Skip to content
This repository has been archived by the owner on Apr 26, 2024. It is now read-only.

Rip out auth-event reconciliation code #12943

Merged
merged 14 commits into from
Jul 14, 2022
Merged

Rip out auth-event reconciliation code #12943

Changes from 1 commit
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
ac028f3
Rename some variables
richvdh Jun 1, 2022
e5403a5
Rip out auth-event reconciliation code
richvdh Jun 1, 2022
5b5ce5e
Do an early return when the two sets of auth events are the same.
richvdh Jun 1, 2022
7f6d721
Log the differences when the auth events are not the same.
richvdh Jun 1, 2022
2b80c6e
Improve logging when auth fails
richvdh Jun 1, 2022
77c6b2d
Update some comments
richvdh Jun 17, 2022
58fb17d
Stop returning `EventContext` from `_check_event_auth`
richvdh Jun 1, 2022
9f5baec
Reconcile state when processing incoming events during faster joins
richvdh Jun 24, 2022
0a11a39
Revert "Fix backfilled events being rejected for no `state_groups` (#…
richvdh Jun 30, 2022
ea54ba7
changelog
richvdh Jun 1, 2022
ad0c9b0
Merge branch 'develop' into rav/rip_out_event_auth_reconciliation
richvdh Jul 1, 2022
9806768
Merge branch 'develop' into rav/rip_out_event_auth_reconciliation
richvdh Jul 1, 2022
0988441
add clarifying comment
richvdh Jul 13, 2022
e0eec69
Merge remote-tracking branch 'origin/develop' into rav/rip_out_event_…
richvdh Jul 13, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
33 changes: 28 additions & 5 deletions synapse/handlers/federation_event.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1528,13 +1528,36 @@ async def _check_event_auth(
# https://spec.matrix.org/v1.3/server-server-api/#checks-performed-on-receipt-of-a-pdu:
# 5. Passes authorization rules based on the state before the event,
# otherwise it is rejected.
event_types = event_auth.auth_types_for_event(event.room_version, event)
prev_state_ids = await context.get_prev_state_ids(
StateFilter.from_types(event_types)
)
#
# ... however, if we only have partial state for the room, then there is a good
# chance that we'll be missing some of the state needed to auth the new event.
# So, we state-resolve the auth event that we are given against the state that
# we know about, which ensures things like bans are applied.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Might be worth mentioning that we will have fetched any missing auth events before we reach this point? It wasn't immediately obvious to me why we'd have the auth events but not the state.

if context.partial_state:
room_version = await self._store.get_room_version_id(event.room_id)

local_state_id_map = await context.get_prev_state_ids()
claimed_auth_events_id_map = {
(ev.type, ev.state_key): ev.event_id for ev in claimed_auth_events
}

state_for_auth_id_map = (
await self._state_resolution_handler.resolve_events_with_store(
event.room_id,
room_version,
[local_state_id_map, claimed_auth_events_id_map],
event_map=None,
state_res_store=StateResolutionStore(self._store),
)
)
else:
event_types = event_auth.auth_types_for_event(event.room_version, event)
state_for_auth_id_map = await context.get_prev_state_ids(
StateFilter.from_types(event_types)
)

calculated_auth_event_ids = self._event_auth_handler.compute_auth_events(
event, prev_state_ids, for_verification=True
event, state_for_auth_id_map, for_verification=True
)

# if those are the same, we're done here.
Expand Down