mirror of
https://github.com/element-hq/dendrite.git
synced 2025-03-14 14:15:35 +00:00
78dbf21c5f
Backports support for fallback keys from Harmony, which should make E2EE more reliable in the face of OTK exhaustion. Signed-off-by: Neil Alexander <git@neilalexander.dev> Co-authored-by: Neil Alexander <neilalexander@users.noreply.github.com> [skip ci]
176 lines
5.3 KiB
Go
176 lines
5.3 KiB
Go
// Copyright 2024 New Vector Ltd.
|
|
// Copyright 2017 Vector Creations Ltd
|
|
//
|
|
// SPDX-License-Identifier: AGPL-3.0-only OR LicenseRef-Element-Commercial
|
|
// Please see LICENSE files in the repository root for full details.
|
|
|
|
package sqlite3
|
|
|
|
import (
|
|
"context"
|
|
"database/sql"
|
|
"fmt"
|
|
"time"
|
|
|
|
"github.com/element-hq/dendrite/internal/sqlutil"
|
|
"github.com/element-hq/dendrite/setup/config"
|
|
"github.com/matrix-org/gomatrixserverlib/spec"
|
|
|
|
"github.com/element-hq/dendrite/userapi/storage/shared"
|
|
"github.com/element-hq/dendrite/userapi/storage/sqlite3/deltas"
|
|
)
|
|
|
|
// NewUserDatabase creates a new accounts and profiles database
|
|
func NewUserDatabase(ctx context.Context, conMan *sqlutil.Connections, dbProperties *config.DatabaseOptions, serverName spec.ServerName, bcryptCost int, openIDTokenLifetimeMS int64, loginTokenLifetime time.Duration, serverNoticesLocalpart string) (*shared.Database, error) {
|
|
db, writer, err := conMan.Connection(dbProperties)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
m := sqlutil.NewMigrator(db)
|
|
m.AddMigrations(sqlutil.Migration{
|
|
Version: "userapi: rename tables",
|
|
Up: deltas.UpRenameTables,
|
|
Down: deltas.DownRenameTables,
|
|
})
|
|
m.AddMigrations(sqlutil.Migration{
|
|
Version: "userapi: server names",
|
|
Up: func(ctx context.Context, txn *sql.Tx) error {
|
|
return deltas.UpServerNames(ctx, txn, serverName)
|
|
},
|
|
})
|
|
if err = m.Up(ctx); err != nil {
|
|
return nil, err
|
|
}
|
|
registationTokensTable, err := NewSQLiteRegistrationTokensTable(db)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewSQLiteRegistrationsTokenTable: %w", err)
|
|
}
|
|
accountsTable, err := NewSQLiteAccountsTable(db, serverName)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewSQLiteAccountsTable: %w", err)
|
|
}
|
|
accountDataTable, err := NewSQLiteAccountDataTable(db)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewSQLiteAccountDataTable: %w", err)
|
|
}
|
|
devicesTable, err := NewSQLiteDevicesTable(db, serverName)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewSQLiteDevicesTable: %w", err)
|
|
}
|
|
keyBackupTable, err := NewSQLiteKeyBackupTable(db)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewSQLiteKeyBackupTable: %w", err)
|
|
}
|
|
keyBackupVersionTable, err := NewSQLiteKeyBackupVersionTable(db)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewSQLiteKeyBackupVersionTable: %w", err)
|
|
}
|
|
loginTokenTable, err := NewSQLiteLoginTokenTable(db)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewSQLiteLoginTokenTable: %w", err)
|
|
}
|
|
openIDTable, err := NewSQLiteOpenIDTable(db, serverName)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewSQLiteOpenIDTable: %w", err)
|
|
}
|
|
profilesTable, err := NewSQLiteProfilesTable(db, serverNoticesLocalpart)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewSQLiteProfilesTable: %w", err)
|
|
}
|
|
threePIDTable, err := NewSQLiteThreePIDTable(db)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewSQLiteThreePIDTable: %w", err)
|
|
}
|
|
pusherTable, err := NewSQLitePusherTable(db)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewPostgresPusherTable: %w", err)
|
|
}
|
|
notificationsTable, err := NewSQLiteNotificationTable(db)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewPostgresNotificationTable: %w", err)
|
|
}
|
|
statsTable, err := NewSQLiteStatsTable(db, serverName)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("NewSQLiteStatsTable: %w", err)
|
|
}
|
|
|
|
m = sqlutil.NewMigrator(db)
|
|
m.AddMigrations(sqlutil.Migration{
|
|
Version: "userapi: server names populate",
|
|
Up: func(ctx context.Context, txn *sql.Tx) error {
|
|
return deltas.UpServerNamesPopulate(ctx, txn, serverName)
|
|
},
|
|
})
|
|
if err = m.Up(ctx); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return &shared.Database{
|
|
AccountDatas: accountDataTable,
|
|
Accounts: accountsTable,
|
|
Devices: devicesTable,
|
|
KeyBackups: keyBackupTable,
|
|
KeyBackupVersions: keyBackupVersionTable,
|
|
LoginTokens: loginTokenTable,
|
|
OpenIDTokens: openIDTable,
|
|
Profiles: profilesTable,
|
|
ThreePIDs: threePIDTable,
|
|
Pushers: pusherTable,
|
|
Notifications: notificationsTable,
|
|
Stats: statsTable,
|
|
ServerName: serverName,
|
|
DB: db,
|
|
Writer: writer,
|
|
LoginTokenLifetime: loginTokenLifetime,
|
|
BcryptCost: bcryptCost,
|
|
OpenIDTokenLifetimeMS: openIDTokenLifetimeMS,
|
|
RegistrationTokens: registationTokensTable,
|
|
}, nil
|
|
}
|
|
|
|
func NewKeyDatabase(conMan *sqlutil.Connections, dbProperties *config.DatabaseOptions) (*shared.KeyDatabase, error) {
|
|
db, writer, err := conMan.Connection(dbProperties)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
otk, err := NewSqliteOneTimeKeysTable(db)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
fk, err := NewSqliteFallbackKeysTable(db)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
dk, err := NewSqliteDeviceKeysTable(db)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
kc, err := NewSqliteKeyChangesTable(db)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
sdl, err := NewSqliteStaleDeviceListsTable(db)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
csk, err := NewSqliteCrossSigningKeysTable(db)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
css, err := NewSqliteCrossSigningSigsTable(db)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return &shared.KeyDatabase{
|
|
OneTimeKeysTable: otk,
|
|
FallbackKeysTable: fk,
|
|
DeviceKeysTable: dk,
|
|
KeyChangesTable: kc,
|
|
StaleDeviceListsTable: sdl,
|
|
CrossSigningKeysTable: csk,
|
|
CrossSigningSigsTable: css,
|
|
Writer: writer,
|
|
}, nil
|
|
}
|