Mirrors/continuwuity
1
0
Fork 0
mirror of https://forgejo.ellis.link/continuwuation/continuwuity.git synced 2026-05-26 20:49:55 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: Ensure policy server signed with the correct key

Browse Source
This commit is contained in:
timedout
2026-05-21 19:14:51 +01:00
parent 1c88854a54
commit 4784010702
1 changed files with 11 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/service/rooms/event_handler/policy_server.rs
+11 -1
View File
@@ -180,7 +180,17 @@ pub async fn policy_server_allows_event(
"Asking policy server to sign event" "Asking policy server to sign event"
); );
self.fetch_policy_server_signature(pdu, pdu_json, &ps.via, outgoing, room_id, ps_key, 0) self.fetch_policy_server_signature(pdu, pdu_json, &ps.via, outgoing, room_id, ps_key, 0)
.await .await?;
// Verify that the policy server signature was made with the same public key as
// is in the state event, not just that it was signed.
if verify_policy_signature(&ps.via, ps_key, pdu_json, &room_version_rules.redaction) {
Ok(())
} else {
Err!(BadServerResponse(
"Policy server signature was made with a different key to the one advertised"
))
}
} }
/// Handles an error returned by the policy server. If the error is one that /// Handles an error returned by the policy server. If the error is one that