Page MenuHomePhabricator
Differential D7872

Implement function to encrypt android notification
ClosedPublic
Actions

Authored by marcin on May 19 2023, 6:58 AM.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Nov 9, 12:48 PM
Unknown Object (File)
Tue, Nov 5, 9:04 AM
Unknown Object (File)
Tue, Nov 5, 9:04 AM
Unknown Object (File)
Tue, Nov 5, 9:04 AM
Unknown Object (File)
Tue, Nov 5, 9:04 AM
Unknown Object (File)
Tue, Nov 5, 9:04 AM
Unknown Object (File)
Tue, Nov 5, 9:03 AM
Unknown Object (File)
Tue, Nov 5, 9:03 AM
View All Files
Subscribers
ashoat

Details

Reviewers
tomek
atul
bartek
ashoat
Commits
rCOMMe5878964cd73: Implement function to encrypt android notification
Summary

This differential implements function that can encrypt Android notification. Additionally it introduces type for Android notification. The type is very flexible (so is Android notification payload) but its main purpose is to
protect against uninformed developer that might not know that olm doesn't accept anything else than strings. Additionally it protects against attempts to encrypt notification id.

Test Plan

Use this funcion in prepareAndroidNotification. Log the result, examine its content.

Diff Detail

Repository
rCOMM Comm
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

marcin created this revision.May 19 2023, 6:58 AM
Herald added a subscriber: ashoat. · View Herald TranscriptMay 19 2023, 6:58 AM
marcin added a parent revision: D7861: Implement JNI layer over NotificationsCryptoModule.May 19 2023, 6:59 AM
marcin added a child revision: D7873: Implement notification decryption in CommNotificationsHandler.May 19 2023, 7:13 AM
Harbormaster completed remote builds in B19504: Diff 26669.May 19 2023, 7:17 AM
marcin requested review of this revision.May 19 2023, 7:17 AM
ashoat added inline comments.May 19 2023, 7:23 AM
keyserver/src/push/crypto.js
69 ↗(On Diff #26669)

Can we construct a new one instead of copying the input?

keyserver/src/push/types.js
3 ↗(On Diff #26669)

Thanks for typing this!

7 ↗(On Diff #26669)

Can we make this read-only?

marcin added inline comments.May 19 2023, 7:54 AM
keyserver/src/push/types.js
7 ↗(On Diff #26669)

I think so, but the code might be a bit more complicated.

ashoat added inline comments.May 19 2023, 8:31 AM
keyserver/src/push/types.js
7 ↗(On Diff #26669)

I think it's probably worth it, but it's hard for me to say since I haven't seen the details

tomek accepted this revision.May 22 2023, 2:38 AM
tomek added a reviewer: ashoat.
ashoat requested changes to this revision.May 22 2023, 10:28 AM

Passing to your queue

This revision now requires changes to proceed.May 22 2023, 10:28 AM
marcin updated this revision to Diff 26862.May 23 2023, 4:17 AM

Encrypt blob of fields in one pass

Harbormaster failed remote builds in B19654: Diff 26862!May 23 2023, 4:35 AM
marcin updated this revision to Diff 26866.May 23 2023, 4:45 AM

Fix flow error

Harbormaster completed remote builds in B19658: Diff 26866.May 23 2023, 5:04 AM
ashoat requested changes to this revision.May 23 2023, 7:06 AM
ashoat added inline comments.
keyserver/src/push/crypto.js
101–110 ↗(On Diff #26866)

Personally I think this is more clear:

const { id, badgeOnly, ...unencryptedPayload } = notification.data;
const encryptedNotification = { data: { id, badgeOnly } };
126–130 ↗(On Diff #26866)

Personally I prefer to always have the existing data first when doing this pattern

keyserver/src/push/types.js
7 ↗(On Diff #26866)

Still isn't read-only

This revision now requires changes to proceed.May 23 2023, 7:06 AM
marcin added inline comments.May 24 2023, 2:34 AM
keyserver/src/push/crypto.js
126–130 ↗(On Diff #26866)

By changing the AndroidNotification type to be purely readonly, we can no longer introduce this change due to the flow error. It even explicitly advises to change the order of spreads:

Cannot spread object literal because Flow cannot determine a type for object literal [1]. rest of object pattern [2]
cannot be spread because the indexer string [3] may overwrite properties with explicit keys in a way that Flow cannot
track. Try spreading rest of object pattern [2] first or remove the indexer. [cannot-spread-indexer]

     src/push/crypto.js
 [2] 73│   const { id, badgeOnly, ...unencryptedPayload } = notification.data;
       :
     87│   } catch (e) {
     88│     console.log('Notification encryption failed: ' + e);
     89│
 [1] 90│     encryptedNotification.data = {
     91│       ...encryptedNotification.data,
     92│       ...unencryptedPayload,
     93│       encryptionFailed: '1',
     94│     };
     95│     return encryptedNotification;
     96│   }
     97│

     src/push/types.js
 [3]  7│     +[string]: string,

If it is a really important convention we can introduce it but we would probably have to refactor this function significantly.

marcin updated this revision to Diff 26942.May 24 2023, 2:37 AM
  1. Make AndroidNotification type read-only
  2. Change order of assignments to increase readability
Harbormaster completed remote builds in B19716: Diff 26942.May 24 2023, 2:54 AM
ashoat accepted this revision.May 24 2023, 9:29 AM

Makes sense, thanks for explaining @marcin!

This revision is now accepted and ready to land.May 24 2023, 9:29 AM
marcin updated this revision to Diff 27186.May 29 2023, 11:44 AM

Rebase before landing

marcin updated this revision to Diff 27199.May 29 2023, 12:00 PM

Rebase before landing

Harbormaster completed remote builds in B19855: Diff 27186.May 29 2023, 12:42 PM
Harbormaster completed remote builds in B19868: Diff 27199.May 29 2023, 1:24 PM
Closed by commit rCOMMe5878964cd73: Implement function to encrypt android notification (authored by marcin). · Explain WhyMay 29 2023, 1:41 PM
This revision was automatically updated to reflect the committed changes.
marcin added a commit: rCOMMe5878964cd73: Implement function to encrypt android notification.

Revision Contents
Changeset List

PathSize
keyserver/
src/
push/
52 lines
8 lines

Diff 27225

View Options

keyserver/src/push/crypto.js

Loading...
View Options

keyserver/src/push/types.js

Loading...