Paths

Table of Contentst

Differential D9178

Enhance error check in CryptoModule decrypt. Add encrypted message hash to error message.
ClosedPublic
Actions

Authored by marcin on Sep 13 2023, 6:50 AM.

Tags

None

Referenced Files

	Unknown Object (File)
	Thu, Jul 18, 9:11 AM

	Unknown Object (File)
	Tue, Jul 16, 12:04 AM

	Unknown Object (File)
	Mon, Jul 15, 12:25 PM

	Unknown Object (File)
	Mon, Jul 8, 3:56 PM

	Unknown Object (File)
	Sun, Jul 7, 7:12 PM

	Unknown Object (File)
	Sun, Jul 7, 4:46 PM

	Unknown Object (File)
	Sun, Jul 7, 9:44 AM

	Unknown Object (File)
	Sun, Jul 7, 12:13 AM

View All 71 Files

Subscribers

Details

Reviewers

kamil
tomek
varun

Commits

rCOMM6b660b669592: Enhance error check in CryptoModule decrypt. Add encrypted message hash to…

Summary

This differential addresses crypto sync follow ups described there: https://linear.app/comm/issue/ENG-4886/nse-error-during-notif-decryption-bad-message-mac#comment-7b6b9979. In particular:

EncryptedData is passed by reference.
Error checking for olm_max_decrypt_plaintext_length is implemented.
Hash of encrypted message is calculated before decryption. In the case of failure, hash of the message is appended to error message.
Notifications Service Extension adds notifications id to error message notification. NOTE: it is NOT id of an entry in notifications table in MariaDB. It is the iosID field of delivery column of an entry in notifications table.

Test Plan

Build iOS app,
Apply this patch to the keyserver code to send each encrypted notification twice: https://gist.github.com/marcinwasowicz/5011d3c1d5418e1a3af06f6be182e739.
Send notification to iOS device.
Ensure that the second notification contains the hash and id of the notification received,

Diff Detail

Repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

marcin created this revision.Sep 13 2023, 6:50 AM

Herald added a subscriber: ashoat. · View Herald TranscriptSep 13 2023, 6:50 AM

marcin added a child revision: D9179: Save encrypted payload hash in MariaDB keyserver for iOS notifs..Sep 13 2023, 6:54 AM

marcin edited the summary of this revision. (Show Details)Sep 13 2023, 7:00 AM

marcin edited the test plan for this revision. (Show Details)

Harbormaster completed remote builds in B22585: Diff 31043.Sep 13 2023, 7:09 AM

marcin requested review of this revision.Sep 13 2023, 7:09 AM

ashoat added inline comments.Sep 13 2023, 7:26 AM

native/cpp/CommonCpp/CryptoTools/CryptoModule.cpp
343 ↗	(On Diff #31043)	In retrospect there is probably no performance gain here, since in the old code C++ compilers would probably optimize to use a move constructor here. We can leave it though, in case we change things in the future at the callsite

kamil accepted this revision.Sep 15 2023, 3:41 AM

This revision is now accepted and ready to land.Sep 15 2023, 3:41 AM

Rebase before landing

Harbormaster completed remote builds in B22661: Diff 31177.Sep 15 2023, 7:14 AM

Closed by commit rCOMM6b660b669592: Enhance error check in CryptoModule decrypt. Add encrypted message hash to… (authored by marcin). · Explain WhySep 15 2023, 7:23 AM

This revision was automatically updated to reflect the committed changes.

marcin added a commit: rCOMM6b660b669592: Enhance error check in CryptoModule decrypt. Add encrypted message hash to….

ashoat mentioned this in D9248: [native] Fix rescinds and badge-only notifs on iOS.Sep 20 2023, 10:29 AM

ashoat mentioned this in rCOMM4a1baebbbe0f: [native] Fix rescinds and badge-only notifs on iOS.Sep 20 2023, 10:40 AM

Revision Contents
Changeset List

Path

Size

native/

cpp/

CommonCpp/

CryptoTools/

2 lines

CryptoModule.cpp

26 lines

Notifications/

BackgroundDataStorage/

NotificationsCryptoModule.cpp

4 lines

ios/

NotificationService/

NotificationService.mm

5 lines

Diff 31180

native/cpp/CommonCpp/CryptoTools/CryptoModule.h

Loading...

native/cpp/CommonCpp/CryptoTools/CryptoModule.cpp

Loading...

native/cpp/CommonCpp/Notifications/BackgroundDataStorage/NotificationsCryptoModule.cpp

Loading...

native/ios/NotificationService/NotificationService.mm

Loading...