Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make collect_session_recipients more resistent #2729

Open
BillCarsonFr opened this issue Oct 18, 2023 · 0 comments
Open

Make collect_session_recipients more resistent #2729

BillCarsonFr opened this issue Oct 18, 2023 · 0 comments
Labels
encryption

Comments

@BillCarsonFr
Copy link
Member

BillCarsonFr commented Oct 18, 2023
edited
Loading

Currently when collect_session_recipients is figuring out to which devices a key was distributed it only looks at shared_with_set and not to_share_with_set (inflight).

That means that if the caller calls share_room_key, but fails to distribute the to_device, at the next call the device will not be seen has having the key but will eventually get it after next call that processes outgoing requests next message is sent in room.

As an example there was a bug in webR, where to-device was not marked as sent.
This leads to several strange side effect.
For example is you change the only_allow_trusted_devices setting to true (with an unverified device in the room). Then collect session recipient won't rotate the megolm session, as the session as not been delivered (not in shared_with_set, only in to_share_with_set).

As a result the sdk will give you 2 to-devices, a room key for the device and a withheld for the same device and same session.

We could make the sdk more resistent by considering bothshared_with_set and to_share_with_set
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
encryption
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@BillCarsonFr