This repository was archived by the owner on Apr 26, 2024. It is now read-only.

This repository was archived by the owner on Apr 26, 2024. It is now read-only.

we do not correctly honour the validity period on server signing keys #4364

Closed

Closed

we do not correctly honour the validity period on server signing keys#4364

Assignees

when we ask a server for its signing keys, it gives us a validity period, after which we should not accept federation requests signed by those keys, nor should we accept events with an origin_server_ts older than the validity period.

We need to start enforcing that

Metadata

Assignees

richvdh

Labels

No labels

No labels

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests