gitlord
/
synapse
mirror of https://github.com/matrix-org/synapse.git
1
0
Fork 0
Code Issues 0 Releases 671 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
23156 Commits
842 Branches
288 MiB
 
 
 
 
 
 
Tree: 12611bfcdd
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '12611bfcdd'
${ noResults }
synapse/synapse/rest/key/v2/remote_key_resource.py

303 lines
11 KiB
Raw Blame History 

  1. # Copyright 2015, 2016 OpenMarket Ltd

  2. #

  3. # Licensed under the Apache License, Version 2.0 (the "License");

  4. # you may not use this file except in compliance with the License.

  5. # You may obtain a copy of the License at

  6. #

  7. #     http://www.apache.org/licenses/LICENSE-2.0

  8. #

  9. # Unless required by applicable law or agreed to in writing, software

  10. # distributed under the License is distributed on an "AS IS" BASIS,

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. # See the License for the specific language governing permissions and

  13. # limitations under the License.

  14. 

  15. import logging

  16. import re

  17. from typing import TYPE_CHECKING, Dict, Mapping, Optional, Set, Tuple

  18. 

  19. from synapse._pydantic_compat import HAS_PYDANTIC_V2

  20. 

  21. if TYPE_CHECKING or HAS_PYDANTIC_V2:

  22.     from pydantic.v1 import Extra, StrictInt, StrictStr

  23. else:

  24.     from pydantic import StrictInt, StrictStr, Extra

  25. 

  26. from signedjson.sign import sign_json

  27. 

  28. from twisted.web.server import Request

  29. 

  30. from synapse.crypto.keyring import ServerKeyFetcher

  31. from synapse.http.server import HttpServer

  32. from synapse.http.servlet import (

  33.     RestServlet,

  34.     parse_and_validate_json_object_from_request,

  35.     parse_integer,

  36. )

  37. from synapse.rest.models import RequestBodyModel

  38. from synapse.storage.keys import FetchKeyResultForRemote

  39. from synapse.types import JsonDict

  40. from synapse.util import json_decoder

  41. from synapse.util.async_helpers import yieldable_gather_results

  42. 

  43. if TYPE_CHECKING:

  44.     from synapse.server import HomeServer

  45. 

  46. logger = logging.getLogger(__name__)

  47. 

  48. 

  49. class _KeyQueryCriteriaDataModel(RequestBodyModel):

  50.     class Config:

  51.         extra = Extra.allow

  52. 

  53.     minimum_valid_until_ts: Optional[StrictInt]

  54. 

  55. 

  56. class RemoteKey(RestServlet):

  57.     """HTTP resource for retrieving the TLS certificate and NACL signature

  58.     verification keys for a collection of servers. Checks that the reported

  59.     X.509 TLS certificate matches the one used in the HTTPS connection. Checks

  60.     that the NACL signature for the remote server is valid. Returns a dict of

  61.     JSON signed by both the remote server and by this server.

  62. 

  63.     Supports individual GET APIs and a bulk query POST API.

  64. 

  65.     Requests:

  66. 

  67.     GET /_matrix/key/v2/query/remote.server.example.com HTTP/1.1

  68. 

  69.     GET /_matrix/key/v2/query/remote.server.example.com/a.key.id HTTP/1.1

  70. 

  71.     POST /_matrix/v2/query HTTP/1.1

  72.     Content-Type: application/json

  73.     {

  74.         "server_keys": {

  75.             "remote.server.example.com": {

  76.                 "a.key.id": {

  77.                     "minimum_valid_until_ts": 1234567890123

  78.                 }

  79.             }

  80.         }

  81.     }

  82. 

  83.     Response:

  84. 

  85.     HTTP/1.1 200 OK

  86.     Content-Type: application/json

  87.     {

  88.         "server_keys": [

  89.             {

  90.                 "server_name": "remote.server.example.com"

  91.                 "valid_until_ts": # posix timestamp

  92.                 "verify_keys": {

  93.                     "a.key.id": { # The identifier for a key.

  94.                         key: "" # base64 encoded verification key.

  95.                     }

  96.                 }

  97.                 "old_verify_keys": {

  98.                     "an.old.key.id": { # The identifier for an old key.

  99.                         key: "", # base64 encoded key

  100.                         "expired_ts": 0, # when the key stop being used.

  101.                     }

  102.                 }

  103.                 "signatures": {

  104.                     "remote.server.example.com": {...}

  105.                     "this.server.example.com": {...}

  106.                 }

  107.             }

  108.         ]

  109.     }

  110.     """

  111. 

  112.     CATEGORY = "Federation requests"

  113. 

  114.     class PostBody(RequestBodyModel):

  115.         server_keys: Dict[StrictStr, Dict[StrictStr, _KeyQueryCriteriaDataModel]]

  116. 

  117.     def __init__(self, hs: "HomeServer"):

  118.         self.fetcher = ServerKeyFetcher(hs)

  119.         self.store = hs.get_datastores().main

  120.         self.clock = hs.get_clock()

  121.         self.federation_domain_whitelist = (

  122.             hs.config.federation.federation_domain_whitelist

  123.         )

  124.         self.config = hs.config

  125. 

  126.     def register(self, http_server: HttpServer) -> None:

  127.         http_server.register_paths(

  128.             "GET",

  129.             (

  130.                 re.compile(

  131.                     "^/_matrix/key/v2/query/(?P<server>[^/]*)(/(?P<key_id>[^/]*))?$"

  132.                 ),

  133.             ),

  134.             self.on_GET,

  135.             self.__class__.__name__,

  136.         )

  137.         http_server.register_paths(

  138.             "POST",

  139.             (re.compile("^/_matrix/key/v2/query$"),),

  140.             self.on_POST,

  141.             self.__class__.__name__,

  142.         )

  143. 

  144.     async def on_GET(

  145.         self, request: Request, server: str, key_id: Optional[str] = None

  146.     ) -> Tuple[int, JsonDict]:

  147.         if server and key_id:

  148.             # Matrix 1.6 drops support for passing the key_id, this is incompatible

  149.             # with earlier versions and is allowed in order to support both.

  150.             # A warning is issued to help determine when it is safe to drop this.

  151.             logger.warning(

  152.                 "Request for remote server key with deprecated key ID (logging to determine usage level for future removal): %s / %s",

  153.                 server,

  154.                 key_id,

  155.             )

  156. 

  157.             minimum_valid_until_ts = parse_integer(request, "minimum_valid_until_ts")

  158.             query = {

  159.                 server: {

  160.                     key_id: _KeyQueryCriteriaDataModel(

  161.                         minimum_valid_until_ts=minimum_valid_until_ts

  162.                     )

  163.                 }

  164.             }

  165.         else:

  166.             query = {server: {}}

  167. 

  168.         return 200, await self.query_keys(query, query_remote_on_cache_miss=True)

  169. 

  170.     async def on_POST(self, request: Request) -> Tuple[int, JsonDict]:

  171.         content = parse_and_validate_json_object_from_request(request, self.PostBody)

  172. 

  173.         query = content.server_keys

  174. 

  175.         return 200, await self.query_keys(query, query_remote_on_cache_miss=True)

  176. 

  177.     async def query_keys(

  178.         self,

  179.         query: Dict[str, Dict[str, _KeyQueryCriteriaDataModel]],

  180.         query_remote_on_cache_miss: bool = False,

  181.     ) -> JsonDict:

  182.         logger.info("Handling query for keys %r", query)

  183. 

  184.         server_keys: Dict[Tuple[str, str], Optional[FetchKeyResultForRemote]] = {}

  185.         for server_name, key_ids in query.items():

  186.             if key_ids:

  187.                 results: Mapping[

  188.                     str, Optional[FetchKeyResultForRemote]

  189.                 ] = await self.store.get_server_keys_json_for_remote(

  190.                     server_name, key_ids

  191.                 )

  192.             else:

  193.                 results = await self.store.get_all_server_keys_json_for_remote(

  194.                     server_name

  195.                 )

  196. 

  197.             server_keys.update(

  198.                 ((server_name, key_id), res) for key_id, res in results.items()

  199.             )

  200. 

  201.         json_results: Set[bytes] = set()

  202. 

  203.         time_now_ms = self.clock.time_msec()

  204. 

  205.         # Map server_name->key_id->int. Note that the value of the int is unused.

  206.         # XXX: why don't we just use a set?

  207.         cache_misses: Dict[str, Dict[str, int]] = {}

  208.         for (server_name, key_id), key_result in server_keys.items():

  209.             if not query[server_name]:

  210.                 # all keys were requested. Just return what we have without worrying

  211.                 # about validity

  212.                 if key_result:

  213.                     json_results.add(key_result.key_json)

  214.                 continue

  215. 

  216.             miss = False

  217.             if key_result is None:

  218.                 miss = True

  219.             else:

  220.                 ts_added_ms = key_result.added_ts

  221.                 ts_valid_until_ms = key_result.valid_until_ts

  222.                 req_key = query.get(server_name, {}).get(

  223.                     key_id, _KeyQueryCriteriaDataModel(minimum_valid_until_ts=None)

  224.                 )

  225.                 req_valid_until = req_key.minimum_valid_until_ts

  226.                 if req_valid_until is not None:

  227.                     if ts_valid_until_ms < req_valid_until:

  228.                         logger.debug(

  229.                             "Cached response for %r/%r is older than requested"

  230.                             ": valid_until (%r) < minimum_valid_until (%r)",

  231.                             server_name,

  232.                             key_id,

  233.                             ts_valid_until_ms,

  234.                             req_valid_until,

  235.                         )

  236.                         miss = True

  237.                     else:

  238.                         logger.debug(

  239.                             "Cached response for %r/%r is newer than requested"

  240.                             ": valid_until (%r) >= minimum_valid_until (%r)",

  241.                             server_name,

  242.                             key_id,

  243.                             ts_valid_until_ms,

  244.                             req_valid_until,

  245.                         )

  246.                 elif (ts_added_ms + ts_valid_until_ms) / 2 < time_now_ms:

  247.                     logger.debug(

  248.                         "Cached response for %r/%r is too old"

  249.                         ": (added (%r) + valid_until (%r)) / 2 < now (%r)",

  250.                         server_name,

  251.                         key_id,

  252.                         ts_added_ms,

  253.                         ts_valid_until_ms,

  254.                         time_now_ms,

  255.                     )

  256.                     # We more than half way through the lifetime of the

  257.                     # response. We should fetch a fresh copy.

  258.                     miss = True

  259.                 else:

  260.                     logger.debug(

  261.                         "Cached response for %r/%r is still valid"

  262.                         ": (added (%r) + valid_until (%r)) / 2 < now (%r)",

  263.                         server_name,

  264.                         key_id,

  265.                         ts_added_ms,

  266.                         ts_valid_until_ms,

  267.                         time_now_ms,

  268.                     )

  269. 

  270.                 json_results.add(key_result.key_json)

  271. 

  272.             if miss and query_remote_on_cache_miss:

  273.                 # only bother attempting to fetch keys from servers on our whitelist

  274.                 if (

  275.                     self.federation_domain_whitelist is None

  276.                     or server_name in self.federation_domain_whitelist

  277.                 ):

  278.                     cache_misses.setdefault(server_name, {})[key_id] = 0

  279. 

  280.         # If there is a cache miss, request the missing keys, then recurse (and

  281.         # ensure the result is sent).

  282.         if cache_misses:

  283.             await yieldable_gather_results(

  284.                 lambda t: self.fetcher.get_keys(*t),

  285.                 (

  286.                     (server_name, list(keys), 0)

  287.                     for server_name, keys in cache_misses.items()

  288.                 ),

  289.             )

  290.             return await self.query_keys(query, query_remote_on_cache_miss=False)

  291.         else:

  292.             signed_keys = []

  293.             for key_json_raw in json_results:

  294.                 key_json = json_decoder.decode(key_json_raw.decode("utf-8"))

  295.                 for signing_key in self.config.key.key_server_signing_keys:

  296.                     key_json = sign_json(

  297.                         key_json, self.config.server.server_name, signing_key

  298.                     )

  299. 

  300.                 signed_keys.append(key_json)

  301. 

  302.             return {"server_keys": signed_keys}