conduit/src/database/globals.rs

use crate::{database::Config, server_server::FedDest, utils, ConduitResult, Error, Result};
use ruma::{
    api::{
        client::r0::sync::sync_events,
        federation::discovery::{ServerSigningKeys, VerifyKey},
    },
    DeviceId, EventId, MilliSecondsSinceUnixEpoch, RoomId, ServerName, ServerSigningKeyId, UserId,
};
use std::{
    collections::{BTreeMap, HashMap},
    fs,
    future::Future,
    net::IpAddr,
    path::PathBuf,
    sync::{Arc, Mutex, RwLock},
    time::{Duration, Instant},
};
use tokio::sync::{broadcast, watch::Receiver, Mutex as TokioMutex, Semaphore};
use tracing::error;
use trust_dns_resolver::TokioAsyncResolver;

use super::abstraction::Tree;

pub const COUNTER: &[u8] = b"c";

type WellKnownMap = HashMap<Box<ServerName>, (FedDest, String)>;
type TlsNameMap = HashMap<String, (Vec<IpAddr>, u16)>;
type RateLimitState = (Instant, u32); // Time if last failed try, number of failed tries
type SyncHandle = (
    Option<String>,                                         // since
    Receiver<Option<ConduitResult<sync_events::Response>>>, // rx
);

pub struct Globals {
    pub actual_destination_cache: Arc<RwLock<WellKnownMap>>, // actual_destination, host
    pub tls_name_override: Arc<RwLock<TlsNameMap>>,
    pub(super) globals: Arc<dyn Tree>,
    config: Config,
    keypair: Arc<ruma::signatures::Ed25519KeyPair>,
    dns_resolver: TokioAsyncResolver,
    jwt_decoding_key: Option<jsonwebtoken::DecodingKey<'static>>,
    pub(super) server_signingkeys: Arc<dyn Tree>,
    pub bad_event_ratelimiter: Arc<RwLock<HashMap<EventId, RateLimitState>>>,
    pub bad_signature_ratelimiter: Arc<RwLock<HashMap<Vec<String>, RateLimitState>>>,
    pub servername_ratelimiter: Arc<RwLock<HashMap<Box<ServerName>, Arc<Semaphore>>>>,
    pub sync_receivers: RwLock<HashMap<(UserId, Box<DeviceId>), SyncHandle>>,
    pub roomid_mutex_insert: RwLock<HashMap<RoomId, Arc<Mutex<()>>>>,
    pub roomid_mutex_state: RwLock<HashMap<RoomId, Arc<TokioMutex<()>>>>,
    pub roomid_mutex_federation: RwLock<HashMap<RoomId, Arc<TokioMutex<()>>>>, // this lock will be held longer
    pub rotate: RotationHandler,
}

/// Handles "rotation" of long-polling requests. "Rotation" in this context is similar to "rotation" of log files and the like.
///
/// This is utilized to have sync workers return early and release read locks on the database.
pub struct RotationHandler(broadcast::Sender<()>, broadcast::Receiver<()>);

impl RotationHandler {
    pub fn new() -> Self {
        let (s, r) = broadcast::channel::<()>(1);

        Self(s, r)
    }

    pub fn watch(&self) -> impl Future<Output = ()> {
        let mut r = self.0.subscribe();

        async move {
            let _ = r.recv().await;
        }
    }

    pub fn fire(&self) {
        let _ = self.0.send(());
    }
}

impl Default for RotationHandler {
    fn default() -> Self {
        Self::new()
    }
}

impl Globals {
    pub fn load(
        globals: Arc<dyn Tree>,
        server_signingkeys: Arc<dyn Tree>,
        config: Config,
    ) -> Result<Self> {
        let keypair_bytes = globals.get(b"keypair")?.map_or_else(
            || {
                let keypair = utils::generate_keypair();
                globals.insert(b"keypair", &keypair)?;
                Ok::<_, Error>(keypair)
            },
            |s| Ok(s.to_vec()),
        )?;

        let mut parts = keypair_bytes.splitn(2, |&b| b == 0xff);

        let keypair = utils::string_from_bytes(
            // 1. version
            parts
                .next()
                .expect("splitn always returns at least one element"),
        )
        .map_err(|_| Error::bad_database("Invalid version bytes in keypair."))
        .and_then(|version| {
            // 2. key
            parts
                .next()
                .ok_or_else(|| Error::bad_database("Invalid keypair format in database."))
                .map(|key| (version, key))
        })
        .and_then(|(version, key)| {
            ruma::signatures::Ed25519KeyPair::from_der(key, version)
                .map_err(|_| Error::bad_database("Private or public keys are invalid."))
        });

        let keypair = match keypair {
            Ok(k) => k,
            Err(e) => {
                error!("Keypair invalid. Deleting...");
                globals.remove(b"keypair")?;
                return Err(e);
            }
        };

        let tls_name_override = Arc::new(RwLock::new(TlsNameMap::new()));

        let jwt_decoding_key = config
            .jwt_secret
            .as_ref()
            .map(|secret| jsonwebtoken::DecodingKey::from_secret(secret.as_bytes()).into_static());

        let s = Self {
            globals,
            config,
            keypair: Arc::new(keypair),
            dns_resolver: TokioAsyncResolver::tokio_from_system_conf().map_err(|_| {
                Error::bad_config("Failed to set up trust dns resolver with system config.")
            })?,
            actual_destination_cache: Arc::new(RwLock::new(WellKnownMap::new())),
            tls_name_override,
            server_signingkeys,
            jwt_decoding_key,
            bad_event_ratelimiter: Arc::new(RwLock::new(HashMap::new())),
            bad_signature_ratelimiter: Arc::new(RwLock::new(HashMap::new())),
            servername_ratelimiter: Arc::new(RwLock::new(HashMap::new())),
            roomid_mutex_state: RwLock::new(HashMap::new()),
            roomid_mutex_insert: RwLock::new(HashMap::new()),
            roomid_mutex_federation: RwLock::new(HashMap::new()),
            sync_receivers: RwLock::new(HashMap::new()),
            rotate: RotationHandler::new(),
        };

        fs::create_dir_all(s.get_media_folder())?;

        Ok(s)
    }

    /// Returns this server's keypair.
    pub fn keypair(&self) -> &ruma::signatures::Ed25519KeyPair {
        &self.keypair
    }

    /// Returns a reqwest client which can be used to send requests.
    pub fn reqwest_client(&self) -> Result<reqwest::ClientBuilder> {
        let mut reqwest_client_builder = reqwest::Client::builder()
            .connect_timeout(Duration::from_secs(30))
            .timeout(Duration::from_secs(60 * 3))
            .pool_max_idle_per_host(1);
        if let Some(proxy) = self.config.proxy.to_proxy()? {
            reqwest_client_builder = reqwest_client_builder.proxy(proxy);
        }

        Ok(reqwest_client_builder)
    }

    #[tracing::instrument(skip(self))]
    pub fn next_count(&self) -> Result<u64> {
        utils::u64_from_bytes(&self.globals.increment(COUNTER)?)
            .map_err(|_| Error::bad_database("Count has invalid bytes."))
    }

    #[tracing::instrument(skip(self))]
    pub fn current_count(&self) -> Result<u64> {
        self.globals.get(COUNTER)?.map_or(Ok(0_u64), |bytes| {
            utils::u64_from_bytes(&bytes)
                .map_err(|_| Error::bad_database("Count has invalid bytes."))
        })
    }

    pub fn server_name(&self) -> &ServerName {
        self.config.server_name.as_ref()
    }

    pub fn max_request_size(&self) -> u32 {
        self.config.max_request_size
    }

    pub fn allow_registration(&self) -> bool {
        self.config.allow_registration
    }

    pub fn allow_encryption(&self) -> bool {
        self.config.allow_encryption
    }

    pub fn allow_federation(&self) -> bool {
        self.config.allow_federation
    }

    pub fn trusted_servers(&self) -> &[Box<ServerName>] {
        &self.config.trusted_servers
    }

    pub fn dns_resolver(&self) -> &TokioAsyncResolver {
        &self.dns_resolver
    }

    pub fn jwt_decoding_key(&self) -> Option<&jsonwebtoken::DecodingKey<'_>> {
        self.jwt_decoding_key.as_ref()
    }

    /// TODO: the key valid until timestamp is only honored in room version > 4
    /// Remove the outdated keys and insert the new ones.
    ///
    /// This doesn't actually check that the keys provided are newer than the old set.
    pub fn add_signing_key(
        &self,
        origin: &ServerName,
        new_keys: ServerSigningKeys,
    ) -> Result<BTreeMap<ServerSigningKeyId, VerifyKey>> {
        // Not atomic, but this is not critical
        let signingkeys = self.server_signingkeys.get(origin.as_bytes())?;

        let mut keys = signingkeys
            .and_then(|keys| serde_json::from_slice(&keys).ok())
            .unwrap_or_else(|| {
                // Just insert "now", it doesn't matter
                ServerSigningKeys::new(origin.to_owned(), MilliSecondsSinceUnixEpoch::now())
            });

        let ServerSigningKeys {
            verify_keys,
            old_verify_keys,
            ..
        } = new_keys;

        keys.verify_keys.extend(verify_keys.into_iter());
        keys.old_verify_keys.extend(old_verify_keys.into_iter());

        self.server_signingkeys.insert(
            origin.as_bytes(),
            &serde_json::to_vec(&keys).expect("serversigningkeys can be serialized"),
        )?;

        let mut tree = keys.verify_keys;
        tree.extend(
            keys.old_verify_keys
                .into_iter()
                .map(|old| (old.0, VerifyKey::new(old.1.key))),
        );

        Ok(tree)
    }

    /// This returns an empty `Ok(BTreeMap<..>)` when there are no keys found for the server.
    pub fn signing_keys_for(
        &self,
        origin: &ServerName,
    ) -> Result<BTreeMap<ServerSigningKeyId, VerifyKey>> {
        let signingkeys = self
            .server_signingkeys
            .get(origin.as_bytes())?
            .and_then(|bytes| serde_json::from_slice::<ServerSigningKeys>(&bytes).ok())
            .map(|keys| {
                let mut tree = keys.verify_keys;
                tree.extend(
                    keys.old_verify_keys
                        .into_iter()
                        .map(|old| (old.0, VerifyKey::new(old.1.key))),
                );
                tree
            })
            .unwrap_or_else(BTreeMap::new);

        Ok(signingkeys)
    }

    pub fn database_version(&self) -> Result<u64> {
        self.globals.get(b"version")?.map_or(Ok(0), |version| {
            utils::u64_from_bytes(&version)
                .map_err(|_| Error::bad_database("Database version id is invalid."))
        })
    }

    pub fn bump_database_version(&self, new_version: u64) -> Result<()> {
        self.globals
            .insert(b"version", &new_version.to_be_bytes())?;
        Ok(())
    }

    pub fn get_media_folder(&self) -> PathBuf {
        let mut r = PathBuf::new();
        r.push(self.config.database_path.clone());
        r.push("media");
        r
    }

    pub fn get_media_file(&self, key: &[u8]) -> PathBuf {
        let mut r = PathBuf::new();
        r.push(self.config.database_path.clone());
        r.push("media");
        r.push(base64::encode_config(key, base64::URL_SAFE_NO_PAD));
        r
    }
}
fix: server resolution 2021-08-26 21:11:13 +00:00			`use crate::{database::Config, server_server::FedDest, utils, ConduitResult, Error, Result};`
Abstract event validation/fetching, add outlier and signing key DB trees Fixed the miss named commented out keys in conduit-example.toml. 2021-01-15 02:32:22 +00:00			`use ruma::{`
improvement: pdu cache, /sync cache 2021-06-30 07:52:01 +00:00			`api::{`
			`client::r0::sync::sync_events,`
			`federation::discovery::{ServerSigningKeys, VerifyKey},`
			`},`
improvement: efficient /sync, mutex for federation transactions 2021-07-01 17:55:26 +00:00			`DeviceId, EventId, MilliSecondsSinceUnixEpoch, RoomId, ServerName, ServerSigningKeyId, UserId,`
Abstract event validation/fetching, add outlier and signing key DB trees Fixed the miss named commented out keys in conduit-example.toml. 2021-01-15 02:32:22 +00:00			`};`
fix fmt and clippy warnings 2021-06-06 12:28:32 +00:00			`use std::{`
			`collections::{BTreeMap, HashMap},`
create media folder in init 2021-06-08 13:20:06 +00:00			`fs,`
Sqlite 2021-07-14 07:07:08 +00:00			`future::Future,`
fix: server resolution 2021-08-26 21:11:13 +00:00			`net::IpAddr,`
fix fmt and clippy warnings 2021-06-06 12:28:32 +00:00			`path::PathBuf,`
fix: improve locks 2021-08-03 09:10:58 +00:00			`sync::{Arc, Mutex, RwLock},`
fix fmt and clippy warnings 2021-06-06 12:28:32 +00:00			`time::{Duration, Instant},`
			`};`
improvement: make better use of sqlite connections 2021-08-02 08:13:34 +00:00			`use tokio::sync::{broadcast, watch::Receiver, Mutex as TokioMutex, Semaphore};`
fix: server resolution 2021-08-26 21:11:13 +00:00			`use tracing::error;`
feat: implement appservices this also reverts some stateres changes 2020-12-08 09:33:44 +00:00			`use trust_dns_resolver::TokioAsyncResolver;`
Implement max_request_size config option 2020-07-24 03:03:24 +00:00
feat: swappable database backend 2021-06-08 16:10:00 +00:00			`use super::abstraction::Tree;`

			`pub const COUNTER: &[u8] = b"c";`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00
fix: server resolution 2021-08-26 21:11:13 +00:00			`type WellKnownMap = HashMap<Box<ServerName>, (FedDest, String)>;`
			`type TlsNameMap = HashMap<String, (Vec<IpAddr>, u16)>;`
improvement: federation get_keys and optimize signingkey storage - get encryption keys over federation - optimize signing key storage - rate limit parsing of bad events - rate limit signature fetching - dependency bumps 2021-05-20 21:46:52 +00:00			`type RateLimitState = (Instant, u32); // Time if last failed try, number of failed tries`
apply lint suggestions and version bump 2021-07-14 10:31:38 +00:00			`type SyncHandle = (`
			`Option<String>, // since`
			`Receiver<Option<ConduitResult<sync_events::Response>>>, // rx`
			`);`

refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`pub struct Globals {`
Make clippy happy (needless-return, etc.) 2021-03-04 12:35:12 +00:00			`pub actual_destination_cache: Arc<RwLock<WellKnownMap>>, // actual_destination, host`
feat: add handling of tls cert for delegated hosts 2021-04-16 01:07:27 +00:00			`pub tls_name_override: Arc<RwLock<TlsNameMap>>,`
feat: swappable database backend 2021-06-08 16:10:00 +00:00			`pub(super) globals: Arc<dyn Tree>,`
improvement: cache actual destination 2020-12-06 10:05:51 +00:00			`config: Config,`
fix: sending slowness 2020-09-15 14:13:54 +00:00			`keypair: Arc<ruma::signatures::Ed25519KeyPair>,`
improvement: cache actual destination 2020-12-06 10:05:51 +00:00			`dns_resolver: TokioAsyncResolver,`
Add 'm.login.token' authentication 2021-02-07 16:38:45 +00:00			`jwt_decoding_key: Option<jsonwebtoken::DecodingKey<'static>>,`
feat: swappable database backend 2021-06-08 16:10:00 +00:00			`pub(super) server_signingkeys: Arc<dyn Tree>,`
improvement: auth chain cache 2021-07-18 18:43:39 +00:00			`pub bad_event_ratelimiter: Arc<RwLock<HashMap<EventId, RateLimitState>>>,`
			`pub bad_signature_ratelimiter: Arc<RwLock<HashMap<Vec<String>, RateLimitState>>>,`
			`pub servername_ratelimiter: Arc<RwLock<HashMap<Box<ServerName>, Arc<Semaphore>>>>,`
			`pub sync_receivers: RwLock<HashMap<(UserId, Box<DeviceId>), SyncHandle>>,`
fix: improve locks 2021-08-03 09:10:58 +00:00			`pub roomid_mutex_insert: RwLock<HashMap<RoomId, Arc<Mutex<()>>>>,`
			`pub roomid_mutex_state: RwLock<HashMap<RoomId, Arc<TokioMutex<()>>>>,`
improvement: make better use of sqlite connections 2021-08-02 08:13:34 +00:00			`pub roomid_mutex_federation: RwLock<HashMap<RoomId, Arc<TokioMutex<()>>>>, // this lock will be held longer`
Sqlite 2021-07-14 07:07:08 +00:00			`pub rotate: RotationHandler,`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`}`

Sqlite 2021-07-14 07:07:08 +00:00			`/// Handles "rotation" of long-polling requests. "Rotation" in this context is similar to "rotation" of log files and the like.`
			`///`
			`/// This is utilized to have sync workers return early and release read locks on the database.`
			`pub struct RotationHandler(broadcast::Sender<()>, broadcast::Receiver<()>);`

			`impl RotationHandler {`
			`pub fn new() -> Self {`
			`let (s, r) = broadcast::channel::<()>(1);`

			`Self(s, r)`
			`}`

			`pub fn watch(&self) -> impl Future<Output = ()> {`
			`let mut r = self.0.subscribe();`

			`async move {`
			`let _ = r.recv().await;`
			`}`
			`}`

			`pub fn fire(&self) {`
			`let _ = self.0.send(());`
			`}`
			`}`

apply lint suggestions and version bump 2021-07-14 10:31:38 +00:00			`impl Default for RotationHandler {`
			`fn default() -> Self {`
			`Self::new()`
			`}`
			`}`

refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`impl Globals {`
Address review issues, fix forward extremity calc Keep track of all prev_events since if we know that an event is a prev_event it is referenced and does not qualify as a forward extremity. 2021-02-04 01:00:01 +00:00			`pub fn load(`
feat: swappable database backend 2021-06-08 16:10:00 +00:00			`globals: Arc<dyn Tree>,`
			`server_signingkeys: Arc<dyn Tree>,`
Address review issues, fix forward extremity calc Keep track of all prev_events since if we know that an event is a prev_event it is referenced and does not qualify as a forward extremity. 2021-02-04 01:00:01 +00:00			`config: Config,`
			`) -> Result<Self> {`
feat: swappable database backend 2021-06-08 16:10:00 +00:00			`let keypair_bytes = globals.get(b"keypair")?.map_or_else(`
			`\|\| {`
			`let keypair = utils::generate_keypair();`
			`globals.insert(b"keypair", &keypair)?;`
			`Ok::<_, Error>(keypair)`
			`},`
			`\|s\| Ok(s.to_vec()),`
			`)?;`
fix: server keys and destination resolution when server name contains port 2020-09-15 19:46:10 +00:00
feat: swappable database backend 2021-06-08 16:10:00 +00:00			`let mut parts = keypair_bytes.splitn(2, \|&b\| b == 0xff);`
fix: server keys and destination resolution when server name contains port 2020-09-15 19:46:10 +00:00
			`let keypair = utils::string_from_bytes(`
			`// 1. version`
			`parts`
			`.next()`
			`.expect("splitn always returns at least one element"),`
			`)`
			`.map_err(\|_\| Error::bad_database("Invalid version bytes in keypair."))`
			`.and_then(\|version\| {`
			`// 2. key`
			`parts`
			`.next()`
			`.ok_or_else(\|\| Error::bad_database("Invalid keypair format in database."))`
			`.map(\|key\| (version, key))`
			`})`
			`.and_then(\|(version, key)\| {`
Clean up (mostly automated with cargo clippy --fix) 2021-09-13 17:45:56 +00:00			`ruma::signatures::Ed25519KeyPair::from_der(key, version)`
fix: server keys and destination resolution when server name contains port 2020-09-15 19:46:10 +00:00			`.map_err(\|_\| Error::bad_database("Private or public keys are invalid."))`
			`});`

			`let keypair = match keypair {`
			`Ok(k) => k,`
			`Err(e) => {`
			`error!("Keypair invalid. Deleting...");`
feat: swappable database backend 2021-06-08 16:10:00 +00:00			`globals.remove(b"keypair")?;`
fix: server keys and destination resolution when server name contains port 2020-09-15 19:46:10 +00:00			`return Err(e);`
			`}`
			`};`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00
feat: add handling of tls cert for delegated hosts 2021-04-16 01:07:27 +00:00			`let tls_name_override = Arc::new(RwLock::new(TlsNameMap::new()));`
feat: improved state store 2020-12-19 15:00:11 +00:00
Add 'm.login.token' authentication 2021-02-07 16:38:45 +00:00			`let jwt_decoding_key = config`
			`.jwt_secret`
			`.as_ref()`
			`.map(\|secret\| jsonwebtoken::DecodingKey::from_secret(secret.as_bytes()).into_static());`

create media folder in init 2021-06-08 13:20:06 +00:00			`let s = Self {`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`globals,`
improvement: cache actual destination 2020-12-06 10:05:51 +00:00			`config,`
fix: server keys and destination resolution when server name contains port 2020-09-15 19:46:10 +00:00			`keypair: Arc::new(keypair),`
Append state event that pass resolution to DB, update to tokio 1.1 2021-01-29 16:20:33 +00:00			`dns_resolver: TokioAsyncResolver::tokio_from_system_conf().map_err(\|_\| {`
			`Error::bad_config("Failed to set up trust dns resolver with system config.")`
			`})?,`
feat: add handling of tls cert for delegated hosts 2021-04-16 01:07:27 +00:00			`actual_destination_cache: Arc::new(RwLock::new(WellKnownMap::new())),`
			`tls_name_override,`
improvement: federation get_keys and optimize signingkey storage - get encryption keys over federation - optimize signing key storage - rate limit parsing of bad events - rate limit signature fetching - dependency bumps 2021-05-20 21:46:52 +00:00			`server_signingkeys,`
Merge branch 'correct-sendtxn' into pushers 2021-03-15 08:48:19 +00:00			`jwt_decoding_key,`
improvement: auth chain cache 2021-07-18 18:43:39 +00:00			`bad_event_ratelimiter: Arc::new(RwLock::new(HashMap::new())),`
			`bad_signature_ratelimiter: Arc::new(RwLock::new(HashMap::new())),`
			`servername_ratelimiter: Arc::new(RwLock::new(HashMap::new())),`
fix: improve locks 2021-08-03 09:10:58 +00:00			`roomid_mutex_state: RwLock::new(HashMap::new()),`
			`roomid_mutex_insert: RwLock::new(HashMap::new()),`
improvement: auth chain cache 2021-07-18 18:43:39 +00:00			`roomid_mutex_federation: RwLock::new(HashMap::new()),`
			`sync_receivers: RwLock::new(HashMap::new()),`
Sqlite 2021-07-14 07:07:08 +00:00			`rotate: RotationHandler::new(),`
create media folder in init 2021-06-08 13:20:06 +00:00			`};`

			`fs::create_dir_all(s.get_media_folder())?;`

			`Ok(s)`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`}`

			`/// Returns this server's keypair.`
Switch to the ruma meta-crate 2020-06-05 16:19:26 +00:00			`pub fn keypair(&self) -> &ruma::signatures::Ed25519KeyPair {`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`&self.keypair`
			`}`

			`/// Returns a reqwest client which can be used to send requests.`
fix: server resolution 2021-08-26 21:11:13 +00:00			`pub fn reqwest_client(&self) -> Result<reqwest::ClientBuilder> {`
			`let mut reqwest_client_builder = reqwest::Client::builder()`
			`.connect_timeout(Duration::from_secs(30))`
			`.timeout(Duration::from_secs(60 * 3))`
			`.pool_max_idle_per_host(1);`
			`if let Some(proxy) = self.config.proxy.to_proxy()? {`
			`reqwest_client_builder = reqwest_client_builder.proxy(proxy);`
			`}`

			`Ok(reqwest_client_builder)`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`}`

feat: add threadpool for iterator threads, bug fixes, tracing_flame support 2021-07-29 06:36:01 +00:00			`#[tracing::instrument(skip(self))]`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`pub fn next_count(&self) -> Result<u64> {`
Fix lots of clippy lints 2021-06-17 18:34:14 +00:00			`utils::u64_from_bytes(&self.globals.increment(COUNTER)?)`
			`.map_err(\|_\| Error::bad_database("Count has invalid bytes."))`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`}`

feat: add threadpool for iterator threads, bug fixes, tracing_flame support 2021-07-29 06:36:01 +00:00			`#[tracing::instrument(skip(self))]`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`pub fn current_count(&self) -> Result<u64> {`
refactor: better error handling 2020-06-09 13:13:17 +00:00			`self.globals.get(COUNTER)?.map_or(Ok(0_u64), \|bytes\| {`
Fix lots of clippy lints 2021-06-17 18:34:14 +00:00			`utils::u64_from_bytes(&bytes)`
			`.map_err(\|_\| Error::bad_database("Count has invalid bytes."))`
refactor: better error handling 2020-06-09 13:13:17 +00:00			`})`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`}`
feat: close registration with ROCKET_REGISTRATION_DISABLED=true 2020-06-06 17:02:31 +00:00
Update to latest ruma/ruma commit This will most likely be the API that is released to crates.io so it should be fairly stable... 2020-07-17 20:00:39 +00:00			`pub fn server_name(&self) -> &ServerName {`
improvement: upgrade dependencies, fix timeline reload bug 2020-12-05 20:03:43 +00:00			`self.config.server_name.as_ref()`
feat: close registration with ROCKET_REGISTRATION_DISABLED=true 2020-06-06 17:02:31 +00:00			`}`

Implement max_request_size config option 2020-07-24 03:03:24 +00:00			`pub fn max_request_size(&self) -> u32 {`
improvement: upgrade dependencies, fix timeline reload bug 2020-12-05 20:03:43 +00:00			`self.config.max_request_size`
Implement max_request_size config option 2020-07-24 03:03:24 +00:00			`}`

improvement: better deploy guide 2021-01-01 12:47:53 +00:00			`pub fn allow_registration(&self) -> bool {`
			`self.config.allow_registration`
feat: close registration with ROCKET_REGISTRATION_DISABLED=true 2020-06-06 17:02:31 +00:00			`}`
feat: encryption_disabled config option Can be used with ROCKET_ENCRYPTION_DISABLED=true 2020-07-26 18:41:10 +00:00
improvement: better deploy guide 2021-01-01 12:47:53 +00:00			`pub fn allow_encryption(&self) -> bool {`
			`self.config.allow_encryption`
feat: encryption_disabled config option Can be used with ROCKET_ENCRYPTION_DISABLED=true 2020-07-26 18:41:10 +00:00			`}`
feat: federation disabled by default It can be enable in the Rocket.toml config or using ROCKET_FEDERATION_ENABLED=true 2020-10-06 19:04:51 +00:00
improvement: better deploy guide 2021-01-01 12:47:53 +00:00			`pub fn allow_federation(&self) -> bool {`
			`self.config.allow_federation`
feat: federation disabled by default It can be enable in the Rocket.toml config or using ROCKET_FEDERATION_ENABLED=true 2020-10-06 19:04:51 +00:00			`}`
improvement: cache actual destination 2020-12-06 10:05:51 +00:00
Add trusted_servers, filter servers to query keys by trusted_servers 2021-03-01 14:17:53 +00:00			`pub fn trusted_servers(&self) -> &[Box<ServerName>] {`
			`&self.config.trusted_servers`
			`}`

improvement: cache actual destination 2020-12-06 10:05:51 +00:00			`pub fn dns_resolver(&self) -> &TokioAsyncResolver {`
			`&self.dns_resolver`
			`}`
Abstract event validation/fetching, add outlier and signing key DB trees Fixed the miss named commented out keys in conduit-example.toml. 2021-01-15 02:32:22 +00:00
Add 'm.login.token' authentication 2021-02-07 16:38:45 +00:00			`pub fn jwt_decoding_key(&self) -> Option<&jsonwebtoken::DecodingKey<'_>> {`
			`self.jwt_decoding_key.as_ref()`
			`}`
Abstract event validation/fetching, add outlier and signing key DB trees Fixed the miss named commented out keys in conduit-example.toml. 2021-01-15 02:32:22 +00:00
Abstract event validation/fetching, add outlier and signing key DB trees Fixed the miss named commented out keys in conduit-example.toml. 2021-01-15 02:32:22 +00:00			`/// TODO: the key valid until timestamp is only honored in room version > 4`
			`/// Remove the outdated keys and insert the new ones.`
			`///`
			`/// This doesn't actually check that the keys provided are newer than the old set.`
fixup! Get required keys in batch when joining a room 2021-08-29 11:25:20 +00:00			`pub fn add_signing_key(`
			`&self,`
			`origin: &ServerName,`
			`new_keys: ServerSigningKeys,`
			`) -> Result<BTreeMap<ServerSigningKeyId, VerifyKey>> {`
feat: swappable database backend 2021-06-08 16:10:00 +00:00			`// Not atomic, but this is not critical`
			`let signingkeys = self.server_signingkeys.get(origin.as_bytes())?;`

			`let mut keys = signingkeys`
			`.and_then(\|keys\| serde_json::from_slice(&keys).ok())`
			`.unwrap_or_else(\|\| {`
			`// Just insert "now", it doesn't matter`
			`ServerSigningKeys::new(origin.to_owned(), MilliSecondsSinceUnixEpoch::now())`
			`});`

			`let ServerSigningKeys {`
			`verify_keys,`
			`old_verify_keys,`
			`..`
			`} = new_keys;`

			`keys.verify_keys.extend(verify_keys.into_iter());`
			`keys.old_verify_keys.extend(old_verify_keys.into_iter());`

			`self.server_signingkeys.insert(`
			`origin.as_bytes(),`
			`&serde_json::to_vec(&keys).expect("serversigningkeys can be serialized"),`
			`)?;`
improvement: make state res actually work 2021-03-13 15:30:12 +00:00
fixup! Get required keys in batch when joining a room 2021-08-29 11:25:20 +00:00			`let mut tree = keys.verify_keys;`
			`tree.extend(`
			`keys.old_verify_keys`
			`.into_iter()`
			`.map(\|old\| (old.0, VerifyKey::new(old.1.key))),`
			`);`

			`Ok(tree)`
Abstract event validation/fetching, add outlier and signing key DB trees Fixed the miss named commented out keys in conduit-example.toml. 2021-01-15 02:32:22 +00:00			`}`

			/// This returns an empty `Ok(BTreeMap<..>)` when there are no keys found for the server.
			`pub fn signing_keys_for(`
			`&self,`
			`origin: &ServerName,`
			`) -> Result<BTreeMap<ServerSigningKeyId, VerifyKey>> {`
improvement: federation get_keys and optimize signingkey storage - get encryption keys over federation - optimize signing key storage - rate limit parsing of bad events - rate limit signature fetching - dependency bumps 2021-05-20 21:46:52 +00:00			`let signingkeys = self`
			`.server_signingkeys`
			`.get(origin.as_bytes())?`
			`.and_then(\|bytes\| serde_json::from_slice::<ServerSigningKeys>(&bytes).ok())`
			`.map(\|keys\| {`
			`let mut tree = keys.verify_keys;`
			`tree.extend(`
			`keys.old_verify_keys`
			`.into_iter()`
			`.map(\|old\| (old.0, VerifyKey::new(old.1.key))),`
			`);`
			`tree`
			`})`
			`.unwrap_or_else(BTreeMap::new);`

			`Ok(signingkeys)`
Abstract event validation/fetching, add outlier and signing key DB trees Fixed the miss named commented out keys in conduit-example.toml. 2021-01-15 02:32:22 +00:00			`}`
feat: send read receipts over federation currently they will only be sent if a PDU has to be sent as well 2021-05-17 08:25:27 +00:00
			`pub fn database_version(&self) -> Result<u64> {`
feat: swappable database backend 2021-06-08 16:10:00 +00:00			`self.globals.get(b"version")?.map_or(Ok(0), \|version\| {`
feat: send read receipts over federation currently they will only be sent if a PDU has to be sent as well 2021-05-17 08:25:27 +00:00			`utils::u64_from_bytes(&version)`
			`.map_err(\|_\| Error::bad_database("Database version id is invalid."))`
			`})`
			`}`

			`pub fn bump_database_version(&self, new_version: u64) -> Result<()> {`
feat: swappable database backend 2021-06-08 16:10:00 +00:00			`self.globals`
			`.insert(b"version", &new_version.to_be_bytes())?;`
feat: send read receipts over federation currently they will only be sent if a PDU has to be sent as well 2021-05-17 08:25:27 +00:00			`Ok(())`
			`}`
put media in filesystem 2021-06-04 03:36:12 +00:00
			`pub fn get_media_folder(&self) -> PathBuf {`
			`let mut r = PathBuf::new();`
			`r.push(self.config.database_path.clone());`
			`r.push("media");`
			`r`
			`}`

fix fmt and clippy warnings 2021-06-06 12:28:32 +00:00			`pub fn get_media_file(&self, key: &[u8]) -> PathBuf {`
put media in filesystem 2021-06-04 03:36:12 +00:00			`let mut r = PathBuf::new();`
			`r.push(self.config.database_path.clone());`
			`r.push("media");`
			`r.push(base64::encode_config(key, base64::URL_SAFE_NO_PAD));`
			`r`
			`}`
refactor: split database into multiple files, more error handling, cleaner code 2020-05-03 15:25:31 +00:00			`}`