Check the room_id of events when fetching room state/auth (#6524)
When we request the state/auth_events to populate a backwards extremity (on backfill or in the case of missing events in a transaction push), we should check that the returned events are in the right room rather than blindly using them in the room state or auth chain. Given that _get_events_from_store_or_dest takes a room_id, it seems clear that it should be sanity-checking the room_id of the requested events, so let's do it there.
This commit is contained in:
parent
20d5ba16e6
commit
35bbe4ca79
|
@ -0,0 +1,2 @@
|
||||||
|
Improve sanity-checking when receiving events over federation.
|
||||||
|
|
|
@ -571,7 +571,9 @@ class FederationHandler(BaseHandler):
|
||||||
|
|
||||||
@defer.inlineCallbacks
|
@defer.inlineCallbacks
|
||||||
@log_function
|
@log_function
|
||||||
def _get_state_for_room(self, destination, room_id, event_id, include_event_in_state):
|
def _get_state_for_room(
|
||||||
|
self, destination, room_id, event_id, include_event_in_state
|
||||||
|
):
|
||||||
"""Requests all of the room state at a given event from a remote homeserver.
|
"""Requests all of the room state at a given event from a remote homeserver.
|
||||||
|
|
||||||
Args:
|
Args:
|
||||||
|
@ -635,6 +637,10 @@ class FederationHandler(BaseHandler):
|
||||||
room_id (str)
|
room_id (str)
|
||||||
event_ids (Iterable[str])
|
event_ids (Iterable[str])
|
||||||
|
|
||||||
|
If we fail to fetch any of the events, a warning will be logged, and the event
|
||||||
|
will be omitted from the result. Likewise, any events which turn out not to
|
||||||
|
be in the given room.
|
||||||
|
|
||||||
Returns:
|
Returns:
|
||||||
Deferred[dict[str, EventBase]]: A deferred resolving to a map
|
Deferred[dict[str, EventBase]]: A deferred resolving to a map
|
||||||
from event_id to event
|
from event_id to event
|
||||||
|
@ -643,13 +649,11 @@ class FederationHandler(BaseHandler):
|
||||||
|
|
||||||
missing_events = set(event_ids) - fetched_events.keys()
|
missing_events = set(event_ids) - fetched_events.keys()
|
||||||
|
|
||||||
if not missing_events:
|
if missing_events:
|
||||||
return fetched_events
|
|
||||||
|
|
||||||
logger.debug(
|
logger.debug(
|
||||||
"Fetching unknown state/auth events %s for room %s",
|
"Fetching unknown state/auth events %s for room %s",
|
||||||
missing_events,
|
missing_events,
|
||||||
event_ids,
|
room_id,
|
||||||
)
|
)
|
||||||
|
|
||||||
room_version = yield self.store.get_room_version(room_id)
|
room_version = yield self.store.get_room_version(room_id)
|
||||||
|
@ -669,10 +673,36 @@ class FederationHandler(BaseHandler):
|
||||||
res = yield make_deferred_yieldable(
|
res = yield make_deferred_yieldable(
|
||||||
defer.DeferredList(deferreds, consumeErrors=True)
|
defer.DeferredList(deferreds, consumeErrors=True)
|
||||||
)
|
)
|
||||||
|
|
||||||
for success, result in res:
|
for success, result in res:
|
||||||
if success and result:
|
if success and result:
|
||||||
fetched_events[result.event_id] = result
|
fetched_events[result.event_id] = result
|
||||||
|
|
||||||
|
# check for events which were in the wrong room.
|
||||||
|
#
|
||||||
|
# this can happen if a remote server claims that the state or
|
||||||
|
# auth_events at an event in room A are actually events in room B
|
||||||
|
|
||||||
|
bad_events = list(
|
||||||
|
(event_id, event.room_id)
|
||||||
|
for event_id, event in fetched_events.items()
|
||||||
|
if event.room_id != room_id
|
||||||
|
)
|
||||||
|
|
||||||
|
for bad_event_id, bad_room_id in bad_events:
|
||||||
|
# This is a bogus situation, but since we may only discover it a long time
|
||||||
|
# after it happened, we try our best to carry on, by just omitting the
|
||||||
|
# bad events from the returned auth/state set.
|
||||||
|
logger.warning(
|
||||||
|
"Remote server %s claims event %s in room %s is an auth/state "
|
||||||
|
"event in room %s",
|
||||||
|
destination,
|
||||||
|
bad_event_id,
|
||||||
|
bad_room_id,
|
||||||
|
room_id,
|
||||||
|
)
|
||||||
|
del fetched_events[bad_event_id]
|
||||||
|
|
||||||
return fetched_events
|
return fetched_events
|
||||||
|
|
||||||
@defer.inlineCallbacks
|
@defer.inlineCallbacks
|
||||||
|
|
Loading…
Reference in New Issue