maxmustermann/synapse
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
synapse/tests/handlers/test_e2e_keys.py

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

784 lines
29 KiB
Python
Raw Normal View History

keys/query: return all users which were asked for In the situation where all of a user's devices get deleted, we want to indicate this to a client, so we want to return an empty dictionary, rather than nothing at all.
2016-08-03 12:48:32 +02:00
# Copyright 2016 OpenMarket Ltd
allow uploading keys for cross-signing
2019-07-25 17:08:24 +02:00
# Copyright 2019 New Vector Ltd
# Copyright 2019 The Matrix.org Foundation C.I.C.
keys/query: return all users which were asked for In the situation where all of a user's devices get deleted, we want to indicate this to a client, so we want to return an empty dictionary, rather than nothing at all.
2016-08-03 12:48:32 +02:00
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
Use mock from the stdlib. (#9772)
2021-04-09 19:44:38 +02:00
from unittest import mock
run isort
2018-07-09 08:09:20 +02:00
isort 5 compatibility (#7786) The CI appears to use the latest version of isort, which is a problem when isort gets a major version bump. Rather than try to pin the version, I've done the necessary to make isort5 happy with synapse.
2020-07-05 17:32:02 +02:00
from signedjson import key as key, sign as sign
make isort happy
2019-07-22 18:58:04 +02:00
Include cross-signing signatures when syncing remote devices for the first time (#11234) When fetching remote devices for the first time, we did not correctly include the cross signing keys in the returned results. c.f. #11159
2021-11-09 12:45:36 +01:00
from twisted.internet import defer
Add option to enable encryption by default for new rooms (#7639) Fixes https://github.com/matrix-org/synapse/issues/2431 Adds config option `encryption_enabled_by_default_for_room_type`, which determines whether encryption should be enabled with the default encryption algorithm in private or public rooms upon creation. Whether the room is private or public is decided based upon the room creation preset that is used. Part of this PR is also pulling out all of the individual instances of `m.megolm.v1.aes-sha2` into a constant variable to eliminate typos ala https://github.com/matrix-org/synapse/pull/7637 Based on #7637
2020-06-10 18:44:34 +02:00
from synapse.api.constants import RoomEncryptionAlgorithms
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
from synapse.api.errors import Codes, SynapseError
run isort
2018-07-09 08:09:20 +02:00
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
from tests import unittest
keys/query: return all users which were asked for In the situation where all of a user's devices get deleted, we want to indicate this to a client, so we want to return an empty dictionary, rather than nothing at all.
2016-08-03 12:48:32 +02:00
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
class E2eKeysHandlerTestCase(unittest.HomeserverTestCase):
def make_homeserver(self, reactor, clock):
return self.setup_test_homeserver(federation_client=mock.Mock())
keys/query: return all users which were asked for In the situation where all of a user's devices get deleted, we want to indicate this to a client, so we want to return an empty dictionary, rather than nothing at all.
2016-08-03 12:48:32 +02:00
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
def prepare(self, reactor, clock, hs):
self.handler = hs.get_e2e_keys_handler()
Invalidate the cache when an olm fallback key is uploaded (#8501)
2020-10-08 19:24:46 +02:00
self.store = self.hs.get_datastore()
keys/query: return all users which were asked for In the situation where all of a user's devices get deleted, we want to indicate this to a client, so we want to return an empty dictionary, rather than nothing at all.
2016-08-03 12:48:32 +02:00
def test_query_local_devices_no_devices(self):
"""If the user has no devices, we expect an empty list."""
local_user = "@boris:" + self.hs.hostname
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(self.handler.query_local_devices({local_user: None}))
keys/query: return all users which were asked for In the situation where all of a user's devices get deleted, we want to indicate this to a client, so we want to return an empty dictionary, rather than nothing at all.
2016-08-03 12:48:32 +02:00
self.assertDictEqual(res, {local_user: {}})
Allow clients to upload one-time-keys with new sigs When a client retries a key upload, don't give an error if the signature has changed (but the key is the same). Fixes https://github.com/vector-im/riot-android/issues/1208, hopefully.
2017-05-09 19:26:54 +02:00
def test_reupload_one_time_keys(self):
"""we should be able to re-upload the same keys"""
local_user = "@boris:" + self.hs.hostname
device_id = "xyz"
keys = {
"alg1:k1": "key1",
Run black.
2018-08-10 15:54:09 +02:00
"alg2:k2": {"key": "key2", "signatures": {"k1": "sig1"}},
"alg2:k3": {"key": "key3"},
Allow clients to upload one-time-keys with new sigs When a client retries a key upload, don't give an error if the signature has changed (but the key is the same). Fixes https://github.com/vector-im/riot-android/issues/1208, hopefully.
2017-05-09 19:26:54 +02:00
}
Always communicate device OTK counts to clients (#10485) Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
2021-07-27 15:36:38 +02:00
# Note that "signed_curve25519" is always returned in key count responses. This is necessary until
# https://github.com/matrix-org/matrix-doc/issues/3298 is fixed.
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_keys_for_user(
local_user, device_id, {"one_time_keys": keys}
)
Allow clients to upload one-time-keys with new sigs When a client retries a key upload, don't give an error if the signature has changed (but the key is the same). Fixes https://github.com/vector-im/riot-android/issues/1208, hopefully.
2017-05-09 19:26:54 +02:00
)
Always communicate device OTK counts to clients (#10485) Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
2021-07-27 15:36:38 +02:00
self.assertDictEqual(
res, {"one_time_key_counts": {"alg1": 1, "alg2": 2, "signed_curve25519": 0}}
)
Allow clients to upload one-time-keys with new sigs When a client retries a key upload, don't give an error if the signature has changed (but the key is the same). Fixes https://github.com/vector-im/riot-android/issues/1208, hopefully.
2017-05-09 19:26:54 +02:00
# we should be able to change the signature without a problem
keys["alg2:k2"]["signatures"]["k1"] = "sig2"
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_keys_for_user(
local_user, device_id, {"one_time_keys": keys}
)
Allow clients to upload one-time-keys with new sigs When a client retries a key upload, don't give an error if the signature has changed (but the key is the same). Fixes https://github.com/vector-im/riot-android/issues/1208, hopefully.
2017-05-09 19:26:54 +02:00
)
Always communicate device OTK counts to clients (#10485) Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
2021-07-27 15:36:38 +02:00
self.assertDictEqual(
res, {"one_time_key_counts": {"alg1": 1, "alg2": 2, "signed_curve25519": 0}}
)
Allow clients to upload one-time-keys with new sigs When a client retries a key upload, don't give an error if the signature has changed (but the key is the same). Fixes https://github.com/vector-im/riot-android/issues/1208, hopefully.
2017-05-09 19:26:54 +02:00
def test_change_one_time_keys(self):
"""attempts to change one-time-keys should be rejected"""
local_user = "@boris:" + self.hs.hostname
device_id = "xyz"
keys = {
"alg1:k1": "key1",
Run black.
2018-08-10 15:54:09 +02:00
"alg2:k2": {"key": "key2", "signatures": {"k1": "sig1"}},
"alg2:k3": {"key": "key3"},
Allow clients to upload one-time-keys with new sigs When a client retries a key upload, don't give an error if the signature has changed (but the key is the same). Fixes https://github.com/vector-im/riot-android/issues/1208, hopefully.
2017-05-09 19:26:54 +02:00
}
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_keys_for_user(
local_user, device_id, {"one_time_keys": keys}
)
Allow clients to upload one-time-keys with new sigs When a client retries a key upload, don't give an error if the signature has changed (but the key is the same). Fixes https://github.com/vector-im/riot-android/issues/1208, hopefully.
2017-05-09 19:26:54 +02:00
)
Always communicate device OTK counts to clients (#10485) Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
2021-07-27 15:36:38 +02:00
self.assertDictEqual(
res, {"one_time_key_counts": {"alg1": 1, "alg2": 2, "signed_curve25519": 0}}
)
Allow clients to upload one-time-keys with new sigs When a client retries a key upload, don't give an error if the signature has changed (but the key is the same). Fixes https://github.com/vector-im/riot-android/issues/1208, hopefully.
2017-05-09 19:26:54 +02:00
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
# Error when changing string key
self.get_failure(
self.handler.upload_keys_for_user(
local_user, device_id, {"one_time_keys": {"alg1:k1": "key2"}}
),
SynapseError,
)
Always communicate device OTK counts to clients (#10485) Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
2021-07-27 15:36:38 +02:00
# Error when replacing dict key with string
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_failure(
self.handler.upload_keys_for_user(
local_user, device_id, {"one_time_keys": {"alg2:k3": "key2"}}
),
SynapseError,
)
# Error when replacing string key with dict
self.get_failure(
self.handler.upload_keys_for_user(
local_user,
device_id,
{"one_time_keys": {"alg1:k1": {"key": "key"}}},
),
SynapseError,
)
# Error when replacing dict key
self.get_failure(
self.handler.upload_keys_for_user(
local_user,
device_id,
{
"one_time_keys": {
"alg2:k2": {"key": "key3", "signatures": {"k1": "sig1"}}
}
},
),
SynapseError,
)
Do some logging when one-time-keys get claimed might help us figure out if https://github.com/vector-im/riot-web/issues/3868 has happened.
2017-05-09 20:01:39 +02:00
def test_claim_one_time_key(self):
local_user = "@boris:" + self.hs.hostname
device_id = "xyz"
Run black.
2018-08-10 15:54:09 +02:00
keys = {"alg1:k1": "key1"}
Do some logging when one-time-keys get claimed might help us figure out if https://github.com/vector-im/riot-web/issues/3868 has happened.
2017-05-09 20:01:39 +02:00
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_keys_for_user(
local_user, device_id, {"one_time_keys": keys}
)
Run black.
2018-08-10 15:54:09 +02:00
)
Always communicate device OTK counts to clients (#10485) Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
2021-07-27 15:36:38 +02:00
self.assertDictEqual(
res, {"one_time_key_counts": {"alg1": 1, "signed_curve25519": 0}}
)
Run black.
2018-08-10 15:54:09 +02:00
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res2 = self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.claim_one_time_keys(
{"one_time_keys": {local_user: {device_id: "alg1"}}}, timeout=None
)
Run black.
2018-08-10 15:54:09 +02:00
)
self.assertEqual(
res2,
{
"failures": {},
"one_time_keys": {local_user: {device_id: {"alg1:k1": "key1"}}},
},
Do some logging when one-time-keys get claimed might help us figure out if https://github.com/vector-im/riot-web/issues/3868 has happened.
2017-05-09 20:01:39 +02:00
)
allow uploading keys for cross-signing
2019-07-25 17:08:24 +02:00
Add support for MSC2732: olm fallback keys (#8312)
2020-10-06 19:26:29 +02:00
def test_fallback_key(self):
local_user = "@boris:" + self.hs.hostname
device_id = "xyz"
fallback_key = {"alg1:k1": "key1"}
otk = {"alg1:k2": "key2"}
Invalidate the cache when an olm fallback key is uploaded (#8501)
2020-10-08 19:24:46 +02:00
# we shouldn't have any unused fallback keys yet
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(
Invalidate the cache when an olm fallback key is uploaded (#8501)
2020-10-08 19:24:46 +02:00
self.store.get_e2e_unused_fallback_key_types(local_user, device_id)
)
self.assertEqual(res, [])
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(
Add support for MSC2732: olm fallback keys (#8312)
2020-10-06 19:26:29 +02:00
self.handler.upload_keys_for_user(
local_user,
device_id,
{"org.matrix.msc2732.fallback_keys": fallback_key},
)
)
Invalidate the cache when an olm fallback key is uploaded (#8501)
2020-10-08 19:24:46 +02:00
# we should now have an unused alg1 key
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(
Invalidate the cache when an olm fallback key is uploaded (#8501)
2020-10-08 19:24:46 +02:00
self.store.get_e2e_unused_fallback_key_types(local_user, device_id)
)
self.assertEqual(res, ["alg1"])
Add support for MSC2732: olm fallback keys (#8312)
2020-10-06 19:26:29 +02:00
# claiming an OTK when no OTKs are available should return the fallback
# key
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(
Add support for MSC2732: olm fallback keys (#8312)
2020-10-06 19:26:29 +02:00
self.handler.claim_one_time_keys(
{"one_time_keys": {local_user: {device_id: "alg1"}}}, timeout=None
)
)
self.assertEqual(
res,
{"failures": {}, "one_time_keys": {local_user: {device_id: fallback_key}}},
)
Invalidate the cache when an olm fallback key is uploaded (#8501)
2020-10-08 19:24:46 +02:00
# we shouldn't have any unused fallback keys again
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(
Invalidate the cache when an olm fallback key is uploaded (#8501)
2020-10-08 19:24:46 +02:00
self.store.get_e2e_unused_fallback_key_types(local_user, device_id)
)
self.assertEqual(res, [])
Add support for MSC2732: olm fallback keys (#8312)
2020-10-06 19:26:29 +02:00
# claiming an OTK again should return the same fallback key
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(
Add support for MSC2732: olm fallback keys (#8312)
2020-10-06 19:26:29 +02:00
self.handler.claim_one_time_keys(
{"one_time_keys": {local_user: {device_id: "alg1"}}}, timeout=None
)
)
self.assertEqual(
res,
{"failures": {}, "one_time_keys": {local_user: {device_id: fallback_key}}},
)
# if the user uploads a one-time key, the next claim should fetch the
# one-time key, and then go back to the fallback
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(
Add support for MSC2732: olm fallback keys (#8312)
2020-10-06 19:26:29 +02:00
self.handler.upload_keys_for_user(
local_user, device_id, {"one_time_keys": otk}
)
)
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(
Add support for MSC2732: olm fallback keys (#8312)
2020-10-06 19:26:29 +02:00
self.handler.claim_one_time_keys(
{"one_time_keys": {local_user: {device_id: "alg1"}}}, timeout=None
)
)
self.assertEqual(
res,
{"failures": {}, "one_time_keys": {local_user: {device_id: otk}}},
)
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = self.get_success(
Add support for MSC2732: olm fallback keys (#8312)
2020-10-06 19:26:29 +02:00
self.handler.claim_one_time_keys(
{"one_time_keys": {local_user: {device_id: "alg1"}}}, timeout=None
)
)
self.assertEqual(
res,
{"failures": {}, "one_time_keys": {local_user: {device_id: fallback_key}}},
)
allow uploading keys for cross-signing
2019-07-25 17:08:24 +02:00
def test_replace_master_key(self):
"""uploading a new signing key should make the old signing key unavailable"""
local_user = "@boris:" + self.hs.hostname
keys1 = {
"master_key": {
# private key: 2lonYOM6xYKdEsO+6KrC766xBcHnYnim1x/4LFGF8B0
"user_id": local_user,
"usage": ["master"],
"keys": {
"ed25519:nqOvzeuGWT/sRx3h7+MHoInYj3Uk2LD/unI9kDYcHwk": "nqOvzeuGWT/sRx3h7+MHoInYj3Uk2LD/unI9kDYcHwk"
},
}
}
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(self.handler.upload_signing_keys_for_user(local_user, keys1))
allow uploading keys for cross-signing
2019-07-25 17:08:24 +02:00
keys2 = {
"master_key": {
# private key: 4TL4AjRYwDVwD3pqQzcor+ez/euOB1/q78aTJ+czDNs
"user_id": local_user,
"usage": ["master"],
"keys": {
"ed25519:Hq6gL+utB4ET+UvD5ci0kgAwsX6qP/zvf8v6OInU5iw": "Hq6gL+utB4ET+UvD5ci0kgAwsX6qP/zvf8v6OInU5iw"
},
}
}
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(self.handler.upload_signing_keys_for_user(local_user, keys2))
allow uploading keys for cross-signing
2019-07-25 17:08:24 +02:00
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
devices = self.get_success(
Limit the number of in-flight /keys/query requests from a single device. (#10144)
2021-06-09 13:05:32 +02:00
self.handler.query_devices(
{"device_keys": {local_user: []}}, 0, local_user, "device123"
)
fix formatting
2019-08-02 04:09:05 +02:00
)
allow uploading keys for cross-signing
2019-07-25 17:08:24 +02:00
self.assertDictEqual(devices["master_keys"], {local_user: keys2["master_key"]})
add test
2019-07-22 19:01:10 +02:00
def test_reupload_signatures(self):
"""re-uploading a signature should not fail"""
local_user = "@boris:" + self.hs.hostname
keys1 = {
"master_key": {
# private key: HvQBbU+hc2Zr+JP1sE0XwBe1pfZZEYtJNPJLZJtS+F8
"user_id": local_user,
"usage": ["master"],
"keys": {
"ed25519:EmkqvokUn8p+vQAGZitOk4PWjp7Ukp3txV2TbMPEiBQ": "EmkqvokUn8p+vQAGZitOk4PWjp7Ukp3txV2TbMPEiBQ"
},
},
"self_signing_key": {
# private key: 2lonYOM6xYKdEsO+6KrC766xBcHnYnim1x/4LFGF8B0
"user_id": local_user,
"usage": ["self_signing"],
"keys": {
"ed25519:nqOvzeuGWT/sRx3h7+MHoInYj3Uk2LD/unI9kDYcHwk": "nqOvzeuGWT/sRx3h7+MHoInYj3Uk2LD/unI9kDYcHwk"
},
},
}
master_signing_key = key.decode_signing_key_base64(
"ed25519",
"EmkqvokUn8p+vQAGZitOk4PWjp7Ukp3txV2TbMPEiBQ",
"HvQBbU+hc2Zr+JP1sE0XwBe1pfZZEYtJNPJLZJtS+F8",
)
sign.sign_json(keys1["self_signing_key"], local_user, master_signing_key)
signing_key = key.decode_signing_key_base64(
"ed25519",
"nqOvzeuGWT/sRx3h7+MHoInYj3Uk2LD/unI9kDYcHwk",
"2lonYOM6xYKdEsO+6KrC766xBcHnYnim1x/4LFGF8B0",
)
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(self.handler.upload_signing_keys_for_user(local_user, keys1))
add test
2019-07-22 19:01:10 +02:00
# upload two device keys, which will be signed later by the self-signing key
device_key_1 = {
"user_id": local_user,
"device_id": "abc",
Add option to enable encryption by default for new rooms (#7639) Fixes https://github.com/matrix-org/synapse/issues/2431 Adds config option `encryption_enabled_by_default_for_room_type`, which determines whether encryption should be enabled with the default encryption algorithm in private or public rooms upon creation. Whether the room is private or public is decided based upon the room creation preset that is used. Part of this PR is also pulling out all of the individual instances of `m.megolm.v1.aes-sha2` into a constant variable to eliminate typos ala https://github.com/matrix-org/synapse/pull/7637 Based on #7637
2020-06-10 18:44:34 +02:00
"algorithms": [
"m.olm.curve25519-aes-sha2",
RoomEncryptionAlgorithms.MEGOLM_V1_AES_SHA2,
],
add test
2019-07-22 19:01:10 +02:00
"keys": {
"ed25519:abc": "base64+ed25519+key",
"curve25519:abc": "base64+curve25519+key",
},
"signatures": {local_user: {"ed25519:abc": "base64+signature"}},
}
device_key_2 = {
"user_id": local_user,
"device_id": "def",
Add option to enable encryption by default for new rooms (#7639) Fixes https://github.com/matrix-org/synapse/issues/2431 Adds config option `encryption_enabled_by_default_for_room_type`, which determines whether encryption should be enabled with the default encryption algorithm in private or public rooms upon creation. Whether the room is private or public is decided based upon the room creation preset that is used. Part of this PR is also pulling out all of the individual instances of `m.megolm.v1.aes-sha2` into a constant variable to eliminate typos ala https://github.com/matrix-org/synapse/pull/7637 Based on #7637
2020-06-10 18:44:34 +02:00
"algorithms": [
"m.olm.curve25519-aes-sha2",
RoomEncryptionAlgorithms.MEGOLM_V1_AES_SHA2,
],
add test
2019-07-22 19:01:10 +02:00
"keys": {
"ed25519:def": "base64+ed25519+key",
"curve25519:def": "base64+curve25519+key",
},
"signatures": {local_user: {"ed25519:def": "base64+signature"}},
}
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_keys_for_user(
local_user, "abc", {"device_keys": device_key_1}
)
add test
2019-07-22 19:01:10 +02:00
)
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_keys_for_user(
local_user, "def", {"device_keys": device_key_2}
)
add test
2019-07-22 19:01:10 +02:00
)
# sign the first device key and upload it
del device_key_1["signatures"]
sign.sign_json(device_key_1, local_user, signing_key)
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_signatures_for_device_keys(
local_user, {local_user: {"abc": device_key_1}}
)
add test
2019-07-22 19:01:10 +02:00
)
# sign the second device key and upload both device keys. The server
# should ignore the first device key since it already has a valid
# signature for it
del device_key_2["signatures"]
sign.sign_json(device_key_2, local_user, signing_key)
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_signatures_for_device_keys(
local_user, {local_user: {"abc": device_key_1, "def": device_key_2}}
)
add test
2019-07-22 19:01:10 +02:00
)
device_key_1["signatures"][local_user]["ed25519:abc"] = "base64+signature"
device_key_2["signatures"][local_user]["ed25519:def"] = "base64+signature"
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
devices = self.get_success(
Limit the number of in-flight /keys/query requests from a single device. (#10144)
2021-06-09 13:05:32 +02:00
self.handler.query_devices(
{"device_keys": {local_user: []}}, 0, local_user, "device123"
)
fix test
2019-09-05 23:03:14 +02:00
)
add test
2019-07-22 19:01:10 +02:00
del devices["device_keys"][local_user]["abc"]["unsigned"]
del devices["device_keys"][local_user]["def"]["unsigned"]
self.assertDictEqual(devices["device_keys"][local_user]["abc"], device_key_1)
self.assertDictEqual(devices["device_keys"][local_user]["def"], device_key_2)
allow uploading keys for cross-signing
2019-07-25 17:08:24 +02:00
def test_self_signing_key_doesnt_show_up_as_device(self):
"""signing keys should be hidden when fetching a user's devices"""
local_user = "@boris:" + self.hs.hostname
keys1 = {
"master_key": {
# private key: 2lonYOM6xYKdEsO+6KrC766xBcHnYnim1x/4LFGF8B0
"user_id": local_user,
"usage": ["master"],
"keys": {
"ed25519:nqOvzeuGWT/sRx3h7+MHoInYj3Uk2LD/unI9kDYcHwk": "nqOvzeuGWT/sRx3h7+MHoInYj3Uk2LD/unI9kDYcHwk"
},
}
}
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(self.handler.upload_signing_keys_for_user(local_user, keys1))
allow uploading keys for cross-signing
2019-07-25 17:08:24 +02:00
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
e = self.get_failure(
self.hs.get_device_handler().check_device_registered(
user_id=local_user,
device_id="nqOvzeuGWT/sRx3h7+MHoInYj3Uk2LD/unI9kDYcHwk",
initial_device_display_name="new display name",
),
SynapseError,
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
)
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
res = e.value.code
self.assertEqual(res, 400)
res = self.get_success(self.handler.query_local_devices({local_user: None}))
allow uploading keys for cross-signing
2019-07-25 17:08:24 +02:00
self.assertDictEqual(res, {local_user: {}})
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
def test_upload_signatures(self):
"""should check signatures that are uploaded"""
# set up a user with cross-signing keys and a device. This user will
# try uploading signatures
local_user = "@boris:" + self.hs.hostname
device_id = "xyz"
# private key: OMkooTr76ega06xNvXIGPbgvvxAOzmQncN8VObS7aBA
device_pubkey = "NnHhnqiMFQkq969szYkooLaBAXW244ZOxgukCvm2ZeY"
device_key = {
"user_id": local_user,
"device_id": device_id,
Add option to enable encryption by default for new rooms (#7639) Fixes https://github.com/matrix-org/synapse/issues/2431 Adds config option `encryption_enabled_by_default_for_room_type`, which determines whether encryption should be enabled with the default encryption algorithm in private or public rooms upon creation. Whether the room is private or public is decided based upon the room creation preset that is used. Part of this PR is also pulling out all of the individual instances of `m.megolm.v1.aes-sha2` into a constant variable to eliminate typos ala https://github.com/matrix-org/synapse/pull/7637 Based on #7637
2020-06-10 18:44:34 +02:00
"algorithms": [
"m.olm.curve25519-aes-sha2",
RoomEncryptionAlgorithms.MEGOLM_V1_AES_SHA2,
],
make black happy
2019-07-22 18:52:39 +02:00
"keys": {"curve25519:xyz": "curve25519+key", "ed25519:xyz": device_pubkey},
"signatures": {local_user: {"ed25519:xyz": "something"}},
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
}
device_signing_key = key.decode_signing_key_base64(
make black happy
2019-07-22 18:52:39 +02:00
"ed25519", "xyz", "OMkooTr76ega06xNvXIGPbgvvxAOzmQncN8VObS7aBA"
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
)
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_keys_for_user(
local_user, device_id, {"device_keys": device_key}
)
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
)
# private key: 2lonYOM6xYKdEsO+6KrC766xBcHnYnim1x/4LFGF8B0
master_pubkey = "nqOvzeuGWT/sRx3h7+MHoInYj3Uk2LD/unI9kDYcHwk"
master_key = {
"user_id": local_user,
"usage": ["master"],
make black happy
2019-07-22 18:52:39 +02:00
"keys": {"ed25519:" + master_pubkey: master_pubkey},
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
}
master_signing_key = key.decode_signing_key_base64(
make black happy
2019-07-22 18:52:39 +02:00
"ed25519", master_pubkey, "2lonYOM6xYKdEsO+6KrC766xBcHnYnim1x/4LFGF8B0"
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
)
usersigning_pubkey = "Hq6gL+utB4ET+UvD5ci0kgAwsX6qP/zvf8v6OInU5iw"
usersigning_key = {
# private key: 4TL4AjRYwDVwD3pqQzcor+ez/euOB1/q78aTJ+czDNs
"user_id": local_user,
"usage": ["user_signing"],
make black happy
2019-07-22 18:52:39 +02:00
"keys": {"ed25519:" + usersigning_pubkey: usersigning_pubkey},
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
}
usersigning_signing_key = key.decode_signing_key_base64(
make black happy
2019-07-22 18:52:39 +02:00
"ed25519", usersigning_pubkey, "4TL4AjRYwDVwD3pqQzcor+ez/euOB1/q78aTJ+czDNs"
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
)
sign.sign_json(usersigning_key, local_user, master_signing_key)
# private key: HvQBbU+hc2Zr+JP1sE0XwBe1pfZZEYtJNPJLZJtS+F8
selfsigning_pubkey = "EmkqvokUn8p+vQAGZitOk4PWjp7Ukp3txV2TbMPEiBQ"
selfsigning_key = {
"user_id": local_user,
"usage": ["self_signing"],
make black happy
2019-07-22 18:52:39 +02:00
"keys": {"ed25519:" + selfsigning_pubkey: selfsigning_pubkey},
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
}
selfsigning_signing_key = key.decode_signing_key_base64(
make black happy
2019-07-22 18:52:39 +02:00
"ed25519", selfsigning_pubkey, "HvQBbU+hc2Zr+JP1sE0XwBe1pfZZEYtJNPJLZJtS+F8"
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
)
sign.sign_json(selfsigning_key, local_user, master_signing_key)
cross_signing_keys = {
"master_key": master_key,
"user_signing_key": usersigning_key,
"self_signing_key": selfsigning_key,
}
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_signing_keys_for_user(local_user, cross_signing_keys)
)
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
# set up another user with a master key. This user will be signed by
# the first user
other_user = "@otherboris:" + self.hs.hostname
other_master_pubkey = "fHZ3NPiKxoLQm5OoZbKa99SYxprOjNs4TwJUKP+twCM"
other_master_key = {
# private key: oyw2ZUx0O4GifbfFYM0nQvj9CL0b8B7cyN4FprtK8OI
"user_id": other_user,
"usage": ["master"],
make black happy
2019-07-22 18:52:39 +02:00
"keys": {"ed25519:" + other_master_pubkey: other_master_pubkey},
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
}
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_signing_keys_for_user(
other_user, {"master_key": other_master_key}
)
make black happy
2019-07-22 18:52:39 +02:00
)
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
# test various signature failures (see below)
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
ret = self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_signatures_for_device_keys(
local_user,
{
local_user: {
# fails because the signature is invalid
# should fail with INVALID_SIGNATURE
device_id: {
"user_id": local_user,
"device_id": device_id,
"algorithms": [
"m.olm.curve25519-aes-sha2",
RoomEncryptionAlgorithms.MEGOLM_V1_AES_SHA2,
],
"keys": {
"curve25519:xyz": "curve25519+key",
# private key: OMkooTr76ega06xNvXIGPbgvvxAOzmQncN8VObS7aBA
"ed25519:xyz": device_pubkey,
},
"signatures": {
local_user: {
"ed25519:" + selfsigning_pubkey: "something"
}
},
make black happy
2019-07-22 18:52:39 +02:00
},
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
# fails because device is unknown
# should fail with NOT_FOUND
"unknown": {
"user_id": local_user,
"device_id": "unknown",
"signatures": {
local_user: {
"ed25519:" + selfsigning_pubkey: "something"
}
},
make black happy
2019-07-22 18:52:39 +02:00
},
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
# fails because the signature is invalid
# should fail with INVALID_SIGNATURE
master_pubkey: {
"user_id": local_user,
"usage": ["master"],
"keys": {"ed25519:" + master_pubkey: master_pubkey},
"signatures": {
local_user: {"ed25519:" + device_pubkey: "something"}
},
make black happy
2019-07-22 18:52:39 +02:00
},
},
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
other_user: {
# fails because the device is not the user's master-signing key
# should fail with NOT_FOUND
"unknown": {
"user_id": other_user,
"device_id": "unknown",
"signatures": {
local_user: {
"ed25519:" + usersigning_pubkey: "something"
}
},
make black happy
2019-07-22 18:52:39 +02:00
},
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
other_master_pubkey: {
# fails because the key doesn't match what the server has
# should fail with UNKNOWN
"user_id": other_user,
"usage": ["master"],
"keys": {
"ed25519:" + other_master_pubkey: other_master_pubkey
},
"something": "random",
"signatures": {
local_user: {
"ed25519:" + usersigning_pubkey: "something"
}
},
make black happy
2019-07-22 18:52:39 +02:00
},
},
},
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
)
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
)
user_failures = ret["failures"][local_user]
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.assertEqual(user_failures[device_id]["errcode"], Codes.INVALID_SIGNATURE)
make black happy
2019-07-22 18:52:39 +02:00
self.assertEqual(
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
user_failures[master_pubkey]["errcode"], Codes.INVALID_SIGNATURE
make black happy
2019-07-22 18:52:39 +02:00
)
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.assertEqual(user_failures["unknown"]["errcode"], Codes.NOT_FOUND)
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
other_user_failures = ret["failures"][other_user]
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
self.assertEqual(other_user_failures["unknown"]["errcode"], Codes.NOT_FOUND)
make black happy
2019-07-22 18:52:39 +02:00
self.assertEqual(
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
other_user_failures[other_master_pubkey]["errcode"], Codes.UNKNOWN
make black happy
2019-07-22 18:52:39 +02:00
)
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
# test successful signatures
del device_key["signatures"]
sign.sign_json(device_key, local_user, selfsigning_signing_key)
sign.sign_json(master_key, local_user, device_signing_key)
sign.sign_json(other_master_key, local_user, usersigning_signing_key)
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
ret = self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.upload_signatures_for_device_keys(
local_user,
{
local_user: {device_id: device_key, master_pubkey: master_key},
other_user: {other_master_pubkey: other_master_key},
},
)
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
)
self.assertEqual(ret["failures"], {})
# fetch the signed keys/devices and make sure that the signatures are there
Convert some test cases to use HomeserverTestCase. (#9377) This has the side-effect of being able to remove use of `inlineCallbacks` in the test-cases for cleaner tracebacks.
2021-02-11 16:29:09 +01:00
ret = self.get_success(
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
self.handler.query_devices(
Limit the number of in-flight /keys/query requests from a single device. (#10144)
2021-06-09 13:05:32 +02:00
{"device_keys": {local_user: [], other_user: []}},
0,
local_user,
"device123",
Convert E2E key and room key handlers to async/await. (#7851)
2020-07-15 14:48:58 +02:00
)
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
)
self.assertEqual(
make black happy
2019-07-22 18:52:39 +02:00
ret["device_keys"][local_user]["xyz"]["signatures"][local_user][
"ed25519:" + selfsigning_pubkey
],
device_key["signatures"][local_user]["ed25519:" + selfsigning_pubkey],
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
)
self.assertEqual(
make black happy
2019-07-22 18:52:39 +02:00
ret["master_keys"][local_user]["signatures"][local_user][
"ed25519:" + device_id
],
master_key["signatures"][local_user]["ed25519:" + device_id],
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
)
self.assertEqual(
make black happy
2019-07-22 18:52:39 +02:00
ret["master_keys"][other_user]["signatures"][local_user][
"ed25519:" + usersigning_pubkey
],
other_master_key["signatures"][local_user]["ed25519:" + usersigning_pubkey],
allow uploading signatures of master key signed by devices
2019-07-18 04:11:31 +02:00
)
Include cross-signing signatures when syncing remote devices for the first time (#11234) When fetching remote devices for the first time, we did not correctly include the cross signing keys in the returned results. c.f. #11159
2021-11-09 12:45:36 +01:00
def test_query_devices_remote_no_sync(self):
"""Tests that querying keys for a remote user that we don't share a room
with returns the cross signing keys correctly.
"""
remote_user_id = "@test:other"
local_user_id = "@test:test"
remote_master_key = "85T7JXPFBAySB/jwby4S3lBPTqY3+Zg53nYuGmu1ggY"
remote_self_signing_key = "QeIiFEjluPBtI7WQdG365QKZcFs9kqmHir6RBD0//nQ"
self.hs.get_federation_client().query_client_keys = mock.Mock(
return_value=defer.succeed(
{
"device_keys": {remote_user_id: {}},
"master_keys": {
remote_user_id: {
"user_id": remote_user_id,
"usage": ["master"],
"keys": {"ed25519:" + remote_master_key: remote_master_key},
},
},
"self_signing_keys": {
remote_user_id: {
"user_id": remote_user_id,
"usage": ["self_signing"],
"keys": {
"ed25519:"
+ remote_self_signing_key: remote_self_signing_key
},
}
},
}
)
)
e2e_handler = self.hs.get_e2e_keys_handler()
query_result = self.get_success(
e2e_handler.query_devices(
{
"device_keys": {remote_user_id: []},
},
timeout=10,
from_user_id=local_user_id,
from_device_id="some_device_id",
)
)
self.assertEqual(query_result["failures"], {})
self.assertEqual(
query_result["master_keys"],
{
remote_user_id: {
"user_id": remote_user_id,
"usage": ["master"],
"keys": {"ed25519:" + remote_master_key: remote_master_key},
},
},
)
self.assertEqual(
query_result["self_signing_keys"],
{
remote_user_id: {
"user_id": remote_user_id,
"usage": ["self_signing"],
"keys": {
"ed25519:" + remote_self_signing_key: remote_self_signing_key
},
}
},
)
def test_query_devices_remote_sync(self):
"""Tests that querying keys for a remote user that we share a room with,
but haven't yet fetched the keys for, returns the cross signing keys
correctly.
"""
remote_user_id = "@test:other"
local_user_id = "@test:test"
self.store.get_rooms_for_user = mock.Mock(
return_value=defer.succeed({"some_room_id"})
)
remote_master_key = "85T7JXPFBAySB/jwby4S3lBPTqY3+Zg53nYuGmu1ggY"
remote_self_signing_key = "QeIiFEjluPBtI7WQdG365QKZcFs9kqmHir6RBD0//nQ"
self.hs.get_federation_client().query_user_devices = mock.Mock(
return_value=defer.succeed(
{
"user_id": remote_user_id,
"stream_id": 1,
"devices": [],
"master_key": {
"user_id": remote_user_id,
"usage": ["master"],
"keys": {"ed25519:" + remote_master_key: remote_master_key},
},
"self_signing_key": {
"user_id": remote_user_id,
"usage": ["self_signing"],
"keys": {
"ed25519:"
+ remote_self_signing_key: remote_self_signing_key
},
},
}
)
)
e2e_handler = self.hs.get_e2e_keys_handler()
query_result = self.get_success(
e2e_handler.query_devices(
{
"device_keys": {remote_user_id: []},
},
timeout=10,
from_user_id=local_user_id,
from_device_id="some_device_id",
)
)
self.assertEqual(query_result["failures"], {})
self.assertEqual(
query_result["master_keys"],
{
remote_user_id: {
"user_id": remote_user_id,
"usage": ["master"],
"keys": {"ed25519:" + remote_master_key: remote_master_key},
}
},
)
self.assertEqual(
query_result["self_signing_keys"],
{
remote_user_id: {
"user_id": remote_user_id,
"usage": ["self_signing"],
"keys": {
"ed25519:" + remote_self_signing_key: remote_self_signing_key
},
}
},
)
Reference in a new issue Copy permalink