dandri/synapse
1
0
Fork 0
mirror of https://github.com/element-hq/synapse.git synced 2026-06-03 01:54:37 +00:00
Code Issues Packages Projects Releases Wiki Activity

Reject device_keys: null in POST /keys/upload (#19637)

Browse Source 
The spec says `device_keys` may be omitted, but not set to `null`.
This was temporarily allowed as a workaround for misbehaving clients
(see #19023), which have since been fixed.

Fixes #19030
This commit is contained in:
Quentin Gliech
2026-04-13 15:33:19 +02:00
committed by GitHub
parent 0e3e947bd6
commit 784a28bbc8
3 changed files with 27 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files
changelog.d/19637.bugfix
+1
View File
@@ -0,0 +1 @@
Reject `device_keys: null` in the request to [`POST /_matrix/client/v3/keys/upload`](https://spec.matrix.org/v1.16/client-server-api/#post_matrixclientv3keysupload), as per the spec. This was temporarily allowed as a workaround for misbehaving clients.
synapse/rest/client/keys.py
+20 -3
View File
@@ -159,6 +159,23 @@ class KeyUploadServlet(RestServlet):
device_keys: DeviceKeys | None = None
"""Identity keys for the device. May be absent if no new identity keys are required."""
@field_validator("device_keys", mode="before")
@classmethod
def validate_device_keys_not_null(cls, v: Any) -> Any:
"""Reject explicit `null` for `device_keys` while still allowing
the field to be omitted (in which case the default `None` is used).
The spec says `device_keys` may be omitted, but when present it
must be a `DeviceKeys` object — not `null`.
Pydantic's experimental `Missing` sentinel would be a cleaner way
to express this, but it's not stable yet:
https://docs.pydantic.dev/latest/concepts/experimental/#missing-sentinel
"""
if v is None:
raise ValueError("device_keys must not be null")
return v
fallback_keys: Mapping[StrictStr, StrictStr | KeyObject] | None = None
"""
The public key which should be used if the device's one-time keys are
@@ -241,7 +258,7 @@ class KeyUploadServlet(RestServlet):
400, "To upload keys, you must pass device_id when authenticating"
)
if "device_keys" in body and isinstance(body["device_keys"], dict):
if "device_keys" in body:
# Validate the provided `user_id` and `device_id` fields in
# `device_keys` match that of the requesting user. We can't do
# this directly in the pydantic model as we don't have access
@@ -249,13 +266,13 @@ class KeyUploadServlet(RestServlet):
#
# TODO: We could use ValidationInfo when we switch to Pydantic v2.
# https://docs.pydantic.dev/latest/concepts/validators/#validation-info
if body["device_keys"].get("user_id") != user_id:
if body["device_keys"]["user_id"] != user_id:
raise SynapseError(
code=HTTPStatus.BAD_REQUEST,
errcode=Codes.BAD_JSON,
msg="Provided `user_id` in `device_keys` does not match that of the authenticated user",
)
if body["device_keys"].get("device_id") != device_id:
if body["device_keys"]["device_id"] != device_id:
raise SynapseError(
code=HTTPStatus.BAD_REQUEST,
errcode=Codes.BAD_JSON,
tests/rest/client/test_keys.py
+6 -5
View File
@@ -160,9 +160,12 @@ class KeyUploadTestCase(unittest.HomeserverTestCase):
channel.result,
)
def test_upload_keys_succeeds_when_fields_are_explicitly_set_to_null(self) -> None:
def test_upload_keys_rejects_device_keys_set_to_null(self) -> None:
"""
This is a regression test for https://github.com/element-hq/synapse/pull/19023.
Test that sending `device_keys: null` is rejected per spec.
The spec says `device_keys` may be omitted, but not set to `null`.
See https://github.com/element-hq/synapse/issues/19030.
"""
device_id = "DEVICE_ID"
self.register_user("alice", "wonderland")
@@ -173,12 +176,10 @@ class KeyUploadTestCase(unittest.HomeserverTestCase):
"/_matrix/client/v3/keys/upload",
{
"device_keys": None,
"one_time_keys": None,
"fallback_keys": None,
},
alice_token,
)
self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
self.assertEqual(channel.code, HTTPStatus.BAD_REQUEST, channel.result)
class KeyQueryTestCase(unittest.HomeserverTestCase):