41 commits

Author	SHA1	Message	Date
Andrew Ferrazzutti	fcac7e0282	Write union types as X | Y where possible (#19111) ... aka PEP 604, added in Python 3.10	2025-11-06 14:02:33 -06:00
Eric Eastwood	f0aae62f85	Cheaper logcontext debug logs (random_string_insecure_fast(...)) (#19094) ... Follow-up to https://github.com/element-hq/synapse/pull/18966 During the weekly Backend team meeting, it was mentioned that `random_string(...)` was taking a significant amount of CPU on `matrix.org`. This makes sense as it relies on [`secrets.choice(...)`](https://docs.python.org/3/library/secrets.html#secrets.choice), a cryptographically secure function that is inherently computationally expensive. And since https://github.com/element-hq/synapse/pull/18966, we're calling `random_string(...)` as part of a bunch of logcontext utilities. Since we don't need cryptographically secure random strings for our debug logs, this PR is introducing a new `random_string_insecure_fast(...)` function that uses [`random.choice(...)`](https://docs.python.org/3/library/random.html#random.choice) which uses pseudo-random numbers that are "both fast and threadsafe".	2025-10-30 11:47:53 -05:00
Andrew Ferrazzutti	fc244bb592	Use type hinting generics in standard collections (#19046) ... aka PEP 585, added in Python 3.9 - https://peps.python.org/pep-0585/ - https://docs.astral.sh/ruff/rules/non-pep585-annotation/	2025-10-22 16:48:19 -05:00
Patrick Cloke	ca290d325c	Implement MSC4133 to support custom profile fields. (#17488) ... Implementation of [MSC4133](https://github.com/matrix-org/matrix-spec-proposals/pull/4133) to support custom profile fields. It is behind an experimental flag and includes tests. ### Pull Request Checklist <!-- Please read https://element-hq.github.io/synapse/latest/development/contributing_guide.html before submitting your pull request --> * [x] Pull request is based on the develop branch * [x] Pull request includes a [changelog file](https://element-hq.github.io/synapse/latest/development/contributing_guide.html#changelog). The entry should: - Be a short description of your change which makes sense to users. "Fixed a bug that prevented receiving messages from other servers." instead of "Moved X method from `EventStore` to `EventWorkerStore`.". - Use markdown where necessary, mostly for `code blocks`. - End with either a period (.) or an exclamation mark (!). - Start with a capital letter. - Feel free to credit yourself, by adding a sentence "Contributed by @github_username." or "Contributed by [Your Name]." to the end of the entry. * [x] [Code style](https://element-hq.github.io/synapse/latest/code_style.html) is correct (run the [linters](https://element-hq.github.io/synapse/latest/development/contributing_guide.html#run-the-linters)) --------- Co-authored-by: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com>	2025-01-21 11:11:04 +00:00
Erik Johnston	23740eaa3d	Correctly mention previous copyright (#16820) ... During the migration the automated script to update the copyright headers accidentally got rid of some of the existing copyright lines. Reinstate them.	2024-01-23 11:26:48 +00:00
Patrick Cloke	8e1e62c9e0	Update license headers	2023-11-21 15:29:58 -05:00
Abdullah Osama	a9934d48c1	Making parse_server_name more consistent (#14007) ... Fixes #12122	2022-10-11 12:42:11 +00:00
David Robertson	d4713d3e33	Discard null-containing strings before updating the user directory (#12762)	2022-05-18 11:28:14 +01:00
Patrick Cloke	d0e78af35e	Add missing type hints to synapse.replication. (#11938)	2022-02-08 11:03:08 -05:00
Sean Quah	91f2bd0907	Prevent the media store from writing outside of the configured directory ... Also tighten validation of server names by forbidding invalid characters in IPv6 addresses and empty domain labels.	2021-11-19 13:39:15 +00:00
Dan Callahan	bd918d874f	Simplify exception handling in is_ascii. (#9985) ... We can get away with just catching UnicodeError here. ⋮ +-- ValueError | +-- UnicodeError | +-- UnicodeDecodeError | +-- UnicodeEncodeError | +-- UnicodeTranslateError ⋮ https://docs.python.org/3/library/exceptions.html#exception-hierarchy Signed-off-by: Dan Callahan <danc@element.io>	2021-05-14 10:58:52 +01:00
Dan Callahan	498084228b	Use Python's secrets module instead of random (#9984) ... Functionally identical, but more obviously cryptographically secure. ...Explicit is better than implicit? Avoids needing to know that SystemRandom() implies a CSPRNG, and complies with the big scary red box on the documentation for random: > Warning: > The pseudo-random generators of this module should not be used for > security purposes. For security or cryptographic uses, see the > secrets module. https://docs.python.org/3/library/random.html Signed-off-by: Dan Callahan <danc@element.io>	2021-05-14 10:58:46 +01:00
Richard van der Hoff	7562d887e1	Change the format of access tokens away from macaroons (#5588)	2021-05-12 15:04:51 +01:00
Denis Kasak	e694a598f8	Sanity check identity server passed to bind/unbind. (#9802) ... Signed-off-by: Denis Kasak <dkasak@termina.org.uk>	2021-04-19 17:21:46 +01:00
Jonathan de Jong	4b965c862d	Remove redundant "coding: utf-8" lines (#9786) ... Part of #9744 Removes all redundant `# -*- coding: utf-8 -*-` lines from files, as python 3 automatically reads source code as utf-8 now. `Signed-off-by: Jonathan de Jong <jonathan@automatia.nl>`	2021-04-14 15:34:27 +01:00
Patrick Cloke	3f58fc848d	Type hints and validation improvements. (#9321) ... * Adds type hints to the groups servlet and stringutils code. * Assert the maximum length of some input values for spec compliance.	2021-02-08 13:59:54 -05:00
Richard van der Hoff	0cd2938bc8	Support icons for Identity Providers (#9154)	2021-01-20 08:15:14 -05:00
Richard van der Hoff	9ffac2bef1	Remote dependency on distutils (#9125) ... `distutils` is pretty much deprecated these days, and replaced with `setuptools`. It's also annoying because it's you can't `pip install` it, and it's hard to figure out which debian package we should depend on to make sure it's there. Since we only use it for a tiny function anyway, let's just vendor said function into our codebase.	2021-01-15 15:59:20 +00:00
Andrew Morgan	5cf7c12995	Remove : from allowed client_secret chars (#8101) ... Closes: https://github.com/matrix-org/synapse/issues/6766 Equivalent Sydent PR: https://github.com/matrix-org/sydent/pull/309 I believe it's now time to remove the extra allowed `:` from `client_secret` parameters.	2020-08-18 14:14:27 +01:00
Karthikeyan Singaravelan	a7b06a81f0	Fix deprecation warning: import ABC from collections.abc (#7892)	2020-07-20 13:33:04 -04:00
Richard van der Hoff	d4676910c9	remove miscellaneous PY2 code	2020-05-15 19:37:41 +01:00
Richard van der Hoff	65902e08c3	remove to_ascii ... this is a no-op on python 3.	2020-05-15 19:12:03 +01:00
Richard van der Hoff	08fa96f030	Remove exception_to_unicode ... this is a no-op on python 3.	2020-05-15 19:07:24 +01:00
Richard van der Hoff	7966a1cde9	Rewrite prune_old_outbound_device_pokes for efficiency (#7159) ... make sure we clear out all but one update for the user	2020-03-30 19:06:52 +01:00
Andrew Morgan	9f7aaf90b5	Validate client_secret parameter (#6767)	2020-01-24 14:28:40 +00:00
Amber Brown	32e7c9e7f2	Run Black. (#5482)	2019-06-20 19:32:02 +10:00
Richard van der Hoff	247dc1bd0b	Use SystemRandom for token generation	2019-05-03 13:02:55 +01:00
Richard van der Hoff	ecc23188f4	Fix UnicodeDecodeError when postgres is not configured in english (#4253) ... This is a bit of a half-assed effort at fixing https://github.com/matrix-org/synapse/issues/4252. Fundamentally the right answer is to drop support for Python 2.	2018-12-04 11:55:52 +01:00
Amber Brown	324525f40c	Port over enough to get some sytests running on Python 3 (#3668)	2018-08-20 23:54:49 +10:00
Amber Brown	49af402019	run isort	2018-07-09 16:09:20 +10:00
Adrian Tschira	d82b6ea9e6	Move more xrange to six ... plus a bonus next() Signed-off-by: Adrian Tschira <nota@notafile.com>	2018-04-28 13:57:00 +02:00
Erik Johnston	d9aa645f86	Reduce size of joined_user cache ... The _get_joined_users_from_context cache stores a mapping from user_id to avatar_url and display_name. Instead of storing those in a dict, store them in a namedtuple as that uses much less memory. We also try converting the string to ascii to further reduce the size.	2017-04-25 14:38:51 +01:00
Mark Haines	7e2f971c08	Remove some unused functions (#711) ... * Remove some unused functions * get_room_events_stream is only used in tests * is_exclusive_room might actually be something we want	2016-04-08 14:01:56 +01:00
Matthew Hodgson	6c28ac260c	copyrights	2016-01-07 04:26:29 +00:00
Mark Haines	e85c7873dc	Allow non-ascii filenames for attachments	2015-08-26 16:26:37 +01:00
Erik Johnston	9beaedd164	Enforce ascii filenames for uploads	2015-06-30 10:31:59 +01:00
Erik Johnston	69135f59aa	Implement registering with shared secret.	2015-03-13 15:23:37 +00:00
Mark Haines	adb04b1e57	Update copyright notices	2015-01-06 13:21:39 +00:00
Matthew Hodgson	8a7c1d6a00	fix the copyright holder from matrix.org to OpenMarket Ltd, as matrix.org hasn't been incorporated in time for launch.	2014-09-03 17:31:57 +01:00
Matthew Hodgson	f98e6380f1	add in whitespace after copyright statements to improve legibility	2014-08-13 03:14:34 +01:00
matrix.org	4f475c7697	Reference Matrix Home Server	2014-08-12 15:10:52 +01:00