mirror of
https://github.com/element-hq/synapse
synced 2024-07-02 10:03:30 +00:00
cc33d9eee2
Currently, when we receive an event whose auth_events differ from those we expect, we state-resolve between the two state sets, and check that the event passes auth based on the resolved state. This means that it's possible for us to accept events which don't pass auth at their declared auth_events (or where the auth events themselves were rejected), leading to problems down the line like #10083. This change means we will: * ignore any events where we cannot find the auth events * reject any events whose auth events were rejected * reject any events which do not pass auth at their declared auth_events. Together with a whole raft of previous work, this is a partial fix to #9595. Fixes #6643. Based on #11009.
2 lines
131 B
Plaintext
2 lines
131 B
Plaintext
Fix a long-standing bug which meant that events received over federation were sometimes incorrectly accepted into the room state.
|