Merge branch 'uhoreg/e2e_cross-signing_merged' into cross-signing_keys

2025-08-08 19:32:14 -04:00 · 2019-08-28 17:36:46 -07:00 · 2019-08-28 17:36:46 -07:00 · e3d3fbf63f
commit e3d3fbf63f
parent 96bda56370 72d296a7f3
207 changed files with 4990 additions and 1521 deletions
--- a/synapse/rest/client/v2_alpha/keys.py
+++ b/synapse/rest/client/v2_alpha/keys.py
@ -25,6 +25,7 @@ from synapse.http.servlet import (
    parse_json_object_from_request,
    parse_string,
 )
+from synapse.logging.opentracing import log_kv, set_tag, trace_using_operation_name
 from synapse.types import StreamToken

 from ._base import client_patterns, interactive_auth_handler
@ -69,6 +70,7 @@ class KeyUploadServlet(RestServlet):
        self.auth = hs.get_auth()
        self.e2e_keys_handler = hs.get_e2e_keys_handler()

+    @trace_using_operation_name("upload_keys")
    @defer.inlineCallbacks
    def on_POST(self, request, device_id):
        requester = yield self.auth.get_user_by_req(request, allow_guest=True)
@ -79,6 +81,14 @@ class KeyUploadServlet(RestServlet):
            # passing the device_id here is deprecated; however, we allow it
            # for now for compatibility with older clients.
            if requester.device_id is not None and device_id != requester.device_id:
+                set_tag("error", True)
+                log_kv(
+                    {
+                        "message": "Client uploading keys for a different device",
+                        "logged_in_id": requester.device_id,
+                        "key_being_uploaded": device_id,
+                    }
+                )
                logger.warning(
                    "Client uploading keys for a different device "
                    "(logged in as %s, uploading for %s)",
@ -180,10 +190,11 @@ class KeyChangesServlet(RestServlet):
        requester = yield self.auth.get_user_by_req(request, allow_guest=True)

        from_token_string = parse_string(request, "from")
+        set_tag("from", from_token_string)

        # We want to enforce they do pass us one, but we ignore it and return
        # changes after the "to" as well as before.
-        parse_string(request, "to")
+        set_tag("to", parse_string(request, "to"))

        from_token = StreamToken.from_string(from_token_string)