mirror of
https://git.anonymousland.org/anonymousland/synapse-product.git
synced 2024-12-24 08:09:25 -05:00
Merge pull request #5307 from matrix-org/rav/server_keys/07-fix-notary-cache-poison
Stop overwriting server keys with other keys
This commit is contained in:
commit
862b2f9ad5
1
changelog.d/5307.bugfix
Normal file
1
changelog.d/5307.bugfix
Normal file
@ -0,0 +1 @@
|
|||||||
|
Fix bug where a notary server would sometimes forget old keys.
|
@ -399,7 +399,7 @@ class BaseV2KeyFetcher(object):
|
|||||||
|
|
||||||
@defer.inlineCallbacks
|
@defer.inlineCallbacks
|
||||||
def process_v2_response(
|
def process_v2_response(
|
||||||
self, from_server, response_json, time_added_ms, requested_ids=[]
|
self, from_server, response_json, time_added_ms
|
||||||
):
|
):
|
||||||
"""Parse a 'Server Keys' structure from the result of a /key request
|
"""Parse a 'Server Keys' structure from the result of a /key request
|
||||||
|
|
||||||
@ -422,10 +422,6 @@ class BaseV2KeyFetcher(object):
|
|||||||
|
|
||||||
time_added_ms (int): the timestamp to record in server_keys_json
|
time_added_ms (int): the timestamp to record in server_keys_json
|
||||||
|
|
||||||
requested_ids (iterable[str]): a list of the key IDs that were requested.
|
|
||||||
We will store the json for these key ids as well as any that are
|
|
||||||
actually in the response
|
|
||||||
|
|
||||||
Returns:
|
Returns:
|
||||||
Deferred[dict[str, FetchKeyResult]]: map from key_id to result object
|
Deferred[dict[str, FetchKeyResult]]: map from key_id to result object
|
||||||
"""
|
"""
|
||||||
@ -481,11 +477,6 @@ class BaseV2KeyFetcher(object):
|
|||||||
|
|
||||||
signed_key_json_bytes = encode_canonical_json(signed_key_json)
|
signed_key_json_bytes = encode_canonical_json(signed_key_json)
|
||||||
|
|
||||||
# for reasons I don't quite understand, we store this json for the key ids we
|
|
||||||
# requested, as well as those we got.
|
|
||||||
updated_key_ids = set(requested_ids)
|
|
||||||
updated_key_ids.update(verify_keys)
|
|
||||||
|
|
||||||
yield logcontext.make_deferred_yieldable(
|
yield logcontext.make_deferred_yieldable(
|
||||||
defer.gatherResults(
|
defer.gatherResults(
|
||||||
[
|
[
|
||||||
@ -498,7 +489,7 @@ class BaseV2KeyFetcher(object):
|
|||||||
ts_expires_ms=ts_valid_until_ms,
|
ts_expires_ms=ts_valid_until_ms,
|
||||||
key_json_bytes=signed_key_json_bytes,
|
key_json_bytes=signed_key_json_bytes,
|
||||||
)
|
)
|
||||||
for key_id in updated_key_ids
|
for key_id in verify_keys
|
||||||
],
|
],
|
||||||
consumeErrors=True,
|
consumeErrors=True,
|
||||||
).addErrback(unwrapFirstError)
|
).addErrback(unwrapFirstError)
|
||||||
@ -754,7 +745,6 @@ class ServerKeyFetcher(BaseV2KeyFetcher):
|
|||||||
|
|
||||||
response_keys = yield self.process_v2_response(
|
response_keys = yield self.process_v2_response(
|
||||||
from_server=server_name,
|
from_server=server_name,
|
||||||
requested_ids=[requested_key_id],
|
|
||||||
response_json=response,
|
response_json=response,
|
||||||
time_added_ms=time_now_ms,
|
time_added_ms=time_now_ms,
|
||||||
)
|
)
|
||||||
|
Loading…
Reference in New Issue
Block a user