wireapp · MohamadJaara · Sep 13, 2024 · Sep 10, 2024 · Sep 13, 2024 · borichellow
diff --git a/data/src/commonMain/kotlin/com/wire/kalium/logic/data/message/AssetContent.kt b/data/src/commonMain/kotlin/com/wire/kalium/logic/data/message/AssetContent.kt
@@ -34,7 +34,7 @@ data class AssetContent(
     }
 
     // We should not display Preview Assets (assets w/o valid encryption keys sent by Mac/Web clients) unless they include image metadata
-    val shouldBeDisplayed = !isPreviewMessage || hasValidImageMetadata
+    val isAssetDataComplete = !isPreviewMessage || hasValidImageMetadata
 
     sealed class AssetMetadata {
         data class Image(val width: Int, val height: Int) : AssetMetadata()

diff --git a/logic/src/commonMain/kotlin/com/wire/kalium/logic/feature/asset/GetMessageAssetUseCase.kt b/logic/src/commonMain/kotlin/com/wire/kalium/logic/feature/asset/GetMessageAssetUseCase.kt
@@ -79,7 +79,16 @@ internal class GetMessageAssetUseCaseImpl(
         }, { message ->
             when (val content = message.content) {
                 is MessageContent.Asset -> {
+<<<<<<< HEAD
                     // TODO isIncompleteImage should be used here for incomplete messages
+=======
+                    val assetDownloadStatus = content.value.downloadStatus
+                    val assetUploadStatus = content.value.uploadStatus
+                    val wasDownloaded: Boolean = assetDownloadStatus == SAVED_INTERNALLY || assetDownloadStatus == SAVED_EXTERNALLY
+                    // assets uploaded by other clients have upload status NOT_UPLOADED
+                    val alreadyUploaded: Boolean = (assetUploadStatus == NOT_UPLOADED && content.value.isAssetDataComplete)
+                            || assetUploadStatus == UPLOADED
+>>>>>>> 538bae1769 (fix: handle the case where asset name can be missing (#2995))
                     val assetMetadata = with(content.value.remoteData) {
                         DownloadAssetMessageMetadata(
                             content.value.name ?: "",

diff --git a/...c/commonMain/kotlin/com/wire/kalium/logic/feature/asset/ScheduleNewAssetMessageUseCase.kt b/...c/commonMain/kotlin/com/wire/kalium/logic/feature/asset/ScheduleNewAssetMessageUseCase.kt
@@ -133,7 +133,12 @@ internal class ScheduleNewAssetMessageUseCaseImpl(
                 FileSharingStatus.Value.Disabled -> return ScheduleNewAssetMessageResult.Failure.DisabledByTeam
                 FileSharingStatus.Value.EnabledAll -> { /* no-op*/ }
 
-                is FileSharingStatus.Value.EnabledSome -> if (!validateAssetFileUseCase(assetName, it.state.allowedType)) {
+                is FileSharingStatus.Value.EnabledSome -> if (!validateAssetFileUseCase(
+                        fileName = assetName,
+                        mimeType = assetMimeType,
+                        allowedExtension = it.state.allowedType
+                    )
+                ) {
                     kaliumLogger.e("The asset message trying to be processed has invalid content data")
                     return ScheduleNewAssetMessageResult.Failure.RestrictedFileType
                 }

diff --git a/...src/commonMain/kotlin/com/wire/kalium/logic/feature/asset/ValidateAssetFileTypeUseCase.kt b/...src/commonMain/kotlin/com/wire/kalium/logic/feature/asset/ValidateAssetFileTypeUseCase.kt
@@ -17,26 +17,95 @@
  */
 package com.wire.kalium.logic.feature.asset
 
+import com.wire.kalium.logic.kaliumLogger
+
 /**
  * Returns true if the file extension is present in file name and is allowed and false otherwise.
  * @param fileName the file name (with extension) to validate.
  * @param allowedExtension the list of allowed extension.
  */
 interface ValidateAssetFileTypeUseCase {
-    operator fun invoke(fileName: String?, allowedExtension: List<String>): Boolean
+    operator fun invoke(
+        fileName: String?,
+        mimeType: String,
+        allowedExtension: List<String>
+    ): Boolean
 }
 
 internal class ValidateAssetFileTypeUseCaseImpl : ValidateAssetFileTypeUseCase {
-    override operator fun invoke(fileName: String?, allowedExtension: List<String>): Boolean {
-        if (fileName == null) return false
-
-        val split = fileName.split(".")
-        return if (split.size < 2) {
-            false
+    override operator fun invoke(
+        fileName: String?,
+        mimeType: String,
+        allowedExtension: List<String>
+    ): Boolean {
+        kaliumLogger.d("Validating file type for $fileName with mimeType $mimeType is empty ${mimeType.isBlank()}")
+        val extension = if (fileName != null) {
+            extensionFromFileName(fileName)
         } else {
-            val allowedExtensionLowerCase = allowedExtension.map { it.lowercase() }
-            val extensions = split.subList(1, split.size).map { it.lowercase() }
-            extensions.all { it.isNotEmpty() && allowedExtensionLowerCase.contains(it) }
+            extensionFromMimeType(mimeType)
         }
+        return extension?.let { allowedExtension.contains(it) } ?: false
+    }
+
+    private fun extensionFromFileName(fileName: String): String? =
+        fileName.substringAfterLast('.', "").takeIf { it.isNotEmpty() }
+
+    private fun extensionFromMimeType(mimeType: String): String? = fileExtensions[mimeType]
+
+    private companion object {
+        val fileExtensions = mapOf(
+            "video/3gpp" to "3gpp",
+            "audio/aac" to "aac",
+            "audio/amr" to "amr",
+            "video/x-msvideo" to "avi",
+            "image/bmp" to "bmp",
+            "text/css" to "css",
+            "text/csv" to "csv",
+            "application/msword" to "doc",
+            "application/vnd.openxmlformats-officedocument.wordprocessingml.document" to "docx",
+            "message/rfc822" to "eml",
+            "audio/flac" to "flac",
+            "image/gif" to "gif",
+            "text/html" to "html",
+            "image/vnd.microsoft.icon" to "ico",
+            "image/jpeg" to "jpeg",
+            "image/jpeg" to "jpg",
+            "image/jpeg" to "jfif",
+            "application/vnd.apple.keynote" to "key",
+            "audio/mp4" to "m4a",
+            "video/x-m4v" to "m4v",
+            "text/markdown" to "md",
+            "audio/midi" to "midi",
+            "video/x-matroska" to "mkv",
+            "video/quicktime" to "mov",
+            "audio/mpeg" to "mp3",
+            "video/mp4" to "mp4",
+            "video/mpeg" to "mpeg",
+            "application/vnd.ms-outlook" to "msg",
+            "application/vnd.oasis.opendocument.spreadsheet" to "ods",
+            "application/vnd.oasis.opendocument.text" to "odt",
+            "audio/ogg" to "ogg",
+            "application/pdf" to "pdf",
+            "image/jpeg" to "pjp",
+            "image/pjpeg" to "pjpeg",
+            "image/png" to "png",
+            "application/vnd.ms-powerpoint" to "ppt",
+            "application/vnd.openxmlformats-officedocument.presentationml.presentation" to "pptx",
+            "image/vnd.adobe.photoshop" to "psd",
+            "application/rtf" to "rtf",
+            "application/sql" to "sql",
+            "image/svg+xml" to "svg",
+            "application/x-tex" to "tex",
+            "image/tiff" to "tiff",
+            "text/plain" to "txt",
+            "text/x-vcard" to "vcf",
+            "audio/wav" to "wav",
+            "video/webm" to "webm",
+            "image/webp" to "webp",
+            "video/x-ms-wmv" to "wmv",
+            "application/vnd.ms-excel" to "xls",
+            "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet" to "xlsx",
+            "application/xml" to "xml"
+        )
     }
 }
diff --git a/logic/src/commonMain/kotlin/com/wire/kalium/logic/sync/receiver/asset/AssetMessageHandler.kt b/logic/src/commonMain/kotlin/com/wire/kalium/logic/sync/receiver/asset/AssetMessageHandler.kt
@@ -24,7 +24,11 @@ import com.wire.kalium.logic.data.message.Message
 import com.wire.kalium.logic.data.message.MessageContent
 import com.wire.kalium.logic.data.message.MessageRepository
 import com.wire.kalium.logic.data.message.PersistMessageUseCase
+<<<<<<< HEAD
 import com.wire.kalium.logic.data.message.hasValidData
+=======
+import com.wire.kalium.logic.data.message.getType
+>>>>>>> 538bae1769 (fix: handle the case where asset name can be missing (#2995))
 import com.wire.kalium.logic.feature.asset.ValidateAssetFileTypeUseCase
 import com.wire.kalium.logic.functional.onFailure
 import com.wire.kalium.logic.functional.onSuccess
@@ -47,21 +51,53 @@ internal class AssetMessageHandlerImpl(
             kaliumLogger.e("The asset message trying to be processed has invalid content data")
             return
         }
+<<<<<<< HEAD
+=======
+
+        val messageContent = message.content
+>>>>>>> 538bae1769 (fix: handle the case where asset name can be missing (#2995))
         userConfigRepository.isFileSharingEnabled().onSuccess {
             val isThisAssetAllowed = when (it.state) {
-                FileSharingStatus.Value.Disabled -> false
-                FileSharingStatus.Value.EnabledAll -> true
+                FileSharingStatus.Value.Disabled -> AssetRestrictionContinuationStrategy.Restrict
+                FileSharingStatus.Value.EnabledAll -> AssetRestrictionContinuationStrategy.Continue
 
-                is FileSharingStatus.Value.EnabledSome -> validateAssetMimeTypeUseCase(
-                    messageContent.value.name,
-                    it.state.allowedType
-                )
+                is FileSharingStatus.Value.EnabledSome -> {
+                    // If the asset message is missing the name, but it does have full
+                    // asset data then we can not decide now if it is allowed or not
+                    // it is safe to continue and the code later will check the original
+                    // asset message and decide if it is allowed or not
+                    if (
+                        message.content.value.name.isNullOrEmpty() &&
+                        message.content.value.isAssetDataComplete
+                    ) {
+                        kaliumLogger.e("The asset message trying to be processed has invalid data looking locally")
+                        AssetRestrictionContinuationStrategy.RestrictIfThereIsNotOldMessageWithTheSameAssetID
+                    } else {
+                        validateAssetMimeTypeUseCase(
+                            fileName = messageContent.value.name,
+                            mimeType = messageContent.value.mimeType,
+                            allowedExtension = it.state.allowedType
+                        ).let { validateResult ->
+                            if (validateResult) {
+                                AssetRestrictionContinuationStrategy.Continue
+                            } else {
+                                AssetRestrictionContinuationStrategy.Restrict
+                            }
+                        }
+                    }
+                }
             }
 
-            if (isThisAssetAllowed) {
-                processNonRestrictedAssetMessage(message, messageContent)
-            } else {
-                persistRestrictedAssetMessage(message, messageContent)
+            when (isThisAssetAllowed) {
+                AssetRestrictionContinuationStrategy.Continue -> processNonRestrictedAssetMessage(message, messageContent, false)
+                AssetRestrictionContinuationStrategy.RestrictIfThereIsNotOldMessageWithTheSameAssetID -> processNonRestrictedAssetMessage(
+                    message,
+                    messageContent,
+                    true
+                )
+
+                AssetRestrictionContinuationStrategy.Restrict -> persistRestrictedAssetMessage(message, messageContent)
+
             }
         }
     }
@@ -77,23 +113,34 @@ internal class AssetMessageHandlerImpl(
         persistMessage(newMessage)
     }
 
-    private suspend fun processNonRestrictedAssetMessage(processedMessage: Message.Regular, assetContent: MessageContent.Asset) {
+    private suspend fun processNonRestrictedAssetMessage(
+        processedMessage: Message.Regular,
+        assetContent: MessageContent.Asset,
+        restrictIfNotAFollowUpMessage: Boolean
+    ) {
         messageRepository.getMessageById(processedMessage.conversationId, processedMessage.id).onFailure {
             // No asset message was received previously, so just persist the preview of the asset message
             // Web/Mac clients split the asset message delivery into 2. One with the preview metadata (assetName, assetSize...) and
             // with empty encryption keys and the second with empty metadata but all the correct encryption keys. We just want to
             // hide the preview of generic asset messages with empty encryption keys as a way to avoid user interaction with them.
-            val initialMessage = processedMessage.copy(
-                visibility = if (assetContent.value.shouldBeDisplayed) Message.Visibility.VISIBLE else Message.Visibility.HIDDEN
-            )
-            persistMessage(initialMessage)
+
+            if (restrictIfNotAFollowUpMessage) {
+                persistRestrictedAssetMessage(processedMessage, assetContent)
+            } else {
+                val initialMessage = processedMessage.copy(
+                    visibility = if (assetContent.value.isAssetDataComplete) Message.Visibility.VISIBLE else Message.Visibility.HIDDEN
+                )
+                persistMessage(initialMessage)
+            }
         }.onSuccess { persistedMessage ->
             val validDecryptionKeys = assetContent.value.remoteData
             // Check the second asset message is from the same original sender
             if (isSenderVerified(persistedMessage, processedMessage) && persistedMessage is Message.Regular) {
                 // The second asset message received from Web/Mac clients contains the full asset decryption keys, so we need to update
                 // the preview message persisted previously with the rest of the data
-                persistMessage(updateAssetMessageWithDecryptionKeys(persistedMessage, validDecryptionKeys))
+                updateAssetMessageWithDecryptionKeys(persistedMessage, validDecryptionKeys)?.let {
+                    persistMessage(it)
+                }
             } else {
                 kaliumLogger.e("The previously persisted message has a different sender id than the one we are trying to process")
             }
@@ -106,8 +153,21 @@ internal class AssetMessageHandlerImpl(
     private fun updateAssetMessageWithDecryptionKeys(
         persistedMessage: Message.Regular,
         remoteData: AssetContent.RemoteData
-    ): Message.Regular {
-        val assetMessageContent = persistedMessage.content as MessageContent.Asset
+    ): Message.Regular? {
+        val assetMessageContent = when (persistedMessage.content) {
+            is MessageContent.Asset -> persistedMessage.content
+            is MessageContent.RestrictedAsset -> {
+                // original message was a restricted asset message, ignoring
+                return null
+            }
+
+            is MessageContent.FailedDecryption,
+            is MessageContent.Knock,
+            is MessageContent.Location,
+            is MessageContent.Composite,
+            is MessageContent.Text,
+            is MessageContent.Unknown -> error("Invalid asset message content type ${persistedMessage.content.getType()}")
+        }
         // The message was previously received with just metadata info, so let's update it with the raw data info
         return persistedMessage.copy(
             content = assetMessageContent.copy(
@@ -120,3 +180,9 @@ internal class AssetMessageHandlerImpl(
         )
     }
 }
+
+private sealed interface AssetRestrictionContinuationStrategy {
+    data object Continue : AssetRestrictionContinuationStrategy
+    data object Restrict : AssetRestrictionContinuationStrategy
+    data object RestrictIfThereIsNotOldMessageWithTheSameAssetID : AssetRestrictionContinuationStrategy
+}
diff --git a/...mmonTest/kotlin/com/wire/kalium/logic/feature/asset/ScheduleNewAssetMessageUseCaseTest.kt b/...mmonTest/kotlin/com/wire/kalium/logic/feature/asset/ScheduleNewAssetMessageUseCaseTest.kt
@@ -628,7 +628,13 @@ class ScheduleNewAssetMessageUseCaseTest {
         // Then
         assertTrue(result is ScheduleNewAssetMessageResult.Failure.RestrictedFileType)
 
+<<<<<<< HEAD
         coVerify { arrangement.validateAssetMimeTypeUseCase(eq("some-asset.txt"), eq(listOf("png"))) }
+=======
+        verify(arrangement.validateAssetMimeTypeUseCase)
+            .function(arrangement.validateAssetMimeTypeUseCase::invoke)
+            .with(eq("some-asset.txt"), eq("text/plain"), eq(listOf("png")))
+>>>>>>> 538bae1769 (fix: handle the case where asset name can be missing (#2995))
             .wasInvoked(exactly = once)
     }
 
@@ -667,7 +673,13 @@ class ScheduleNewAssetMessageUseCaseTest {
         // Then
         assertTrue(result is ScheduleNewAssetMessageResult.Success)
 
+<<<<<<< HEAD
         coVerify { arrangement.validateAssetMimeTypeUseCase(eq("some-asset.png"), eq(listOf("png"))) }
+=======
+        verify(arrangement.validateAssetMimeTypeUseCase)
+            .function(arrangement.validateAssetMimeTypeUseCase::invoke)
+            .with(eq("some-asset.png"), eq("image/png"), eq(listOf("png")))
+>>>>>>> 538bae1769 (fix: handle the case where asset name can be missing (#2995))
             .wasInvoked(exactly = once)
     }