Page MenuHomePhabricator

[keyserver] Process and store encrypted media
ClosedPublic

Authored by bartek on Mar 24 2023, 4:04 AM.
Tags
None
Referenced Files
F3631827: D7167.id24427.diff
Fri, Jan 3, 4:09 AM
Unknown Object (File)
Sat, Dec 28, 3:10 PM
Unknown Object (File)
Sun, Dec 22, 7:50 PM
Unknown Object (File)
Sun, Dec 22, 3:29 PM
Unknown Object (File)
Sun, Dec 22, 2:06 PM
Unknown Object (File)
Sun, Dec 22, 9:29 AM
Unknown Object (File)
Sat, Dec 14, 4:50 PM
Unknown Object (File)
Sat, Dec 14, 4:50 PM
Subscribers

Details

Summary

Part of ENG-3393

Encrypted media can no longer be processed on keyserver. Modified validateAndConvert - added a simple validation based on provided MIME type - it must be provided in order to detect if we have image or video. Then the content is passed through.

Then stored the encryption key in extras column of the uploads table.

Depends on D7166

Test Plan

Modified the uploadMultimedia call in input-state-container to pass some encryptionKey. Uploaded some media. Ensured the encryptionKey is added to the uploads table

Diff Detail

Repository
rCOMM Comm
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

bartek held this revision as a draft.
bartek published this revision for review.Mar 24 2023, 4:19 AM
ashoat requested changes to this revision.Mar 24 2023, 11:47 AM
ashoat added inline comments.
keyserver/src/uploads/media-utils.js
33 ↗(On Diff #24065)

It feels like this function should probably take an object instead of a list of parameters, given how many of them there are and that some of them are boolean (which makes it unclear what's going on at the callsite)

53–58 ↗(On Diff #24065)

mediaConfig tells us what kinds of files we can accept on native from the user, but it doesn't tell us what kind of files we can accept in keyserver to distribute to peers.

For example, somebody is allowed to upload a gif, but it gets transcoded to an mp4 or jpeg (depending on whether it is an animated GIF) before being uploaded to the keyserver.

Your code here makes it so we change this behavior and now accept a variety of formats that we might not be able to render on clients. Instead, can we use serverCanHandleTypes, like we do elsewhere in this function?

This revision now requires changes to proceed.Mar 24 2023, 11:47 AM
keyserver/src/uploads/media-utils.js
33 ↗(On Diff #24065)

Agreed, will change this

53–58 ↗(On Diff #24065)

Yeah I looked at the serverCanHandleTypes before and it's indeed a subset of mediaConfig types.
But my understanding was that these are types that can be processed by keyserver, and we're skipping that processing for encrypted files. That's why I used mediaConfig directly.
Anyway, I can change it back to use serverCanHandleTypes because my understanding was wrong.

  • Updated validateAndConvert to accept a single object argument
  • Used serverCanHandleTypes to validate MIME type
ashoat added inline comments.
keyserver/src/uploads/media-utils.js
70–72 ↗(On Diff #24109)

We could consider replacing these lines with this. PS there is a typo here (extraneous } character in the invariant text)

53–58 ↗(On Diff #24065)

That's fair... in retrospect, serverCanHandleTypes should probably be called clientCanHandleTypes

This revision is now accepted and ready to land.Mar 25 2023, 2:54 AM

Rebase before landing. Apply suggestion + fix typo