add some m.room.member checks on putting direct state events

Signed-off-by: strawberry <strawberry@puppygock.gay>
2025-01-02 18:16:00 -05:00 · 2025-01-02 18:16:00 -05:00 · a5d70f7356
commit a5d70f7356
parent 50cadbee96
6 changed files with 117 additions and 60 deletions
--- a/src/service/rooms/timeline/mod.rs
+++ b/src/service/rooms/timeline/mod.rs
@ -901,6 +901,29 @@ impl Service {
 			}
 		};

+		if pdu.kind == TimelineEventType::RoomMember {
+			let content: RoomMemberEventContent = pdu.get_content()?;
+
+			if content.join_authorized_via_users_server.is_some()
+				&& content.membership != MembershipState::Join
+			{
+				return Err!(Request(BadJson(
+					"join_authorised_via_users_server is only for member joins"
+				)));
+			}
+
+			if content
+				.join_authorized_via_users_server
+				.as_ref()
+				.is_some_and(|authorising_user| {
+					!self.services.globals.user_is_local(authorising_user)
+				}) {
+				return Err!(Request(InvalidParam(
+					"Authorising user does not belong to this homeserver"
+				)));
+			}
+		}
+
 		// We append to state before appending the pdu, so we don't have a moment in
 		// time with the pdu without it's state. This is okay because append_pdu can't
 		// fail.