Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

MSC4263: Preventing MXID enumeration via key queries #4263

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

MSC4263: Preventing MXID enumeration via key queries #4263

wants to merge 1 commit into from
+59 −0

Conversation

Johennes
Copy link
Contributor

@Johennes Johennes commented Feb 4, 2025
edited
Loading

Rendered

In line with matrix-org/matrix-spec#1700, the following disclosure applies:

I am a Systems Architect at gematik, Software Engineer at Unomed, Matrix community member and former Element employee. This proposal was written and published with my gematik hat on.

@Johennes Johennes force-pushed the feature/prevent-mxid-enumeration-via-key-queries branch from 3175c4e to df66664 Compare February 4, 2025 13:23
@Johennes Johennes changed the title MSCXXXX: Preventing MXID enumeration via key queries MSC4263: Preventing MXID enumeration via key queries Feb 4, 2025
@Johennes Johennes marked this pull request as ready for review February 4, 2025 13:26
@turt2live turt2live added proposal A matrix spec change proposal kind:feature MSC for not-core and not-maintenance stuff needs-implementation This MSC does not have a qualifying implementation for the SCT to review. The MSC cannot enter FCP. client-server Client-Server API kind:maintenance MSC which clarifies/updates existing spec and removed kind:feature MSC for not-core and not-maintenance stuff labels Feb 4, 2025
turt2live
turt2live reviewed Feb 14, 2025
View reviewed changes
proposals/4263-prevent-mxid-enumeration-via-key-queries.md
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Implementation requirements:

  • Server

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

element-hq/synapse#18180

@Johennes Johennes mentioned this pull request Feb 20, 2025
Open
3 tasks
nico-famedly
nico-famedly reviewed Feb 20, 2025
View reviewed changes
proposals/4263-prevent-mxid-enumeration-via-key-queries.md
Comment on lines +24 to +27
When processing [`/_matrix/client/v3/keys/query`] requests, homeservers MUST at
a minimum consider users who share a room with the requesting user or are a
member of a public room. This is regardless of the concrete membership value of
the queried users in those room.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The problem you will run into with this, is that currently you can encrypt for a user you have only invited. In theory an invite can also enumerate mxids, since if the invite succeeds, the user likely exists. But that can be restricted using policies on a server currently. However not being able to query keys for a user, that is already invited to a room will prevent them from being able to decrypt those messages.

Additionally some clients currently use key queries to enable encryption for a room. This might not be possible anymore with this change, leading to those rooms not supporting encryption anymore. Clients could change that to always enable encryption without checking if encryption is possible, but that likely will need a transition period?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The problem you will run into with this, is that currently you can encrypt for a user you have only invited. In theory an invite can also enumerate mxids, since if the invite succeeds, the user likely exists. But that can be restricted using policies on a server currently. However not being able to query keys for a user, that is already invited to a room will prevent them from being able to decrypt those messages.

I think this should be covered by the "regardless of the concrete membership value of the queried users" clause. Though maybe this should be further restricted to just join and ìnvite`?

Additionally some clients currently use key queries to enable encryption for a room. This might not be possible anymore with this change, leading to those rooms not supporting encryption anymore. Clients could change that to always enable encryption without checking if encryption is possible, but that likely will need a transition period?

Oh, I haven't heard of this before. 😮

This is before room creation when you already have a list of members to be invited and the client is checking upfront if you can encrypt to these users based on their published keys?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@turt2live turt2live turt2live left review comments

@nico-famedly nico-famedly nico-famedly left review comments

Assignees
No one assigned
Labels
client-server Client-Server API kind:maintenance MSC which clarifies/updates existing spec needs-implementation This MSC does not have a qualifying implementation for the SCT to review. The MSC cannot enter FCP. proposal A matrix spec change proposal
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@Johennes @turt2live @nico-famedly