Skip to content

Users whose servers were unreachable when you logged in will send you undecryptable messages #2314

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Tracked by #2411
richvdh opened this issue Feb 28, 2024 · 4 comments
Open
Tracked by #2411

Users whose servers were unreachable when you logged in will send you undecryptable messages #2314

richvdh opened this issue Feb 28, 2024 · 4 comments

Comments

@richvdh
Copy link
Member

richvdh commented Feb 28, 2024

Migrating from element-hq/synapse#2165:

  • Alice logs in on a new device
  • Alice's server tries to tell everyone about her new device
  • Bob's server is unreachable at that moment
  • Later, Bob sends a message. He doesn't know about Alice's new device. Alice sees a UISI.
@richvdh richvdh mentioned this issue Feb 28, 2024
Closed
@richvdh
Copy link
Member Author

richvdh commented Feb 28, 2024
edited
Loading

A solution to this might go something along the lines of:

  • We change the send-to-device API to group messages for each target user together.
  • Now, when Bob tries to send the key for a megolm session to Alice, he includes a hash of Alice's device list.
  • When Alice's server receives that batch of to-device messages, it can tell if the list is outdated, and send an indication back to Bob via Bob's server
  • Bob's client updates its copy of Alice's device list and tries again.

This would require Bob's client to keep a journal of which users it tried to send a given megolm key to (which might also be useful for dealing with wedged olm sessions more promptly (#1992). (That might well be be better done after MegolmV2?)

@uhoreg
Copy link
Member

uhoreg commented Mar 6, 2024

When Bob's server sends the to-device messages to Alice's server, it could also include the stream_id of the latest m.device_list_update that it received for that user, and Alice's server could give an indication as to whether Bob's server is up-to-date or not.

This was referenced Mar 10, 2024
Open
Closed
@kegsay
Copy link

kegsay commented Mar 21, 2024

it can tell if the list is outdated, and send an indication back to Bob via Bob's server

There is a race condition here where this check returns false (up-to-date list) and before the event is delivered the client logs in on a new device.

@richvdh
Copy link
Member Author

richvdh commented Mar 21, 2024

There is a race condition here where this check returns false (up-to-date list) and before the event is delivered the client logs in on a new device.

I'd argue that's less a race, and more that, objectively, Bob logged in after the message was sent, and therefore shouldn't expect to decrypt the event any more than he would if he logged in 3 weeks later. In other words, it's #2313 rather than this issue which is really specific to the parallelism due to federation.

@richvdh richvdh mentioned this issue Apr 30, 2024
Open
7 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@uhoreg @richvdh @kegsay