mirror of
https://github.com/signalapp/Signal-Server
synced 2026-04-21 19:08:01 +01:00
Let server generate copyToMedia IVs
We include the IV in the encrypted payload, so we can let the server choose them instead of the client
This commit is contained in:
Ravi Khadiwala
committed by
Jon Chambers
Jon Chambers
parent
a5f60b1522
commit
f2cb04817b
@@ -85,8 +85,7 @@ public class BackupManagerTest {
|
||||
|
||||
private static final MediaEncryptionParameters COPY_ENCRYPTION_PARAM = new MediaEncryptionParameters(
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(16));
|
||||
TestRandomUtil.nextBytes(32));
|
||||
private static final CopyParameters COPY_PARAM = new CopyParameters(
|
||||
3, "abc", 100,
|
||||
COPY_ENCRYPTION_PARAM, TestRandomUtil.nextBytes(15));
|
||||
|
||||
@@ -39,7 +39,6 @@ public class Cdn3RemoteStorageManagerTest {
|
||||
|
||||
private static final byte[] HMAC_KEY = TestRandomUtil.nextBytes(32);
|
||||
private static final byte[] AES_KEY = TestRandomUtil.nextBytes(32);
|
||||
private static final byte[] IV = TestRandomUtil.nextBytes(16);
|
||||
|
||||
@RegisterExtension
|
||||
private static final WireMockExtension wireMock = WireMockExtension.newInstance()
|
||||
@@ -66,7 +65,7 @@ public class Cdn3RemoteStorageManagerTest {
|
||||
@ParameterizedTest
|
||||
@ValueSource(ints = {2, 3})
|
||||
public void copy(final int sourceCdn) throws JsonProcessingException {
|
||||
final MediaEncryptionParameters encryptionParameters = new MediaEncryptionParameters(AES_KEY, HMAC_KEY, IV);
|
||||
final MediaEncryptionParameters encryptionParameters = new MediaEncryptionParameters(AES_KEY, HMAC_KEY);
|
||||
final String scheme = switch (sourceCdn) {
|
||||
case 2 -> "gcs";
|
||||
case 3 -> "r2";
|
||||
@@ -99,7 +98,7 @@ public class Cdn3RemoteStorageManagerTest {
|
||||
2,
|
||||
"a/test/source",
|
||||
100,
|
||||
new MediaEncryptionParameters(AES_KEY, HMAC_KEY, IV),
|
||||
new MediaEncryptionParameters(AES_KEY, HMAC_KEY),
|
||||
"a/destination").toCompletableFuture());
|
||||
}
|
||||
|
||||
@@ -111,7 +110,7 @@ public class Cdn3RemoteStorageManagerTest {
|
||||
2,
|
||||
"a/test/source",
|
||||
100,
|
||||
new MediaEncryptionParameters(AES_KEY, HMAC_KEY, IV),
|
||||
new MediaEncryptionParameters(AES_KEY, HMAC_KEY),
|
||||
"a/destination").toCompletableFuture());
|
||||
}
|
||||
|
||||
@@ -122,7 +121,7 @@ public class Cdn3RemoteStorageManagerTest {
|
||||
0,
|
||||
"a/test/source",
|
||||
100,
|
||||
new MediaEncryptionParameters(AES_KEY, HMAC_KEY, IV),
|
||||
new MediaEncryptionParameters(AES_KEY, HMAC_KEY),
|
||||
"a/destination").toCompletableFuture());
|
||||
}
|
||||
|
||||
|
||||
@@ -272,8 +272,7 @@ public class ArchiveControllerTest {
|
||||
|
||||
@ParameterizedTest
|
||||
@MethodSource
|
||||
public void setBackupIdException(final Exception ex, final boolean sync, final int expectedStatus)
|
||||
throws RateLimitExceededException {
|
||||
public void setBackupIdException(final Exception ex, final boolean sync, final int expectedStatus) {
|
||||
if (sync) {
|
||||
when(backupAuthManager.commitBackupId(any(), any(), any())).thenThrow(ex);
|
||||
} else {
|
||||
@@ -393,16 +392,14 @@ public class ArchiveControllerTest {
|
||||
100,
|
||||
mediaIds[0],
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(16)),
|
||||
TestRandomUtil.nextBytes(32)),
|
||||
|
||||
new ArchiveController.CopyMediaRequest(
|
||||
new RemoteAttachment(3, "def"),
|
||||
200,
|
||||
mediaIds[1],
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(16))
|
||||
TestRandomUtil.nextBytes(32))
|
||||
))));
|
||||
assertThat(r.getStatus()).isEqualTo(207);
|
||||
final ArchiveController.CopyMediaBatchResponse copyResponse = r.readEntity(
|
||||
@@ -438,8 +435,7 @@ public class ArchiveControllerTest {
|
||||
100,
|
||||
mediaId,
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(16))
|
||||
TestRandomUtil.nextBytes(32))
|
||||
).toList();
|
||||
|
||||
Response r = resources.getJerseyTest()
|
||||
@@ -454,7 +450,7 @@ public class ArchiveControllerTest {
|
||||
|
||||
assertThat(copyResponse.responses()).hasSize(4);
|
||||
|
||||
final ArchiveController.CopyMediaBatchResponse.Entry r1 = copyResponse.responses().get(0);
|
||||
final ArchiveController.CopyMediaBatchResponse.Entry r1 = copyResponse.responses().getFirst();
|
||||
assertThat(r1.cdn()).isEqualTo(1);
|
||||
assertThat(r1.mediaId()).isEqualTo(mediaIds[0]);
|
||||
assertThat(r1.status()).isEqualTo(200);
|
||||
@@ -494,16 +490,14 @@ public class ArchiveControllerTest {
|
||||
1,
|
||||
mediaIds[0],
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(16)),
|
||||
TestRandomUtil.nextBytes(32)),
|
||||
|
||||
new ArchiveController.CopyMediaRequest(
|
||||
new RemoteAttachment(3, "def"),
|
||||
-1,
|
||||
mediaIds[1],
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(16))
|
||||
TestRandomUtil.nextBytes(32))
|
||||
))));
|
||||
assertThat(r.getStatus()).isEqualTo(422);
|
||||
}
|
||||
@@ -573,7 +567,7 @@ public class ArchiveControllerTest {
|
||||
}
|
||||
|
||||
@Test
|
||||
public void mediaUploadForm() throws RateLimitExceededException, VerificationFailedException {
|
||||
public void mediaUploadForm() throws VerificationFailedException {
|
||||
final BackupAuthCredentialPresentation presentation =
|
||||
backupAuthTestUtil.getPresentation(BackupLevel.PAID, messagesBackupKey, aci);
|
||||
when(backupManager.authenticateBackupUser(any(), any()))
|
||||
@@ -675,8 +669,7 @@ public class ArchiveControllerTest {
|
||||
100,
|
||||
TestRandomUtil.nextBytes(15),
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(32),
|
||||
TestRandomUtil.nextBytes(16))));
|
||||
TestRandomUtil.nextBytes(32))));
|
||||
assertThat(r.getStatus()).isEqualTo(422);
|
||||
}
|
||||
|
||||
|
||||
Reference in New Issue
Block a user