Details

Reviewers

tomek
bartek
kamil

Commits

rCOMMe51ad2aadbff: Encrypt rescinds

Summary

This differential encrypts rescinds before sending them.

Test Plan

Ensure rescinds are working correctly and each time they are sent (messages are read on another device) olm session version in db is incremented

Diff Detail

Repository

rCOMM Comm

Branch

marcin/eng-4003

Lint

No Lint Coverage

Unit

No Test Coverage

Event Timeline

marcin created this revision.Jun 29 2023, 2:43 PM

Herald added a subscriber: ashoat. · View Herald TranscriptJun 29 2023, 2:43 PM

marcin added a parent revision: D8376: Introduce additional type for Android rescinds to avoid adding undefined notification id and undefined badgeOnly after encryption..Jun 29 2023, 2:44 PM

Harbormaster completed remote builds in B20619: Diff 28267.Jun 29 2023, 3:10 PM

marcin requested review of this revision.Jun 29 2023, 3:10 PM

marcin added inline comments.Jun 30 2023, 7:53 AM

keyserver/src/push/rescind.js
50–67 ↗	(On Diff #28267)	I discussed with @tomek what would be the best approach here to get cookie ids associated with relevant device tokens necessary to encrypt notifications. We considered three different approaches: Modify the SQL query present at the beginning of this function to `JOIN` with cookies table based on `user` field and then extract cookie ids for device tokens. We didn't choose this approach since the resulting query would return many irrelevant cookie ids that we would have to manually filter. Use `JSON_EXTRACT` on the delivery to get device_tokens and then somehow get relevant cookie ids using `JOIN` or sub queries. We didn't choose this approach since such query could potentially be extremely complicated and probably unmaintainable in future. Therefore we decided it is best to issue additional query where to get relevant cookie ids based on device tokens returned from previous query. This approach does not necessarily have to be poorer in terms of performance but it does force use iterate over `fetchResults` twice. (first to get cookie ids and device tokens, second to use cookie ids and device tokens to encrypt and send rescinds.) if there is a disagreement as to whether the approach above is correct, I would rather refactor the way we store data contained within `delivery` field into something relational. That would allow us to modify the original query to use `JOIN` to easily get relevant cookie ids.

marcin added reviewers: bartek, kamil.Jul 3 2023, 8:30 AM

Refactor: use generic typed function to avoid repeated code when conditionally encrypting and sending notifications paired with device token

Harbormaster completed remote builds in B20676: Diff 28334.Jul 3 2023, 9:35 AM

tomek added inline comments.Jul 3 2023, 3:56 PM

native/android/app/src/main/java/app/comm/android/notifications/CommNotificationsHandler.java
102–107 ↗	(On Diff #28334)	Why do we use `warning` level? For me these are at most `info`, probably even just `debug`.

marcin added inline comments.Jul 4 2023, 11:36 AM

native/android/app/src/main/java/app/comm/android/notifications/CommNotificationsHandler.java
102–107 ↗	(On Diff #28334)	My bad. I left logs I used for debugging. I will remove them since they are of no use here.

tomek requested changes to this revision.Jul 4 2023, 12:39 PM

tomek added inline comments.

keyserver/src/push/rescind.js
217–221 ↗	(On Diff #28334)	Can we modify the `encryptCallback` so that it returns pairs notif - device token? The current solution has some assumptions about ordering and length of `notifications` and `deviceTokens` arrays.
50–67 ↗	(On Diff #28267)	Although it is ok to iterate twice, we should avoid repeating as much work as possible. For example, it doesn't make sense to `JSON.parse` results twice.

This revision now requires changes to proceed.Jul 4 2023, 12:39 PM

Remove unnecessary logs
Ensure deviceToken and cookieID are related to the same device

Harbormaster completed remote builds in B20743: Diff 28416.Jul 5 2023, 2:36 PM

tomek requested changes to this revision.Jul 6 2023, 11:58 AM

tomek added inline comments.

keyserver/src/push/rescind.js
52–73	You're still parsing the result twice.
208	Just a nit, but we're using this variable only when `!shouldBeEncrypted` so it can be moved into that `if`. Additionally, we're mapping from `devices` to `deviceTokens` and then to `{notif, token}` - instead, we can directly map from `devices` to the result.

This revision now requires changes to proceed.Jul 6 2023, 11:58 AM

Avoid duplicated parsing.
Avoid unnecessary deviceTokens variable initializaion.

Harbormaster completed remote builds in B20763: Diff 28439.Jul 6 2023, 3:09 PM

ashoat added inline comments.Jul 6 2023, 7:39 PM

keyserver/src/push/rescind.js
221 ↗	(On Diff #28439)	Great use of a type parameter!
190 ↗	(On Diff #28267)	This can be defined lower, eg. before the `for` loop on line 196
192 ↗	(On Diff #28267)	Please match existing SQL query format style in the codebase

tomek accepted this revision.Jul 7 2023, 9:05 AM

tomek added inline comments.

keyserver/src/push/rescind.js
59 ↗	(On Diff #28439)	Is it possible that some `deviceToken`s appear multiple times in fetch results? Should we use a `Set` here?
287–311 ↗	(On Diff #28439)	Why do we `await` the `return` in only one function?
native/android/app/src/main/java/app/comm/android/notifications/CommNotificationsHandler.java
81 ↗	(On Diff #28439)	It should be at most `info`, maybe even `debug`

This revision is now accepted and ready to land.Jul 7 2023, 9:05 AM

marcin added inline comments.Jul 7 2023, 12:43 PM

keyserver/src/push/rescind.js
59 ↗	(On Diff #28439)	If a couple of notifications are sent to the same device then we indeed can have multiple same `deviceToken`. Each row in `notifications` table contains `delivery` column which contains all device tokens this notification was successfully sent to. Therefore using a set here should be functionally equivalent to raw array. We eventually create a map deviceToken => cookieID. Database schema enforces that each cookieID corresponds to exactly one deviceToken. I am not sure about the performance here. Adding to an array (at the end) should be faster that adding to a set, but using a set could speed up SQL query that lookups cookieIDs. Therefore we can use a `Set` here.
287–311 ↗	(On Diff #28439)	It is my oversight. I should have added `await` in both.
217–221 ↗	(On Diff #28334)	This would require us to modify `prepareEncryptedAndroidNotifications` and prepareEncrypted
native/android/app/src/main/java/app/comm/android/notifications/CommNotificationsHandler.java
81 ↗	(On Diff #28439)	It is my oversight. I forgot to remove debugging logs.

marcin added inline comments.Jul 10 2023, 9:18 AM

keyserver/src/push/rescind.js
59 ↗	(On Diff #28439)	According to docs: https://mariadb.com/kb/en/in/ MariaDB sorts list passed to `IN` and then does binary search on it. Therefore using a `Set` will let us pass shorter list and therefore improve performance.

Remove unecessary log
await in both functions
use Set for allDeviceTokens

Harbormaster completed remote builds in B20836: Diff 28523.Jul 10 2023, 10:10 AM

Closed by commit rCOMMe51ad2aadbff: Encrypt rescinds. · Explain WhyJul 10 2023, 10:36 AM

This revision was automatically updated to reflect the committed changes.

marcin added a commit: rCOMMe51ad2aadbff: Encrypt rescinds.

Encrypt rescinds
ClosedPublic
Actions

Details

Diff Detail

Event Timeline

Revision Contents
Changeset List

Diff 28416

keyserver/src/push/rescind.js

native/android/app/src/main/java/app/comm/android/notifications/CommNotificationsHandler.java

Encrypt rescindsClosedPublicActions

Details

Diff Detail

Event Timeline

Revision ContentsChangeset List

Diff 28416

keyserver/src/push/rescind.js

native/android/app/src/main/java/app/comm/android/notifications/CommNotificationsHandler.java

Encrypt rescinds
ClosedPublic
Actions

Revision Contents
Changeset List