Page MenuHomePhabricator
Differential D7797

Implement olm session updater that has encrypting functionality
ClosedPublic
Actions

Authored by marcin on May 11 2023, 7:21 AM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Oct 27, 11:02 PM
Unknown Object (File)
Oct 25 2024, 8:04 PM
Unknown Object (File)
Oct 24 2024, 9:18 AM
Unknown Object (File)
Oct 18 2024, 12:16 AM
Unknown Object (File)
Oct 18 2024, 12:16 AM
Unknown Object (File)
Oct 18 2024, 12:16 AM
Unknown Object (File)
Oct 18 2024, 12:16 AM
Unknown Object (File)
Oct 18 2024, 12:16 AM
View All Files
Subscribers
ashoat

Details

Reviewers
tomek
atul
bartek
ashoat
Commits
rCOMM4bdf6daeac4d: Implement olm session updater that has encrypting functionality
Summary

This differential implements updater that can use olm session to encrypt data.

Test Plan
  1. Apply those changes to NotificationService.mm: https://gist.github.com/marcinwasowicz/0a43950fb202f03b3c5b92fe17dd5272
  2. Build the app
  3. Log in
  4. Pull from the db cookie id of the currently logged in user.
  5. Apply those changes to the send.js in the keyserver: https://gist.github.com/marcinwasowicz/9bc13a92310a9b91a59d73a2557b62a9
  6. Add your cookie id.
  7. Send the notif.
  8. Ensure it is displayed and examine the logs

Diff Detail

Repository
rCOMM Comm
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

marcin created this revision.May 11 2023, 7:21 AM
Herald added a subscriber: ashoat. · View Herald TranscriptMay 11 2023, 7:21 AM
marcin added a parent revision: D7669: Establish olm notifs sessions during siwe account creation.May 11 2023, 7:22 AM
marcin added a parent revision: D7796: Implement methods in NotificationsCryptoModule to decrypt data.
marcin edited the test plan for this revision. (Show Details)May 11 2023, 7:30 AM
Harbormaster completed remote builds in B19292: Diff 26405.May 11 2023, 7:37 AM
marcin requested review of this revision.May 11 2023, 7:37 AM
ashoat accepted this revision.May 12 2023, 9:25 AM
ashoat added inline comments.
keyserver/src/updaters/olm-session-updater.js
12 ↗(On Diff #26405)

Why is this different from olmAccountUpdateRetryDelay?

27 ↗(On Diff #26405)

Can we please put FROM on its own line?

This revision is now accepted and ready to land.May 12 2023, 9:25 AM
marcin planned changes to this revision.May 15 2023, 2:23 AM
marcin added inline comments.
keyserver/src/updaters/olm-session-updater.js
11 ↗(On Diff #26405)

In this particular case I think it is not wise to introduce such a strict constraint on a retry number.
In the case of olm account we have only one account that can be concurrently updated per entire keyserver. Additionally updates are not expected to occur frequently. In the case of olm sessions however we expect frequent concurrent updates. Imagine a case of 10 people group conversation. If 9 of them send a message at the same time we might end up with up to 9 concurrent updates to the same sessions. Having const maxOlmSessionUpdateRetriesCount = 5; we will always experience a failure in 4 of them. One solution might be to parametrize this method with retry count and set it to the number of people participating in a conversation when this function is called. However I think it is quite cumbersome. I would rather drop a retry count constraint and start a time counter when this method begins. Each while loop round I would check current timestampt an calculate how much time has passed since the method was called. Limit would be put only on the total time we can spend working inside this method.

12 ↗(On Diff #26405)

My intention to use smaller constant was that we expect olm sessions to be updated more frequently than olm account. Additionally there will be more concurrent updates at the same time. Therefore it is wise to wait shorter between subsequent retries.

ashoat added inline comments.May 15 2023, 6:38 AM
keyserver/src/updaters/olm-session-updater.js
11 ↗(On Diff #26405)

Can you create a follow-up task for this?

marcin added inline comments.May 15 2023, 7:26 AM
keyserver/src/updaters/olm-session-updater.js
11 ↗(On Diff #26405)

I would rather do it before landing this stack. I wouldn't expect this change to take more than 15-30 minutes.

marcin added a child revision: D7813: Implement function to encrypt relevant parts of iOS notification.May 15 2023, 8:27 AM
ashoat added inline comments.May 15 2023, 9:59 AM
keyserver/src/updaters/olm-session-updater.js
18 ↗(On Diff #26405)

Doesn't need to be $ReadOnly

marcin updated this revision to Diff 26553.May 16 2023, 8:38 AM

Allow to pass discionary of messages to encrypt. This API is more robust

This revision is now accepted and ready to land.May 16 2023, 8:38 AM
Harbormaster failed remote builds in B19410: Diff 26553!May 16 2023, 8:42 AM
Harbormaster completed remote builds in B19410: Diff 26553.May 16 2023, 9:04 AM
marcin updated this revision to Diff 26610.May 17 2023, 5:19 AM

Rebase

Harbormaster completed remote builds in B19449: Diff 26610.May 17 2023, 5:37 AM
marcin added a parent revision: D7860: Handle client response to initial notifications encrypted message request.May 18 2023, 5:07 AM
marcin removed a parent revision: D7669: Establish olm notifs sessions during siwe account creation.May 18 2023, 5:43 AM
marcin updated this revision to Diff 26636.May 18 2023, 5:50 AM

Rebase

Harbormaster completed remote builds in B19471: Diff 26636.May 18 2023, 6:09 AM
ashoat added inline comments.May 18 2023, 7:37 AM
keyserver/src/updaters/olm-session-updater.js
1 ↗(On Diff #26636)

Can we add a newline here?

marcin added a child revision: D7861: Implement JNI layer over NotificationsCryptoModule.May 18 2023, 8:56 AM
marcin updated this revision to Diff 26650.May 18 2023, 9:38 AM

Add newline

Harbormaster completed remote builds in B19485: Diff 26650.May 18 2023, 9:57 AM
ashoat added inline comments.May 23 2023, 7:06 AM
keyserver/src/updaters/olm-session-updater.js
18 ↗(On Diff #26650)

If we're going to do encryption of all fields in one pass, should we simplify this function so that it only takes one message?

marcin added inline comments.May 24 2023, 5:33 AM
keyserver/src/updaters/olm-session-updater.js
18 ↗(On Diff #26650)

My opinion on this is that it would be better to have this function taking one message if it was designed to deal specifically with notifications. However signature of this function indicates that it is supposed to work with both types of sessions. I am not sure what kind of scenarios are going to utilise content session, but if they need possibility to encrypt a couple of messages at once if is beneficial to have such API.

ashoat added inline comments.May 24 2023, 10:38 AM
keyserver/src/updaters/olm-session-updater.js
18 ↗(On Diff #26650)

Okay, we can leave as-is

marcin updated this revision to Diff 27181.May 29 2023, 11:41 AM

Rebase before landing

marcin updated this revision to Diff 27194.May 29 2023, 11:58 AM

Rebase before landing

Harbormaster completed remote builds in B19850: Diff 27181.May 29 2023, 12:28 PM
Harbormaster completed remote builds in B19863: Diff 27194.May 29 2023, 1:07 PM
Closed by commit rCOMM4bdf6daeac4d: Implement olm session updater that has encrypting functionality (authored by marcin). · Explain WhyMay 29 2023, 1:41 PM
This revision was automatically updated to reflect the committed changes.
marcin added a commit: rCOMM4bdf6daeac4d: Implement olm session updater that has encrypting functionality.

Revision Contents
Changeset List

PathSize
keyserver/
src/
updaters/
88 lines

Diff 27220

View Options

keyserver/src/updaters/olm-session-updater.js

Loading...