mirror of
https://github.com/chatmail/core.git
synced 2026-04-02 05:22:14 +03:00
c724e2981c
Close https://github.com/chatmail/core/issues/7396. Before reviewing,
you should read the issue description of
https://github.com/chatmail/core/issues/7396.
I recommend to review with hidden whitespace changes.
TODO:
- [x] Implement the new protocol
- [x] Make Rust tests pass
- [x] Make Python tests pass
- [x] Test it manually on a phone
- [x] Print the sent messages, and check that they look how they should:
[test_secure_join_group_with_mime_printed.txt](https://github.com/user-attachments/files/24800556/test_secure_join_group.txt)
- [x] Fix bug: If Alice has a second device, then Bob's chat won't be
shown yet on that second device. Also, Bob's contact isn't shown in her
contact list. As soon as either party writes something into the chat,
the that shows up and everything is fine. All of this is still a way
better UX than in WhatsApp, where Bob always has to write first 😂
Still, I should fix that.
- This is actually caused by a larger bug: AUTH tokens aren't synced if
there is no corresponding INVITE token.
- Fixed by 6b658a0e0
- [x] Either make a new `auth_tokens` table with a proper UNIQUE bound,
or put a UNIQUE bound on the `tokens` table
- [x] Benchmarking
- [x] TODOs in the code, maybe change naming of the new functions
- [x] Write test for interop with older DC (esp. that the original
securejoin runs if you remove the &v=3 param)
- [x] From a cryptography perspective, is it fine that vc-request is
encrypted with AUTH, rather than a separate secret (like INVITE)?
- [x] Make sure that QR codes without INVITE work, so that we can remove
it eventually
- [x] Self-review, and comment on some of my code changes to explain
what they do
- [x] ~~Maybe use a new table rather than reusing AUTH token.~~ See
https://github.com/chatmail/core/pull/7754#discussion_r2728544725
- [ ] Update documentation; I'll do that in a separate PR. All necessary
information is in the https://github.com/chatmail/core/issues/7396 issue
description
- [ ] Update tests and other code to use the new names (e.g.
`request-pubkey` rather than `request` and `pubkey` rather than
`auth-required`); I'll do that in a follow-up PR
**Backwards compatibility:**
Everything works seamlessly in my tests. If both devices are updated,
then the new protocol is used; otherwise, the old protocol is used. If
there is a not-yet-updated second device, it will correctly observe the
protocol, and mark the chat partner as verified.
Note that I removed the `Auto-Submitted: auto-replied` header from
securejoin messages. We don't need it ourselves, it's a cleartext header
that leaks too much information, and I can't see any reason to have it.
---------
Co-authored-by: iequidoo <117991069+iequidoo@users.noreply.github.com>
143 lines
4.7 KiB
Rust
143 lines
4.7 KiB
Rust
//! Benchmarks for message decryption,
|
|
//! comparing decryption of symmetrically-encrypted messages
|
|
//! to decryption of asymmetrically-encrypted messages.
|
|
//!
|
|
//! Call with
|
|
//!
|
|
//! ```text
|
|
//! cargo bench --bench decrypting --features="internals"
|
|
//! ```
|
|
//!
|
|
//! or, if you want to only run e.g. the 'Decrypt and parse a symmetrically encrypted message' benchmark:
|
|
//!
|
|
//! ```text
|
|
//! cargo bench --bench decrypting --features="internals" -- 'Decrypt and parse a symmetrically encrypted message'
|
|
//! ```
|
|
//!
|
|
//! You can also pass a substring:
|
|
//!
|
|
//! ```text
|
|
//! cargo bench --bench decrypting --features="internals" -- 'symmetrically'
|
|
//! ```
|
|
//!
|
|
//! Symmetric decryption has to try out all known secrets,
|
|
//! You can benchmark this by adapting the `NUM_SECRETS` variable.
|
|
|
|
use std::hint::black_box;
|
|
use std::sync::LazyLock;
|
|
|
|
use criterion::{Criterion, criterion_group, criterion_main};
|
|
use deltachat::internals_for_benches::create_broadcast_secret;
|
|
use deltachat::internals_for_benches::save_broadcast_secret;
|
|
use deltachat::securejoin::get_securejoin_qr;
|
|
use deltachat::{
|
|
Events, chat::ChatId, config::Config, context::Context, internals_for_benches::key_from_asc,
|
|
internals_for_benches::parse_and_get_text, internals_for_benches::store_self_keypair,
|
|
stock_str::StockStrings,
|
|
};
|
|
use tempfile::tempdir;
|
|
|
|
static NUM_BROADCAST_SECRETS: LazyLock<usize> = LazyLock::new(|| {
|
|
std::env::var("NUM_BROADCAST_SECRETS")
|
|
.unwrap_or("500".to_string())
|
|
.parse()
|
|
.unwrap()
|
|
});
|
|
static NUM_AUTH_TOKENS: LazyLock<usize> = LazyLock::new(|| {
|
|
std::env::var("NUM_AUTH_TOKENS")
|
|
.unwrap_or("5000".to_string())
|
|
.parse()
|
|
.unwrap()
|
|
});
|
|
|
|
async fn create_context() -> Context {
|
|
let dir = tempdir().unwrap();
|
|
let dbfile = dir.path().join("db.sqlite");
|
|
let context = Context::new(dbfile.as_path(), 100, Events::new(), StockStrings::new())
|
|
.await
|
|
.unwrap();
|
|
|
|
context
|
|
.set_config(Config::ConfiguredAddr, Some("bob@example.net"))
|
|
.await
|
|
.unwrap();
|
|
let secret = key_from_asc(include_str!("../test-data/key/bob-secret.asc")).unwrap();
|
|
store_self_keypair(&context, &secret)
|
|
.await
|
|
.expect("Failed to save key");
|
|
|
|
context
|
|
}
|
|
|
|
fn criterion_benchmark(c: &mut Criterion) {
|
|
let mut group = c.benchmark_group("Decrypt");
|
|
|
|
// ===========================================================================================
|
|
// Benchmarks for the whole parsing pipeline, incl. decryption (but excl. receive_imf())
|
|
// ===========================================================================================
|
|
|
|
let rt = tokio::runtime::Runtime::new().unwrap();
|
|
let mut secrets = generate_secrets();
|
|
|
|
// "secret" is the shared secret that was used to encrypt text_symmetrically_encrypted.eml.
|
|
// Put it into the middle of our secrets:
|
|
secrets[*NUM_BROADCAST_SECRETS / 2] = "secret".to_string();
|
|
|
|
let context = rt.block_on(async {
|
|
let context = create_context().await;
|
|
for (i, secret) in secrets.iter().enumerate() {
|
|
save_broadcast_secret(&context, ChatId::new(10 + i as u32), secret)
|
|
.await
|
|
.unwrap();
|
|
}
|
|
for _i in 0..*NUM_AUTH_TOKENS {
|
|
get_securejoin_qr(&context, None).await.unwrap();
|
|
}
|
|
println!("NUM_AUTH_TOKENS={}", *NUM_AUTH_TOKENS);
|
|
context
|
|
});
|
|
|
|
group.bench_function("Decrypt and parse a symmetrically encrypted message", |b| {
|
|
b.to_async(&rt).iter(|| {
|
|
let ctx = context.clone();
|
|
async move {
|
|
let text = parse_and_get_text(
|
|
&ctx,
|
|
include_bytes!("../test-data/message/text_symmetrically_encrypted.eml"),
|
|
)
|
|
.await
|
|
.unwrap();
|
|
assert_eq!(black_box(text), "Symmetrically encrypted message");
|
|
}
|
|
});
|
|
});
|
|
|
|
group.bench_function("Decrypt and parse a public-key encrypted message", |b| {
|
|
b.to_async(&rt).iter(|| {
|
|
let ctx = context.clone();
|
|
async move {
|
|
let text = parse_and_get_text(
|
|
&ctx,
|
|
include_bytes!("../test-data/message/text_from_alice_encrypted.eml"),
|
|
)
|
|
.await
|
|
.unwrap();
|
|
assert_eq!(black_box(text), "hi");
|
|
}
|
|
});
|
|
});
|
|
|
|
group.finish();
|
|
}
|
|
|
|
fn generate_secrets() -> Vec<String> {
|
|
let secrets: Vec<String> = (0..*NUM_BROADCAST_SECRETS)
|
|
.map(|_| create_broadcast_secret())
|
|
.collect();
|
|
println!("NUM_BROADCAST_SECRETS={}", *NUM_BROADCAST_SECRETS);
|
|
secrets
|
|
}
|
|
|
|
criterion_group!(benches, criterion_benchmark);
|
|
criterion_main!(benches);
|