feat: update ssss to centeralise key logic by ab-famedly · Pull Request #2317 · famedly/matrix-dart-sdk

ab-famedly · 2026-04-20T06:39:15Z

Added reusable public migration APIs in SDK SSSS:

analyzeEncryptedSecrets()
orderedCandidateKeyIds(...)
migrateSecretsToKey(...)

Also added private SDK helper:

_tryOpenAndUnlockKey(...)

These now contain the logic to centralised (secret discovery, key iteration, migration, cache warm-up via maybeCacheAll()).

CLAassistant · 2026-04-20T06:39:34Z

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

codecov · 2026-04-20T06:44:46Z

Codecov Report

❌ Patch coverage is 38.88889% with 99 lines in your changes missing coverage. Please review.
✅ Project coverage is 55.25%. Comparing base (2ba4922) to head (f89b314).

Files with missing lines	Patch %	Lines
lib/encryption/ssss.dart	31.20%	86 Missing ⚠️
lib/encryption/utils/bootstrap.dart	33.33%	6 Missing ⚠️
lib/src/utils/native_implementations.dart	80.76%	5 Missing ⚠️
...worker/native_implementations_web_worker_stub.dart	0.00%	2 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #2317      +/-   ##
==========================================
- Coverage   55.76%   55.25%   -0.51%     
==========================================
  Files         160      160              
  Lines       19850    19957     +107     
==========================================
- Hits        11069    11028      -41     
- Misses       8781     8929     +148

Files with missing lines	Coverage Δ
...worker/native_implementations_web_worker_stub.dart	`0.00% <0.00%> (ø)`
lib/src/utils/native_implementations.dart	`42.30% <80.76%> (+19.23%)`	⬆️
lib/encryption/utils/bootstrap.dart	`60.90% <33.33%> (+2.29%)`	⬆️
lib/encryption/ssss.dart	`59.50% <31.20%> (-25.50%)`	⬇️

... and 3 files with indirect coverage changes

Continue to review full report in Codecov by Sentry.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 2ba4922...f89b314. Read the comment docs.

td-famedly · 2026-05-06T12:47:27Z

+    );
    encryptedContent.removeWhere((k, v) => otherKeys.contains(k));
-    // yes, we are paranoid...
+    content['encrypted'] = encryptedContent;


eh why are we doing this? (also the previous comment was helpful so someone does not remove the getStored check)

We need either “assign the mutated copy back into content” or “mutate the nested map in place,” because tryGetMap copies, stripping only the copy would upload unstripped account data. I've added the comment back though.

td-famedly

another review, looks like some of the methods are not really needed

ab-famedly force-pushed the centralise-key-logic branch 2 times, most recently from c99cee4 to c115c5e Compare April 20, 2026 09:00

ab-famedly self-assigned this Apr 20, 2026

td-famedly reviewed Apr 20, 2026

View reviewed changes

Comment thread lib/encryption/ssss.dart

ab-famedly force-pushed the centralise-key-logic branch from c115c5e to 0bbd466 Compare April 20, 2026 09:40

td-famedly reviewed Apr 20, 2026

View reviewed changes

Comment thread lib/encryption/ssss.dart

ab-famedly force-pushed the centralise-key-logic branch 3 times, most recently from 634e640 to b349abb Compare April 23, 2026 11:10

td-famedly reviewed Apr 24, 2026

View reviewed changes

Comment thread lib/encryption/ssss.dart Outdated

ab-famedly force-pushed the centralise-key-logic branch 5 times, most recently from 90c8a0b to b3bce14 Compare April 30, 2026 09:01

ab-famedly force-pushed the centralise-key-logic branch 2 times, most recently from 2067382 to e836f9f Compare May 5, 2026 17:15

td-famedly reviewed May 6, 2026

View reviewed changes

Comment thread lib/encryption/ssss.dart Outdated

td-famedly reviewed May 6, 2026

View reviewed changes

Comment thread lib/encryption/ssss.dart

td-famedly reviewed May 6, 2026

View reviewed changes

Comment thread lib/encryption/ssss.dart Outdated

td-famedly reviewed May 6, 2026

View reviewed changes

Comment thread lib/encryption/ssss.dart Outdated

td-famedly requested changes May 6, 2026

View reviewed changes

ab-famedly force-pushed the centralise-key-logic branch from e836f9f to b659903 Compare May 10, 2026 08:33

feat: update ssss to centralise key logic

aa724c8

ab-famedly force-pushed the centralise-key-logic branch 2 times, most recently from 115c05b to 1931270 Compare May 10, 2026 13:54

fix: update api

f89b314

ab-famedly force-pushed the centralise-key-logic branch from 1931270 to f89b314 Compare May 10, 2026 14:01

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: update ssss to centeralise key logic#2317

feat: update ssss to centeralise key logic#2317
ab-famedly wants to merge 2 commits into
mainfrom
centralise-key-logic

ab-famedly commented Apr 20, 2026

Uh oh!

CLAassistant commented Apr 20, 2026

Uh oh!

codecov Bot commented Apr 20, 2026 •

edited

Loading

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

td-famedly May 6, 2026

Uh oh!

ab-famedly May 10, 2026

Uh oh!

Uh oh!

Uh oh!

td-famedly left a comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

ab-famedly commented Apr 20, 2026

Uh oh!

CLAassistant commented Apr 20, 2026

Uh oh!

codecov Bot commented Apr 20, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Codecov Report

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

td-famedly May 6, 2026

Choose a reason for hiding this comment

Uh oh!

ab-famedly May 10, 2026

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

td-famedly left a comment

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

codecov Bot commented Apr 20, 2026 •

edited

Loading