feat: Be more generous with marking contacts as verified for now

Hocuri · Hocuri · commit 018a376e227f · 2025-10-22T23:15:39.000+02:00
Context: PR #7116 is backwards-incompatible with versions older than v2.20, and since the release hasn't reached all users yet, we currently can't release from main; for details see #7326. Issue #7326 explains how we can make this less breaking, but this only works if many contacts are verified. So, this PR here proposes to postpone the stricter rules for who is verified a bit: - Set verification timeout for invite codes to 1 week (this is still stricter than no timeout at all, which we had in the past) - Don't reset indirect verifications yet (we should reset them in a few months then, but this is just so that we can release from main again, and release e.g. channels).
diff --git a/src/securejoin.rs b/src/securejoin.rs
@@ -33,6 +33,15 @@ pub(crate) use qrinvite::QrInvite;
 
 use crate::token::Namespace;
 
+/// Only new QR codes cause a verification on Alice's side.
+/// When a QR code is too old, it is assumed that there was no direct QR scan,
+/// and that the QR code was potentially published on a website,
+/// so, Alice doesn't mark Bob as verified.
+// TODO For backwards compatibility reasons, this is still using a rather large value.
+// Set this to a lower value (e.g. 10 minutes)
+// when Delta Chat v2.21.0 is sufficiently rolled out
+const VERIFICATION_TIMEOUT_SECONDS: i64 = 7 * 24 * 3600;
+
 fn inviter_progress(
     context: &Context,
     contact_id: ContactId,
@@ -465,8 +474,8 @@ pub(crate) async fn handle_securejoin_handshake(
             }
             info!(context, "Fingerprint verified via Auth code.",);
 
-            // Mark the contact as verified if auth code is 600 seconds old.
-            if time() < timestamp + 600 {
+            // Mark the contact as verified if auth code is less than VERIFICATION_TIMEOUT_SECONDS seconds old.
+            if time() < timestamp + VERIFICATION_TIMEOUT_SECONDS {
                 mark_contact_id_as_verified(context, contact_id, Some(ContactId::SELF)).await?;
             }
             contact_id.regossip_keys(context).await?;
diff --git a/src/sql/migrations.rs b/src/sql/migrations.rs
@@ -1261,16 +1261,6 @@ CREATE INDEX gossip_timestamp_index ON gossip_timestamp (chat_id, fingerprint);
         .await?;
     }
 
-    inc_and_check(&mut migration_version, 134)?;
-    if dbversion < migration_version {
-        // Reset all indirect verifications.
-        sql.execute_migration(
-            "UPDATE contacts SET verifier=0 WHERE verifier!=1",
-            migration_version,
-        )
-        .await?;
-    }
-
     inc_and_check(&mut migration_version, 135)?;
     if dbversion < migration_version {
         sql.execute_migration(
