Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add Mutable and Immutable Metadata #17

Merged
merged 18 commits into from
Feb 10, 2024
Merged

Add Mutable and Immutable Metadata #17

merged 18 commits into from
Feb 10, 2024

Conversation

keks
Copy link

@keks keks commented Jan 25, 2024

Note: This PR sits on top of PR #16

This PR adds support for metadata and immutable metadata extensions.

keks and others added 16 commits January 17, 2024 17:24
@keks
Process GroupContextExtensions Proposals (#1475)
1d32ea3 
Adds support for GroupContextExtensions proposals. The relevant validation has been added both to the code and the documentation.

Co-authored-by: Jan Winkelmann (keks) <jan@cryspen.com>
@kkohbrok
Add leaf node configuration options to MlsGroup builder (#1477)
4d5716e
@kkohbrok
Clean up MlsGroup* builders (#1478)
0d67da8
@kkohbrok
Enable the use of unknown/opaque extensions (#1479)
303967c
@keks
Merge remote-tracking branch 'openmls/main'
8c72541
@keks
Add first draft of mutable metadata extension
cbb4c11 
This is similar to the ProtectedMetadata extension, with the exception
that the payload is not signed. Whether and how the payload should be
processed is up to the application.
@keks
rename to Metadata, add test
b646b47 
# Conflicts:
#	openmls/src/extensions/test_extensions.rs
@keks
add comments
acfbee2
@keks
change ProtectedMetadata extension id to 0xf002
09f1832
@keks
update test that assumed 0xf000 was an unknown extension
f94a4c2
@franziskuskiefer @keks
fixup after merge from upstream main
ed849bd
@franziskuskiefer @keks
rename to immutable metadata
b184e1a
@franziskuskiefer @keks
reject if there was no immutable metadata before
f6503ce
@keks
simplify validation
d7e059a
@keks
add test
cd91f6c
@keks
address feedback
305b761
@keks keks mentioned this pull request Jan 25, 2024
Closed
Bren2010
Bren2010 reviewed Jan 28, 2024
View reviewed changes
book/src/user_manual/group_config.md

## Unknown extensions

Some extensions carry data, but don't alter the behaviour of the protocol (e.g. the application_id extension). OpenMLS allows the use of arbitrary such extensions in the group context, key packages and leaf nodes. Such extensions can be instantiated and retrieved through the use of the `UnknownExtension` struct and the `ExtensionType::Unknown` extension type. Such "unknown" extensions are handled transparently by OpenMLS, but can be used by the application, e.g. to have a group agree on pieces of data.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Supporting arbitrary extensions in the GroupContext is not RFC compliant. Extensions in the GroupContext need to be supported by every member (ie, also have an indication of support in their capabilities field).

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why do you think that's not RFC compliant?
Indicating support in capabilities if of course required. But MLS does not restrict extensions. In the contrary, implementations are supposed to handle any (unknown) extension gracefully. That's what the grease mechanisms tries to ensure.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It says in section 13.4:

  • Clients must verify they support every extension in a GroupContext. Otherwise, it must refuse to join a group
  • Clients must verify every other client supports extensions in the GroupContext

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is the documentation a mis-statement, or does openmls actually allow arbitrary GroupContext extensions?

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It allows arbitrary group context extension, as long as all members support them.
As such, it is compliant with the RFC. The difference to other extensions is that the MLS implementation isn't aware of them. But it doesn't need to be as long as they are only relevant for the application. This way using especially private extension (0xF000 - 0xFFFF) becomes much easier, because the protocol implementation doesn't need to be made aware of them.
That said, @keks found an issue in the validation check for this (see openmls#1487). This is part of the larger effort of getting all validation checks into OpeMLS (see the validation label for some of them).

@neekolas neekolas merged commit 0da7dcb into xmtp:main Feb 10, 2024
49 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Bren2010 Bren2010 Bren2010 left review comments

@franziskuskiefer franziskuskiefer franziskuskiefer left review comments

@neekolas neekolas neekolas approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@keks @neekolas @Bren2010 @franziskuskiefer @kkohbrok