Skip to content
This repository has been archived by the owner on Apr 26, 2024. It is now read-only.

Improve validation of field size limits in events. #14664

Merged
merged 16 commits into from
Dec 13, 2022
Merged

Improve validation of field size limits in events. #14664

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
16 commits
Select commit Hold shift + click to select a range
0d3af6a
Introduce rejection reason for oversized events
reivilibre Nov 8, 2022
49138f3
Introduce `strict` field on EventSizeError
reivilibre Nov 8, 2022
48010ba
Make _check_size_limits use byte limits
reivilibre Nov 8, 2022
51e6ed0
Persist events with non-strict event size errors as rejected
reivilibre Nov 8, 2022
841a4e9
Also do that for the /send_join response
reivilibre Nov 8, 2022
e13d1b5
Add stricter pass of event size checking
reivilibre Nov 15, 2022
897889d
Don't give any leniency in future room versions
reivilibre Nov 15, 2022
0a41d90
strict -> unpersistable
reivilibre Dec 12, 2022
a5b243b
Newsfile
reivilibre Dec 12, 2022
c839469
Merge branch 'develop' into rei/event_size_fixes
reivilibre Dec 12, 2022
fcc7aa1
Fix hashable issue (introduced in develop since base of this PR)
reivilibre Dec 12, 2022
775e6d3
Revert "Fix hashable issue (introduced in develop since base of this …
reivilibre Dec 12, 2022
38cc083
strict -> unpersistable in comments
reivilibre Dec 12, 2022
910fe06
Add leniency for MSC1767v10 (concurrently-introduced room version)
reivilibre Dec 12, 2022
25d6793
Make msc3931_push_features a Tuple[str, ...] so it's hashable (1)
reivilibre Dec 12, 2022
506f4ab
Accept the Tuple[str, ...] (2)
reivilibre Dec 12, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions synapse/api/errors.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -426,7 +426,7 @@ def error_dict(self, config: Optional["HomeServerConfig"]) -> "JsonDict":
class EventSizeError(SynapseError):
"""An error raised when an event is too big."""

def __init__(self, msg: str, strict: bool):
def __init__(self, msg: str, unpersistable: bool):
"""
strict:
if True, the PDU must not be persisted, not even as a rejected PDU
Expand All @@ -436,7 +436,7 @@ def __init__(self, msg: str, strict: bool):
"""

super().__init__(413, msg, Codes.TOO_LARGE)
self.strict = strict
self.unpersistable = unpersistable


class LoginError(SynapseError):
Expand Down
22 changes: 11 additions & 11 deletions synapse/event_auth.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -385,36 +385,36 @@ def _check_size_limits(event: "EventBase") -> None:

# Whole PDU check
if len(encode_canonical_json(event.get_pdu_json())) > MAX_PDU_SIZE:
raise EventSizeError("event too large", strict=True)
raise EventSizeError("event too large", unpersistable=True)
reivilibre marked this conversation as resolved.
Show resolved Hide resolved

# Codepoint size check: Synapse always enforced these limits, so apply
# them strictly.
if len(event.user_id) > 255:
raise EventSizeError("'user_id' too large", strict=True)
raise EventSizeError("'user_id' too large", unpersistable=True)
if len(event.room_id) > 255:
raise EventSizeError("'room_id' too large", strict=True)
raise EventSizeError("'room_id' too large", unpersistable=True)
if event.is_state() and len(event.state_key) > 255:
raise EventSizeError("'state_key' too large", strict=True)
raise EventSizeError("'state_key' too large", unpersistable=True)
if len(event.type) > 255:
raise EventSizeError("'type' too large", strict=True)
raise EventSizeError("'type' too large", unpersistable=True)
if len(event.event_id) > 255:
raise EventSizeError("'event_id' too large", strict=True)
raise EventSizeError("'event_id' too large", unpersistable=True)

strict_byte_limits = (
event.room_version not in LENIENT_EVENT_BYTE_LIMITS_ROOM_VERSIONS
)

# Byte size check: if these fail, then be lenient to avoid breaking rooms.
if len(event.user_id.encode("utf-8")) > 255:
raise EventSizeError("'user_id' too large", strict=strict_byte_limits)
raise EventSizeError("'user_id' too large", unpersistable=strict_byte_limits)
if len(event.room_id.encode("utf-8")) > 255:
raise EventSizeError("'room_id' too large", strict=strict_byte_limits)
raise EventSizeError("'room_id' too large", unpersistable=strict_byte_limits)
if event.is_state() and len(event.state_key.encode("utf-8")) > 255:
raise EventSizeError("'state_key' too large", strict=strict_byte_limits)
raise EventSizeError("'state_key' too large", unpersistable=strict_byte_limits)
if len(event.type.encode("utf-8")) > 255:
raise EventSizeError("'type' too large", strict=strict_byte_limits)
raise EventSizeError("'type' too large", unpersistable=strict_byte_limits)
if len(event.event_id.encode("utf-8")) > 255:
raise EventSizeError("'event_id' too large", strict=strict_byte_limits)
raise EventSizeError("'event_id' too large", unpersistable=strict_byte_limits)


def _check_create(event: "EventBase") -> None:
Expand Down
4 changes: 2 additions & 2 deletions synapse/handlers/federation_event.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1739,7 +1739,7 @@ async def prep(event: EventBase) -> None:
logger.warning("Rejecting %r because %s", event, e)
context.rejected = RejectedReason.AUTH_ERROR
except EventSizeError as e:
if e.strict:
if e.unpersistable:
# A strict event size error means the event is completely
# unpersistable.
raise e
Expand Down Expand Up @@ -1794,7 +1794,7 @@ async def _check_event_auth(
context.rejected = RejectedReason.AUTH_ERROR
return
except EventSizeError as e:
if e.strict:
if e.unpersistable:
# A strict event size error means the event is completely
# unpersistable.
raise e
Expand Down