Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

privacy preserving selfAddr (M2) #6216

Closed
r10s opened this issue Nov 17, 2024 · 0 comments · Fixed by #6237
Closed

privacy preserving selfAddr (M2) #6216

r10s opened this issue Nov 17, 2024 · 0 comments · Fixed by #6237
Labels
webxdc

Comments

@r10s
Copy link
Member

r10s commented Nov 17, 2024
edited
Loading

Design, implement and test privacy-preserving selfAddr generation inside Delta Chat core. selfAddr should not be trackable across apps, are scoped to app instances and need to work consistently in multi-device settings (i.e. the selfAddr for a given app needs to be the same on all devices)

Notes:

we should have multi-transport already in mind here, so things derived from the email address should be double-checked

while renaming selfAddr to sth. else seems to be tempting, it leads to a lot of additional discussions and work if we want to avoid breaking changes, so this is out of scope of M2 and this issue.

also out of scope of this issue is adding a senderAddr out of the payload. however, as that would not introduce breaking changes (only rollout before the feature gets into use), we can consider that when everything else of M2/M3 is done.

some previous discussion at #6097
@r10s r10s added the webxdc label Nov 17, 2024
@r10s r10s moved this to Todo in Webxdc PUSH M2/M3 Nov 17, 2024
@r10s r10s mentioned this issue Nov 20, 2024
Merged
r10s added a commit that referenced this issue Nov 21, 2024
@r10s
feat: use privacy-preserving webxdc addresses (#6237)
8a0c913 
this PR adds the address to be used by the UI for
`window.webxdc.selfAddr` to webxdc-info. UIs need to be changed
accordingly and must not use configured_addr any longer.

the address is created by sha256(private-key + rfc724_mid) , which
results in different addresses for each webxdc, without the option to
find out the real address of the user.

this also returns the same address for a multi-device-setup - sending
totally random self address around might be an alternative, however
would require connectivity (both devices may be offline on first start).

for existing app, after the change, there will be a new user, resulting
eg. in a new highscore, otherwise, things should be mostly fine. this
assumption is also important as we might change the thing another time
when it comes to multi-transport.

ftr, addresses look like
`0f187e3f420748b03e3da76543e9a84ecff822687ce7e94f250c04c7c50398bc` now

when this is merged, we need to adapt #6230 and file issues for all UI
to use `info.selfAddr`

closes #6216
@github-project-automation github-project-automation bot moved this from Todo to Done in Webxdc PUSH M2/M3 Nov 21, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
webxdc
Projects
Webxdc PUSH M2/M3
Status: Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat: use privacy-preserving webxdc addresses deltachat/deltachat-core-rust
1 participant
@r10s