Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Handle MatrixRTC encryption keys arriving out of order #4345

Merged
merged 3 commits into from
Aug 15, 2024
Merged

Handle MatrixRTC encryption keys arriving out of order #4345

merged 3 commits into from
Aug 15, 2024

Conversation

hughns
Copy link
Member

@hughns hughns commented Aug 9, 2024
edited
Loading

This change ensures that if an older key is received after a newer one then it isn't allowed to overwrite the newer one. Resolves element-hq/element-call#2549

Checklist

  • Tests written for new code (and old code if feasible).
  • New or updated public/exported symbols have accurate TSDoc documentation.
  • Linter and other CI checks pass.
  • Sign-off given on the changes (see CONTRIBUTING.md).

@hughns hughns added the T-Defect label Aug 9, 2024
@hughns hughns force-pushed the hughns/rtc-ignore-stale-keys branch from f7ec088 to 885c5a7 Compare August 12, 2024 16:03
@hughns hughns marked this pull request as ready for review August 12, 2024 16:38
@hughns hughns requested a review from a team as a code owner August 12, 2024 16:38
@hughns hughns mentioned this pull request Aug 12, 2024
Closed
fkwp
fkwp approved these changes Aug 14, 2024
View reviewed changes
Copy link

@fkwp fkwp left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@hughns hughns requested a review from AndrewFerr August 14, 2024 14:29
AndrewFerr
AndrewFerr approved these changes Aug 14, 2024
View reviewed changes
src/matrixrtc/MatrixRTCSession.ts Outdated Show resolved Hide resolved
src/matrixrtc/MatrixRTCSession.ts Outdated Show resolved Hide resolved
src/matrixrtc/MatrixRTCSession.ts Outdated Show resolved Hide resolved
src/matrixrtc/MatrixRTCSession.ts Outdated Show resolved Hide resolved
src/matrixrtc/MatrixRTCSession.ts Outdated Show resolved Hide resolved
src/matrixrtc/MatrixRTCSession.ts Outdated Show resolved Hide resolved
src/matrixrtc/MatrixRTCSession.ts
Comment on lines +434 to +436
if (!this.encryptionKeys.has(participantId)) {
this.encryptionKeys.set(participantId, []);
}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There must be a tidy way to avoid all of the timestamp / keysEqual checks for when it's known from the start that there's no existing key for the participant...but since that was the case even before this PR, we can revisit this later.

@hughns @AndrewFerr
Apply suggestions from code review
a78e3f5 
Co-authored-by: Andrew Ferrazzutti <[email protected]>
@hughns hughns added this pull request to the merge queue Aug 15, 2024
Merged via the queue into develop with commit 87eddaf Aug 15, 2024
26 checks passed
@hughns hughns deleted the hughns/rtc-ignore-stale-keys branch August 15, 2024 08:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@fkwp fkwp fkwp approved these changes

@AndrewFerr AndrewFerr AndrewFerr approved these changes

Assignees
No one assigned
Labels
T-Defect
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Per-participant sender keys can be processed out of order leading to InvalidKey: Decryption failed errors
3 participants
@hughns @AndrewFerr @fkwp