diff options
| author | Brendan Abolivier <babolivier@matrix.org> | 2019-07-29 16:07:12 +0200 |
|---|---|---|
| committer | Brendan Abolivier <babolivier@matrix.org> | 2019-07-29 16:07:12 +0200 |
| commit | 36c61df6595cf8a73b7ea0b8351c07378aac0b31 (patch) | |
| tree | b37234f8912b6a5d2338729bbefe23e552861436 | |
| parent | Merge pull request #5702 from matrix-org/babolivier/3pid-invite (diff) | |
| download | synapse-36c61df6595cf8a73b7ea0b8351c07378aac0b31.tar.xz | |
Check room ID and type of redacted event
| -rw-r--r-- | synapse/storage/events_worker.py | 32 |
1 files changed, 22 insertions, 10 deletions
diff --git a/synapse/storage/events_worker.py b/synapse/storage/events_worker.py index cc7df5cf14..f18129f7a3 100644 --- a/synapse/storage/events_worker.py +++ b/synapse/storage/events_worker.py @@ -277,27 +277,33 @@ class EventsWorkerStore(SQLBaseStore): # 2. have _get_event_from_row just call the first half of # that - orig_sender = yield self._simple_select_one_onecol( + orig_event_info = yield self._simple_select_one( table="events", keyvalues={"event_id": entry.event.redacts}, - retcol="sender", + retcols=["sender", "room_id", "type"], allow_none=True, ) + if not orig_event_info: + # We don't have the event that is being redacted, so we + # assume that the event isn't authorized for now. (If we + # later receive the event, then we will always redact + # it anyway, since we have this redaction) + continue + + if orig_event_info["room_id"] != entry.event.room_id: + continue + + if orig_event_info["type"] == EventTypes.Redaction: + continue + expected_domain = get_domain_from_id(entry.event.sender) if ( - orig_sender - and get_domain_from_id(orig_sender) == expected_domain + get_domain_from_id(orig_event_info["sender"]) == expected_domain ): # This redaction event is allowed. Mark as not needing a # recheck. entry.event.internal_metadata.recheck_redaction = False - else: - # We don't have the event that is being redacted, so we - # assume that the event isn't authorized for now. (If we - # later receive the event, then we will always redact - # it anyway, since we have this redaction) - continue if allow_rejected or not entry.event.rejected_reason: if check_redacted and entry.redacted_event: @@ -567,6 +573,12 @@ class EventsWorkerStore(SQLBaseStore): # Senders don't match, so the event isn't actually redacted redacted_event = None + if because.room_id != original_ev.room_id: + redacted_event = None + + if original_ev.type == EventTypes.Redaction: + redacted_event = None + cache_entry = _EventCacheEntry( event=original_ev, redacted_event=redacted_event ) |