Mobile,Desktop: Fix unable to change incorrect decryption password if the same as the master password (#11026)

2025-07-06 23:56:13 +02:00 · 2024-09-11 11:01:57 -07:00
parent 69168f1ec2
commit 79773dab95
4 changed files with 97 additions and 2 deletions
--- a/packages/lib/components/EncryptionConfigScreen/utils.test.ts
+++ b/packages/lib/components/EncryptionConfigScreen/utils.test.ts
@ -0,0 +1,88 @@
+import MasterKey from '../../models/MasterKey';
+import EncryptionService, { EncryptionMethod } from '../../services/e2ee/EncryptionService';
+import { MasterKeyEntity } from '../../services/e2ee/types';
+import { setEncryptionEnabled } from '../../services/synchronizer/syncInfoUtils';
+import { setupDatabaseAndSynchronizer, switchClient } from '../../testing/test-utils';
+import { usePasswordChecker } from './utils';
+import { renderHook } from '@testing-library/react-hooks';
+
+interface WrappedPasswordCheckerProps {
+	masterKeys: MasterKeyEntity[];
+	activeMasterKeyId: string;
+	masterPassword: string;
+	passwords: Record<string, string>;
+}
+
+const useWrappedPasswordChecker = ({
+	masterKeys = [],
+	activeMasterKeyId = '',
+	masterPassword = '',
+	passwords = {},
+}: WrappedPasswordCheckerProps) => usePasswordChecker(
+	masterKeys,
+	activeMasterKeyId,
+	masterPassword,
+	passwords,
+);
+
+describe('EncryptionConfigScreen/utils', () => {
+	beforeEach(async () => {
+		await setupDatabaseAndSynchronizer(0);
+		await switchClient(0);
+		setEncryptionEnabled(true);
+	});
+
+	test('should not mark keys as master password keys if the master password is incorrect for that key', async () => {
+		const makeMasterKey = async (password: string) => {
+			const result = await EncryptionService.instance().generateMasterKey(password, {
+				encryptionMethod: EncryptionMethod.SJCL4,
+			});
+			return await MasterKey.save(result);
+		};
+
+		const activeMasterKey = await makeMasterKey('master-password');
+		const secondaryMasterKey = await makeMasterKey('some other password');
+		const masterKeys = [
+			activeMasterKey,
+			secondaryMasterKey,
+		];
+
+		const initialProps = {
+			masterKeys,
+			activeMasterKeyId: activeMasterKey.id,
+			masterPassword: 'master-password',
+			passwords: {
+				[activeMasterKey.id]: 'master-password',
+				[secondaryMasterKey.id]: 'some other password',
+			},
+		};
+		const hook = renderHook(useWrappedPasswordChecker, {
+			initialProps,
+		});
+
+		// Different password from the master password should cause the secondary key
+		// to be marked as not using the master password.
+		await hook.waitFor(() => {
+			expect(hook.result.current.masterPasswordKeys).toMatchObject({
+				[activeMasterKey.id]: true,
+				[secondaryMasterKey.id]: false,
+			});
+		});
+
+		// Same password as the master password but fails to decrypt: Should not be marked
+		// as using the master password.
+		hook.rerender({
+			...initialProps,
+			passwords: {
+				...initialProps.passwords,
+				[secondaryMasterKey.id]: 'primary',
+			},
+		});
+		await hook.waitFor(() => {
+			expect(hook.result.current.masterPasswordKeys).toMatchObject({
+				[activeMasterKey.id]: true,
+				[secondaryMasterKey.id]: false,
+			});
+		});
+	});
+});