {
if (data.device_unused_fallback_key_types || data["org.matrix.msc2732.device_unused_fallback_key_types"]) {
// The presence of device_unused_fallback_key_types indicates that the
// server supports fallback keys. If there's no unused
// signed_curve25519 fallback key we need a new one.
const unusedFallbackKeys =
data.device_unused_fallback_key_types || data["org.matrix.msc2732.device_unused_fallback_key_types"];
this.syncOpts.crypto.setNeedsNewFallback(
Array.isArray(unusedFallbackKeys) && !unusedFallbackKeys.includes("signed_curve25519"),
);
this.syncOpts.cryptoCallbacks?.preprocessUnusedFallbackKeys(new Set<string>(unusedFallbackKeys || null));
Comment on lines +1528 to +1536
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It might be easier to combine these two methods into one?

this.syncOpts.cryptoCallbacks?.processKeyCounts(data.device_one_time_keys_count, data.device_unused_fallback_key_types ?? data["org.matrix.msc2732.device_unused_fallback_key_types"]);

}
Comment on lines -1526 to 1537
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we also need to do this for sliding-sync-sdk.ts, by the way.

}

Expand Down