ElementR: Cross user verification (#11364)

The hard work has been done in previous PRs in the js-sdk, so this is now just a case of updating a few call sites to use the new APIs.
2023-09-18 18:34:00 +02:00 · 2023-09-18 18:34:00 +02:00 · 579b0dd10a
commit 579b0dd10a
parent e887c6d71f
8 changed files with 33 additions and 31 deletions
--- a/src/DeviceListener.ts
+++ b/src/DeviceListener.ts
@ -307,7 +307,7 @@ export default class DeviceListener {

            // cross signing isn't enabled - nag to enable it
            // There are 3 different toasts for:
-            if (!(await crypto.getCrossSigningKeyId()) && cli.getStoredCrossSigningForUser(cli.getSafeUserId())) {
+            if (!(await crypto.getCrossSigningKeyId()) && (await crypto.userHasCrossSigningKeys())) {
                // Cross-signing on account but this device doesn't trust the master key (verify this session)
                showSetupEncryptionToast(SetupKind.VERIFY_THIS_SESSION);
                this.checkKeyBackupStatus();
--- a/src/components/views/right_panel/EncryptionPanel.tsx
+++ b/src/components/views/right_panel/EncryptionPanel.tsx
@ -110,7 +110,7 @@ const EncryptionPanel: React.FC<IProps> = (props: IProps) => {
            if (!roomId) {
                throw new Error("Unable to create Room for verification");
            }
-            verificationRequest_ = await cli.requestVerificationDM(member.userId, roomId);
+            verificationRequest_ = await cli.getCrypto()!.requestVerificationDM(member.userId, roomId);
        } catch (e) {
            console.error("Error starting verification", e);
            setRequesting(false);
--- a/src/components/views/right_panel/UserInfo.tsx
+++ b/src/components/views/right_panel/UserInfo.tsx
@ -105,9 +105,15 @@ export const disambiguateDevices = (devices: IDevice[]): void => {
    }
 };

-export const getE2EStatus = async (cli: MatrixClient, userId: string, devices: IDevice[]): Promise<E2EStatus> => {
+export const getE2EStatus = async (
+    cli: MatrixClient,
+    userId: string,
+    devices: IDevice[],
+): Promise<E2EStatus | undefined> => {
+    const crypto = cli.getCrypto();
+    if (!crypto) return undefined;
    const isMe = userId === cli.getUserId();
-    const userTrust = cli.checkUserTrust(userId);
+    const userTrust = await crypto.getUserVerificationStatus(userId);
    if (!userTrust.isCrossSigningVerified()) {
        return userTrust.wasCrossSigningVerified() ? E2EStatus.Warning : E2EStatus.Normal;
    }
@ -119,7 +125,7 @@ export const getE2EStatus = async (cli: MatrixClient, userId: string, devices: I
        // cross-signing so that other users can then safely trust you.
        // For other people's devices, the more general verified check that
        // includes locally verified devices can be used.
-        const deviceTrust = await cli.getCrypto()?.getDeviceVerificationStatus(userId, deviceId);
+        const deviceTrust = await crypto.getDeviceVerificationStatus(userId, deviceId);
        return isMe ? !deviceTrust?.crossSigningVerified : !deviceTrust?.isVerified();
    });
    return anyDeviceUnverified ? E2EStatus.Warning : E2EStatus.Verified;
@ -152,11 +158,7 @@ function useHasCrossSigningKeys(
        }
        setUpdating(true);
        try {
-            // We call it to populate the user keys and devices
-            await cli.getCrypto()?.getUserDeviceInfo([member.userId], true);
-            const xsi = cli.getStoredCrossSigningForUser(member.userId);
-            const key = xsi && xsi.getId();
-            return !!key;
+            return await cli.getCrypto()?.userHasCrossSigningKeys(member.userId, true);
        } finally {
            setUpdating(false);
        }
--- a/src/utils/ShieldUtils.ts
+++ b/src/utils/ShieldUtils.ts
@ -37,17 +37,15 @@ export async function shieldStatusForRoom(client: MatrixClient, room: Room): Pro

    const verified: string[] = [];
    const unverified: string[] = [];
-    members
-        .filter((userId) => userId !== client.getUserId())
-        .forEach((userId) => {
-            (client.checkUserTrust(userId).isCrossSigningVerified() ? verified : unverified).push(userId);
-        });
+    for (const userId of members) {
+        if (userId === client.getUserId()) continue;
+        const userTrust = await crypto.getUserVerificationStatus(userId);

-    /* Alarm if any unverified users were verified before. */
-    for (const userId of unverified) {
-        if (client.checkUserTrust(userId).wasCrossSigningVerified()) {
+        /* Alarm if any unverified users were verified before. */
+        if (userTrust.wasCrossSigningVerified() && !userTrust.isCrossSigningVerified()) {
            return E2EStatus.Warning;
        }
+        (userTrust.isCrossSigningVerified() ? verified : unverified).push(userId);
    }

    /* Check all verified user devices. */