Handle failures when publishing cross-signing identity

[richvdh]

When first logging in on a new account, we try to publish cross-signing keys (via /device_keys/upload).

This process can fail for example, if the homeserver is configured to use SSO auth. (Publishing the public keys requires user-interactive auth, which may fail. matrix-org/matrix-spec-proposals#3967 is an attempt to help with that, but is as yet unstandardised.)

If the process fails (either because the HS rejects it or the user gets bored of trying to do UIA and dismisses the dialog), we show an error:

After that point, the application is fully-functional, and will even allow you to set up 4S and store the private cross-signing keys in 4S. The problem is that there is no further attempt to publish the public keys, so the account is now totally broken until the user resets cross-signing.

Tasks

Beta Give feedback

1. Missing: Detect if own identity was already shared, in order to retry if needed. matrix-org/matrix-rust-sdk#1641
   encryption +1
2. EAR
3. EIR
4. If publishing the cross-signing keys fails, we give up trying but we should keep trying element-web#27253
   A-E2EE A-E2EE-Cross-Signing O-Occasional S-Major T-Defect +5
5. Element X

[richvdh]

We should also finish MSC3967, which will remove many of the causes of this problem in the first place.

[andybalaam]

This is part of "WebR Force Verification" https://github.com/element-hq/crypto-internal/issues/283

[richvdh]

This is part of "WebR Force Verification"

It's not just Web R: all the other clients are affected too.