Block invalid poptoken #1660

dayan9265 · 2023-06-08T15:36:25Z

This PR blocks invalid pop token when scanning (this avoid bugs with wrong channel created, and then when trying to connect to these channel it fails, which could lead to the app thinking it is offline)

PS: the updated snap test is due to the current state of the release not being correct

Tyratox

LGTM! 😄We already had something like this in the past, I marked it above. Feel free to check it out or just merge this one. I think the other regex was even a bit more strict because the pop tokens are all of the same size :)

Tyratox · 2023-06-08T16:22:48Z

fe1-web/src/features/rollCall/screens/RollCallScanner.tsx

At some time in the past we had something like that already ..

popstellar/fe1-web/src/features/rollCall/screens/RollCallOpened.tsx

Line 34 in 6a63674

const tokenMatcher = new RegExp('^[A-Za-z0-9_-]{43}=$');

It might be nice to put this validation into the constructor of ScannablePopToken?

MeKHell · 2023-06-08T17:17:19Z

fe1-web/src/features/rollCall/screens/RollCallScanner.tsx

+      if (!popToken.match(/^[a-zA-Z0-9_-]+={0,3}$/) || popToken.length % 4 !== 0) {
+        throw new Error('Invalid popToken format');
+      }
+


I think it is better if this is moved to at least another function or the ScannablePopToken.fromJson which is used line 144

dayan9265 · 2023-06-08T19:10:04Z

It was indeed a better idea to put the verification inside ScannablePopToken, so I moved it. (I let the tests inside the scanner, since we want to make sure that wrong tokens are refused)

dayan9265 · 2023-06-08T19:40:41Z

Okay it seems that there's now a risk when calling the ScannablePopToken generator with empty strings (such as in the RollCallOpen), I saw there is an another place where it could be the case:

https://github.com/dedis/popstellar/blob/release-2023-spring/fe1-web/src/features/digital-cash/screens/SendReceive/SendReceive.tsx#LL332C1-L334C15

@Tyratox since this is code that you had written, do you know if it can cause an issue?

Tyratox · 2023-06-09T06:56:36Z

Hmm true. While not ideal, this is the reality and I think the best solution for now would be to add a check like

const serializedPopToken = useMemo(() => {
    try {
        return ScannablePopToken.encodePopToken({ pop_token: popToken })
    } catch {
        return null;
    }
}, [popToken]);

if serializedPopToken == null {
    return <SomeNiceErrorMessage/>;
}

While rollCallId should always be set, it might be that you somehow land on this screen for a roll call where you don't have a pop token yet (because the roll call is still ongoing). In that case that could indeed happen I think 😅

pierluca · 2023-06-09T10:46:34Z

fe1-web/src/features/rollCall/components/RollCallOpen.tsx

+                popToken !== ''
+                  ? ScannablePopToken.encodePopToken({ pop_token: popToken })
+                  : undefined


although I don't see how, this technically could throw.
Would it make sense to do this operation beforehand and wrap it like you did in digital cash ?

this could throw since the popToken is initially empty, and it is changed through a promise (generateToken), so for a brief moment the popToken will be an empty string
I will wrap it earlier 👍

Xelowak

LGTM!
I made a small comment but I won't be blocking you right now so feel free to merge.

Xelowak · 2023-06-10T19:39:22Z

fe1-web/src/features/digital-cash/screens/SendReceive/SendReceive.tsx

+  const serializedPopToken = useMemo(() => {
+    try {
+      return ScannablePopToken.encodePopToken({ pop_token: popToken });
+    } catch {
+      return null;
+    }


Why don't you return an empty string there directly then (in catch)?
It seems that you return null to convert it in an empty string after if it's null.

The idea was that if the popToken is null, it displays nothing (the return null after the toast show). In reality the || '' condition will never be used (I have removed it now)