Merge pull request #4242 from matrix-org/dbkr/symmetric-ssss-migrate

Migration to symmetric SSSS
2025-11-16 06:42:26 +03:00 · 2020-03-24 13:12:24 +00:00
parent 99f12a695d d6d15bc5c7
commit 96ec18a662
6 changed files with 74 additions and 1 deletions
--- a/src/components/views/dialogs/keybackup/RestoreKeyBackupDialog.js
+++ b/src/components/views/dialogs/keybackup/RestoreKeyBackupDialog.js
@@ -36,6 +36,9 @@ export default class RestoreKeyBackupDialog extends React.PureComponent {
        // if false, will close the dialog as soon as the restore completes succesfully
        // default: true
        showSummary: PropTypes.bool,
+        // If specified, gather the key from the user but then call the function with the backup
+        // key rather than actually (necessarily) restoring the backup.
+        keyCallback: PropTypes.func,
    };

    static defaultProps = {
@@ -103,9 +106,18 @@ export default class RestoreKeyBackupDialog extends React.PureComponent {
            restoreType: RESTORE_TYPE_PASSPHRASE,
        });
        try {
+            // We do still restore the key backup: we must ensure that the key backup key
+            // is the right one and restoring it is currently the only way we can do this.
            const recoverInfo = await MatrixClientPeg.get().restoreKeyBackupWithPassword(
                this.state.passPhrase, undefined, undefined, this.state.backupInfo,
            );
+            if (this.props.keyCallback) {
+                const key = await MatrixClientPeg.get().keyBackupKeyFromPassword(
+                    this.state.passPhrase, this.state.backupInfo,
+                );
+                this.props.keyCallback(key);
+            }
+
            if (!this.props.showSummary) {
                this.props.onFinished(true);
                return;
@@ -135,6 +147,10 @@ export default class RestoreKeyBackupDialog extends React.PureComponent {
            const recoverInfo = await MatrixClientPeg.get().restoreKeyBackupWithRecoveryKey(
                this.state.recoveryKey, undefined, undefined, this.state.backupInfo,
            );
+            if (this.props.keyCallback) {
+                const key = MatrixClientPeg.get().keyBackupKeyFromRecoveryKey(this.state.recoveryKey);
+                this.props.keyCallback(key);
+            }
            if (!this.props.showSummary) {
                this.props.onFinished(true);
                return;
--- a/src/components/views/settings/CrossSigningPanel.js
+++ b/src/components/views/settings/CrossSigningPanel.js
@@ -33,6 +33,7 @@ export default class CrossSigningPanel extends React.PureComponent {
            crossSigningPublicKeysOnDevice: false,
            crossSigningPrivateKeysInStorage: false,
            secretStorageKeyInAccount: false,
+            secretStorageKeyNeedsUpgrade: null,
        };
    }

@@ -60,6 +61,10 @@ export default class CrossSigningPanel extends React.PureComponent {
        }
    };

+    _onBootstrapClick = () => {
+        this._bootstrapSecureSecretStorage(false);
+    };
+
    onStatusChanged = () => {
        this._getUpdatedStatus();
    };
@@ -74,12 +79,14 @@ export default class CrossSigningPanel extends React.PureComponent {
        const secretStorageKeyInAccount = await secretStorage.hasKey();
        const homeserverSupportsCrossSigning =
            await cli.doesServerSupportUnstableFeature("org.matrix.e2e_cross_signing");
+        const secretStorageKeyNeedsUpgrade = await cli.secretStorageKeyNeedsUpgrade();

        this.setState({
            crossSigningPublicKeysOnDevice,
            crossSigningPrivateKeysInStorage,
            secretStorageKeyInAccount,
            homeserverSupportsCrossSigning,
+            secretStorageKeyNeedsUpgrade,
        });
    }

@@ -124,6 +131,7 @@ export default class CrossSigningPanel extends React.PureComponent {
            crossSigningPrivateKeysInStorage,
            secretStorageKeyInAccount,
            homeserverSupportsCrossSigning,
+            secretStorageKeyNeedsUpgrade,
        } = this.state;

        let errorSection;
@@ -175,7 +183,7 @@ export default class CrossSigningPanel extends React.PureComponent {
        ) {
            bootstrapButton = (
                <div className="mx_CrossSigningPanel_buttonRow">
-                    <AccessibleButton kind="primary" onClick={this._bootstrapSecureSecretStorage}>
+                    <AccessibleButton kind="primary" onClick={this._onBootstrapClick}>
                        {_t("Bootstrap cross-signing and secret storage")}
                    </AccessibleButton>
                </div>
@@ -204,6 +212,10 @@ export default class CrossSigningPanel extends React.PureComponent {
                            <td>{_t("Homeserver feature support:")}</td>
                            <td>{homeserverSupportsCrossSigning ? _t("exists") : _t("not found")}</td>
                        </tr>
+                        <tr>
+                            <td>{_t("Secret Storage key format:")}</td>
+                            <td>{secretStorageKeyNeedsUpgrade ? _t("outdated") : _t("up to date")}</td>
+                        </tr>
                   </tbody></table>
                </details>
                {errorSection}