You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When making a reply, the text of the message replied to is copied in the reply. If a user can read the reply, but is not supposed to see the original message (e.g. due to history settings or due to the user purposely not being sent decryption keys), this leaks the original message to the user who is otherwise unable to read it.
The text was updated successfully, but these errors were encountered:
The text of the message is copied into the fallback message body; if we didn't do that (and relied on riot/other clients fishing out the message body from the event reference) then we'd be fine.
It's been a while, so I can't remember exactly when we can stop populating the fallback - I expect it's when all clients have/have been given enough warning to implement replies, and when bridges have also been updated to handle replies properly.
It's been a while, so I can't remember exactly when we can stop populating the fallback - I expect it's when all clients have/have been given enough warning to implement replies, and when bridges have also been updated to handle replies properly.
Never, as the spec is currently written (nothing stopping us from changing that in the future though).
When making a reply, the text of the message replied to is copied in the reply. If a user can read the reply, but is not supposed to see the original message (e.g. due to history settings or due to the user purposely not being sent decryption keys), this leaks the original message to the user who is otherwise unable to read it.
The text was updated successfully, but these errors were encountered: