Home Explore Help
Sign In
noah
/
mautrix-discord
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Add options to automatically delete/ratchet megolm sessions

Tulir Asokan 2 years ago
parent
a7095b1bd4
commit
16b086f62f
4 changed files with 30 additions and 6 deletions
Split View Show Diff Stats
  1. 7 0
      config/upgrade.go
  2. 17 0
      example-config.yaml
  3. 2 2
      go.mod
  4. 4 4
      go.sum

+ 7 - 0
config/upgrade.go
View File 

@@ -64,6 +64,13 @@ func DoUpgrade(helper *up.Helper) {
 
 	helper.Copy(up.Bool, "bridge", "encryption", "require")
 
 	helper.Copy(up.Bool, "bridge", "encryption", "appservice")
 
 	helper.Copy(up.Bool, "bridge", "encryption", "allow_key_sharing")
 
+	helper.Copy(up.Bool, "bridge", "encryption", "delete_keys", "delete_outbound_on_ack")
 
+	helper.Copy(up.Bool, "bridge", "encryption", "delete_keys", "dont_store_outbound")
 
+	helper.Copy(up.Bool, "bridge", "encryption", "delete_keys", "ratchet_on_decrypt")
 
+	helper.Copy(up.Bool, "bridge", "encryption", "delete_keys", "delete_fully_used_on_decrypt")
 
+	helper.Copy(up.Bool, "bridge", "encryption", "delete_keys", "delete_prev_on_new_session")
 
+	helper.Copy(up.Bool, "bridge", "encryption", "delete_keys", "delete_on_device_delete")
 
+	helper.Copy(up.Bool, "bridge", "encryption", "delete_keys", "periodically_delete_expired")
 
 	helper.Copy(up.Str, "bridge", "encryption", "verification_levels", "receive")
 
 	helper.Copy(up.Str, "bridge", "encryption", "verification_levels", "send")
 
 	helper.Copy(up.Str, "bridge", "encryption", "verification_levels", "share")

+ 17 - 0
example-config.yaml
View File 

@@ -200,6 +200,23 @@ bridge:
 
         # Enable key sharing? If enabled, key requests for rooms where users are in will be fulfilled.
 
         # You must use a client that supports requesting keys from other users to use this feature.
 
         allow_key_sharing: false
 
+        # Options for deleting megolm sessions from the bridge.
 
+        delete_keys:
 
+            # Beeper-specific: delete outbound sessions when hungryserv confirms
 
+            # that the user has uploaded the key to key backup.
 
+            delete_outbound_on_ack: false
 
+            # Don't store outbound sessions in the inbound table.
 
+            dont_store_outbound: false
 
+            # Ratchet megolm sessions forward after decrypting messages.
 
+            ratchet_on_decrypt: false
 
+            # Delete fully used keys (index >= max_messages) after decrypting messages.
 
+            delete_fully_used_on_decrypt: false
 
+            # Delete previous megolm sessions from same device when receiving a new one.
 
+            delete_prev_on_new_session: false
 
+            # Delete megolm sessions received from a device when the device is deleted.
 
+            delete_on_device_delete: false
 
+            # Periodically delete megolm sessions when 2x max_age has passed since receiving the session.
 
+            periodically_delete_expired: false
 
         # What level of device verification should be required from users?
 
         #
 
         # Valid levels:

+ 2 - 2
go.mod
View File 

@@ -15,7 +15,7 @@ require (
 
 	github.com/stretchr/testify v1.8.2
 
 	github.com/yuin/goldmark v1.5.4
 
 	maunium.net/go/maulogger/v2 v2.4.1
 
-	maunium.net/go/mautrix v0.15.0
 
+	maunium.net/go/mautrix v0.15.1-0.20230412171142-8babb521665e
 
 )
 
 
 require (
 
@@ -29,7 +29,7 @@ require (
 
 	github.com/tidwall/pretty v1.2.0 // indirect
 
 	github.com/tidwall/sjson v1.2.5 // indirect
 
 	go.mau.fi/zeroconfig v0.1.2 // indirect
 
-	golang.org/x/crypto v0.6.0 // indirect
 
+	golang.org/x/crypto v0.7.0 // indirect
 
 	golang.org/x/net v0.8.0 // indirect
 
 	golang.org/x/sys v0.6.0 // indirect
 
 	gopkg.in/natefinch/lumberjack.v2 v2.2.1 // indirect

+ 4 - 4
go.sum
View File 

@@ -53,8 +53,8 @@ github.com/yuin/goldmark v1.5.4/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5ta
 
 go.mau.fi/zeroconfig v0.1.2 h1:DKOydWnhPMn65GbXZOafgkPm11BvFashZWLct0dGFto=
 
 go.mau.fi/zeroconfig v0.1.2/go.mod h1:NcSJkf180JT+1IId76PcMuLTNa1CzsFFZ0nBygIQM70=
 
 golang.org/x/crypto v0.0.0-20210421170649-83a5a9bb288b/go.mod h1:T9bdIzuCu7OtxOm1hfPfRQxPLYneinmdGuTeoZ9dtd4=
 
-golang.org/x/crypto v0.6.0 h1:qfktjS5LUO+fFKeJXZ+ikTRijMmljikvG68fpMMruSc=
 
-golang.org/x/crypto v0.6.0/go.mod h1:OFC/31mSvZgRz0V1QTNCzfAI1aIRzbiufJtkMIlEp58=
 
+golang.org/x/crypto v0.7.0 h1:AvwMYaRytfdeVt3u6mLaxYtErKYjxA2OXjJ1HHq6t3A=
 
+golang.org/x/crypto v0.7.0/go.mod h1:pYwdfH91IfpZVANVyUOhSIPZaFoJGxTFbZhFTx+dXZU=
 
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 
 golang.org/x/net v0.8.0 h1:Zrh2ngAOFYneWTAIAPethzeaQLuHwhuBkuV6ZiRnUaQ=
 
 golang.org/x/net v0.8.0/go.mod h1:QVkue5JL9kW//ek3r6jTKnTFis1tRmNAW2P1shuFdJc=
 
@@ -77,5 +77,5 @@ maunium.net/go/mauflag v1.0.0 h1:YiaRc0tEI3toYtJMRIfjP+jklH45uDHtT80nUamyD4M=
 
 maunium.net/go/mauflag v1.0.0/go.mod h1:nLivPOpTpHnpzEh8jEdSL9UqO9+/KBJFmNRlwKfkPeA=
 
 maunium.net/go/maulogger/v2 v2.4.1 h1:N7zSdd0mZkB2m2JtFUsiGTQQAdP0YeFWT7YMc80yAL8=
 
 maunium.net/go/maulogger/v2 v2.4.1/go.mod h1:omPuYwYBILeVQobz8uO3XC8DIRuEb5rXYlQSuqrbCho=
 
-maunium.net/go/mautrix v0.15.0 h1:gkK9HXc1SSPwY7qOAqchzj2xxYqiOYeee8lr28A2g/o=
 
-maunium.net/go/mautrix v0.15.0/go.mod h1:1v8QVDd7q/eJ+eg4sgeOSEafBAFhkt4ab2i97M3IkNQ=
 
+maunium.net/go/mautrix v0.15.1-0.20230412171142-8babb521665e h1:NjZcKS2C9FVXb7JJ9CkqnccHMPyHoxGQK0nUxRuSdqo=
 
+maunium.net/go/mautrix v0.15.1-0.20230412171142-8babb521665e/go.mod h1:Ei+ijYIMoQ3at2vJrMbEQq/pN2fB3h18clD8PyVyTD0=