Open richvdh opened 10 months ago
This works the other way too: If Bob fetches the key from backup first, and then receives the key directly but with a later index, the new (direct) key will be ignored
For context on legacy android there used to be a safety update for better unsafe keys that connect to a ratcheted safe key https://github.com/vector-im/element-android/blob/7073b1647c3897b5a30c4886db5975a26f16c6a1/matrix-sdk-android/src/kotlinCrypto/java/org/matrix/android/sdk/internal/crypto/MXOlmDevice.kt#L667
Note that the root cause is that we are accepting potentially unsafe keys (authenticity cannot be guaranted), this is soon to be a deprectated behavior with:
As to be factored in before thinking about doing safety upgrade
Closed until authenticated backup.
I'm not convinced this should be closed -- it is, after all, still a problem, even if we have a plan to fix it for new messages in several months' time.