[native] replace Olm with Vodozemac's Olm #327
Conversation
|
|
xsanm
force-pushed
the
vodozemac-work-part-4
branch
2 times, most recently
from
6018853 to
865c668
Compare
xsanm
force-pushed
the
vodozemac-work-part-5
branch
from
a811562 to
58cb6e6
Compare
xsanm
force-pushed
the
vodozemac-work-part-4
branch
2 times, most recently
from
de66670 to
de276f7
Compare
| } else { | ||
| CryptoModule::CryptoModule(std::string secretKey, Persist persist) | ||
| : vodozemacAccount(::account_new()) { | ||
| this->secretKey = secretKey; |
There was a problem hiding this comment.
Why do we need this? I can't find where it's used
| for (const auto &key : oneTimeKeysVec) { | ||
| this->keys.oneTimeKeys.push_back(std::string(key)); | ||
| } | ||
| return ::olm_account_mark_keys_as_published(this->getOlmAccount()); |
There was a problem hiding this comment.
There is a slight difference here it seems... previously we returned the result of olm_account_mark_keys_as_published, but now we return oneTimeKeysVec.size. Are these always the same?
There was a problem hiding this comment.
This is because mark_keys_as_published in vodozemac is returning void, but the values should be the same
| folly::dynamic identityKeysObj = folly::parseJson(this->getIdentityKeys()); | ||
| std::string signingPublicKey = identityKeysObj["ed25519"].asString(); |
There was a problem hiding this comment.
Why'd we get rid of getSigningPublicKey? We seem to be doing the same thing here, but I guess with less robust error handling. I guess we didn't need the error handling here?
There was a problem hiding this comment.
That was strange. I am reintroducing getSigningPublicKey
| std::string signingPublicKey = identityKeysObj["ed25519"].asString(); | ||
|
|
||
| std::string prekey = this->getPrekey(); | ||
| std::string prekeySignature = this->getPrekeySignature(); |
There was a problem hiding this comment.
Why'd you remove the const keyword from these declarations?
| std::string rawMessage{e.what()}; | ||
| if (rawMessage.find("BAD_MESSAGE_MAC") != std::string::npos) { | ||
| if (rawMessage.find("BAD_MESSAGE_MAC") != std::string::npos || | ||
| rawMessage.find("Signature") != std::string::npos) { |
There was a problem hiding this comment.
The same issue with checking Signature as in a prior PR
| random.data(), | ||
| random.size())) { | ||
| throw std::runtime_error{ | ||
| "error generateOneTimeKeys => " + |
There was a problem hiding this comment.
Are we no longer handling this error generateOneTimeKeys?
| try { | ||
| std::string unpublished = | ||
| std::string(this->vodozemacAccount->unpublished_prekey()); | ||
| if (unpublished.empty()) { |
There was a problem hiding this comment.
Add a comment explaining why we use the empty string
| idKeys); | ||
|
|
||
| auto [newSession, plaintext] = Session::createSessionAsResponder( | ||
| this->vodozemacAccount, encryptedData, idKeys); |
There was a problem hiding this comment.
Why don't we need to pass this->keys.identityKeys.data() anymore?
EDIT – looking at Session.cpp, it apparently wasn't even used before. Feel free to ignore this comment
| this->vodozemacAccount, encryptedData, idKeys); | ||
| newSession->setVersion(sessionVersion); | ||
| this->sessions.insert(make_pair(targetDeviceId, std::move(newSession))); | ||
| return plaintext; |
There was a problem hiding this comment.
Previously (C++ Olm), create_inbound_session was creating the session only, and we had to decrypt the initial message separately; it was done in CommCoreModule. In Vodoezmac, decryption is part of create_inbound_session, so we have to return it
| for (it = this->sessions.begin(); it != this->sessions.end(); ++it) { | ||
| OlmBuffer buffer = it->second->storeAsB64(secretKey); | ||
| std::string sessionPickle = it->second->storeAsB64(secretKey); | ||
| OlmBuffer buffer(sessionPickle.begin(), sessionPickle.end()); |
There was a problem hiding this comment.
Why do we still need to use OlmBuffer? Is this type from inside of the old Olm library? Will it prevent us from removing that library?
There was a problem hiding this comment.
OlmBuffer is just an alias for std::vector<std::uint8_t>:
| account->create_outbound_session( | ||
| curve25519Key, | ||
| ed25519Key, | ||
| oneTimeKey.value_or(""), |
There was a problem hiding this comment.
Would be good to add a comment here explaining why we use the empty string
| static_cast<uint32_t>(encryptedData.messageType))); | ||
| } catch (const std::exception &e) { | ||
| throw std::runtime_error( | ||
| "error decrypt => " + olmErrorFlag + " " + std::string(e.what())); |
There was a problem hiding this comment.
We used to print the message hash here in this error, but we don't anymore. Did we add the message hash previously because it helped with debugging? Is it difficult to reintroduce?
There was a problem hiding this comment.
Did we add the message hash previously because it helped with debugging?
I don't know, but I think so, perhaps when having some issues with notifications in the past.
Reintroduced
| int version; | ||
|
|
||
| public: | ||
| ::rust::Box<::VodozemacSession> vodozemacSession; |
There was a problem hiding this comment.
It was because we used it in:
I implemented methods for isSenderChainEmpty and hasReceivedMessage and updated vodozemacSession to be private
| @@ -1,6 +1,5 @@ | |||
| // @flow | |||
|
|
|||
| import { getOneTimeKeyValues } from 'lib/shared/crypto-utils.js'; | |||
There was a problem hiding this comment.
Is getOneTimeKeyValues used anywhere anymore?
There was a problem hiding this comment.
It is used as part of getOneTimeKeyValuesFromBlob, which is used to parse the result from getOlmSessionInitializationDataResponder endpoint (this endpoint has to still support old format for older clients, as we discussed yesterday)
| import type { ClientDBReportStoreOperation } from 'lib/ops/report-store-ops.js'; | ||
| import type { ClientDBThreadStoreOperation } from 'lib/ops/thread-store-ops.js'; | ||
| import type { | ||
| OneTimeKeysResult, |
There was a problem hiding this comment.
Is the OneTimeKeysResult type used anywhere anymore? Can it be removed?
|
I reviewed only the final commit, as this branch needs to be rebased on #323's branch |
xsanm
changed the base branch from
vodozemac-work-part-4
to
vodozemac-work-part-1
xsanm
force-pushed
the
vodozemac-work-part-5
branch
2 times, most recently
from
3b4513a to
e4858cf
Compare
| const OlmBuffer prekeyBytes = Base64::decode(prekey); | ||
| try { | ||
| this->verifySignature(signingPublicKey, prekeyBytes, preKeySignature); | ||
| std::string signingPublicKey = getSigningPublicKey(this->getIdentityKeys()); |
Summary: [ENG-11531](https://linear.app/comm/issue/ENG-11531/migrate-the-full-crypto-api-to-vodozemac). Making vodozemac available on native. Depends on D15549 Test Plan: Test encrypt/decrypt and creating session with Olm and Vodozemac. Reviewers: ashoat Subscribers: tomek Differential Revision: https://phab.comm.dev/D15550
xsanm
force-pushed
the
vodozemac-work-part-5
branch
from
e4858cf to
b943500
Compare
|
I triggered CI in ac50bc4 to make sure it passes before merging to master |
Summary: [ENG-11531](https://linear.app/comm/issue/ENG-11531/migrate-the-full-crypto-api-to-vodozemac). Making vodozemac available on native. Depends on D15549 Test Plan: Test encrypt/decrypt and creating session with Olm and Vodozemac. Reviewers: ashoat Subscribers: tomek Differential Revision: https://phab.comm.dev/D15550
Summary:
ENG-11531.
Making Vodozemac available on native.
Depends on D15549
Test Plan: Test encrypt/decrypt and create a session with Olm and Vodozemac.
Reviewers: ashoat
Subscribers: tomek
Differential Revision: https://phab.comm.dev/D15550