gitlord
/
synapse
mirror of https://github.com/matrix-org/synapse.git
1
0
Fork 0
Code Issues 0 Releases 671 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
23342 Commits
842 Branches
357 MiB
 
 
 
 
 
 
Tree: 43d1aa75e8
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '43d1aa75e8'
${ noResults }
synapse/tests/storage/databases/main/test_end_to_end_keys.py

122 lines
4.3 KiB
Raw Blame History 

  1. # Copyright 2023 The Matrix.org Foundation C.I.C.

  2. #

  3. # Licensed under the Apache License, Version 2.0 (the 'License');

  4. # you may not use this file except in compliance with the License.

  5. # You may obtain a copy of the License at

  6. #

  7. #     http://www.apache.org/licenses/LICENSE-2.0

  8. #

  9. # Unless required by applicable law or agreed to in writing, software

  10. # distributed under the License is distributed on an 'AS IS' BASIS,

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. # See the License for the specific language governing permissions and

  13. # limitations under the License.

  14. from typing import List, Optional, Tuple

  15. 

  16. from twisted.test.proto_helpers import MemoryReactor

  17. 

  18. from synapse.server import HomeServer

  19. from synapse.storage._base import db_to_json

  20. from synapse.storage.database import LoggingTransaction

  21. from synapse.types import JsonDict

  22. from synapse.util import Clock

  23. 

  24. from tests.unittest import HomeserverTestCase

  25. 

  26. 

  27. class EndToEndKeyWorkerStoreTestCase(HomeserverTestCase):

  28.     def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:

  29.         self.store = hs.get_datastores().main

  30. 

  31.     def test_get_master_cross_signing_key_updatable_before(self) -> None:

  32.         # Should return False, None when there is no master key.

  33.         alice = "@alice:test"

  34.         exists, timestamp = self.get_success(

  35.             self.store.get_master_cross_signing_key_updatable_before(alice)

  36.         )

  37.         self.assertIs(exists, False)

  38.         self.assertIsNone(timestamp)

  39. 

  40.         # Upload a master key.

  41.         dummy_key = {"keys": {"a": "b"}}

  42.         self.get_success(

  43.             self.store.set_e2e_cross_signing_key(alice, "master", dummy_key)

  44.         )

  45. 

  46.         # Should now find that the key exists.

  47.         exists, timestamp = self.get_success(

  48.             self.store.get_master_cross_signing_key_updatable_before(alice)

  49.         )

  50.         self.assertIs(exists, True)

  51.         self.assertIsNone(timestamp)

  52. 

  53.         # Write an updateable_before timestamp.

  54.         written_timestamp = self.get_success(

  55.             self.store.allow_master_cross_signing_key_replacement_without_uia(

  56.                 alice, 1000

  57.             )

  58.         )

  59. 

  60.         # Should now find that the key exists.

  61.         exists, timestamp = self.get_success(

  62.             self.store.get_master_cross_signing_key_updatable_before(alice)

  63.         )

  64.         self.assertIs(exists, True)

  65.         self.assertEqual(timestamp, written_timestamp)

  66. 

  67.     def test_master_replacement_only_applies_to_latest_master_key(

  68.         self,

  69.     ) -> None:

  70.         """We shouldn't allow updates w/o UIA to old master keys or other key types."""

  71.         alice = "@alice:test"

  72.         # Upload two master keys.

  73.         key1 = {"keys": {"a": "b"}}

  74.         key2 = {"keys": {"c": "d"}}

  75.         key3 = {"keys": {"e": "f"}}

  76.         self.get_success(self.store.set_e2e_cross_signing_key(alice, "master", key1))

  77.         self.get_success(self.store.set_e2e_cross_signing_key(alice, "other", key2))

  78.         self.get_success(self.store.set_e2e_cross_signing_key(alice, "master", key3))

  79. 

  80.         # Third key should be the current one.

  81.         key = self.get_success(

  82.             self.store.get_e2e_cross_signing_key(alice, "master", alice)

  83.         )

  84.         self.assertEqual(key, key3)

  85. 

  86.         timestamp = self.get_success(

  87.             self.store.allow_master_cross_signing_key_replacement_without_uia(

  88.                 alice, 1000

  89.             )

  90.         )

  91.         assert timestamp is not None

  92. 

  93.         def check_timestamp_column(

  94.             txn: LoggingTransaction,

  95.         ) -> List[Tuple[JsonDict, Optional[int]]]:

  96.             """Fetch all rows for Alice's keys."""

  97.             txn.execute(

  98.                 """

  99.                 SELECT keydata, updatable_without_uia_before_ms

  100.                 FROM e2e_cross_signing_keys

  101.                 WHERE user_id = ?

  102.                 ORDER BY stream_id ASC;

  103.             """,

  104.                 (alice,),

  105.             )

  106.             return [(db_to_json(keydata), ts) for keydata, ts in txn.fetchall()]

  107. 

  108.         values = self.get_success(

  109.             self.store.db_pool.runInteraction(

  110.                 "check_timestamp_column",

  111.                 check_timestamp_column,

  112.             )

  113.         )

  114.         self.assertEqual(

  115.             values,

  116.             [

  117.                 (key1, None),

  118.                 (key2, None),

  119.                 (key3, timestamp),

  120.             ],

  121.         )