Support HS unbinding 3pids #67
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,109 @@ | ||
| # -*- coding: utf-8 -*- | ||
|
|
||
| # Copyright 2018 New Vector Ltd | ||
| # | ||
| # Licensed under the Apache License, Version 2.0 (the "License"); | ||
| # you may not use this file except in compliance with the License. | ||
| # You may obtain a copy of the License at | ||
| # | ||
| # http://www.apache.org/licenses/LICENSE-2.0 | ||
| # | ||
| # Unless required by applicable law or agreed to in writing, software | ||
| # distributed under the License is distributed on an "AS IS" BASIS, | ||
| # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
| # See the License for the specific language governing permissions and | ||
| # limitations under the License. | ||
|
|
||
|
|
||
| import logging | ||
|
|
||
| logger = logging.getLogger(__name__) | ||
|
|
||
|
|
||
| class VersionStore: | ||
| def __init__(self, sydent): | ||
| self.sydent = sydent | ||
|
|
||
| def upgradeSchema(self): | ||
| curVer = self._getSchemaVersion() | ||
|
|
||
| if curVer < 1: | ||
|
There was a problem hiding this comment. should we do something to make new installations have schema v1 ? There was a problem hiding this comment. Yeah, this wasn't thought through very well. Hopefully this is more sensible now. |
||
| cur = self.sydent.db.cursor() | ||
|
|
||
| # add auto_increment to the primary key of local_threepid_associations to ensure ids are never re-used, | ||
| # allow the mxid column to be null to represent the deletion of a binding | ||
| # and remove not null constraints on ts, notBefore and notAfter | ||
| logger.info("Migrating schema from v0 to v1") | ||
| cur.execute("DROP INDEX IF EXISTS medium_address") | ||
| cur.execute("DROP INDEX IF EXISTS local_threepid_medium_address") | ||
| cur.execute("ALTER TABLE local_threepid_associations RENAME TO old_local_threepid_associations"); | ||
| cur.execute( | ||
| "CREATE TABLE local_threepid_associations (id integer primary key autoincrement, " | ||
| "medium varchar(16) not null, " | ||
| "address varchar(256) not null, " | ||
| "mxid varchar(256), " | ||
| "ts integer, " | ||
| "notBefore bigint, " | ||
| "notAfter bigint)" | ||
| ) | ||
| cur.execute( | ||
| "INSERT INTO local_threepid_associations (medium, address, mxid, ts, notBefore, notAfter) " | ||
| "SELECT medium, address, mxid, ts, notBefore, notAfter FROM old_local_threepid_associations" | ||
| ) | ||
| cur.execute( | ||
| "CREATE UNIQUE INDEX local_threepid_medium_address on local_threepid_associations(medium, address)" | ||
| ) | ||
| cur.execute("DROP TABLE old_local_threepid_associations") | ||
|
|
||
| # same for global_threepid_associations | ||
|
There was a problem hiding this comment. well, except we're keeping the |
||
| cur.execute("DROP INDEX IF EXISTS global_threepid_medium_address") | ||
| cur.execute("DROP INDEX IF EXISTS global_threepid_medium_lower_address") | ||
| cur.execute("DROP INDEX IF EXISTS global_threepid_originServer_originId") | ||
| cur.execute("DROP INDEX IF EXISTS medium_lower_address") | ||
| cur.execute("DROP INDEX IF EXISTS threepid_originServer_originId") | ||
| cur.execute("ALTER TABLE global_threepid_associations RENAME TO old_global_threepid_associations"); | ||
| cur.execute( | ||
| "CREATE TABLE IF NOT EXISTS global_threepid_associations " | ||
| "(id integer primary key autoincrement, " | ||
| "medium varchar(16) not null, " | ||
| "address varchar(256) not null, " | ||
| "mxid varchar(256) not null, " | ||
| "ts integer not null, " | ||
| "notBefore bigint not null, " | ||
| "notAfter integer not null, " | ||
| "originServer varchar(255) not null, " | ||
| "originId integer not null, " | ||
| "sgAssoc text not null)" | ||
| ) | ||
| cur.execute( | ||
| "INSERT INTO global_threepid_associations " | ||
| "(medium, address, mxid, ts, notBefore, notAfter, originServer, originId, sgAssoc) " | ||
| "SELECT medium, address, mxid, ts, notBefore, notAfter, originServer, originId, sgAssoc " | ||
| "FROM old_global_threepid_associations" | ||
| ) | ||
| cur.execute("CREATE INDEX global_threepid_medium_address on global_threepid_associations (medium, address)") | ||
| cur.execute( | ||
| "CREATE INDEX global_threepid_medium_lower_address on " | ||
| "global_threepid_associations (medium, lower(address))" | ||
| ) | ||
| cur.execute( | ||
| "CREATE UNIQUE INDEX global_threepid_originServer_originId on " | ||
| "global_threepid_associations (originServer, originId)" | ||
| ) | ||
| cur.execute("DROP TABLE old_global_threepid_associations") | ||
| self.sydent.db.commit() | ||
| logger.info("v0 -> v1 schema migration complete") | ||
| self._setSchemaVersion(1) | ||
|
|
||
| def _getSchemaVersion(self): | ||
| cur = self.sydent.db.cursor() | ||
| res = cur.execute("PRAGMA user_version"); | ||
| row = cur.fetchone() | ||
| return row[0] | ||
|
|
||
| def _setSchemaVersion(self, ver): | ||
| cur = self.sydent.db.cursor() | ||
| # NB. pragma doesn't support variable substitution so we | ||
| # do it in python (as a decimal so we don't risk SQL injection) | ||
| res = cur.execute("PRAGMA user_version = %d" % (ver,)); | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -18,9 +18,13 @@ | |
| import logging | ||
|
|
||
| from StringIO import StringIO | ||
| from twisted.internet import defer, reactor, ssl | ||
| from twisted.internet._sslverify import _OpenSSLECCurve, _defaultCurveName, ClientTLSOptions | ||
| from twisted.web.client import FileBodyProducer, Agent, readBody | ||
| from twisted.web.http_headers import Headers | ||
| from twisted.web.iweb import IPolicyForHTTPS | ||
| from zope.interface import implementer | ||
| from OpenSSL import SSL | ||
|
|
||
| logger = logging.getLogger(__name__) | ||
|
|
||
|
|
@@ -29,15 +33,33 @@ class SimpleHttpClient(object): | |
| A simple, no-frills HTTP client based on the class of the same name | ||
| from synapse | ||
| """ | ||
| def __init__(self, sydent, context_factory=None): | ||
| self.sydent = sydent | ||
| if context_factory is None: | ||
| # The default context factory in Twisted 14.0.0 (which we require) is | ||
| # BrowserLikePolicyForHTTPS which will do regular cert validation | ||
| # 'like a browser' | ||
| self.agent = Agent( | ||
| reactor, | ||
| connectTimeout=15, | ||
| ) | ||
| else: | ||
| self.agent = Agent( | ||
| reactor, | ||
| connectTimeout=15, | ||
| contextFactory=context_factory | ||
| ) | ||
|
|
||
| @defer.inlineCallbacks | ||
| def get_json(self, uri): | ||
| logger.debug("HTTP GET %s", uri) | ||
|
|
||
| response = yield self.agent.request( | ||
| "GET", | ||
| uri.encode("ascii"), | ||
| ) | ||
| body = yield readBody(response) | ||
| defer.returnValue(json.loads(body)) | ||
|
|
||
| @defer.inlineCallbacks | ||
| def post_json_get_nothing(self, uri, post_json, opts): | ||
|
|
@@ -57,3 +79,21 @@ def post_json_get_nothing(self, uri, post_json, opts): | |
| ) | ||
| defer.returnValue(response) | ||
|
|
||
| @implementer(IPolicyForHTTPS) | ||
| class FederationPolicyForHTTPS(object): | ||
| def creatorForNetloc(self, hostname, port): | ||
| context = SSL.Context(SSL.SSLv23_METHOD) | ||
| try: | ||
| _ecCurve = _OpenSSLECCurve(_defaultCurveName) | ||
|
There was a problem hiding this comment. can you do matrix-org/synapse#3157 to this please |
||
| _ecCurve.addECKeyToContext(context) | ||
| except Exception: | ||
| logger.exception("Failed to enable elliptic curve for TLS") | ||
| context.set_options(SSL.OP_NO_SSLv2 | SSL.OP_NO_SSLv3) | ||
|
|
||
| context.set_cipher_list("!ADH:HIGH+kEDH:!AECDH:HIGH+kEECDH") | ||
| return ClientTLSOptions(hostname, context) | ||
|
|
||
|
|
||
| class FederationHttpClient(SimpleHttpClient): | ||
| def __init__(self, sydent): | ||
| super(FederationHttpClient, self).__init__(sydent, FederationPolicyForHTTPS()) | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,83 @@ | ||
| # -*- coding: utf-8 -*- | ||
|
|
||
| # Copyright 2014 OpenMarket Ltd | ||
| # Copyright 2018 New Vector Ltd | ||
| # | ||
| # Licensed under the Apache License, Version 2.0 (the "License"); | ||
| # you may not use this file except in compliance with the License. | ||
| # You may obtain a copy of the License at | ||
| # | ||
| # http://www.apache.org/licenses/LICENSE-2.0 | ||
| # | ||
| # Unless required by applicable law or agreed to in writing, software | ||
| # distributed under the License is distributed on an "AS IS" BASIS, | ||
| # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
| # See the License for the specific language governing permissions and | ||
| # limitations under the License. | ||
|
|
||
| import json | ||
|
|
||
| from twisted.web.resource import Resource | ||
| from twisted.web import server | ||
| from twisted.internet import defer | ||
|
|
||
| from sydent.http.servlets import get_args, jsonwrap | ||
| from sydent.hs_federation.verifier import NoAuthenticationError | ||
| from signedjson.sign import SignatureVerifyException | ||
|
|
||
|
|
||
| class ThreePidUnbindServlet(Resource): | ||
| def __init__(self, sydent): | ||
| self.sydent = sydent | ||
|
|
||
| def render_POST(self, request): | ||
| self._async_render_POST(request) | ||
| return server.NOT_DONE_YET | ||
|
|
||
| @defer.inlineCallbacks | ||
| def _async_render_POST(self, request): | ||
|
There was a problem hiding this comment. does this not need a generic |
||
| try: | ||
| body = json.load(request.content) | ||
| except ValueError: | ||
| request.setResponseCode(400) | ||
| request.write(json.dumps({'errcode': 'M_BAD_JSON', 'error': 'Malformed JSON'})) | ||
| request.finish() | ||
| return | ||
|
|
||
| missing = [k for k in ("threepid", "mxid") if k not in body] | ||
| if len(missing) > 0: | ||
| request.setResponseCode(400) | ||
| msg = "Missing parameters: "+(",".join(missing)) | ||
| request.write(json.dumps({'errcode': 'M_MISSING_PARAMS', 'error': msg})) | ||
| request.finish() | ||
| return | ||
|
|
||
| threepid = body['threepid'] | ||
| mxid = body['mxid'] | ||
|
|
||
| if 'medium' not in threepid or 'address' not in threepid: | ||
| request.setResponseCode(400) | ||
| request.write(json.dumps({'errcode': 'M_MISSING_PARAMS', 'error': 'Threepid lacks medium / address'})) | ||
| request.finish() | ||
| return | ||
|
|
||
| try: | ||
| origin_server_name = yield self.sydent.sig_verifier.authenticate_request(request, body) | ||
| except SignatureVerifyException as ex: | ||
| request.setResponseCode(401) | ||
| request.write(json.dumps({'errcode': 'M_FORBIDDEN', 'error': ex.message})) | ||
| request.finish() | ||
| return | ||
| except NoAuthenticationError as ex: | ||
| request.setResponseCode(401) | ||
| request.write(json.dumps({'errcode': 'M_FORBIDDEN', 'error': ex.message})) | ||
| request.finish() | ||
| return | ||
|
|
||
| if not mxid.endswith(':' + origin_server_name): | ||
| request.setResponseCode(403) | ||
| request.write(json.dumps({'errcode': 'M_FORBIDDEN', 'error': 'Origin server name does not match mxid'})) | ||
| request.finish() | ||
|
|
||
| res = self.sydent.threepidBinder.removeBinding(threepid, mxid) | ||
| request.write(json.dumps({})) | ||
| request.finish() | ||
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
why do we bother with this, ooi?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Because it's a REPLACE INTO, so we don't need to insert an empty record if there's nothing there to start with