Meta: Encrypted state

@kaylendog will be working on encrypted state - we will track our plans and progress here.

## Goal

Investigate the feasibility of [MSC3414](https://github.com/matrix-org/matrix-spec-proposals/pull/3414) and prototype it in rust-sdk.

## Context

Currently, all [state events](https://spec.matrix.org/v1.15/client-server-api/#types-of-room-events) in a room are unencrypted: only non-state events can be encrypted.

To enhance privacy, we should encrypt state events where possible.

## Problems

- The server holds the current state of a room, and it uses `type`+`state_key` as the key of the map. This causes 2 problems:
    1. Encrypted events have a fixed `type` of `m.room.encrypted` so events of different types will clash
    2. We potentially want the true `state_key` to be inaccessible to people without decryption keys

We will start by not considering this problem, then progressively enhance our solution.

## Plan

- [x] Set-up, logins, passwords etc.
- [x] Build matrix-rust-sdk including [multiverse](https://github.com/matrix-org/matrix-rust-sdk/tree/main/labs/multiverse)
- [x] Run a local [synapse](https://github.com/element-hq/synapse/) and connect to it from multiverse
- [x] Encrypt a test event. Write the minimum possible code to get a state event to send and receive whose contents are encrypted. Look at [OlmMachine::encrypt_room_event](https://github.com/matrix-org/matrix-rust-sdk/blob/main/crates/matrix-sdk-crypto/src/machine/mod.rs#L1064). You will probably need to write a similar method called `encrypt_state_event` and figure out how to call it from multiverse. You will probably need to add code to decrypt state events if they arrive encrypted.
- [x] Consider stuffing the event type into `state_key` so the server can hold two events of different `type` with the same `state_key` even if they are encrypted. E.g. change the state_key to be "{type}:${state_key}" (note: careful choice of separator will eventually be needed, but no need to worry too much now). Confirm that the server correctly returns the right state in this circumstance. Figure out how to get the client to "unstuff" it and understand the right type and state_key.
- [x] Investigate how well this works. E.g. can I do [live location sharing](https://github.com/matrix-org/matrix-spec-proposals/pull/3489) using encrypted state events?
- [ ] Implement runtime feature flag for encrypted state
- [ ] Merge into upstream SDK
- [ ] Investigate implementing encrypted state into existing clients - feature/labs flag.

<!-- - [ ] The approach so far has two problems: 1. `type` and `state_key` are sent unencrypted and 2. long event type and state_key combinations may be too long for the `state_key` field. MSC3414 contains a scheme for avoiding this problem by replacing `state_key` with an arbitrary string, which should be used consistently when replacing events. Evaluate this scheme and consider alternatives. --!>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Meta: Encrypted state #5397

Goal

Context

Problems

Plan

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Meta: Encrypted state #5397

Description

Goal

Context

Problems

Plan

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions