Pantalaimon session verified, when run ement.el from emacsclient , it sends no cryptographic information to other device for session verification

matrix-org / pantalaimon

E2EE aware proxy daemon for matrix clients.

Apache License 2.0

279 stars 41 forks source link

Pantalaimon session verified, when run ement.el from emacsclient , it sends no cryptographic information to other device for session verification #157

Open carnotweat opened 1 year ago

carnotweat commented 1 year ago

Screenshot_2023-05-24-00-26-38-99_d527cc22bc3be698d3e094ad8c2a7cdd

Stebalien commented 1 year ago

This was probably not the right solution, but I just stole the session key from pantalaimon, overwrote ement.el's session key, then signed ement.el out from a different matrix client. Everything seems to be working...

alphapapa commented 1 year ago

I'm guessing that this part of the Pantalaimon readme is relevant:

Note that logging in to the daemon is required to start a sync loop for a user. After that clients can connect using any valid access token for the user that logged in.

As well:

panctl can be used to verify, blacklist or ignore devices, import or export session keys, or to introspect devices of users that we share encrypted rooms with.

BTW, @carnotweat: A picture may be worth a thousand words, but a screenshot isn't necessarily a substitute for a written bug report. Please help the Pantalaimon devs out and write a complete explanation of what the problem is in plain language.

Stebalien commented 1 year ago

Note that logging in to the daemon is required to start a sync loop for a user. After that clients can connect using any valid access token for the user that logged in.

That still doesn't explain why it doesn't re-use the access token from the first login. This also seems to be related to:

https://github.com/matrix-org/pantalaimon/issues/14

(which, if fixed, would have to reuse the token)