Skip to content

fix: Quote chaining in E2EE room not limiting quote depth #36143

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 9 commits into from
Jun 12, 2025
Merged

fix: Quote chaining in E2EE room not limiting quote depth #36143

merged 9 commits into from
Jun 12, 2025

Conversation

gabriellsh
Copy link
Member

@gabriellsh gabriellsh commented Jun 3, 2025
edited
Loading

Proposed changes (including videos or screenshots)

This issue occurs because we only enforce the quote chaining limit on the server, but the server cannot evaluate the message or its content due to the message being encrypted.

Due to this constraint, the limit can only be applied client-side before the message is sent decrypted, and that is what was done. This also improves UX since previously the quote preview did not evaluate the chain limit, causing a mismatch between what showed in the preview and what was actually experienced once the message was sent*.

  • This did not prevent the messages from being sent with exceeding quote depth, but since it was implemented, I'm keeping this fix as a bônus, as it does make the UX more concise, and could be interpreted as part of the same issue.

Caveats:

  • as said before there's no way to prevent exceeding the quote chain limit for encrypted messages in the backend, because that would require encryption to be broken, and no longer end-to-end. Due to this it is still possible to send messages through the API that exceed said limit. There's no way around this. UPDATE: Quote attachments are based on message permalinks. We cannot prevent sending deeply nested quotes. Instead, we prune quotes that exceed the depth limit at decryption time.
  • Since we currently only apply this limit server-side, messages sent before the limit is decreased still display all quotes as they were when the message was sent (change to the setting does not modify messages retroactively). Due to this, no limit to quotes was applied to the message layout, as to not break expected behavior. This means that encrypted messages sent through the APIs can display quote chains bigger thant the limit (see previous caveat). UPDATE: See caveat update above. Layout modifications were applied solely to e2ee messages.

Update:
Unfortunately the mechanism for sending e2ee messages with quotes was misinterpreted, so some of what was said above is not true. Attachments for e2ee messages are processed at the time of decryption, and there's no control of the depth of quote chaining at the time of sending it. For this reason, for e2ee messages only, the limit was applied during the decryption step, which changes the rendered content when the setting changes.

Some of the caveats

Issue(s)

SUP-782

Steps to test or reproduce

  • Navigate to Administration > Message > Quoting.​
  • Set "Maximum Number of Chained Quotes" to a specific value (e.g., 2).​
  • Create or enter a private room with E2E encryption enabled.​
  • Send a message quoting another message, creating nested quotes beyond the set limit.​

Further comments

It's not clear whether the message layout should also respect the limit, but historically it has not, so no attempt was or will made to change the message layout at this point. If this changes at any point, a new PR is warranted.

@gabriellsh gabriellsh requested a review from a team as a code owner June 3, 2025 22:37
@dionisio-bot dionisio-bot
Copy link
Contributor

dionisio-bot bot commented Jun 3, 2025
edited
Loading

Looks like this PR is ready to merge! 🎉
If you have any trouble, please check the PR guidelines

@changeset-bot changeset-bot
Copy link

changeset-bot bot commented Jun 3, 2025
edited
Loading

🦋 Changeset detected

Latest commit: 96cedb1

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 36 packages
Name Type
@rocket.chat/meteor Patch
@rocket.chat/core-typings Patch
@rocket.chat/rest-typings Patch
@rocket.chat/uikit-playground Patch
@rocket.chat/api-client Patch
@rocket.chat/apps Patch
@rocket.chat/core-services Patch
@rocket.chat/cron Patch
@rocket.chat/ddp-client Patch
@rocket.chat/freeswitch Patch
@rocket.chat/fuselage-ui-kit Patch
@rocket.chat/gazzodown Patch
@rocket.chat/livechat Patch
@rocket.chat/model-typings Patch
@rocket.chat/ui-contexts Patch
@rocket.chat/account-service Patch
@rocket.chat/authorization-service Patch
@rocket.chat/ddp-streamer Patch
@rocket.chat/omnichannel-transcript Patch
@rocket.chat/presence-service Patch
@rocket.chat/queue-worker Patch
@rocket.chat/stream-hub-service Patch
@rocket.chat/license Patch
@rocket.chat/omnichannel-services Patch
@rocket.chat/pdf-worker Patch
@rocket.chat/presence Patch
rocketchat-services Patch
@rocket.chat/models Patch
@rocket.chat/network-broker Patch
@rocket.chat/mock-providers Patch
@rocket.chat/ui-avatar Patch
@rocket.chat/ui-client Patch
@rocket.chat/ui-video-conf Patch
@rocket.chat/ui-voip Patch
@rocket.chat/web-ui-registration Patch
@rocket.chat/instance-status Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jun 3, 2025
edited
Loading

PR Preview Action v1.6.1

🚀 View preview at
https://RocketChat.github.io/Rocket.Chat/pr-preview/pr-36143/

Built to branch gh-pages at 2025-06-10 14:49 UTC.
Preview will be ready when the GitHub Pages deployment is complete.

@codecov Codecov
Copy link

codecov bot commented Jun 3, 2025
edited
Loading

Codecov Report

Attention: Patch coverage is 97.67442% with 1 line in your changes missing coverage. Please review.

Project coverage is 63.60%. Comparing base (2f51e26) to head (96cedb1).
Report is 1 commits behind head on develop.

Additional details and impacted files

Impacted file tree graph

@@             Coverage Diff             @@
##           develop   #36143      +/-   ##
===========================================
- Coverage    64.54%   63.60%   -0.94%     
===========================================
  Files         3129     3045      -84     
  Lines        98410    97063    -1347     
  Branches     18659    18540     -119     
===========================================
- Hits         63514    61738    -1776     
- Misses       32073    32594     +521     
+ Partials      2823     2731      -92
Flag Coverage Δ
e2e 54.21% <27.77%> (-3.11%) ⬇️
unit 69.93% <100.00%> (+0.02%) ⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

tassoevan
tassoevan requested changes Jun 4, 2025
View reviewed changes
@MarcosSpessatto MarcosSpessatto added this to the 7.8.0 milestone Jun 6, 2025
@tassoevan tassoevan added the stat: QA assured Means it has been tested and approved by a company insider label Jun 12, 2025
@dionisio-bot dionisio-bot bot added the stat: ready to merge PR tested and approved waiting for merge label Jun 12, 2025
@kodiakhq kodiakhq bot merged commit bd519e3 into develop Jun 12, 2025
47 of 49 checks passed
@kodiakhq kodiakhq bot deleted the fix/quoteChainLimit branch June 12, 2025 17:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tassoevan tassoevan tassoevan approved these changes

Assignees
No one assigned
Labels
stat: QA assured Means it has been tested and approved by a company insider stat: ready to merge PR tested and approved waiting for merge
Projects
None yet
Milestone
7.8.0
Development

Successfully merging this pull request may close these issues.
3 participants
@gabriellsh @tassoevan @MarcosSpessatto