summary refs log tree commit diff
path: root/synapse/crypto/resource (unfollow)
Commit message (Collapse)AuthorFilesLines
2023-11-09Support running tests in CI.Patrick Cloke2-9/+26
2023-11-09Back out unneeded changes.Patrick Cloke1-7/+2
2023-11-09Use dbname instead of database for Postgres config. (#16618)Patrick Cloke5-8/+9
2023-11-09Use _invalidate_cache_and_stream_bulk in more places. (#16616)Patrick Cloke8-47/+72
This takes advantage of the new bulk method in more places to invalidate caches for many keys at once (and then to stream that over replication).
2023-11-09Another instance of psycopg2.Patrick Cloke1-1/+1
2023-11-09Backout unneeded changes.Patrick Cloke5-36/+4
2023-11-09Convert simple_select_one_txn and simple_select_one to return tuples. (#16612)Patrick Cloke33-279/+283
2023-11-09Return attrs for more media repo APIs. (#16611)Patrick Cloke10-110/+148
2023-11-09Bulk-invalidate e2e cached queries after claiming keys (#16613)David Robertson6-28/+249
Co-authored-by: Patrick Cloke <patrickc@matrix.org>
2023-11-08Bump pyicu from 2.11 to 2.12 (#16603)dependabot[bot]1-2/+2
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-08Bump serde_json from 1.0.107 to 1.0.108 (#16604)dependabot[bot]1-2/+2
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-07Avoid updating the same rows multiple times with simple_update_many_txn. ↵Patrick Cloke3-6/+4
(#16609) simple_update_many_txn had a bug in it which would cause each update to be applied twice.
2023-11-07Avoid executing no-op queries. (#16583)Patrick Cloke7-39/+39
If simple_{insert,upsert,update}_many_txn is called without any data to modify then return instead of executing the query. This matches the behavior of simple_{select,delete}_many_txn.
2023-11-07More tests for the simple_* methods. (#16596)Patrick Cloke3-27/+633
Expand tests for the simple_* database methods, additionally test against both PostgreSQL and SQLite variants.
2023-11-06Collect information for PushRuleEvaluator in parallel. (#16590)Patrick Cloke4-34/+87
Fetch information needed for push rule evaluation in parallel. Ideally this would use query pipelining, but this is not available in psycopg2. Due to the database thread pool this may result in little to no parallelization.
2023-11-06Bump setuptools_rust to match pinned version. (#16605)Patrick Cloke2-1/+2
2023-11-06Support reactor timing metric on more reactors. (#16532)Patrick Cloke3-29/+106
Previously only Twisted's EPollReactor was compatible with the reactor timing metric, notably not working when asyncio was used. After this change, the following configurations support the reactor timing metric: * poll, epoll, or select reactors * asyncio reactor with a poll, epoll, select, /dev/poll, or kqueue event loop.
2023-11-06Bump setuptools-rust from 1.8.0 to 1.8.1 (#16601)dependabot[bot]1-3/+3
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-06Bump types-pyyaml from 6.0.12.11 to 6.0.12.12 (#16602)dependabot[bot]1-3/+3
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-06Bump types-jsonschema from 4.19.0.3 to 4.19.0.4 (#16599)dependabot[bot]1-3/+3
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-06Bump ruff from 0.0.292 to 0.1.4 (#16600)dependabot[bot]2-21/+21
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-03Simplify event persistence code (#16584)Patrick Cloke4-312/+326
The event persistence code used to handle multiple rooms at a time, but was simplified to only ever be called with a single room at a time (different rooms are now handled in parallel). The code is still generic to multiple rooms causing a lot of work that is unnecessary (e.g. unnecessary loops, and partitioning data by room). This strips out the ability to handle multiple rooms at once, greatly simplifying the code.
2023-11-02Use simple_select_many_txn in event persistance code. (#16585)Patrick Cloke2-5/+12
Just to standardize on the normal helpers, it might also have a slight perf improvement on PostgreSQL which will now use `ANY (?)` instead of `IN (?, ?, ...)`.
2023-11-01Bump twisted from 23.8.0 to 23.10.0 (#16588)dependabot[bot]5-12/+12
2023-10-31Do not call getfullargspec on every call. (#16589)Patrick Cloke2-2/+6
getfullargspec is relatively expensive and the results will not change between calls, so precalculate it outside the wrapper.
2023-10-31Remove remaining usage of cursor_to_dict. (#16564)Patrick Cloke18-157/+300
2023-10-31Fix import ordering issue introduced in ↵Patrick Cloke1-1/+1
7a3a55ac98847d7adb0e200378abe07ef8d0c645.
2023-10-31Update changelog v1.96.0rc1Erik Johnston1-5/+5
2023-10-311.96.0rc1Erik Johnston41-39/+68
2023-10-31Revert "1.96.0rc1"Erik Johnston41-68/+39
This reverts commit 4724a6ded136c727bcff5082b94c2b3d6355e908.
2023-10-311.95.1 v1.95.1Erik Johnston3-1/+21
2023-10-31Merge pull request from GHSA-mp92-3jfm-3575Patrick Cloke3-1/+16
2023-10-31Merge pull request from GHSA-mp92-3jfm-3575Patrick Cloke3-1/+16
2023-10-311.96.0rc1Erik Johnston41-39/+68
2023-10-30Claim local one-time-keys in bulk (#16565)David Robertson4-114/+308
Co-authored-by: Patrick Cloke <clokep@users.noreply.github.com>
2023-10-30Clients link fixed in README (#16569)Niranjan Kurhade2-1/+2
2023-10-30Add fast path for replication events stream fetch (#16580)Erik Johnston2-0/+7
We can bail early if the from token is greater than or equal to the current token.
2023-10-30Claim fallback keys in bulk (#16570)David Robertson5-0/+162
2023-10-30Bump setuptools-rust from 1.7.0 to 1.8.0 (#16574)dependabot[bot]3-6/+6
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: David Robertson <davidr@element.io>
2023-10-30Run actions/setup-go after checking out complement (#16567)David Robertson4-6/+16
2023-10-30Fix HTTP repl response to use minimum token (#16578)Erik Johnston2-1/+2
2023-10-30Bump cryptography from 41.0.4 to 41.0.5 (#16572)dependabot[bot]1-24/+24
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-30Bump serde from 1.0.189 to 1.0.190 (#16577)dependabot[bot]1-4/+4
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-30Bump phonenumbers from 8.13.22 to 8.13.23 (#16576)dependabot[bot]1-3/+3
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-30Bump black from 23.10.0 to 23.10.1 (#16575)dependabot[bot]1-19/+19
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-30Bump types-psycopg2 from 2.9.21.14 to 2.9.21.15 (#16573)dependabot[bot]1-5/+7
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-27Portdb: don't copy a table that gets rebuilt (#16563)David Robertson2-1/+2
2023-10-27complement: enable dirty runs (#16520)kegsay5-4/+15
* complement: enable dirty runs * Add changelog * Set a low connpool limit when running in Complement Dirty runs can cause many containers to be running concurrently, which seems to easily exhaust resources on the host. The increased speedup from dirty runs also seems to use more db connections on workers, which are misconfigured currently to have `SUM(workers * cp_max) > max_connections`, causing ``` FATAL: sorry, too many clients already ``` which results in tests failing. * Try p=2 concurrency to restrict slowness of servers which causes partial state join tests to flake * Debug logging * Only run flakey tests * Only adjust connection pool limits in worker mode * Move cp vars to somewhere where they get executed in CI * Move cp values back to where they actually work * Debug logging * Try p=1 to see if this makes worker mode happier * Remove debug logging
2023-10-27Ensure local invited & knocking users leave before purge. (#16559)Patrick Cloke4-4/+73
This is mostly useful for federated rooms where some users would get stuck in the invite or knock state when the room was purged from their homeserver.
2023-10-27Reduce amount of caches POSITIONS we send (#16561)Erik Johnston2-0/+11
Follow on from / actually correctly does #16557
2023-10-27Reduce spurious replication catchup (#16555)Erik Johnston2-5/+10
2023-10-27Fix cross-worker ratelimiting (#16558)Erik Johnston2-16/+58
c.f. #16481
2023-10-27Reduce replication traffic due to reflected cache stream POSITION (#16557)Erik Johnston2-1/+19
2023-10-27Add new module API for adding custom fields to events `unsigned` section ↵Erik Johnston19-44/+194
(#16549)
2023-10-26Remove more usages of cursor_to_dict. (#16551)Patrick Cloke26-134/+193
Mostly to improve type safety.
2023-10-26Add a new module API to update user presence state. (#16544)Patrick Cloke12-53/+221
This adds a module API which allows a module to update a user's presence state/status message. This is useful for controlling presence from an external system. To fully control presence from the module the presence.enabled config parameter gains a new state of "untracked" which disables internal tracking of presence changes via user actions, etc. Only updates from the module will be persisted and sent down sync properly).
2023-10-26Convert simple_select_list and simple_select_list_txn to return lists of ↵Patrick Cloke31-509/+609
tuples (#16505) This should use fewer allocations and improves type hints.
2023-10-25Pin the recommended poetry version in contributors' guide (#16550)David Robertson2-1/+2
2023-10-25Allow multiple workers to write to receipts stream. (#16432)Erik Johnston15-89/+604
Fixes #16417
2023-10-25Fix tests on Twisted trunk. (#16528)Patrick Cloke6-111/+95
Twisted trunk makes a change to the `TLSMemoryBIOFactory` where the underlying protocol is changed from `TLSMemoryBIOProtocol` to `BufferingTLSTransport` to improve performance of TLS code (see https://github.com/twisted/twisted/issues/11989). In order to properly hook this code up in tests we need to pass the test reactor's clock into `TLSMemoryBIOFactory` to avoid the global (trial) reactor being used by default. Twisted does something similar internally for tests: https://github.com/twisted/twisted/blob/157cd8e659705940e895d321339d467e76ae9d0a/src/twisted/web/test/test_agent.py#L871-L874
2023-10-24Fix http/s proxy authentication with long username/passwords (#16504)Richard Brežák3-1/+23
2023-10-24Revert "Add test case to detect dodgy b64 encoding"David Robertson1-14/+0
This reverts commit 5fe76b9434e22bb752c252dd9c66c3c2bfb90dfc. I think I had this accidentally commited on my local develop branch, and so it accidentally got merged into upstream develop. This should re-land with corrections in #16504.
2023-10-24Rework alias and public room list rules docs (#16541)David Robertson2-34/+133
2023-10-24Remove duplicate call to wake a remote destination when using federation ↵Jason Little3-13/+1
sending worker (#16515)
2023-10-241.95.0 v1.95.0David Robertson4-2/+14
2023-10-23Replace all Prometheus datasource UIDs of the Grafana Dashboard with the ↵Michael Sasser2-314/+306
variable `${DS_PROMETHEUS}` and remove `__inputs` (#16471)
2023-10-23Add test case to detect dodgy b64 encodingDavid Robertson1-0/+14
2023-10-23Fix type hint errors from Twisted trunk (#16526)Patrick Cloke6-8/+17
2023-10-23Fix bug where a new writer advances their token too quickly (#16473)Erik Johnston9-77/+305
* Fix bug where a new writer advances their token too quickly When starting a new writer (for e.g. persisting events), the `MultiWriterIdGenerator` doesn't have a minimum token for it as there are no rows matching that new writer in the DB. This results in the the first stream ID it acquired being announced as persisted *before* it actually finishes persisting, if another writer gets and persists a subsequent stream ID. This is due to the logic of setting the minimum persisted position to the minimum known position of across all writers, and the new writer starts off not being considered. * Fix sending out POSITIONs when our token advances without update Broke in #14820 * For replication HTTP requests, only wait for minimal position
2023-10-23Fix bug that could cause a `/sync` to tightloop with sqlite after restart ↵Erik Johnston2-1/+5
(#16540) This could happen if the last rows in the account data stream were inserted into `account_data`. After a restart the max account ID would be calculated without looking at the `account_data` table, and so have an old ID.
2023-10-23Mention how to redirect the Jaeger traces to a specific Jaeger instance (#16531)Marcel2-0/+6
2023-10-23Force TLS certificate verification in registration script. (#16530)Denis Kasak2-2/+3
If using the script remotely, there's no particularly convincing reason to disable certificate verification, as this makes the connection interceptible. If on the other hand, the script is used locally (the most common use case), you can simply target the HTTP listener and avoid TLS altogether. This is what the script already attempts to do if passed a homeserver configuration YAML file.
2023-10-23Remove the last reference to event_txn_id. (#16521)Patrick Cloke3-7/+5
This table was no longer used, except for a background process which purged old entries in it.
2023-10-23Bump matrix-synapse-ldap3 from 0.2.2 to 0.3.0 (#16539)David Robertson2-4/+5
2023-10-23Bump black from 23.9.1 to 23.10.0 (#16538)dependabot[bot]1-23/+19
Bumps [black](https://github.com/psf/black) from 23.9.1 to 23.10.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/23.9.1...23.10.0) --- updated-dependencies: - dependency-name: black dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-23Bump types-requests from 2.31.0.2 to 2.31.0.10 (#16537)dependabot[bot]1-23/+13
Bumps [types-requests](https://github.com/python/typeshed) from 2.31.0.2 to 2.31.0.10. - [Commits](https://github.com/python/typeshed/commits) --- updated-dependencies: - dependency-name: types-requests dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-23Bump gitpython from 3.1.37 to 3.1.40 (#16534)dependabot[bot]1-4/+4
Bumps [gitpython](https://github.com/gitpython-developers/GitPython) from 3.1.37 to 3.1.40. - [Release notes](https://github.com/gitpython-developers/GitPython/releases) - [Changelog](https://github.com/gitpython-developers/GitPython/blob/main/CHANGES) - [Commits](https://github.com/gitpython-developers/GitPython/compare/3.1.37...3.1.40) --- updated-dependencies: - dependency-name: gitpython dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-23Bump types-pillow from 10.0.0.3 to 10.1.0.0 (#16536)dependabot[bot]1-4/+4
Bumps [types-pillow](https://github.com/python/typeshed) from 10.0.0.3 to 10.1.0.0. - [Commits](https://github.com/python/typeshed/commits) --- updated-dependencies: - dependency-name: types-pillow dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-23Bump pygithub from 1.59.1 to 2.1.1 (#16535)dependabot[bot]1-5/+8
Bumps [pygithub](https://github.com/pygithub/pygithub) from 1.59.1 to 2.1.1. - [Release notes](https://github.com/pygithub/pygithub/releases) - [Changelog](https://github.com/PyGithub/PyGithub/blob/main/doc/changes.rst) - [Commits](https://github.com/pygithub/pygithub/compare/v1.59.1...v2.1.1) --- updated-dependencies: - dependency-name: pygithub dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-20Clarify presence router docs. (#16529)Patrick Cloke2-3/+12
2023-10-19Build Debian packages for Ubuntu 23.10 Mantic Minotaur (#16524)David Robertson2-0/+2
2023-10-19Mark sync as limited if there is a gap in the timeline (#16485)Erik Johnston5-33/+166
This splits thinsg into two queries, but most of the time we won't have new event backwards extremities so this shouldn't actually add an extra RTT for the majority of cases. Note this removes the check for events with no prev events, but that was part of MSC2716 work that has since been removed.
2023-10-18Avoid sending massive replication updates when purging a room. (#16510)Patrick Cloke4-30/+115
2023-10-18Improve performance of delete device messages query (#16492)Mathieu Velten3-7/+11
2023-10-18Run trial/integration tests if .ci is modified. (#16512)Patrick Cloke2-0/+7
2023-10-18Bump urllib3 from 1.26.17 to 1.26.18 (#16516)dependabot[bot]1-3/+3
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-17Test against Python 3.12 release (#16511)Patrick Cloke2-2/+3
2023-10-17Update the changelog. v1.95.0rc1Patrick Cloke1-2/+2
2023-10-171.95.0rc1Patrick Cloke33-31/+55
2023-10-17Convert DeviceLastConnectionInfo to attrs. (#16507)Patrick Cloke4-103/+104
To improve type safety & memory usage.
2023-10-17Fix a bug where servers could be marked as up when they were failing (#16506)Patrick Cloke3-13/+93
After this change a server will only be reported as back online if they were previously having requests fail.
2023-10-16Update the release script to remind releaser to check for special release ↵reivilibre2-0/+5
notes. (#16461) * Add reminder to check special release notes board in release script * Newsfile Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org> * Update release.py * Bah, black --------- Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org>
2023-10-16Convert state delta processing from a dict to attrs. (#16469)Patrick Cloke8-109/+111
For improved type checking & memory usage.
2023-10-16Bump pillow from 10.0.1 to 10.1.0 (#16498)dependabot[bot]1-55/+55
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-16Bump serde from 1.0.188 to 1.0.189 (#16494)dependabot[bot]1-4/+4
Bumps [serde](https://github.com/serde-rs/serde) from 1.0.188 to 1.0.189. - [Release notes](https://github.com/serde-rs/serde/releases) - [Commits](https://github.com/serde-rs/serde/compare/v1.0.188...v1.0.189) --- updated-dependencies: - dependency-name: serde dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-16Bump sentry-sdk from 1.31.0 to 1.32.0 (#16496)dependabot[bot]1-3/+3
Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 1.31.0 to 1.32.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/1.31.0...1.32.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-16Remove useless async job to delete device messages on sync (#16491)Mathieu Velten3-24/+4
2023-10-16Bump jsonschema from 4.19.0 to 4.19.1 (#16500)dependabot[bot]1-3/+3
Bumps [jsonschema](https://github.com/python-jsonschema/jsonschema) from 4.19.0 to 4.19.1. - [Release notes](https://github.com/python-jsonschema/jsonschema/releases) - [Changelog](https://github.com/python-jsonschema/jsonschema/blob/main/CHANGELOG.rst) - [Commits](https://github.com/python-jsonschema/jsonschema/compare/v4.19.0...v4.19.1) --- updated-dependencies: - dependency-name: jsonschema dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-16Bump types-jsonschema from 4.17.0.10 to 4.19.0.3 (#16499)dependabot[bot]1-4/+7
Bumps [types-jsonschema](https://github.com/python/typeshed) from 4.17.0.10 to 4.19.0.3. - [Commits](https://github.com/python/typeshed/commits) --- updated-dependencies: - dependency-name: types-jsonschema dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-16Bump packaging from 23.1 to 23.2 (#16497)dependabot[bot]1-3/+14
Bumps [packaging](https://github.com/pypa/packaging) from 23.1 to 23.2. - [Release notes](https://github.com/pypa/packaging/releases) - [Changelog](https://github.com/pypa/packaging/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pypa/packaging/compare/23.1...23.2) --- updated-dependencies: - dependency-name: packaging dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-16Bump pyo3-log from 0.8.3 to 0.8.4 (#16495)dependabot[bot]1-2/+2
Bumps [pyo3-log](https://github.com/vorner/pyo3-log) from 0.8.3 to 0.8.4. - [Changelog](https://github.com/vorner/pyo3-log/blob/main/CHANGELOG.md) - [Commits](https://github.com/vorner/pyo3-log/compare/v0.8.3...v0.8.4) --- updated-dependencies: - dependency-name: pyo3-log dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-14Clean up logging on event persister endpoints (#16488)Richard van der Hoff3-6/+14
2023-10-12Fix typo in useful_sql_for_admins.md (#16477)Laurence Gill2-1/+2
2023-10-12Revert "Drop unused tables & unneeded access token ID for events. (#16268)" ↵Patrick Cloke4-29/+8
(#16465) This reverts commit cabd57746004fe2dacc11aa8d373854a3d25e306. There are additional usages of these tables which need to be removed first.
2023-10-12Update complement.sh to match new public API shape (#16466)kegsay3-2/+4
* Update complement.sh to match new public API shape Sister PR to https://github.com/matrix-org/complement/pull/666 Context: https://github.com/matrix-org/complement/issues/654#issuecomment-1746613495 * Changelog * Pedantry * Run complement plz
2023-10-11Convert user_get_threepids response to attrs. (#16468)Patrick Cloke9-18/+31
This improves type annotations by not having a dictionary of Any values.
2023-10-11Convert simple_select_many_batch, simple_select_many_txn to tuples. (#16444)Patrick Cloke23-442/+640
2023-10-11Handle content types with parameters. (#16440)Patrick Cloke3-2/+22
2023-10-10Inline simple_search_list/simple_search_list_txn. (#16434)Patrick Cloke4-73/+49
This only has a single use and is over abstracted. Inline it so that we can improve type hints.
2023-10-10Add CVE number for advisory GHSA-5chr-wjw5-3gq4.Patrick Cloke1-1/+1
2023-10-10Add security advisory note to the changelogOlivier Wilkinson (reivilibre)1-0/+13
2023-10-101.94.0 v1.94.0Olivier Wilkinson (reivilibre)3-1/+12
2023-10-10Add DB indices to speed up purging rooms (#16457)David Robertson4-0/+35
2023-10-09Disable statement timeout whilst purging rooms (#16455)reivilibre2-0/+6
* Disable statement timeout whilst purging rooms * Newsfile Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org> * Note the introduction version --------- Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org>
2023-10-09Don't block CI on sign-off (#16454)Erik Johnston2-1/+1
As this doesn't work with the private sign off flow.
2023-10-09Bump ruff from 0.0.290 to 0.0.292 (#16449)dependabot[bot]7-28/+20
* Bump ruff from 0.0.290 to 0.0.292 Bumps [ruff](https://github.com/astral-sh/ruff) from 0.0.290 to 0.0.292. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/BREAKING_CHANGES.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.0.290...v0.0.292) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * Fix up lint --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Erik Johnston <erik@matrix.org>
2023-10-09Bump netaddr from 0.8.0 to 0.9.0 (#16453)dependabot[bot]1-3/+3
Bumps [netaddr](https://github.com/drkjam/netaddr) from 0.8.0 to 0.9.0. - [Release notes](https://github.com/drkjam/netaddr/releases) - [Changelog](https://github.com/netaddr/netaddr/blob/master/CHANGELOG) - [Commits](https://github.com/drkjam/netaddr/compare/0.8.0...0.9.0) --- updated-dependencies: - dependency-name: netaddr dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-09Bump psycopg2 from 2.9.8 to 2.9.9 (#16452)dependabot[bot]1-13/+13
Bumps [psycopg2](https://github.com/psycopg/psycopg2) from 2.9.8 to 2.9.9. - [Changelog](https://github.com/psycopg/psycopg2/blob/master/NEWS) - [Commits](https://github.com/psycopg/psycopg2/compare/2.9.8...2.9.9) --- updated-dependencies: - dependency-name: psycopg2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-09Bump bleach from 6.0.0 to 6.1.0 (#16451)dependabot[bot]1-5/+5
Bumps [bleach](https://github.com/mozilla/bleach) from 6.0.0 to 6.1.0. - [Changelog](https://github.com/mozilla/bleach/blob/main/CHANGES) - [Commits](https://github.com/mozilla/bleach/compare/v6.0.0...v6.1.0) --- updated-dependencies: - dependency-name: bleach dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-09Bump types-bleach from 6.0.0.4 to 6.1.0.0 (#16450)dependabot[bot]1-4/+4
Bumps [types-bleach](https://github.com/python/typeshed) from 6.0.0.4 to 6.1.0.0. - [Commits](https://github.com/python/typeshed/commits) --- updated-dependencies: - dependency-name: types-bleach dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-09Fix possible AttributeError when account-api is called over unix socket (#16404)Christoph2-1/+2
Fixes #16396
2023-10-06Apply join rate limiter outside the lineariser (#16441)David Robertson3-20/+48
2023-10-06Convert simple_select_list_paginate_txn to return tuples. (#16433)Patrick Cloke7-39/+67
2023-10-06Return ThumbnailInfo in more places (#16438)Patrick Cloke6-80/+90
Improves type hints by using concrete types instead of dictionaries.
2023-10-06Drop unused tables & unneeded access token ID for events. (#16268)Patrick Cloke4-8/+29
Drop the event_txn_id table and the tables related to MSC2716, which is no longer supported in Synapse.
2023-10-06Stop sending incorrect knock_state_events. (#16403)Patrick Cloke6-23/+8
Synapse was incorrectly implemented with a knock_state_events property on some APIs (instead of knock_room_state). This was correct in Synapse 1.70.0, but *both* fields were sent to also be compatible with Synapse versions expecting the wrong field. Enough time has passed that only the correct field needs to be included/handled.
2023-10-06Fix comments related to replication. (#16428)Patrick Cloke3-3/+2
2023-10-06Add documentation on background updates. (#16420)Patrick Cloke2-0/+62
2023-10-06Register media servlets via regex. (#16419)Patrick Cloke20-337/+297
This converts the media servlet URLs in the same way as (most) of the rest of Synapse. This will give more flexibility in the versions each endpoint exists under.
2023-10-06Bump pyo3 from 0.17.1 to 0.19.2 (#16162)V024604-17/+29
Signed-off-by: Kai A. Hiller <V02460@gmail.com>
2023-10-05Remove unused method. (#16435)Patrick Cloke2-20/+1
2023-10-05Remove manys calls to cursor_to_dict (#16431)Patrick Cloke16-228/+320
This avoids calling cursor_to_dict and then immediately unpacking the values in the dict for other users. By not creating the intermediate dictionary we can avoid allocating the dictionary and strings for the keys, which should generally be more performant. Additionally this improves type hints by avoid Dict[str, Any] dictionaries coming out of the database layer.
2023-10-05Add __slots__ to replication commands. (#16429)Patrick Cloke2-1/+27
To slightly reduce the amount of memory each command takes.
2023-10-05Factor out `MultiWriter` token from `RoomStreamToken` (#16427)Erik Johnston9-61/+115
2023-10-04Add type hints to synmark. (#16421)Patrick Cloke7-48/+90
2023-10-04Some refactors around receipts stream (#16426)Erik Johnston16-80/+111
2023-10-03Update changelog v1.94.0rc1David Robertson1-2/+2
2023-10-031.94.0rc1David Robertson27-25/+59
2023-10-03Bump urllib3 from 1.26.15 to 1.26.17 (#16422)dependabot[bot]1-4/+4
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-03Add note to 'federation_domain_whitelist' option (#16416)Erik Johnston2-0/+6
2023-10-02Clean-up old release notes (#16418)Patrick Cloke3-134/+136
Fixes some broken formatting from the reStructuedText to Markdown conversion and fixes some typos.
2023-10-02mypy plugin to check `@cached` return types (#14911)David Robertson8-59/+324
Co-authored-by: David Robertson <davidr@element.io> Co-authored-by: Patrick Cloke <patrickc@matrix.org> Co-authored-by: Erik Johnston <erik@matrix.org> Assert that the return type of callables wrapped in @cached and @cachedList are cachable (aka immutable).
2023-10-02Remove Python version from `/_synapse/admin/v1/server_version` (#16380)MomentQYC4-12/+9
There's no reason to expose the full Python version over what is frequently a public API.
2023-10-02Bump phonenumbers from 8.13.19 to 8.13.22 (#16413)dependabot[bot]1-3/+3
2023-10-02Bump msgpack from 1.0.6 to 1.0.7 (#16412)dependabot[bot]1-57/+57
2023-10-02Bump types-netaddr from 0.8.0.9 to 0.9.0.1 (#16411)dependabot[bot]1-3/+3
2023-10-02Bump pydantic from 2.3.0 to 2.4.2 (#16410)dependabot[bot]1-111/+111
2023-10-02Bump psycopg2 from 2.9.7 to 2.9.8 (#16409)dependabot[bot]1-12/+22
2023-10-02Bump regex from 1.9.5 to 1.9.6 (#16408)dependabot[bot]1-4/+4
2023-09-29Don't use separate copy_read method.Patrick Cloke2-83/+60
2023-09-29Use _do_execute for COPY TO/FROM.Patrick Cloke1-10/+25
2023-09-29Lint.Patrick Cloke9-28/+37
2023-09-29Downgrade repl stream time out error to warning (#16401)Erik Johnston2-1/+2
This is because if a worker reaches ~100% CPU then everything starts lagging and we hit the log line a lot. When at error we invoke sentry and that has a lot of overhead, which then puts even more pressure on the worker.
2023-09-29Support rendering some media downloads as inline (#15988)Will Hunt4-6/+106
Use an `inline` Content-Disposition header when the media is "safe" to display inline (some known text, image, video, audio formats).
2023-09-29TweaksPatrick Cloke3-36/+83
2023-09-28Add to poetry env.Patrick Cloke2-3/+67
2023-09-28Remove warnings from the docs about using message retention. (#16382)Patrick Cloke3-7/+4
There are no known bugs in the message retention code, but it is possible that there still exists race conditions. Additional fixes will be made as reported.
2023-09-28Improve state types. (#16395)Patrick Cloke3-8/+11
2023-09-28Use modern config for maturin. (#16394)Patrick Cloke3-0/+4
This allows maturin >= 0.15 to build the properly named shared library object. For now the old configuration is also kept to allow for older maturin installs to be used.
2023-09-26Add a cache around server ACL checking (#16360)Patrick Cloke11-85/+235
* Pre-compiles the server ACLs onto an object per room and invalidates them when new events come in. * Converts the server ACL checking into Rust.
2023-09-26Implement MSC4028: push all encrypted events. (#16361)Patrick Cloke8-1/+31
This unstable push rule is implemented behind an experimental configuration flag.
2023-09-261.93.0 v1.93.0Erik Johnston3-1/+27
2023-09-26Skip export-data on non-code (e.g. docs) PRs (#16387)David Robertson2-3/+5
2023-09-26Add documentation about the user directory search algorithm (#16320)Patrick Cloke2-26/+111
2023-09-26Reduce calls to `send_presence_to_destinations` (#16385)Erik Johnston2-15/+19
2023-09-25Improve comments in StateGroupBackgroundUpdateStore. (#16383)Patrick Cloke2-2/+17
2023-09-25Add developer documentation concerning gradual schema migrations with column ↵reivilibre2-0/+158
alterations. (#15691) Co-authored-by: Eric Eastwood <erice@element.io>
2023-09-25Avoid running CI steps when the files they check have not been changed. (#14745)reivilibre2-14/+83
2023-09-25Bump types-psycopg2 from 2.9.21.11 to 2.9.21.14 (#16381)dependabot[bot]4-32/+9
* Bump types-psycopg2 from 2.9.21.11 to 2.9.21.14 Bumps [types-psycopg2](https://github.com/python/typeshed) from 2.9.21.11 to 2.9.21.14. - [Commits](https://github.com/python/typeshed/commits) --- updated-dependencies: - dependency-name: types-psycopg2 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * Relax the annotation of Cursor.description See https://github.com/matrix-org/synapse/pull/16343#issuecomment-1726083384 for rationale. * Changelog * Changelog --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: David Robertson <davidr@element.io>
2023-09-25Bump actions/checkout from 3 to 4 (#16250)dependabot[bot]9-47/+47
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-25Add support for pydantic v2 via pydantic.v1 compat module (#16332)Maxwell G17-94/+348
While maintaining support with pydantic v1.
2023-09-25Bump cryptography from 41.0.3 to 41.0.4 (#16362)dependabot[bot]1-24/+24
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-25Get CI to check PRs have been signed-off (#16348)David Robertson2-1/+8
2023-09-25Bump sentry-sdk from 1.30.0 to 1.31.0 (#16378)dependabot[bot]1-3/+5
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-25Bump msgpack from 1.0.5 to 1.0.6 (#16377)dependabot[bot]1-65/+58
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-25Bump gitpython from 3.1.35 to 3.1.37 (#16376)dependabot[bot]1-4/+7
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-25Bump docker/setup-buildx-action from 2 to 3 (#16375)dependabot[bot]2-2/+2
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-25Bump dawidd6/action-download-artifact from 2.27.0 to 2.28.0 (#16374)dependabot[bot]1-1/+1
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-22tempPatrick Cloke8-44/+92
2023-09-22More fixes.Patrick Cloke4-25/+26
2023-09-22Separate engines via subclassing.Patrick Cloke4-223/+130
2023-09-21Add missing license header. (#16359)Patrick Cloke2-0/+14
2023-09-20Convert more cached return values to immutable types (#16356)Patrick Cloke11-36/+52
2023-09-19Return immutable objects for cachedList decorators (#16350)Patrick Cloke24-100/+134
2023-09-19Update changelog. v1.93.0rc1Patrick Cloke1-4/+5
2023-09-19Fix-up deactivated notes in docs. (#16355)Patrick Cloke2-1/+2
2023-09-19Tweak changelog.Patrick Cloke1-11/+8
2023-09-191.93.0rc1Patrick Cloke59-57/+87
2023-09-19Use string for federation_client_minimum_tls_version documentation examples ↵Jan Christian Grünhage2-4/+5
(#16353)
2023-09-18Bump serde_json from 1.0.106 to 1.0.107 (#16345)dependabot[bot]1-2/+2
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-18Bump furo from 2023.8.19 to 2023.9.10 (#16340)dependabot[bot]1-3/+3
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-18Test against PostgreSQL 16. (#16351)Patrick Cloke2-1/+2
2023-09-18Bump ruff from 0.0.286 to 0.0.290 (#16342)dependabot[bot]4-33/+22
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Patrick Cloke <patrickc@matrix.org>
2023-09-18Stop patching EventBase.__eq__ in tests. (#16349)Patrick Cloke3-36/+31
It is clearer to directly test equality instead of doing indirect assertions via patching __eq__.
2023-09-18Filter locked users in the admin API (#16328)Hanadi6-7/+51
Co-authored-by: Hanadi Tamimi <hanadi.tamimi@sdui.de>
2023-09-18Make cached account data/tags/admin types immutable (#16325)Patrick Cloke9-50/+55
2023-09-18Update changelog v1.92.3Mathieu Velten1-2/+4
2023-09-181.92.3Mathieu Velten4-2/+24
2023-09-18Return an immutable value from get_latest_event_ids_in_room. (#16326)Patrick Cloke12-40/+48
2023-09-18Mandate Pillow>=10.0.1 because of libwebp CVE (#16347)Mathieu Velten2-1/+4
2023-09-18Additional validation of receipts (#16327)Patrick Cloke6-165/+241
Reject invalid receipts with a reasonable error message & expands tests for receipts.
2023-09-18Mandate Pillow>=10.0.1 because of libwebp CVE (#16347)Mathieu Velten2-1/+4
2023-09-18Bump pillow from 10.0.0 to 10.0.1 (#16344)dependabot[bot]1-57/+55
Bumps [pillow](https://github.com/python-pillow/Pillow) from 10.0.0 to 10.0.1. - [Release notes](https://github.com/python-pillow/Pillow/releases) - [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst) - [Commits](https://github.com/python-pillow/Pillow/compare/10.0.0...10.0.1) --- updated-dependencies: - dependency-name: pillow dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-18Bump pillow from 10.0.0 to 10.0.1 (#16344)dependabot[bot]1-57/+55
Bumps [pillow](https://github.com/python-pillow/Pillow) from 10.0.0 to 10.0.1. - [Release notes](https://github.com/python-pillow/Pillow/releases) - [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst) - [Commits](https://github.com/python-pillow/Pillow/compare/10.0.0...10.0.1) --- updated-dependencies: - dependency-name: pillow dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-18Set email charset as utf-8 rather than utf8 (#16329)José Joaquín Atria2-2/+3
2023-09-18Bump typing-extensions from 4.7.1 to 4.8.0 (#16341)dependabot[bot]1-5/+15
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-18Bump docker/login-action from 2 to 3 (#16339)dependabot[bot]2-3/+3
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-18Bump docker/metadata-action from 4 to 5 (#16337)dependabot[bot]1-1/+1
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-18Bump docker/setup-qemu-action from 2 to 3 (#16338)dependabot[bot]2-2/+2
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-18Bump docker/build-push-action from 4 to 5 (#16336)dependabot[bot]1-1/+1
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-15Add automatic purge after all users forget a room (#15488)Mathieu Velten13-450/+542
Also add restore of purge/shutdown rooms after a synapse restart. Co-authored-by: Eric Eastwood <erice@matrix.org> Co-authored-by: Erik Johnston <erikj@matrix.org>
2023-09-15Fix Changelog v1.92.2Erik Johnston1-1/+1
2023-09-151.92.2Erik Johnston4-2/+17
2023-09-15Use bookwork as docker base image (#16324)Erik Johnston5-15/+16
2023-09-15Convert `_insert_graph_receipts_txn` to `simple_upsert` (#16299)Jason Little3-14/+13
2023-09-15Only use literal strings for process names (#16315)Erik Johnston4-14/+11
2023-09-14Some minor performance fixes for task schedular (#16313)Erik Johnston5-34/+95
2023-09-14Speed up deleting to-device messages task (#16318)Erik Johnston2-13/+15
2023-09-14docs: Link to the Alpine Linux community package for Synapse (#16304)65432-0/+9
2023-09-14Refactor `get_user_by_id` (#16316)Erik Johnston14-123/+108
2023-09-13Remove a reference cycle in background process (#16314)Erik Johnston2-1/+21
2023-09-13Fix using dehydrated devices (MSC2697) & refresh tokens (#16288)Hanadi4-4/+34
Refresh tokens were not correctly moved to the rehydrated device (similar to how the access token is currently handled). This resulted in invalid refresh tokens after rehydration.
2023-09-13Use StrCollection in additional places. (#16301)Patrick Cloke16-67/+59
2023-09-13Don't schedule an async task on every sync (#16312)Erik Johnston2-11/+27
2023-09-13Fix deleting device inbox when using background worker (#16311)Erik Johnston2-31/+32
Introduced in #16240 The action for the task was only defined on the "master" handler, rather than the base worker one.
2023-09-13Improve logging of replication (#16309)Erik Johnston3-2/+8
2023-09-12Update changelogMathieu Velten1-7/+16
2023-09-121.92.1 v1.92.1Mathieu Velten3-1/+12
2023-09-12Bump mypy from 1.4.1 to 1.5.1. (#16300)Patrick Cloke4-48/+32
2023-09-12Stop purging tables which are slated for removal. (#16273)Patrick Cloke3-5/+6
2023-09-12Remove kinetic deb build, it's EOLMathieu Velten1-1/+0
2023-09-12Refactor storing of server keys (#16261)Erik Johnston6-365/+106
2023-09-12Inverse changelog order v1.92.0Mathieu Velten1-6/+7
2023-09-121.92.0Mathieu Velten6-4/+19
2023-09-11Add the List-Unsubscribe header for notification emails. (#16274)Patrick Cloke5-6/+110
Adds both the List-Unsubscribe (RFC2369) and List-Unsubscribe-Post (RFC8058) headers to push notification emails, which together should: * Show an "Unsubscribe" link in the MUA UI when viewing Synapse notification emails. * Enable "one-click" unsubscribe (the user never leaves their MUA, which automatically makes a POST request to the specified endpoint).
2023-09-11Filter out down hosts when retrying fetching device lists (#16298)Erik Johnston2-1/+15
2023-09-11Bump types-pillow from 10.0.0.2 to 10.0.0.3 (#16293)dependabot[bot]1-3/+3
2023-09-11Bump types-setuptools from 68.0.0.3 to 68.2.0.0 (#16292)dependabot[bot]1-3/+3
2023-09-11Bump mypy-zope from 1.0.0 to 1.0.1 (#16291)dependabot[bot]1-4/+4
2023-09-11Bump black from 23.7.0 to 23.9.1 (#16295)dependabot[bot]1-24/+24
2023-09-11Bump serde_json from 1.0.105 to 1.0.106 (#16296)dependabot[bot]1-2/+2
2023-09-08Improve type hints for attrs classes (#16276)David Robertson7-39/+37
2023-09-08 Upgrade CI run of Python 3.12 from rc1 to rc2 (#16280)V024602-1/+2
2023-09-08Update ruff config (#16283)Patrick Cloke26-64/+63
Enable additional checks & clean-up unneeded configuration.
2023-09-08Log values at DEBUG level with execute_values (#16281)David Robertson2-2/+4
2023-09-08Fix-up incorrect spellings in docs. (#16282)Patrick Cloke18-119/+120
2023-09-08Fix bug with new task scheduler using lots of CPU. (#16278)Erik Johnston2-21/+23
Using the new `TaskScheduler` meant that we'ed create lots of new metrics (due to adding task ID to the desc of background process), resulting in requests for metrics taking an increasing amount of CPU.
2023-09-08Bump gitpython from 3.1.34 to 3.1.35 (#16279)dependabot[bot]1-3/+3
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-08Avoid temporary storage of sensitive information. (#16272)Patrick Cloke3-2/+16
During the UI auth process, avoid storing sensitive information into the database.
2023-09-08Raise setuptools_rust version cap to 1.7.0 (#16277)V024602-1/+2