Page MenuHomePhabricator
Differential D7233

[lib][native] Add function to encrypt files
ClosedPublic
Actions

Authored by bartek on Mar 29 2023, 6:50 AM.
Tags
None
Referenced Files
F1681189: D7233.diff
Mon, Apr 29, 10:18 PM
Unknown Object (File)
Sat, Apr 27, 8:59 PM
Unknown Object (File)
Sat, Apr 27, 8:59 PM
Unknown Object (File)
Sat, Apr 27, 8:55 PM
Unknown Object (File)
Sat, Apr 27, 8:30 PM
Unknown Object (File)
Wed, Apr 24, 3:48 PM
Unknown Object (File)
Mon, Apr 15, 3:40 PM
Unknown Object (File)
Fri, Apr 12, 4:26 PM
View All 48 Files
Subscribers
ashoat
tomek

Details

Reviewers
atul
marcin
kamil
Commits
rCOMM65bfb2b88a1b: [lib][native] Add function to encrypt files
Summary

Created a function that opens, encrypts and the saves a single media file.

Depends on D7224, D7222

Test Plan

Tested together with subsequent diffs where it is used

Diff Detail

Repository
rCOMM Comm
Lint
No Lint Coverage
Unit
No Test Coverage

Event Timeline

bartek created this revision.Mar 29 2023, 6:50 AM
bartek held this revision as a draft.
Herald added subscribers: tomek, ashoat. · View Herald TranscriptMar 29 2023, 6:50 AM
bartek added a child revision: D7234: [native] Add function to encrypt media during media mission.Mar 29 2023, 6:54 AM
Harbormaster completed remote builds in B17779: Diff 24330.Mar 29 2023, 7:06 AM
bartek published this revision for review.Mar 29 2023, 7:20 AM
atul accepted this revision.Mar 29 2023, 12:09 PM

Some questions inline

lib/types/media-types.js
243

Are we going to encrypt or obfuscate the filename here? Are we sure this won't unintentionally leak (or increase the risk of leaking) any information about the encrypted media?

246

Are we sure that the exception message here won't inadvertently leak any information about the file?

254

Are we sure that the exception message here won't inadvertently leak any information about the file?

258

Is this file name going to be the same as the source file name? Or is it going to be encrypted/obfuscated in some way?

Thoughts on sourceFile in read_plaintext_file and destinationFile in write_encrypted_file?

261

Are we sure that the exception message here won't inadvertently leak any information about the file?

native/media/encryption-utils.js
37–38

Are we sure we don't want to encrypt or obfuscate the file name? Couldn't it cause information to be leaked?

47–48

My personal preference would be to have separate lines for success and exceptionMessage, but doesn't really matter

50

Was this extension chosen arbitrarily?

This revision is now accepted and ready to land.Mar 29 2023, 12:09 PM
bartek added a comment.Mar 31 2023, 2:36 AM

Pasting my answers from offline chat:

Ok, a few quick notes here:

  • These files are temporary removed right after uploading
    • But keyserver for some reason stores the filename
  • These filenames are only reported in media mission
    • The mission report already leaks lots of sensitive information in previous steps, encryption is yet another step on already-displayed filename
  • Message recipient device doesn't receive original filename
  • No opinion on extension - I just kept original filename + replaced extension to .dat to keep it simple.
    • I'm okay with just setting this to random filename, without extension at all
  • Native exception messages for encryption related stuff are rather vague: e.g. The operation could not be completed

These are my observations, correct me if I'm wrong

Closed by commit rCOMM65bfb2b88a1b: [lib][native] Add function to encrypt files (authored by bartek). · Explain WhyApr 2 2023, 11:47 PM
This revision was automatically updated to reflect the committed changes.
bartek added a commit: rCOMM65bfb2b88a1b: [lib][native] Add function to encrypt files.

Revision Contents
Changeset List

PathSize
lib/
types/
29 lines
native/
media/
131 lines

Diff 24330

View Options

lib/types/media-types.js

Loading...
View Options

native/media/encryption-utils.js

Loading...