anonymousland-synapse/synapse/events
Andrew Morgan 7b06f85c0e
Ensure we use a copy of the event content dict before modifying it in serialize_event (#9585)
This bug was discovered by DINUM. We were modifying `serialized_event["content"]`, which - if you've got `USE_FROZEN_DICTS` turned on or are [using a third party rules module](17cd48fe51/synapse/events/third_party_rules.py (L73-L76)) - will raise a 500 if you try to a edit a reply to a message.

`serialized_event["content"]` could be set to the edit event's content, instead of a copy of it, which is bad as we attempt to modify it. Instead, we also end up modifying the original event's content. DINUM uses a third party rules module, which meant the event's content got frozen and thus an exception was raised.

To be clear, the problem is not that the event's content was frozen. In fact doing so helped us uncover the fact we weren't copying event content correctly.
2021-03-17 16:51:55 +00:00
..
__init__.py Prep work for removing outlier from internal_metadata (#9411) 2021-03-17 12:33:18 +00:00
builder.py Update black, and run auto formatting over the codebase (#9381) 2021-02-16 22:32:34 +00:00
snapshot.py Update black, and run auto formatting over the codebase (#9381) 2021-02-16 22:32:34 +00:00
spamcheck.py Pass SSO IdP information to spam checker's registration function (#9626) 2021-03-16 12:41:41 +00:00
third_party_rules.py Update black, and run auto formatting over the codebase (#9381) 2021-02-16 22:32:34 +00:00
utils.py Ensure we use a copy of the event content dict before modifying it in serialize_event (#9585) 2021-03-17 16:51:55 +00:00
validator.py Block clients from sending server ACLs that lock the local server out. (#8708) 2020-11-03 12:13:48 +00:00