[lib] Broadcast account deletion message after verifying the password
ClosedPublic
Actions

Authored by tomek on May 23 2025, 6:05 PM.

Details

Reviewers

kamil
bartek

Commits

rCOMM3337169d2a69: [lib] Broadcast account deletion message after verifying the password

Summary

We should avoid broadcasting a message to peers if the deletion doesn't succeed on Identity.

https://linear.app/comm/issue/ENG-10787/new-session-is-created-due-to-olm-already-decrypted-or-keys-skipped

Test Plan

Tried deleting an account with an incorrect password - an alert was shown but the message wasn't broadcasted. Deleting with the correct password still works.

Diff Detail

Repository

rCOMM Comm

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

tomek created this revision.May 23 2025, 6:05 PM

Herald added a subscriber: ashoat. · View Herald TranscriptMay 23 2025, 6:05 PM

tomek added inline comments.May 23 2025, 6:12 PM

lib/actions/user-actions.js
620–625 ↗	(On Diff #48211)	Two notes: We don't necessarily need to wait for the Identity call to succeed when deleting a wallet user - as the password verification won't happen for them. Keeping it consistent makes it less complicated. It is possible that the broadcasted message on a peer is received after Identity finishes processing the request - the same issue existed before this change, but was less likely to happen. I'm not sure what are the worst possible consequences - continue the investigation in https://linear.app/comm/issue/ENG-10787/new-session-is-created-due-to-olm-already-decrypted-or-keys-skipped

Harbormaster completed remote builds in B34248: Diff 48211.May 23 2025, 6:23 PM

tomek requested review of this revision.May 23 2025, 6:23 PM

bartek accepted this revision.May 26 2025, 9:07 AM

bartek added inline comments.

lib/actions/user-actions.js
620–625 ↗	(On Diff #48211)	It is possible that the broadcasted message on a peer is received after Identity finishes processing the request - the same issue existed before this change, but was less likely to happen. The idea of broadcasting the message before calling Identity was motivated exactly by this reasoning. We wanted peers to increase the chance of receiving the message while the peer was still on Identity to create a session if it doesn't exist potentially. However, as you noticed, they can still be too late because the RPC is processed relatively fast, so your change doesn't make it much worse in this matter.