dendrite/common/keydb/keyring.go

// Copyright 2017 New Vector Ltd
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

package keydb

import (
	"encoding/base64"

	"github.com/matrix-org/dendrite/common/config"
	"github.com/matrix-org/gomatrixserverlib"
	"github.com/sirupsen/logrus"
	"golang.org/x/crypto/ed25519"
)

// CreateKeyRing creates and configures a KeyRing object.
//
// It creates the necessary key fetchers and collects them into a KeyRing
// backed by the given KeyDatabase.
func CreateKeyRing(client gomatrixserverlib.Client,
	keyDB gomatrixserverlib.KeyDatabase,
	cfg config.KeyPerspectives) gomatrixserverlib.KeyRing {

	fetchers := gomatrixserverlib.KeyRing{
		KeyFetchers: []gomatrixserverlib.KeyFetcher{
			&gomatrixserverlib.DirectKeyFetcher{
				Client: client,
			},
		},
		KeyDatabase: keyDB,
	}

	logrus.Info("Enabled direct key fetcher")

	var b64e = base64.StdEncoding.WithPadding(base64.NoPadding)
	for _, ps := range cfg {
		perspective := &gomatrixserverlib.PerspectiveKeyFetcher{
			PerspectiveServerName: ps.ServerName,
			PerspectiveServerKeys: map[gomatrixserverlib.KeyID]ed25519.PublicKey{},
			Client:                client,
		}

		for _, key := range ps.Keys {
			rawkey, err := b64e.DecodeString(key.PublicKey)
			if err != nil {
				logrus.WithError(err).WithFields(logrus.Fields{
					"server_name": ps.ServerName,
					"public_key":  key.PublicKey,
				}).Warn("Couldn't parse perspective key")
				continue
			}
			perspective.PerspectiveServerKeys[key.KeyID] = rawkey
		}

		fetchers.KeyFetchers = append(fetchers.KeyFetchers, perspective)

		logrus.WithFields(logrus.Fields{
			"server_name":     ps.ServerName,
			"num_public_keys": len(ps.Keys),
		}).Info("Enabled perspective key fetcher")
	}

	return fetchers
}
Factor out keyring initialisation (#329) Take the keyring init from the client-api-server and the monolith out to a shared file 2017-11-13 19:39:09 +01:00			`// Copyright 2017 New Vector Ltd`
			`//`
			`// Licensed under the Apache License, Version 2.0 (the "License");`
			`// you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at`
			`//`
			`// http://www.apache.org/licenses/LICENSE-2.0`
			`//`
			`// Unless required by applicable law or agreed to in writing, software`
			`// distributed under the License is distributed on an "AS IS" BASIS,`
			`// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`// See the License for the specific language governing permissions and`
			`// limitations under the License.`

			`package keydb`

Perspective key fetching, some federation room join fixes (#975) * Update gomatrixserverlib * Test matrix.org as perspective key server * Base64 decode better * Optional strict validity checking in gmsl * Update gomatrixserverlib * Attempt to find missing auth events over federation (this shouldn't happen but I am guessing there is a synapse bug involved where we don't get all of the auth events) * Update gomatrixserverlib, debug logging * Remove debugging output * More verbose debugging * Print outliers * Increase timeouts for testing, observe contexts before trying to join over more servers * Don't block on roomserver (experimental) * Don't block on roomserver * Update gomatrixserverlib * Update gomatrixserverlib * Configurable perspective key fetchers * Output number of configured keys for perspective * Example perspective config included * Undo debug stack trace * Undo debug stack trace * Restore original HTTP listener in monolith * Fix lint * Review comments * Set default HTTP server timeout to 5 minutes now, block again when joining * Don't use HTTP address for HTTPS whoops * Update gomatrixserverlib * Update gomatrixserverlib * Update gomatrixserverlib * Actually add perspectives * Actually add perspectives * Update gomatrixserverlib 2020-04-20 18:42:34 +02:00			`import (`
			`"encoding/base64"`

			`"github.com/matrix-org/dendrite/common/config"`
			`"github.com/matrix-org/gomatrixserverlib"`
			`"github.com/sirupsen/logrus"`
			`"golang.org/x/crypto/ed25519"`
			`)`
Factor out keyring initialisation (#329) Take the keyring init from the client-api-server and the monolith out to a shared file 2017-11-13 19:39:09 +01:00
			`// CreateKeyRing creates and configures a KeyRing object.`
			`//`
			`// It creates the necessary key fetchers and collects them into a KeyRing`
			`// backed by the given KeyDatabase.`
			`func CreateKeyRing(client gomatrixserverlib.Client,`
Perspective key fetching, some federation room join fixes (#975) * Update gomatrixserverlib * Test matrix.org as perspective key server * Base64 decode better * Optional strict validity checking in gmsl * Update gomatrixserverlib * Attempt to find missing auth events over federation (this shouldn't happen but I am guessing there is a synapse bug involved where we don't get all of the auth events) * Update gomatrixserverlib, debug logging * Remove debugging output * More verbose debugging * Print outliers * Increase timeouts for testing, observe contexts before trying to join over more servers * Don't block on roomserver (experimental) * Don't block on roomserver * Update gomatrixserverlib * Update gomatrixserverlib * Configurable perspective key fetchers * Output number of configured keys for perspective * Example perspective config included * Undo debug stack trace * Undo debug stack trace * Restore original HTTP listener in monolith * Fix lint * Review comments * Set default HTTP server timeout to 5 minutes now, block again when joining * Don't use HTTP address for HTTPS whoops * Update gomatrixserverlib * Update gomatrixserverlib * Update gomatrixserverlib * Actually add perspectives * Actually add perspectives * Update gomatrixserverlib 2020-04-20 18:42:34 +02:00			`keyDB gomatrixserverlib.KeyDatabase,`
			`cfg config.KeyPerspectives) gomatrixserverlib.KeyRing {`

			`fetchers := gomatrixserverlib.KeyRing{`
Factor out keyring initialisation (#329) Take the keyring init from the client-api-server and the monolith out to a shared file 2017-11-13 19:39:09 +01:00			`KeyFetchers: []gomatrixserverlib.KeyFetcher{`
Perspective key fetching, some federation room join fixes (#975) * Update gomatrixserverlib * Test matrix.org as perspective key server * Base64 decode better * Optional strict validity checking in gmsl * Update gomatrixserverlib * Attempt to find missing auth events over federation (this shouldn't happen but I am guessing there is a synapse bug involved where we don't get all of the auth events) * Update gomatrixserverlib, debug logging * Remove debugging output * More verbose debugging * Print outliers * Increase timeouts for testing, observe contexts before trying to join over more servers * Don't block on roomserver (experimental) * Don't block on roomserver * Update gomatrixserverlib * Update gomatrixserverlib * Configurable perspective key fetchers * Output number of configured keys for perspective * Example perspective config included * Undo debug stack trace * Undo debug stack trace * Restore original HTTP listener in monolith * Fix lint * Review comments * Set default HTTP server timeout to 5 minutes now, block again when joining * Don't use HTTP address for HTTPS whoops * Update gomatrixserverlib * Update gomatrixserverlib * Update gomatrixserverlib * Actually add perspectives * Actually add perspectives * Update gomatrixserverlib 2020-04-20 18:42:34 +02:00			`&gomatrixserverlib.DirectKeyFetcher{`
			`Client: client,`
			`},`
Factor out keyring initialisation (#329) Take the keyring init from the client-api-server and the monolith out to a shared file 2017-11-13 19:39:09 +01:00			`},`
			`KeyDatabase: keyDB,`
			`}`
Perspective key fetching, some federation room join fixes (#975) * Update gomatrixserverlib * Test matrix.org as perspective key server * Base64 decode better * Optional strict validity checking in gmsl * Update gomatrixserverlib * Attempt to find missing auth events over federation (this shouldn't happen but I am guessing there is a synapse bug involved where we don't get all of the auth events) * Update gomatrixserverlib, debug logging * Remove debugging output * More verbose debugging * Print outliers * Increase timeouts for testing, observe contexts before trying to join over more servers * Don't block on roomserver (experimental) * Don't block on roomserver * Update gomatrixserverlib * Update gomatrixserverlib * Configurable perspective key fetchers * Output number of configured keys for perspective * Example perspective config included * Undo debug stack trace * Undo debug stack trace * Restore original HTTP listener in monolith * Fix lint * Review comments * Set default HTTP server timeout to 5 minutes now, block again when joining * Don't use HTTP address for HTTPS whoops * Update gomatrixserverlib * Update gomatrixserverlib * Update gomatrixserverlib * Actually add perspectives * Actually add perspectives * Update gomatrixserverlib 2020-04-20 18:42:34 +02:00
			`logrus.Info("Enabled direct key fetcher")`

			`var b64e = base64.StdEncoding.WithPadding(base64.NoPadding)`
			`for _, ps := range cfg {`
			`perspective := &gomatrixserverlib.PerspectiveKeyFetcher{`
			`PerspectiveServerName: ps.ServerName,`
			`PerspectiveServerKeys: map[gomatrixserverlib.KeyID]ed25519.PublicKey{},`
			`Client: client,`
			`}`

			`for _, key := range ps.Keys {`
			`rawkey, err := b64e.DecodeString(key.PublicKey)`
			`if err != nil {`
			`logrus.WithError(err).WithFields(logrus.Fields{`
			`"server_name": ps.ServerName,`
			`"public_key": key.PublicKey,`
			`}).Warn("Couldn't parse perspective key")`
			`continue`
			`}`
			`perspective.PerspectiveServerKeys[key.KeyID] = rawkey`
			`}`

			`fetchers.KeyFetchers = append(fetchers.KeyFetchers, perspective)`

			`logrus.WithFields(logrus.Fields{`
			`"server_name": ps.ServerName,`
			`"num_public_keys": len(ps.Keys),`
			`}).Info("Enabled perspective key fetcher")`
			`}`

			`return fetchers`
Factor out keyring initialisation (#329) Take the keyring init from the client-api-server and the monolith out to a shared file 2017-11-13 19:39:09 +01:00			`}`