refactor: remove unused or useless code paths in securejoin (#4897)

2026-04-19 06:26:30 +03:00 · 2023-11-02 13:29:48 +01:00
parent cdcb10fb58
commit bd02eea66b
3 changed files with 29 additions and 84 deletions
--- a/src/securejoin/bob.rs
+++ b/src/securejoin/bob.rs
@@ -111,7 +111,7 @@ pub(super) async fn handle_auth_required(
 /// Handles `vc-contact-confirm` and `vg-member-added` handshake messages.
 ///
 /// # Bob - the joiner's side
-/// ## Step 4 in the "Setup Contact protocol"
+/// ## Step 7 in the "Setup Contact protocol"
 pub(super) async fn handle_contact_confirm(
    context: &Context,
    mut bobstate: BobState,
--- a/src/securejoin/bobstate.rs
+++ b/src/securejoin/bobstate.rs
@@ -7,7 +7,7 @@
 //! The [`BobState`] is only directly used to initially create it when starting the
 //! protocol.

-use anyhow::{Error, Result};
+use anyhow::Result;
 use rusqlite::Connection;

 use super::qrinvite::QrInvite;
@@ -335,36 +335,6 @@ impl BobState {
            context,
            "Bob Step 7 - handling vc-contact-confirm/vg-member-added message"
        );
-        let vg_expect_encrypted = match self.invite {
-            QrInvite::Contact { .. } => {
-                // setup-contact is always encrypted
-                true
-            }
-            QrInvite::Group { ref grpid, .. } => {
-                // This is buggy, result will always be
-                // false since the group is created by receive_imf for
-                // the very handshake message we're handling now.  But
-                // only after we have returned.  It does not impact
-                // the security invariants of secure-join however.
-
-                chat::get_chat_id_by_grpid(context, grpid)
-                    .await?
-                    .map_or(false, |(_chat_id, is_protected, _blocked)| is_protected)
-                // when joining a non-verified group
-                // the vg-member-added message may be unencrypted
-                // when not all group members have keys or prefer encryption.
-                // So only expect encryption if this is a verified group
-            }
-        };
-        if vg_expect_encrypted
-            && !encrypted_and_signed(context, mime_message, Some(self.invite.fingerprint()))
-        {
-            self.update_next(&context.sql, SecureJoinStep::Terminated)
-                .await?;
-            return Ok(Some(BobHandshakeStage::Terminated(
-                "Contact confirm message not encrypted",
-            )));
-        }
        mark_peer_as_verified(
            context,
            self.invite.fingerprint().clone(),
@@ -375,17 +345,6 @@ impl BobState {
            .await?;
        context.emit_event(EventType::ContactsChanged(None));

-        if let QrInvite::Group { .. } = self.invite {
-            let member_added = mime_message
-                .get_header(HeaderDef::ChatGroupMemberAdded)
-                .map(|s| s.as_str())
-                .ok_or_else(|| Error::msg("Missing Chat-Group-Member-Added header"))?;
-            if !context.is_self_addr(member_added).await? {
-                info!(context, "Message belongs to a different handshake (scaled up contact anyway to allow creation of group).");
-                return Ok(None);
-            }
-        }
-
        self.send_handshake_message(context, BobHandshakeMsg::ContactConfirmReceived)
            .await
            .map_err(|_| {