synapse-product/synapse/crypto
Richard van der Hoff 88d7182ada
Improve startup checks for insecure notary configs (#5392)
It's not really a problem to trust notary responses signed by the old key so
long as we are also doing TLS validation.

This commit adds a check to the config parsing code at startup to check that
we do not have the insecure matrix.org key without tls validation, and refuses
to start without it.

This allows us to remove the rather alarming-looking warning which happens at
runtime.
2019-06-10 10:33:00 +01:00
..
__init__.py copyrights 2016-01-07 04:26:29 +00:00
context_factory.py Config option for verifying federation certificates (MSC 1711) (#4967) 2019-04-25 14:22:49 +01:00
event_signing.py Clean up debug logging (#5347) 2019-06-05 10:35:40 +01:00
keyring.py Improve startup checks for insecure notary configs (#5392) 2019-06-10 10:33:00 +01:00