matrix
/
matrix-doc
mirror of https://github.com/matrix-org/matrix-doc.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
matrix-doc/proposals/3585-drop-event-from-event_...

2.9 KiB
Raw Permalink Blame History

MSC3585: Allow the base event to be omitted from /federation/v1/event_auth response

The specification for GET /_matrix/federation/v1/event_auth/{roomId}/{eventId} does not explicitly say whether the event with the specified eventId should be included in the response.

In cases of such ambiguity, we look to historical precedent, where we see that Synapse does return that event (see include_given=True in FederationHandler.on_event_auth). It has been that way since at least synapse#2247, predating the inclusion of this endpoint in the spec.

The de-facto spec is therefore that eventId should be returned. However, there is no good reason to return it: the only reason why a remote server would call this endpoint is if it already has a copy of the event but is missing some of its auth events. Indeed, Synapse includes code to ignore that event where it is returned: https://github.com/matrix-org/synapse/blob/v1.49.2/synapse/handlers/federation_event.py#L1710-L1711.

Additional background: Conduit does not return eventId (see server_server.rs). Dendrite's implementation of this endpoint is some way off-spec but is also believed to elide the requested event.

Proposal

The specification for GET /_matrix/federation/v1/event_auth/{roomId}/{eventId} should be clarified to say that eventId itself should not be returned.

Potential issues

In theory this is a breaking change; although Synapse does not depend on eventId being returned, it is possible that this will cause problems on other implementations for some reason. However, as above, there is no reason for a homeserver implementation to call /event_auth unless it already has a copy of the event, so this is judged to be a minor risk.

Surveying current homeserver implementations:

  • Conduit and Dendrite never make any outgoing requests to /event_auth.
  • Synapse is agnostic as to whether eventId is returned.

In addition, the presence of existing implementations which elide the requested event from the responses to incoming requests (Conduit and Dendrite) means the potential for incompatibility already exists.

Alternatives

Alternatives include:

  • double-down on requiring eventId to be returned. This seems like a retrograde step.
  • introduce a way in which implementations can opt-in to the omission of eventId (for example, via a query parameter, or with a new version of the /event_auth endpoint). This seems overengineered.

Security considerations

None foreseen.

Unstable prefix

No unstable prefix is proposed.

Dependencies

None.