Merge pull request #140 from mautrix/crypto-store-schema-sync

Sync crypto store schema with mautrix-go

Author: tulir

mautrix/crypto/store/asyncpg/store.py

@@ -12,6 +12,7 @@
 
 from mautrix.client.state_store import SyncStore
 from mautrix.client.state_store.asyncpg import PgStateStore
+from mautrix.errors import GroupSessionWithheldError
 from mautrix.types import (
     CrossSigner,
     CrossSigningUsage,
@@ -117,7 +118,7 @@ async def put_account(self, account: OlmAccount) -> None:
         await self.db.execute(
             q,
             self.account_id,
-            self._device_id,
+            self._device_id or "",
             account.shared,
             self._sync_token or "",
             pickle,
@@ -236,6 +237,10 @@ async def put_group_session(
         INSERT INTO crypto_megolm_inbound_session (
             session_id, sender_key, signing_key, room_id, session, forwarding_chains, account_id
         ) VALUES ($1, $2, $3, $4, $5, $6, $7)
+        ON CONFLICT (session_id, account_id) DO UPDATE
+        SET withheld_code=NULL, withheld_reason=NULL, sender_key=excluded.sender_key,
+            signing_key=excluded.signing_key, room_id=excluded.room_id, session=excluded.session,
+            forwarding_chains=excluded.forwarding_chains
         """
         try:
             await self.db.execute(
@@ -255,13 +260,15 @@ async def get_group_session(
         self, room_id: RoomID, session_id: SessionID
     ) -> InboundGroupSession | None:
         q = """
-        SELECT sender_key, signing_key, session, forwarding_chains
+        SELECT sender_key, signing_key, session, forwarding_chains, withheld_code
         FROM crypto_megolm_inbound_session
         WHERE room_id=$1 AND session_id=$2 AND account_id=$3
         """
         row = await self.db.fetchrow(q, room_id, session_id, self.account_id)
         if row is None:
             return None
+        if row["withheld_code"] is not None:
+            raise GroupSessionWithheldError(session_id, row["withheld_code"])
         forwarding_chain = row["forwarding_chains"].split(",") if row["forwarding_chains"] else []
         return InboundGroupSession.from_pickle(
             row["session"],
@@ -275,16 +282,14 @@ async def get_group_session(
     async def has_group_session(self, room_id: RoomID, session_id: SessionID) -> bool:
         q = """
         SELECT COUNT(session) FROM crypto_megolm_inbound_session
-        WHERE room_id=$1 AND session_id=$2 AND account_id=$3
+        WHERE room_id=$1 AND session_id=$2 AND account_id=$3 AND session IS NOT NULL
         """
         count = await self.db.fetchval(q, room_id, session_id, self.account_id)
         return count > 0
 
     async def add_outbound_group_session(self, session: OutboundGroupSession) -> None:
         pickle = session.pickle(self.pickle_key)
-        max_age = session.max_age
-        if self.db.scheme == Scheme.SQLITE:
-            max_age = max_age.total_seconds()
+        max_age = int(session.max_age.total_seconds() * 1000)
         q = """
         INSERT INTO crypto_megolm_outbound_session (
             room_id, session_id, session, shared, max_messages, message_count,
@@ -334,17 +339,14 @@ async def get_outbound_group_session(self, room_id: RoomID) -> OutboundGroupSess
         row = await self.db.fetchrow(q, room_id, self.account_id)
         if row is None:
             return None
-        max_age = row["max_age"]
-        if self.db.scheme == Scheme.SQLITE:
-            max_age = timedelta(seconds=max_age)
         return OutboundGroupSession.from_pickle(
             row["session"],
             passphrase=self.pickle_key,
             room_id=row["room_id"],
             shared=row["shared"],
             max_messages=row["max_messages"],
             message_count=row["message_count"],
-            max_age=max_age,
+            max_age=timedelta(milliseconds=row["max_age"]),
             use_time=row["last_used"],
             creation_time=row["created_at"],
         )

mautrix/crypto/store/asyncpg/upgrade.py

@@ -1,4 +1,4 @@
-# Copyright (c) 2022 Tulir Asokan
+# Copyright (c) 2023 Tulir Asokan
 #
 # This Source Code Form is subject to the terms of the Mozilla Public
 # License, v. 2.0. If a copy of the MPL was not distributed with this
@@ -16,15 +16,15 @@
 )
 
 
-@upgrade_table.register(description="Latest revision", upgrades_to=6)
-async def upgrade_blank_to_v4(conn: Connection) -> None:
+@upgrade_table.register(description="Latest revision", upgrades_to=9)
+async def upgrade_blank_to_latest(conn: Connection) -> None:
     await conn.execute(
         """CREATE TABLE IF NOT EXISTS crypto_account (
-            account_id TEXT PRIMARY KEY,
-            device_id  TEXT,
-            shared     BOOLEAN      NOT NULL,
-            sync_token TEXT         NOT NULL,
-            account    bytea        NOT NULL
+            account_id TEXT    PRIMARY KEY,
+            device_id  TEXT    NOT NULL,
+            shared     BOOLEAN NOT NULL,
+            sync_token TEXT    NOT NULL,
+            account    bytea   NOT NULL
         )"""
     )
     await conn.execute(
@@ -68,13 +68,15 @@ async def upgrade_blank_to_v4(conn: Connection) -> None:
     )
     await conn.execute(
         """CREATE TABLE IF NOT EXISTS crypto_megolm_inbound_session (
-            account_id   TEXT,
-            session_id   CHAR(43),
-            sender_key   CHAR(43)  NOT NULL,
-            signing_key  CHAR(43)  NOT NULL,
-            room_id      TEXT      NOT NULL,
-            session      bytea     NOT NULL,
-            forwarding_chains TEXT NOT NULL,
+            account_id        TEXT,
+            session_id        CHAR(43),
+            sender_key        CHAR(43)  NOT NULL,
+            signing_key       CHAR(43),
+            room_id           TEXT      NOT NULL,
+            session           bytea,
+            forwarding_chains TEXT,
+            withheld_code     TEXT,
+            withheld_reason   TEXT,
             PRIMARY KEY (account_id, session_id)
         )"""
     )
@@ -87,7 +89,7 @@ async def upgrade_blank_to_v4(conn: Connection) -> None:
             shared        BOOLEAN   NOT NULL,
             max_messages  INTEGER   NOT NULL,
             message_count INTEGER   NOT NULL,
-            max_age       INTERVAL  NOT NULL,
+            max_age       BIGINT    NOT NULL,
             created_at    timestamp NOT NULL,
             last_used     timestamp NOT NULL,
             PRIMARY KEY (account_id, room_id)
@@ -97,8 +99,10 @@ async def upgrade_blank_to_v4(conn: Connection) -> None:
         """CREATE TABLE crypto_cross_signing_keys (
             user_id TEXT,
             usage   TEXT,
-            key     CHAR(43),
-            first_seen_key CHAR(43),
+            key     CHAR(43) NOT NULL,
+
+            first_seen_key CHAR(43) NOT NULL,
+
             PRIMARY KEY (user_id, usage)
         )"""
     )
@@ -108,7 +112,7 @@ async def upgrade_blank_to_v4(conn: Connection) -> None:
             signed_key     TEXT,
             signer_user_id TEXT,
             signer_key     TEXT,
-            signature      TEXT,
+            signature      CHAR(88) NOT NULL,
             PRIMARY KEY (signed_user_id, signed_key, signer_user_id, signer_key)
         )"""
     )
@@ -162,7 +166,7 @@ async def upgrade_v2(conn: Connection, scheme: Scheme) -> None:
                 shared        BOOLEAN      NOT NULL,
                 max_messages  INTEGER      NOT NULL,
                 message_count INTEGER      NOT NULL,
-                max_age       INTERVAL     NOT NULL,
+                max_age       BIGINT       NOT NULL,
                 created_at    timestamp    NOT NULL,
                 last_used     timestamp    NOT NULL,
                 PRIMARY KEY (account_id, room_id)
@@ -250,3 +254,169 @@ async def upgrade_v6(conn: Connection) -> None:
     await conn.execute("UPDATE crypto_device SET trust=300 WHERE trust=1")  # verified
     await conn.execute("UPDATE crypto_device SET trust=-100 WHERE trust=2")  # blacklisted
     await conn.execute("UPDATE crypto_device SET trust=0 WHERE trust=3")  # ignored -> unset
+
+
+@upgrade_table.register(
+    description="Synchronize schema with mautrix-go", upgrades_to=9, transaction=False
+)
+async def upgrade_v9(conn: Connection, scheme: Scheme) -> None:
+    if scheme == Scheme.POSTGRES:
+        async with conn.transaction():
+            await upgrade_v9_postgres(conn)
+    else:
+        await upgrade_v9_sqlite(conn)
+
+
+# These two are never used because the previous one jumps from 6 to 9.
+@upgrade_table.register
+async def upgrade_noop_7_to_8(_: Connection) -> None:
+    pass
+
+
+@upgrade_table.register
+async def upgrade_noop_8_to_9(_: Connection) -> None:
+    pass
+
+
+async def upgrade_v9_postgres(conn: Connection) -> None:
+    await conn.execute("UPDATE crypto_account SET device_id='' WHERE device_id IS NULL")
+    await conn.execute("ALTER TABLE crypto_account ALTER COLUMN device_id SET NOT NULL")
+
+    await conn.execute(
+        "ALTER TABLE crypto_megolm_inbound_session ALTER COLUMN signing_key DROP NOT NULL"
+    )
+    await conn.execute(
+        "ALTER TABLE crypto_megolm_inbound_session ALTER COLUMN session DROP NOT NULL"
+    )
+    await conn.execute(
+        "ALTER TABLE crypto_megolm_inbound_session ALTER COLUMN forwarding_chains DROP NOT NULL"
+    )
+    await conn.execute("ALTER TABLE crypto_megolm_inbound_session ADD COLUMN withheld_code TEXT")
+    await conn.execute("ALTER TABLE crypto_megolm_inbound_session ADD COLUMN withheld_reason TEXT")
+
+    await conn.execute("DELETE FROM crypto_cross_signing_keys WHERE key IS NULL")
+    await conn.execute(
+        "UPDATE crypto_cross_signing_keys SET first_seen_key=key WHERE first_seen_key IS NULL"
+    )
+    await conn.execute("ALTER TABLE crypto_cross_signing_keys ALTER COLUMN key SET NOT NULL")
+    await conn.execute(
+        "ALTER TABLE crypto_cross_signing_keys ALTER COLUMN first_seen_key SET NOT NULL"
+    )
+
+    await conn.execute("DELETE FROM crypto_cross_signing_signatures WHERE signature IS NULL")
+    await conn.execute(
+        "ALTER TABLE crypto_cross_signing_signatures ALTER COLUMN signature SET NOT NULL"
+    )
+
+    await conn.execute(
+        "ALTER TABLE crypto_megolm_outbound_session ALTER COLUMN max_age TYPE BIGINT "
+        "USING (EXTRACT(EPOCH from max_age)*1000)::int"
+    )
+
+
+async def upgrade_v9_sqlite(conn: Connection) -> None:
+    await conn.execute("PRAGMA foreign_keys = OFF")
+    async with conn.transaction():
+        await conn.execute(
+            """CREATE TABLE new_crypto_account (
+                account_id TEXT    PRIMARY KEY,
+                device_id  TEXT    NOT NULL,
+                shared     BOOLEAN NOT NULL,
+                sync_token TEXT    NOT NULL,
+                account    bytea   NOT NULL
+            )"""
+        )
+        await conn.execute(
+            """
+            INSERT INTO new_crypto_account (account_id, device_id, shared, sync_token, account)
+            SELECT account_id, COALESCE(device_id, ''), shared, sync_token, account
+            FROM crypto_account
+            """
+        )
+        await conn.execute("DROP TABLE crypto_account")
+        await conn.execute("ALTER TABLE new_crypto_account RENAME TO crypto_account")
+
+        await conn.execute(
+            """CREATE TABLE new_crypto_megolm_inbound_session (
+                account_id        TEXT,
+                session_id        CHAR(43),
+                sender_key        CHAR(43)  NOT NULL,
+                signing_key       CHAR(43),
+                room_id           TEXT      NOT NULL,
+                session           bytea,
+                forwarding_chains TEXT,
+                withheld_code     TEXT,
+                withheld_reason   TEXT,
+                PRIMARY KEY (account_id, session_id)
+            )"""
+        )
+        await conn.execute(
+            """
+            INSERT INTO new_crypto_megolm_inbound_session (
+                account_id, session_id, sender_key, signing_key, room_id, session,
+                forwarding_chains
+            )
+            SELECT account_id, session_id, sender_key, signing_key, room_id, session,
+                   forwarding_chains
+            FROM crypto_megolm_inbound_session
+            """
+        )
+        await conn.execute("DROP TABLE crypto_megolm_inbound_session")
+        await conn.execute(
+            "ALTER TABLE new_crypto_megolm_inbound_session RENAME TO crypto_megolm_inbound_session"
+        )
+
+        await conn.execute("UPDATE crypto_megolm_outbound_session SET max_age=max_age*1000")
+
+        await conn.execute(
+            """CREATE TABLE new_crypto_cross_signing_keys (
+                user_id TEXT,
+                usage   TEXT,
+                key     CHAR(43) NOT NULL,
+
+                first_seen_key CHAR(43) NOT NULL,
+
+                PRIMARY KEY (user_id, usage)
+            )"""
+        )
+        await conn.execute(
+            """
+            INSERT INTO new_crypto_cross_signing_keys (user_id, usage, key, first_seen_key)
+            SELECT user_id, usage, key, COALESCE(first_seen_key, key)
+            FROM crypto_cross_signing_keys
+            WHERE key IS NOT NULL
+            """
+        )
+        await conn.execute("DROP TABLE crypto_cross_signing_keys")
+        await conn.execute(
+            "ALTER TABLE new_crypto_cross_signing_keys RENAME TO crypto_cross_signing_keys"
+        )
+
+        await conn.execute(
+            """CREATE TABLE new_crypto_cross_signing_signatures (
+                signed_user_id TEXT,
+                signed_key     TEXT,
+                signer_user_id TEXT,
+                signer_key     TEXT,
+                signature      CHAR(88) NOT NULL,
+                PRIMARY KEY (signed_user_id, signed_key, signer_user_id, signer_key)
+            )"""
+        )
+        await conn.execute(
+            """
+            INSERT INTO new_crypto_cross_signing_signatures (
+                signed_user_id, signed_key, signer_user_id, signer_key, signature
+            )
+            SELECT signed_user_id, signed_key, signer_user_id, signer_key, signature
+            FROM crypto_cross_signing_signatures
+            WHERE signature IS NOT NULL
+            """
+        )
+        await conn.execute("DROP TABLE crypto_cross_signing_signatures")
+        await conn.execute(
+            "ALTER TABLE new_crypto_cross_signing_signatures "
+            "RENAME TO crypto_cross_signing_signatures"
+        )
+
+        await conn.execute("PRAGMA foreign_key_check")
+    await conn.execute("PRAGMA foreign_keys = ON")

mautrix/errors/__init__.py

@@ -6,6 +6,7 @@
     DeviceValidationError,
     DuplicateMessageIndex,
     EncryptionError,
+    GroupSessionWithheldError,
     MatchingSessionDecryptionError,
     MismatchingRoomError,
     SessionNotFound,

mautrix/errors/crypto.py

@@ -36,6 +36,12 @@ class MatchingSessionDecryptionError(DecryptionError):
     pass
 
 
+class GroupSessionWithheldError(DecryptionError):
+    def __init__(self, session_id: SessionID, withheld_code: str) -> None:
+        super().__init__(f"Session ID {session_id} was withheld ({withheld_code})")
+        self.withheld_code = withheld_code
+
+
 class SessionNotFound(DecryptionError):
     def __init__(self, session_id: SessionID, sender_key: IdentityKey | None = None) -> None:
         super().__init__(

mautrix/util/async_db/upgrade.py

@@ -21,7 +21,7 @@
 UpgradeWithoutScheme = Callable[[LoggingConnection], Awaitable[Optional[int]]]
 
 
-async def noop_upgrade(_: LoggingConnection) -> None:
+async def noop_upgrade(_: LoggingConnection, _2: Scheme) -> None:
     pass
 
 
@@ -178,6 +178,6 @@ def _find_upgrade_table(fn: Upgrade) -> UpgradeTable:
 
 def register_upgrade(index: int = -1, description: str = "") -> Callable[[Upgrade], Upgrade]:
     def actually_register(fn: Upgrade) -> Upgrade:
-        return _find_upgrade_table(fn).register(index, description, fn)
+        return _find_upgrade_table(fn).register(fn, index=index, description=description)
 
     return actually_register