feat: establish 1on1 mls conversation with new removal key [WPB-10744] #6502
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
V-Gira
changed the title
V-Gira
changed the title
echoes-hq
bot
added
the
echoes: unplanned
V-Gira
commented
Sep 11, 2024
Comment on lines
-154
to
-193
| /** | ||
| * Short term solution to an issues with 1:1 MLS call, see | ||
| * https://wearezeta.atlassian.net/wiki/spaces/PAD/pages/1314750477/2024-07-29+1+1+calls+over+SFT#Do-not-leave-the-subconversation | ||
| * Will delete a conference subconversation when hanging up on a 1:1 call instead of leaving. | ||
| * | ||
| * @param conversationId Id of the parent conversation which subconversation we want to leave | ||
| */ | ||
| public async leave1on1ConferenceSubconversation(conversationId: QualifiedId): Promise<void> { | ||
| const subconversationGroupId = await this.getSubconversationGroupId(conversationId, SUBCONVERSATION_ID.CONFERENCE); | ||
|
|
||
| if (!subconversationGroupId) { | ||
| return; | ||
| } | ||
|
|
||
| const doesGroupExistLocally = await this.mlsService.conversationExists(subconversationGroupId); | ||
| if (!doesGroupExistLocally) { | ||
| // If the subconversation was known by a client but is does not exist locally, we can remove it from the store. | ||
| return this.clearSubconversationGroupId(conversationId, SUBCONVERSATION_ID.CONFERENCE); | ||
| } | ||
|
|
||
| try { | ||
| const epochInfo = await this.getSubconversationEpochInfo(conversationId, subconversationGroupId); | ||
|
|
||
| if (!epochInfo) { | ||
| throw new Error('Failed to get epoch info for conference subconversation'); | ||
| } | ||
| await this.apiClient.api.conversation.deleteSubconversation(conversationId, SUBCONVERSATION_ID.CONFERENCE, { | ||
| groupId: subconversationGroupId, | ||
| epoch: epochInfo.epoch, | ||
| }); | ||
| } catch (error) { | ||
| this.logger.error(`Failed to delete conference subconversation:`, error); | ||
| } | ||
|
|
||
| await this.mlsService.wipeConversation(subconversationGroupId); | ||
|
|
||
| // once we've deleted the subconversation, we can remove it from the store | ||
| await this.clearSubconversationGroupId(conversationId, SUBCONVERSATION_ID.CONFERENCE); | ||
| } | ||
|
|
There was a problem hiding this comment.
This code block was a previous attempt to solve a related issue without requiring a change to the backend response, by calling the deleteSubconversation endpoint instead of deleteSubconversationSelf.
see #6434
This is no longer required
przemvs
reviewed
Sep 12, 2024
packages/core/src/messagingProtocols/mls/MLSService/MLSService.ts
Outdated
Show resolved
Hide resolved
V-Gira
commented
Sep 13, 2024
| } | ||
|
|
||
| // If group is not established on backend, | ||
| // we wipe the it locally (in case it exsits in the local store) and try to register it. | ||
| await this.mlsService.wipeConversation(groupId); | ||
|
|
||
| try { | ||
| await this.mlsService.register1to1Conversation(groupId, otherUserId, selfUser); | ||
| await this.mlsService.register1to1Conversation(groupId, otherUserId, selfUser, public_keys?.removal); |
There was a problem hiding this comment.
This is the main change, we can register a conversation with a removal key that comes from a different endpoint
V-Gira
commented
Sep 13, 2024
| @@ -481,7 +485,8 @@ export class MLSService extends TypedEventEmitter<Events> { | |||
| } else { | |||
| const mlsKeys = (await this.apiClient.api.client.getPublicKeys()).removal; | |||
| const ciphersuiteSignature = getSignatureAlgorithmForCiphersuite(this.config.defaultCiphersuite); | |||
| const removalKeyForSignature = mlsKeys[ciphersuiteSignature]; | |||
| const removalKeyForSignature = | |||
| removalKeyFor1to1Signature?.[ciphersuiteSignature] ?? mlsKeys[ciphersuiteSignature]; | |||
There was a problem hiding this comment.
if the removal key is provided by the conversation endpoint, we use that one, else, we use a removal key provided by getPublicKey (our own backend removal key)
V-Gira
changed the title
przemvs
reviewed
Sep 13, 2024
przemvs
reviewed
Sep 13, 2024
Comment on lines
542
to
545
| if (isMLS1to1Conversation(response)) { | ||
| return response; | ||
| } | ||
| return {conversation: response}; |
There was a problem hiding this comment.
Can't we return response.conversation and response? 🤔
Code will be more readable.
There was a problem hiding this comment.
And nice to have passed type for fn what we returning there ;)
There was a problem hiding this comment.
Can't we return response.conversation and response? 🤔 Code will be more readable.
This function returns
export interface MLS1to1Conversation {
conversation: MLSConversation;
public_keys?: {
removal: MLSPublicKeyRecord;
};
}
the optional public_keys is needed in some cases so we can't only return MLSConversation
Co-authored-by: Przemysław Jóźwik <[email protected]>
e-maad
reviewed
Sep 13, 2024
Comment on lines
120
to
130
| if (typeof response === 'object' && response !== null) { | ||
| const conversation = response as MLS1to1Conversation; | ||
|
|
||
| if (!!conversation.conversation && !!conversation.public_keys) { | ||
| return true; | ||
| } | ||
|
|
||
| return false; | ||
| } | ||
|
|
||
| return false; |
There was a problem hiding this comment.
It is possible to normalize the logic?
Can we return early with false value?
There was a problem hiding this comment.
Something like this?
export function isMLS1to1Conversation(response: unknown): response is MLS1to1Conversation {
if (typeof response === 'object' && response !== null && 'conversation' in response && 'public_keys' in response) {
return true;
}
return false;
}There was a problem hiding this comment.
Yes, but I think in is an alternative for hasOwnProperty().
If you are sure that these property cannot contain null/undefined, then we are good to go.
// for example
const response = {conversation: null, public_keys: undefined};
// 'conversation' in response will be true
// 'public_keys' in response will be true
packages/core/src/conversation/ConversationService/ConversationService.ts
Outdated
Show resolved
Hide resolved
…nService.ts Co-authored-by: Immad Abdul Jabbar <[email protected]>
przemvs
reviewed
Sep 16, 2024
| @@ -580,19 +587,19 @@ export class ConversationService extends TypedEventEmitter<Events> { | |||
| ); | |||
|
|
|||
| await this.joinByExternalCommit(mlsConversation.qualified_id); | |||
| return this.getMLS1to1Conversation(otherUserId); | |||
| return (await this.getMLS1to1Conversation(otherUserId)).conversation; | |||
There was a problem hiding this comment.
Can we go with smth like this? Code will look more readable :)
Suggested change
| return (await this.getMLS1to1Conversation(otherUserId)).conversation; | |
| const updatedMLSConversation = await this.getMLS1to1Conversation(otherUserId); | |
| return updatedMLSConversation.conversation; |
There was a problem hiding this comment.
I went with this, WDYT?
const {conversation: updatedMLSConversation} = await this.getMLS1to1Conversation(otherUserId);
return updatedMLSConversation;
|
V-Gira
added a commit
that referenced
this pull request
Sep 16, 2024
#6502) * feat: establish 1on1 mls conversation with new removal key [10744] * remove federated SFT 1:1 call temporary fix * type data structure for 1:1 MLS conversations * remove public_keys from NewConversation type * use nullish coalescing instead of ternary for removalKey logic * implement typeguard for the specific MLS1to1Conversation response * use union types for api-client getMLS1to1Conversation return value * use type guard and return MLS1to1Conversation for getMLS1to1Conversation in core * address tests * Update packages/api-client/src/conversation/Conversation.ts Co-authored-by: Przemysław Jóźwik <[email protected]> * rename variable in type guard * Update packages/core/src/conversation/ConversationService/ConversationService.ts Co-authored-by: Immad Abdul Jabbar <[email protected]> * address CR issue * simplify typeguard's logic * address CR --------- Co-authored-by: Przemysław Jóźwik <[email protected]> Co-authored-by: Immad Abdul Jabbar <[email protected]>
This was referenced Sep 17, 2024
Closed
Merged
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
See https://wearezeta.atlassian.net/browse/WPB-10737 for a more in depth description of the issue.
In a nutshell, it's possible for a federated user to create a 1:1 conversation even if it's not hosted on their own backend, in which case it can introduce a host of issues because they're lacking the correct removal key.
to address that issue, the response from the endpoint
GET /conversations/one2one/{domain}/{userId}was changed to include that removal key, fromto
Checklist