gitlord
/
synapse
mirror of https://github.com/matrix-org/synapse.git
1
0
Fork 0
Code Issues 0 Releases 671 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
21442 Commits
842 Branches
288 MiB
 
 
 
 
 
 
Tree: 8ab16a92ed
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8ab16a92ed'
${ noResults }
synapse/tests/handlers/test_message.py

324 lines
12 KiB
Raw Blame History 

  1. # Copyright 2020 The Matrix.org Foundation C.I.C.

  2. #

  3. # Licensed under the Apache License, Version 2.0 (the "License");

  4. # you may not use this file except in compliance with the License.

  5. # You may obtain a copy of the License at

  6. #

  7. #     http://www.apache.org/licenses/LICENSE-2.0

  8. #

  9. # Unless required by applicable law or agreed to in writing, software

  10. # distributed under the License is distributed on an "AS IS" BASIS,

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. # See the License for the specific language governing permissions and

  13. # limitations under the License.

  14. import logging

  15. from typing import Tuple

  16. 

  17. from synapse.api.constants import EventTypes

  18. from synapse.events import EventBase

  19. from synapse.events.snapshot import EventContext

  20. from synapse.rest import admin

  21. from synapse.rest.client import login, room

  22. from synapse.types import create_requester

  23. from synapse.util.stringutils import random_string

  24. 

  25. from tests import unittest

  26. from tests.test_utils.event_injection import create_event

  27. 

  28. logger = logging.getLogger(__name__)

  29. 

  30. 

  31. class EventCreationTestCase(unittest.HomeserverTestCase):

  32.     servlets = [

  33.         admin.register_servlets,

  34.         login.register_servlets,

  35.         room.register_servlets,

  36.     ]

  37. 

  38.     def prepare(self, reactor, clock, hs):

  39.         self.handler = self.hs.get_event_creation_handler()

  40.         self._persist_event_storage_controller = (

  41.             self.hs.get_storage_controllers().persistence

  42.         )

  43. 

  44.         self.user_id = self.register_user("tester", "foobar")

  45.         self.access_token = self.login("tester", "foobar")

  46.         self.room_id = self.helper.create_room_as(self.user_id, tok=self.access_token)

  47. 

  48.         self.info = self.get_success(

  49.             self.hs.get_datastores().main.get_user_by_access_token(

  50.                 self.access_token,

  51.             )

  52.         )

  53.         self.token_id = self.info.token_id

  54. 

  55.         self.requester = create_requester(self.user_id, access_token_id=self.token_id)

  56. 

  57.     def _create_and_persist_member_event(self) -> Tuple[EventBase, EventContext]:

  58.         # Create a member event we can use as an auth_event

  59.         memberEvent, memberEventContext = self.get_success(

  60.             create_event(

  61.                 self.hs,

  62.                 room_id=self.room_id,

  63.                 type="m.room.member",

  64.                 sender=self.requester.user.to_string(),

  65.                 state_key=self.requester.user.to_string(),

  66.                 content={"membership": "join"},

  67.             )

  68.         )

  69.         self.get_success(

  70.             self._persist_event_storage_controller.persist_event(

  71.                 memberEvent, memberEventContext

  72.             )

  73.         )

  74. 

  75.         return memberEvent, memberEventContext

  76. 

  77.     def _create_duplicate_event(self, txn_id: str) -> Tuple[EventBase, EventContext]:

  78.         """Create a new event with the given transaction ID. All events produced

  79.         by this method will be considered duplicates.

  80.         """

  81. 

  82.         # We create a new event with a random body, as otherwise we'll produce

  83.         # *exactly* the same event with the same hash, and so same event ID.

  84.         return self.get_success(

  85.             self.handler.create_event(

  86.                 self.requester,

  87.                 {

  88.                     "type": EventTypes.Message,

  89.                     "room_id": self.room_id,

  90.                     "sender": self.requester.user.to_string(),

  91.                     "content": {"msgtype": "m.text", "body": random_string(5)},

  92.                 },

  93.                 txn_id=txn_id,

  94.             )

  95.         )

  96. 

  97.     def test_duplicated_txn_id(self):

  98.         """Test that attempting to handle/persist an event with a transaction ID

  99.         that has already been persisted correctly returns the old event and does

  100.         *not* produce duplicate messages.

  101.         """

  102. 

  103.         txn_id = "something_suitably_random"

  104. 

  105.         event1, context = self._create_duplicate_event(txn_id)

  106. 

  107.         ret_event1 = self.get_success(

  108.             self.handler.handle_new_client_event(

  109.                 self.requester,

  110.                 events_and_context=[(event1, context)],

  111.             )

  112.         )

  113.         stream_id1 = ret_event1.internal_metadata.stream_ordering

  114. 

  115.         self.assertEqual(event1.event_id, ret_event1.event_id)

  116. 

  117.         event2, context = self._create_duplicate_event(txn_id)

  118. 

  119.         # We want to test that the deduplication at the persit event end works,

  120.         # so we want to make sure we test with different events.

  121.         self.assertNotEqual(event1.event_id, event2.event_id)

  122. 

  123.         ret_event2 = self.get_success(

  124.             self.handler.handle_new_client_event(

  125.                 self.requester,

  126.                 events_and_context=[(event2, context)],

  127.             )

  128.         )

  129.         stream_id2 = ret_event2.internal_metadata.stream_ordering

  130. 

  131.         # Assert that the returned values match those from the initial event

  132.         # rather than the new one.

  133.         self.assertEqual(ret_event1.event_id, ret_event2.event_id)

  134.         self.assertEqual(stream_id1, stream_id2)

  135. 

  136.         # Let's test that calling `persist_event` directly also does the right

  137.         # thing.

  138.         event3, context = self._create_duplicate_event(txn_id)

  139.         self.assertNotEqual(event1.event_id, event3.event_id)

  140. 

  141.         ret_event3, event_pos3, _ = self.get_success(

  142.             self._persist_event_storage_controller.persist_event(event3, context)

  143.         )

  144. 

  145.         # Assert that the returned values match those from the initial event

  146.         # rather than the new one.

  147.         self.assertEqual(ret_event1.event_id, ret_event3.event_id)

  148.         self.assertEqual(stream_id1, event_pos3.stream)

  149. 

  150.         # Let's test that calling `persist_events` directly also does the right

  151.         # thing.

  152.         event4, context = self._create_duplicate_event(txn_id)

  153.         self.assertNotEqual(event1.event_id, event3.event_id)

  154. 

  155.         events, _ = self.get_success(

  156.             self._persist_event_storage_controller.persist_events([(event3, context)])

  157.         )

  158.         ret_event4 = events[0]

  159. 

  160.         # Assert that the returned values match those from the initial event

  161.         # rather than the new one.

  162.         self.assertEqual(ret_event1.event_id, ret_event4.event_id)

  163. 

  164.     def test_duplicated_txn_id_one_call(self):

  165.         """Test that we correctly handle duplicates that we try and persist at

  166.         the same time.

  167.         """

  168. 

  169.         txn_id = "something_else_suitably_random"

  170. 

  171.         # Create two duplicate events to persist at the same time

  172.         event1, context1 = self._create_duplicate_event(txn_id)

  173.         event2, context2 = self._create_duplicate_event(txn_id)

  174. 

  175.         # Ensure their event IDs are different to start with

  176.         self.assertNotEqual(event1.event_id, event2.event_id)

  177. 

  178.         events, _ = self.get_success(

  179.             self._persist_event_storage_controller.persist_events(

  180.                 [(event1, context1), (event2, context2)]

  181.             )

  182.         )

  183. 

  184.         # Check that we've deduplicated the events.

  185.         self.assertEqual(len(events), 2)

  186.         self.assertEqual(events[0].event_id, events[1].event_id)

  187. 

  188.     def test_when_empty_prev_events_allowed_create_event_with_empty_prev_events(self):

  189.         """When we set allow_no_prev_events=True, should be able to create a

  190.         event without any prev_events (only auth_events).

  191.         """

  192.         # Create a member event we can use as an auth_event

  193.         memberEvent, _ = self._create_and_persist_member_event()

  194. 

  195.         # Try to create the event with empty prev_events bit with some auth_events

  196.         event, _ = self.get_success(

  197.             self.handler.create_event(

  198.                 self.requester,

  199.                 {

  200.                     "type": EventTypes.Message,

  201.                     "room_id": self.room_id,

  202.                     "sender": self.requester.user.to_string(),

  203.                     "content": {"msgtype": "m.text", "body": random_string(5)},

  204.                 },

  205.                 # Empty prev_events is the key thing we're testing here

  206.                 prev_event_ids=[],

  207.                 # But with some auth_events

  208.                 auth_event_ids=[memberEvent.event_id],

  209.                 # Allow no prev_events!

  210.                 allow_no_prev_events=True,

  211.             )

  212.         )

  213.         self.assertIsNotNone(event)

  214. 

  215.     def test_when_empty_prev_events_not_allowed_reject_event_with_empty_prev_events(

  216.         self,

  217.     ):

  218.         """When we set allow_no_prev_events=False, shouldn't be able to create a

  219.         event without any prev_events even if it has auth_events. Expect an

  220.         exception to be raised.

  221.         """

  222.         # Create a member event we can use as an auth_event

  223.         memberEvent, _ = self._create_and_persist_member_event()

  224. 

  225.         # Try to create the event with empty prev_events but with some auth_events

  226.         self.get_failure(

  227.             self.handler.create_event(

  228.                 self.requester,

  229.                 {

  230.                     "type": EventTypes.Message,

  231.                     "room_id": self.room_id,

  232.                     "sender": self.requester.user.to_string(),

  233.                     "content": {"msgtype": "m.text", "body": random_string(5)},

  234.                 },

  235.                 # Empty prev_events is the key thing we're testing here

  236.                 prev_event_ids=[],

  237.                 # But with some auth_events

  238.                 auth_event_ids=[memberEvent.event_id],

  239.                 # We expect the test to fail because empty prev_events are not

  240.                 # allowed here!

  241.                 allow_no_prev_events=False,

  242.             ),

  243.             AssertionError,

  244.         )

  245. 

  246.     def test_when_empty_prev_events_allowed_reject_event_with_empty_prev_events_and_auth_events(

  247.         self,

  248.     ):

  249.         """When we set allow_no_prev_events=True, should be able to create a

  250.         event without any prev_events or auth_events. Expect an exception to be

  251.         raised.

  252.         """

  253.         # Try to create the event with empty prev_events and empty auth_events

  254.         self.get_failure(

  255.             self.handler.create_event(

  256.                 self.requester,

  257.                 {

  258.                     "type": EventTypes.Message,

  259.                     "room_id": self.room_id,

  260.                     "sender": self.requester.user.to_string(),

  261.                     "content": {"msgtype": "m.text", "body": random_string(5)},

  262.                 },

  263.                 prev_event_ids=[],

  264.                 # The event should be rejected when there are no auth_events

  265.                 auth_event_ids=[],

  266.                 # Allow no prev_events!

  267.                 allow_no_prev_events=True,

  268.             ),

  269.             AssertionError,

  270.         )

  271. 

  272. 

  273. class ServerAclValidationTestCase(unittest.HomeserverTestCase):

  274.     servlets = [

  275.         admin.register_servlets,

  276.         login.register_servlets,

  277.         room.register_servlets,

  278.     ]

  279. 

  280.     def prepare(self, reactor, clock, hs):

  281.         self.user_id = self.register_user("tester", "foobar")

  282.         self.access_token = self.login("tester", "foobar")

  283.         self.room_id = self.helper.create_room_as(self.user_id, tok=self.access_token)

  284. 

  285.     def test_allow_server_acl(self):

  286.         """Test that sending an ACL that blocks everyone but ourselves works."""

  287. 

  288.         self.helper.send_state(

  289.             self.room_id,

  290.             EventTypes.ServerACL,

  291.             body={"allow": [self.hs.hostname]},

  292.             tok=self.access_token,

  293.             expect_code=200,

  294.         )

  295. 

  296.     def test_deny_server_acl_block_outselves(self):

  297.         """Test that sending an ACL that blocks ourselves does not work."""

  298.         self.helper.send_state(

  299.             self.room_id,

  300.             EventTypes.ServerACL,

  301.             body={},

  302.             tok=self.access_token,

  303.             expect_code=400,

  304.         )

  305. 

  306.     def test_deny_redact_server_acl(self):

  307.         """Test that attempting to redact an ACL is blocked."""

  308. 

  309.         body = self.helper.send_state(

  310.             self.room_id,

  311.             EventTypes.ServerACL,

  312.             body={"allow": [self.hs.hostname]},

  313.             tok=self.access_token,

  314.             expect_code=200,

  315.         )

  316.         event_id = body["event_id"]

  317. 

  318.         # Redaction of event should fail.

  319.         path = "/_matrix/client/r0/rooms/%s/redact/%s" % (self.room_id, event_id)

  320.         channel = self.make_request(

  321.             "POST", path, content={}, access_token=self.access_token

  322.         )

  323.         self.assertEqual(channel.code, 403)