bugfix: make msc3967 idempotent #16943

kegsay · 2024-02-20T13:24:23Z

MSC3967 was updated recently to make it more robust to network failures:

there is an existing cross-signing master key and it exactly matches the cross-signing master key provided in the request body. If there are any additional keys provided in the request (self signing key, user signing key) they MUST also match the existing keys stored on the server. In other words, the request contains no new keys. If there are new keys, UIA MUST be performed.

https://github.com/matrix-org/matrix-spec-proposals/blob/hughns/device-signing-upload-uia/proposals/3967-device-signing-upload-uia.md#proposal

This covers the case where the 200 OK is lost in transit so the client retries the upload, only to then get UIA'd.

Complement tests: matrix-org/complement#713 - passing example https://github.com/element-hq/synapse/actions/runs/7976948122/job/21778795094?pr=16943#step:7:8820

Pull Request Checklist

Pull request is based on the develop branch
Pull request includes a changelog file. The entry should:
- Be a short description of your change which makes sense to users. "Fixed a bug that prevented receiving messages from other servers." instead of "Moved X method from EventStore to EventWorkerStore.".
- Use markdown where necessary, mostly for code blocks.
- End with either a period (.) or an exclamation mark (!).
- Start with a capital letter.
- Feel free to credit yourself, by adding a sentence "Contributed by @github_username." or "Contributed by [Your Name]." to the end of the entry.
Code style is correct
(run the linters)

synapse/handlers/e2e_keys.py

changelog.d/16943.bugfix

Co-authored-by: reivilibre <oliverw@matrix.org>

@Fizzadar

No significant changes since 1.106.0rc1. - Send an email if the address is already bound to an user account. ([\#16819](element-hq/synapse#16819)) - Implement the rendezvous mechanism described by [MSC4108](matrix-org/matrix-spec-proposals#4108). ([\#17056](element-hq/synapse#17056)) - Support delegating the rendezvous mechanism described [MSC4108](matrix-org/matrix-spec-proposals#4108) to an external implementation. ([\#17086](element-hq/synapse#17086)) - Add validation to ensure that the `limit` parameter on `/publicRooms` is non-negative. ([\#16920](element-hq/synapse#16920)) - Return `400 M_NOT_JSON` upon receiving invalid JSON in query parameters across various client and admin endpoints, rather than an internal server error. ([\#16923](element-hq/synapse#16923)) - Make the CSAPI endpoint `/keys/device_signing/upload` idempotent. ([\#16943](element-hq/synapse#16943)) - Redact membership events if the user requested erasure upon deactivating. ([\#17076](element-hq/synapse#17076)) - Add a prompt in the contributing guide to manually configure icu4c. ([\#17069](element-hq/synapse#17069)) - Clarify what part of message retention is still experimental. ([\#17099](element-hq/synapse#17099)) - Use new receipts column to optimise receipt and push action SQL queries. Contributed by Nick @ Beeper (@Fizzadar). ([\#17032](element-hq/synapse#17032), [\#17096](element-hq/synapse#17096)) - Fix mypy with latest Twisted release. ([\#17036](element-hq/synapse#17036)) - Bump minimum supported Rust version to 1.66.0. ([\#17079](element-hq/synapse#17079)) - Add helpers to transform Twisted requests to Rust http Requests/Responses. ([\#17081](element-hq/synapse#17081)) - Fix type annotation for `visited_chains` after `mypy` upgrade. ([\#17125](element-hq/synapse#17125)) * Bump anyhow from 1.0.81 to 1.0.82. ([\#17095](element-hq/synapse#17095)) * Bump peaceiris/actions-gh-pages from 3.9.3 to 4.0.0. ([\#17087](element-hq/synapse#17087)) * Bump peaceiris/actions-mdbook from 1.2.0 to 2.0.0. ([\#17089](element-hq/synapse#17089)) * Bump pyasn1-modules from 0.3.0 to 0.4.0. ([\#17093](element-hq/synapse#17093)) * Bump pygithub from 2.2.0 to 2.3.0. ([\#17092](element-hq/synapse#17092)) * Bump ruff from 0.3.5 to 0.3.7. ([\#17094](element-hq/synapse#17094)) * Bump sigstore/cosign-installer from 3.4.0 to 3.5.0. ([\#17088](element-hq/synapse#17088)) * Bump twine from 4.0.2 to 5.0.0. ([\#17091](element-hq/synapse#17091)) * Bump types-pillow from 10.2.0.20240406 to 10.2.0.20240415. ([\#17090](element-hq/synapse#17090))

bugfix: make msc3967 idempotent

b751ef7

kegsay added the T-Defect label Feb 20, 2024

kegsay requested a review from a team as a code owner February 20, 2024 13:24

kegsay added 3 commits February 20, 2024 13:27

changelog

a4427cf

Linting

71f21d3

don't reupload if there's no new keys

3ce3814

kegsay mentioned this pull request Feb 20, 2024

Add tests for msc3967 matrix-org/complement#713

Merged

kegsay added 2 commits February 20, 2024 16:26

Merge branch 'develop' into kegan/msc3967

20583a0

Enable msc3967 in the complement image

3a02b4f

reivilibre approved these changes Mar 21, 2024

View reviewed changes

synapse/handlers/e2e_keys.py Show resolved Hide resolved

kegsay mentioned this pull request Apr 10, 2024

MSC3967: Do not require UIA when first uploading cross signing keys matrix-org/matrix-spec-proposals#3967

Merged

3 tasks

reivilibre approved these changes Apr 10, 2024

View reviewed changes

synapse/handlers/e2e_keys.py Show resolved Hide resolved

changelog.d/16943.bugfix Outdated Show resolved Hide resolved

kegsay and others added 2 commits April 10, 2024 11:08

Update changelog.d/16943.bugfix

87c8cba

Co-authored-by: reivilibre <oliverw@matrix.org>

More comments

132d8d1

kegsay enabled auto-merge (squash) April 15, 2024 10:33

kegsay merged commit 259442f into develop Apr 15, 2024
38 checks passed

kegsay deleted the kegan/msc3967 branch April 15, 2024 10:57

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

bugfix: make msc3967 idempotent #16943

bugfix: make msc3967 idempotent #16943

kegsay commented Feb 20, 2024 •

edited

bugfix: make msc3967 idempotent #16943

bugfix: make msc3967 idempotent #16943

Conversation

kegsay commented Feb 20, 2024 • edited

Pull Request Checklist

kegsay commented Feb 20, 2024 •

edited