fix(client): Add handle_verification_events field to BaseClient.

This is done to fix an issue with these events being received and processed twice when `NotificationProcessSetup` is `SingleProcess`, causing issues with user verification.

This can be used to ignore verification requests in this sliding sync instance, preventing issues found where several sliding sync instances with the same client process events simultaneously and re-process the same verification request events during their initial syncs.

Author: jmartinesp

crates/matrix-sdk-base/CHANGELOG.md

@@ -15,6 +15,9 @@ All notable changes to this project will be documented in this file.
   - `EventCacheStoreMedia` has a new method `last_media_cleanup_time_inner`
   - There are new `'static` bounds in `MediaService` for the media cache stores
 - `event_cache::store::MemoryStore` implements `Clone`.
+- `BaseClient` now has a `handle_verification_events` field which is `true` by 
+  default and can be negated so the `NotificationClient` won't handle received 
+  verification events too, causing errors in the `VerificationMachine`.
 
 ## [0.10.0] - 2025-02-04
 

crates/matrix-sdk-base/src/client.rs

@@ -124,6 +124,10 @@ pub struct BaseClient {
     /// The trust requirement to use for decrypting events.
     #[cfg(feature = "e2e-encryption")]
     pub decryption_trust_requirement: TrustRequirement,
+
+    /// If the client should handle verification events received when syncing.
+    #[cfg(feature = "e2e-encryption")]
+    pub handle_verification_events: bool,
 }
 
 #[cfg(not(tarpaulin_include))]
@@ -160,6 +164,8 @@ impl BaseClient {
             room_key_recipient_strategy: Default::default(),
             #[cfg(feature = "e2e-encryption")]
             decryption_trust_requirement: TrustRequirement::Untrusted,
+            #[cfg(feature = "e2e-encryption")]
+            handle_verification_events: true,
         }
     }
 
@@ -169,6 +175,7 @@ impl BaseClient {
     pub async fn clone_with_in_memory_state_store(
         &self,
         cross_process_store_locks_holder_name: &str,
+        handle_verification_events: bool,
     ) -> Result<Self> {
         let config = StoreConfig::new(cross_process_store_locks_holder_name.to_owned())
             .state_store(MemoryStore::new());
@@ -189,6 +196,7 @@ impl BaseClient {
             room_info_notable_update_sender: self.room_info_notable_update_sender.clone(),
             room_key_recipient_strategy: self.room_key_recipient_strategy.clone(),
             decryption_trust_requirement: self.decryption_trust_requirement,
+            handle_verification_events,
         };
 
         if let Some(session_meta) = self.session_meta().cloned() {
@@ -207,6 +215,7 @@ impl BaseClient {
     pub async fn clone_with_in_memory_state_store(
         &self,
         cross_process_store_locks_holder: &str,
+        _handle_verification_events: bool,
     ) -> Result<Self> {
         let config = StoreConfig::new(cross_process_store_locks_holder.to_owned())
             .state_store(MemoryStore::new());
@@ -339,6 +348,10 @@ impl BaseClient {
         event: &AnySyncMessageLikeEvent,
         room_id: &RoomId,
     ) -> Result<()> {
+        if !self.handle_verification_events {
+            return Ok(());
+        }
+
         if let Some(olm) = self.olm_machine().await.as_ref() {
             olm.receive_verification_event(&event.clone().into_full_event(room_id.to_owned()))
                 .await?;

crates/matrix-sdk/CHANGELOG.md

@@ -29,6 +29,9 @@ simpler methods:
   [BCP 195](https://datatracker.ietf.org/doc/bcp195/).
   ([#4647](https://github.com/matrix-org/matrix-rust-sdk/pull/4647))
 - Add `Room::report_room` api. ([#4713](https://github.com/matrix-org/matrix-rust-sdk/pull/4713))
+- `Client::notification_client` will create a copy of the existing `Client`, but now it'll make sure 
+  it doesn't handle any verification events to avoid an issue with these events being received and 
+  processed twice if `NotificationProcessSetup` was `SingleSetup`.
 
 ### Bug Fixes
 

crates/matrix-sdk/src/client/mod.rs

@@ -2422,7 +2422,7 @@ impl Client {
                 self.inner.http_client.clone(),
                 self.inner
                     .base_client
-                    .clone_with_in_memory_state_store(&cross_process_store_locks_holder_name)
+                    .clone_with_in_memory_state_store(&cross_process_store_locks_holder_name, false)
                     .await?,
                 self.inner.caches.server_capabilities.read().await.clone(),
                 self.inner.respect_login_well_known,

testing/matrix-sdk-integration-testing/src/tests/e2ee.rs

@@ -1,4 +1,7 @@
-use std::sync::{Arc, Mutex};
+use std::{
+    sync::{Arc, Mutex},
+    time::Duration,
+};
 
 use anyhow::Result;
 use assert_matches::assert_matches;
@@ -26,14 +29,133 @@ use matrix_sdk::{
             secret_storage::secret::SecretEventContent,
             GlobalAccountDataEventType, OriginalSyncMessageLikeEvent,
         },
+        OwnedEventId,
     },
+    timeout::timeout,
     Client,
 };
+use matrix_sdk_ui::{
+    notification_client::{NotificationClient, NotificationProcessSetup},
+    sync_service::SyncService,
+};
 use similar_asserts::assert_eq;
 use tracing::{debug, warn};
 
 use crate::helpers::{SyncTokenAwareClient, TestClientBuilder};
 
+// This test reproduces a bug seen on clients that use the same `Client`
+// instance for both the usual sliding sync loop and for getting the event for a
+// notification (i.e. Element X Android). The verification events will be
+// processed twice, meaning incorrect verification states will be found and the
+// process will fail, especially with user verification.
+#[tokio::test(flavor = "multi_thread", worker_threads = 4)]
+async fn test_mutual_sas_verification_with_notification_client_ignores_verification_events(
+) -> Result<()> {
+    let encryption_settings =
+        EncryptionSettings { auto_enable_cross_signing: true, ..Default::default() };
+    let alice = TestClientBuilder::new("alice")
+        .use_sqlite()
+        .encryption_settings(encryption_settings)
+        .build()
+        .await?;
+
+    let alice_sync_service =
+        Arc::new(SyncService::builder(alice.clone()).build().await.expect("Wat"));
+
+    let bob = TestClientBuilder::new("bob")
+        .use_sqlite()
+        .encryption_settings(encryption_settings)
+        .build()
+        .await?;
+
+    let bob_sync_service = Arc::new(SyncService::builder(bob.clone()).build().await.expect("Wat"));
+    let bob_id = bob.user_id().expect("Bob should be logged in by now");
+
+    alice.encryption().wait_for_e2ee_initialization_tasks().await;
+    bob.encryption().wait_for_e2ee_initialization_tasks().await;
+
+    alice_sync_service.start().await;
+    bob_sync_service.start().await;
+
+    warn!("alice's device: {}", alice.device_id().unwrap());
+    warn!("bob's device: {}", bob.device_id().unwrap());
+
+    // Set up the test: Alice creates the DM room, and invites Bob, who joins
+    let invite = vec![bob_id.to_owned()];
+    let request = assign!(CreateRoomRequest::new(), {
+        invite,
+        is_direct: true,
+    });
+
+    let alice_room = alice.create_room(request).await?;
+    alice_room.enable_encryption().await?;
+    let room_id = alice_room.room_id();
+
+    warn!("alice has created and enabled encryption in the room");
+
+    timeout(
+        async {
+            loop {
+                if let Some(room) = bob.get_room(room_id) {
+                    room.join().await.expect("We should be able to join a room");
+                    return;
+                }
+            }
+        },
+        Duration::from_secs(1),
+    )
+    .await
+    .expect("Bob should have joined the room");
+
+    bob_sync_service.stop().await;
+
+    warn!("alice and bob are both aware of each other in the e2ee room");
+
+    alice_room
+        .send(RoomMessageEventContent::text_plain("Hello Bob"))
+        .await
+        .expect("We should be able to send a message to the room");
+
+    let alice_bob_identity = alice
+        .encryption()
+        .get_user_identity(bob_id)
+        .await
+        .expect("We should be able to fetch an identity from the store")
+        .expect("Bob's identity should be known by now");
+
+    warn!("alice has found bob's identity");
+
+    let alice_verification_request = alice_bob_identity.request_verification().await?;
+
+    // The notification client must use the `SingleProcess` setup
+    let notification_client = NotificationClient::new(
+        bob.clone(),
+        NotificationProcessSetup::SingleProcess { sync_service: bob_sync_service.clone() },
+    )
+    .await
+    .expect("couldn't create notification client");
+
+    let event_id = OwnedEventId::try_from(alice_verification_request.flow_id())
+        .expect("We should be able to get the event id from the verification flow id");
+
+    // Simulate getting the event for a notification
+    let _ = notification_client.get_notification_with_sliding_sync(room_id, &event_id).await;
+
+    let verification = bob
+        .encryption()
+        .get_verification_request(
+            alice_verification_request.own_user_id(),
+            alice_verification_request.flow_id(),
+        )
+        .await;
+
+    // If the ignore_verification_events parameter is true in NotificationClient,
+    // no verification request should have been received
+    assert!(verification.is_none());
+
+    Ok(())
+}
+
 #[tokio::test(flavor = "multi_thread", worker_threads = 4)]
 async fn test_mutual_sas_verification() -> Result<()> {
     let encryption_settings =