fix: validate of Lifetime in KeyPackages only for senders

openmls/src/framing/mls_auth_content_in.rs

@@ -54,6 +54,7 @@ impl AuthenticatedContentIn {
         sender_context: Option<SenderContext>,
         protocol_version: ProtocolVersion,
         group: &PublicGroup,
+        sender: bool,
     ) -> Result<AuthenticatedContent, ValidationError> {
         Ok(AuthenticatedContent {
             wire_format: self.wire_format,
@@ -65,6 +66,7 @@ impl AuthenticatedContentIn {
                     sender_context,
                     protocol_version,
                     group,
+                    sender,
                 )
                 .await?,
             auth: self.auth,

openmls/src/framing/mls_content_in.rs

@@ -57,6 +57,7 @@ impl FramedContentIn {
         sender_context: Option<SenderContext>,
         protocol_version: ProtocolVersion,
         group: &PublicGroup,
+        sender: bool,
     ) -> Result<FramedContent, ValidationError> {
         Ok(FramedContent {
             group_id: self.group_id,
@@ -71,6 +72,7 @@ impl FramedContentIn {
                     sender_context,
                     protocol_version,
                     group,
+                    sender,
                 )
                 .await?,
         })
@@ -145,6 +147,7 @@ impl FramedContentBodyIn {
         sender_context: Option<SenderContext>,
         protocol_version: ProtocolVersion,
         group: &PublicGroup,
+        sender: bool,
     ) -> Result<FramedContentBody, ValidationError> {
         Ok(match self {
             FramedContentBodyIn::Application(bytes) => FramedContentBody::Application(bytes),
@@ -156,6 +159,7 @@ impl FramedContentBodyIn {
                         sender_context,
                         protocol_version,
                         group,
+                        sender,
                     )
                     .await?,
             ),
@@ -170,6 +174,7 @@ impl FramedContentBodyIn {
                             sender_context,
                             protocol_version,
                             group,
+                            sender,
                         )
                         .await?,
                 )

openmls/src/framing/validation.rs

@@ -322,6 +322,7 @@ impl UnverifiedMessage {
                 self.sender_context,
                 protocol_version,
                 group,
+                false,
             )
             .await?;
         Ok((content, self.credential))

openmls/src/group/core_group/new_from_external_init.rs

@@ -52,6 +52,7 @@ impl CoreGroup {
             verifiable_group_info,
             // Existing proposals are discarded when joining by external commit.
             ProposalStore::new(),
+            true,
         )
         .await?;
         let group_context = public_group.group_context();

openmls/src/group/core_group/new_from_welcome.rs

@@ -151,11 +151,12 @@ impl CoreGroup {
             ratchet_tree,
             verifiable_group_info,
             ProposalStore::new(),
+            false,
         )
         .await?;
 
         KeyPackageIn::from(key_package.clone())
-            .validate(backend, ProtocolVersion::Mls10, &public_group)
+            .validate(backend, ProtocolVersion::Mls10, &public_group, false)
             .await?;
 
         // Find our own leaf in the tree.

openmls/src/group/core_group/test_proposals.rs

@@ -50,7 +50,7 @@ async fn proposal_queue_functions(ciphersuite: Ciphersuite, backend: &impl OpenM
     let kpi = KeyPackageIn::from(alice_update_key_package.clone());
 
     assert!(kpi
-        .standalone_validate(backend, ProtocolVersion::Mls10)
+        .standalone_validate(backend, ProtocolVersion::Mls10, true)
         .await
         .is_ok());
 
@@ -197,7 +197,7 @@ async fn proposal_queue_order(ciphersuite: Ciphersuite, backend: &impl OpenMlsCr
     let kpi = KeyPackageIn::from(alice_update_key_package.clone());
 
     assert!(kpi
-        .standalone_validate(backend, ProtocolVersion::Mls10)
+        .standalone_validate(backend, ProtocolVersion::Mls10, true)
         .await
         .is_ok());
 

openmls/src/group/mls_group/membership.rs

@@ -48,7 +48,12 @@ impl MlsGroup {
         let mut inline_proposals = Vec::with_capacity(key_packages.len());
         for key_package in key_packages.into_iter() {
             let key_package = key_package
-                .validate(backend, ProtocolVersion::Mls10, self.group().public_group())
+                .validate(
+                    backend,
+                    ProtocolVersion::Mls10,
+                    self.group().public_group(),
+                    true,
+                )
                 .await?;
             inline_proposals.push(Proposal::Add(AddProposal { key_package }));
         }

openmls/src/group/mls_group/proposal.rs

@@ -106,7 +106,12 @@ impl MlsGroup {
         self.is_operational()?;
 
         let key_package = joiner_key_package
-            .validate(backend, ProtocolVersion::Mls10, self.group().public_group())
+            .validate(
+                backend,
+                ProtocolVersion::Mls10,
+                self.group().public_group(),
+                true,
+            )
             .await?;
         let proposal =
             self.group
@@ -247,7 +252,12 @@ impl MlsGroup {
         self.is_operational()?;
 
         let key_package = joiner_key_package
-            .validate(backend, ProtocolVersion::Mls10, self.group().public_group())
+            .validate(
+                backend,
+                ProtocolVersion::Mls10,
+                self.group().public_group(),
+                true,
+            )
             .await?;
         let add_proposal =
             self.group

openmls/src/group/mls_group/updates.rs

@@ -189,7 +189,7 @@ impl MlsGroup {
             .into());
         };
         let own_leaf = own_leaf
-            .validate(self.group().public_group(), backend)
+            .validate(self.group().public_group(), backend, true)
             .await?;
 
         let update_proposal = self.group.create_update_proposal(
@@ -272,7 +272,7 @@ impl MlsGroup {
             .into());
         };
         let own_leaf = own_leaf
-            .validate(self.group().public_group(), backend)
+            .validate(self.group().public_group(), backend, true)
             .await?;
 
         let update_proposal = self.group.create_update_proposal(

openmls/src/group/public_group/mod.rs

@@ -107,6 +107,7 @@ impl PublicGroup {
         ratchet_tree: RatchetTreeIn,
         verifiable_group_info: VerifiableGroupInfo,
         proposal_store: ProposalStore,
+        sender: bool,
     ) -> Result<(Self, GroupInfo), CreationFromExternalError> {
         let ciphersuite = verifiable_group_info.ciphersuite();
 
@@ -123,7 +124,8 @@ impl PublicGroup {
         // verifying the group info, since we need to find the Credential to verify the
         // signature against.
         let treesync =
-            TreeSync::from_ratchet_tree(backend, ciphersuite, ratchet_tree, group_id, true).await?;
+            TreeSync::from_ratchet_tree(backend, ciphersuite, ratchet_tree, group_id, true, sender)
+                .await?;
 
         let group_info: GroupInfo = {
             let signer_signature_key = treesync

openmls/src/group/public_group/tests.rs

@@ -60,6 +60,7 @@ async fn public_group(ciphersuite: Ciphersuite, backend: &impl OpenMlsCryptoProv
         ratchet_tree.into(),
         verifiable_group_info,
         ProposalStore::new(),
+        true,
     )
     .await
     .unwrap();

openmls/src/group/tests/test_proposal_validation.rs

@@ -1084,7 +1084,7 @@ async fn test_valsem105(ciphersuite: Ciphersuite, backend: &impl OpenMlsCryptoPr
                 .await;
 
         let kpi: KeyPackageIn = charlie_key_package.clone().into();
-        kpi.standalone_validate(backend, ProtocolVersion::Mls10)
+        kpi.standalone_validate(backend, ProtocolVersion::Mls10, true)
             .await
             .unwrap();
 

openmls/src/key_packages/key_package_in.rs

@@ -119,24 +119,29 @@ impl KeyPackageIn {
         backend: &impl OpenMlsCryptoProvider,
         protocol_version: ProtocolVersion,
         group: &PublicGroup,
+        sender: bool,
     ) -> Result<KeyPackage, KeyPackageVerifyError> {
-        self._validate(backend, protocol_version, Some(group)).await
+        self._validate(backend, protocol_version, Some(group), sender)
+            .await
     }
 
     /// Verify that this key package is valid disregarding the group it is supposed to be used with.
     pub async fn standalone_validate(
         self,
         backend: &impl OpenMlsCryptoProvider,
         protocol_version: ProtocolVersion,
+        sender: bool,
     ) -> Result<KeyPackage, KeyPackageVerifyError> {
-        self._validate(backend, protocol_version, None).await
+        self._validate(backend, protocol_version, None, sender)
+            .await
     }
 
     async fn _validate(
         self,
         backend: &impl OpenMlsCryptoProvider,
         protocol_version: ProtocolVersion,
         group: Option<&PublicGroup>,
+        sender: bool,
     ) -> Result<KeyPackage, KeyPackageVerifyError> {
         // We first need to verify the LeafNode inside the KeyPackage
 
@@ -154,10 +159,10 @@ impl KeyPackageIn {
         let leaf_node = match verifiable_leaf_node {
             VerifiableLeafNode::KeyPackage(leaf_node) => {
                 if let Some(group) = group {
-                    leaf_node.validate(group, backend).await?
+                    leaf_node.validate(group, backend, sender).await?
                 } else {
                     leaf_node
-                        .standalone_validate(backend, signature_scheme)
+                        .standalone_validate(backend, signature_scheme, sender)
                         .await?
                 }
             }

openmls/src/key_packages/test_key_packages.rs

@@ -47,7 +47,7 @@ async fn generate_key_package(ciphersuite: Ciphersuite, backend: &impl OpenMlsCr
 
     let kpi = KeyPackageIn::from(key_package);
     assert!(kpi
-        .standalone_validate(backend, ProtocolVersion::Mls10)
+        .standalone_validate(backend, ProtocolVersion::Mls10, true)
         .await
         .is_ok());
 }
@@ -101,7 +101,7 @@ async fn application_id_extension(ciphersuite: Ciphersuite, backend: &impl OpenM
 
     let kpi = KeyPackageIn::from(key_package.clone());
     assert!(kpi
-        .standalone_validate(backend, ProtocolVersion::Mls10)
+        .standalone_validate(backend, ProtocolVersion::Mls10, true)
         .await
         .is_ok());
 
@@ -138,7 +138,7 @@ async fn key_package_validation(ciphersuite: Ciphersuite, backend: &impl OpenMls
     let kpi = KeyPackageIn::tls_deserialize(&mut encoded.as_slice()).unwrap();
 
     let err = kpi
-        .standalone_validate(backend, ProtocolVersion::Mls10)
+        .standalone_validate(backend, ProtocolVersion::Mls10, true)
         .await
         .unwrap_err();
     // Expect an invalid protocol version error
@@ -158,7 +158,7 @@ async fn key_package_validation(ciphersuite: Ciphersuite, backend: &impl OpenMls
     let kpi = KeyPackageIn::tls_deserialize(&mut encoded.as_slice()).unwrap();
 
     let err = kpi
-        .standalone_validate(backend, ProtocolVersion::Mls10)
+        .standalone_validate(backend, ProtocolVersion::Mls10, true)
         .await
         .unwrap_err();
     // Expect an invalid init/encryption key error

openmls/src/messages/group_info.rs

@@ -123,6 +123,7 @@ impl VerifiableGroupInfo {
     pub async fn take_ratchet_tree(
         mut self,
         backend: &impl OpenMlsCryptoProvider,
+        sender: bool,
     ) -> Result<RatchetTree, GroupInfoError> {
         let cs = self.ciphersuite();
 
@@ -144,7 +145,8 @@ impl VerifiableGroupInfo {
         // although it clones the ratchet tree here...
         let group_id = self.group_id();
         let treesync =
-            TreeSync::from_ratchet_tree(backend, cs, ratchet_tree.clone(), group_id, true).await?;
+            TreeSync::from_ratchet_tree(backend, cs, ratchet_tree.clone(), group_id, true, sender)
+                .await?;
 
         let signer_signature_key = treesync
             .leaf(self.signer())

openmls/src/messages/mod.rs

@@ -196,12 +196,13 @@ impl CommitIn {
         sender_context: SenderContext,
         protocol_version: ProtocolVersion,
         group: &PublicGroup,
+        sender: bool,
     ) -> Result<Commit, ValidationError> {
         let mut proposals = Vec::with_capacity(self.proposals.len());
         for proposal in self.proposals.into_iter() {
             proposals.push(
                 proposal
-                    .validate(backend, ciphersuite, protocol_version, group)
+                    .validate(backend, ciphersuite, protocol_version, group, sender)
                     .await?,
             );
         }
@@ -237,7 +238,10 @@ impl CommitIn {
                     TreePosition::new(group_id, new_leaf_index)
                 }
             };
-            Some(path.into_verified(backend, tree_position, group).await?)
+            Some(
+                path.into_verified(backend, tree_position, group, sender)
+                    .await?,
+            )
         } else {
             None
         };

openmls/src/messages/proposals_in.rs

@@ -102,16 +102,21 @@ impl ProposalIn {
         sender_context: Option<SenderContext>,
         protocol_version: ProtocolVersion,
         group: &PublicGroup,
+        sender: bool,
     ) -> Result<Proposal, ValidationError> {
         Ok(match self {
             ProposalIn::Add(add) => Proposal::Add(
-                add.validate(backend, protocol_version, ciphersuite, group)
+                add.validate(backend, protocol_version, ciphersuite, group, sender)
                     .await?,
             ),
             ProposalIn::Update(update) => {
                 let sender_context =
                     sender_context.ok_or(ValidationError::CommitterIncludedOwnUpdate)?;
-                Proposal::Update(update.validate(backend, sender_context, group).await?)
+                Proposal::Update(
+                    update
+                        .validate(backend, sender_context, group, sender)
+                        .await?,
+                )
             }
             ProposalIn::Remove(remove) => Proposal::Remove(remove),
             ProposalIn::PreSharedKey(psk) => Proposal::PreSharedKey(psk),
@@ -154,10 +159,11 @@ impl AddProposalIn {
         protocol_version: ProtocolVersion,
         ciphersuite: Ciphersuite,
         group: &PublicGroup,
+        sender: bool,
     ) -> Result<AddProposal, ValidationError> {
         let key_package = self
             .key_package
-            .validate(backend, protocol_version, group)
+            .validate(backend, protocol_version, group, sender)
             .await?;
         // Verify that the ciphersuite is valid
         if key_package.ciphersuite() != ciphersuite {
@@ -192,6 +198,7 @@ impl UpdateProposalIn {
         backend: &impl OpenMlsCryptoProvider,
         sender_context: SenderContext,
         group: &PublicGroup,
+        sender: bool,
     ) -> Result<UpdateProposal, ValidationError> {
         let tree_position = match sender_context {
             SenderContext::Member((group_id, leaf_index)) => {
@@ -203,7 +210,9 @@ impl UpdateProposalIn {
             .leaf_node
             .try_into_verifiable_leaf_node(Some(tree_position))?;
         let leaf_node = match verifiable_leaf_node {
-            VerifiableLeafNode::Update(leaf_node) => leaf_node.validate(group, backend).await?,
+            VerifiableLeafNode::Update(leaf_node) => {
+                leaf_node.validate(group, backend, sender).await?
+            }
             _ => return Err(ValidationError::InvalidLeafNodeSourceType),
         };
 
@@ -234,11 +243,12 @@ impl ProposalOrRefIn {
         ciphersuite: Ciphersuite,
         protocol_version: ProtocolVersion,
         group: &PublicGroup,
+        sender: bool,
     ) -> Result<ProposalOrRef, ValidationError> {
         Ok(match self {
             ProposalOrRefIn::Proposal(proposal_in) => ProposalOrRef::Proposal(
                 proposal_in
-                    .validate(backend, ciphersuite, None, protocol_version, group)
+                    .validate(backend, ciphersuite, None, protocol_version, group, sender)
                     .await?,
             ),
             ProposalOrRefIn::Reference(reference) => ProposalOrRef::Reference(reference),