signing_key: refactor nested case into with statement

The error branches were already effectively identical before. This change is purely cosmetic.
Make SigningKey data migration future-proof
2024-12-08 20:43:57 +00:00 · 2024-12-08 20:43:10 +00:00 · 2024-11-26 09:50:04 +00:00 · 2024-11-26 09:36:20 +00:00 · 2024-11-26 09:35:56 +00:00 · 2024-11-26 09:29:44 +00:00
8 changed files with 51 additions and 33 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -4,7 +4,7 @@ All notable changes to this project will be documented in this file.

 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).

-## UNRELEASED
+## 3.13.3 

 ## BREAKING
 - Minimum PostgreSQL version is raised to 12
--- a/lib/pleroma/user.ex
+++ b/lib/pleroma/user.ex
@ -443,6 +443,7 @@ defp fix_follower_address(params), do: params
  def remote_user_changeset(struct \\ %User{local: false}, params) do
    bio_limit = Config.get([:instance, :user_bio_length], 5000)
    name_limit = Config.get([:instance, :user_name_length], 100)
+    fields_limit = Config.get([:instance, :max_remote_account_fields], 0)

    name =
      case params[:name] do
@ -456,6 +457,7 @@ def remote_user_changeset(struct \\ %User{local: false}, params) do
      |> Map.put_new(:last_refreshed_at, NaiveDateTime.utc_now())
      |> truncate_if_exists(:name, name_limit)
      |> truncate_if_exists(:bio, bio_limit)
+      |> Map.update(:fields, [], &Enum.take(&1, fields_limit))
      |> truncate_fields_param()
      |> fix_follower_address()

--- a/lib/pleroma/user/signing_key.ex
+++ b/lib/pleroma/user/signing_key.ex
@ -194,31 +194,24 @@ def get_or_fetch_by_key_id(key_id) do
  """
  def fetch_remote_key(key_id) do
    Logger.debug("Fetching remote key: #{key_id}")
-    resp = Pleroma.Object.Fetcher.fetch_and_contain_remote_object_from_id(key_id)

-    case resp do
-      {:ok, _body} ->
-        case handle_signature_response(resp) do
-          {:ok, ap_id, public_key_pem} ->
-            Logger.debug("Fetched remote key: #{ap_id}")
-            # fetch the user
-            {:ok, user} = User.get_or_fetch_by_ap_id(ap_id)
-            # store the key
-            key = %__MODULE__{
-              user_id: user.id,
-              public_key: public_key_pem,
-              key_id: key_id
-            }
+    with {:ok, _body} = resp <-
+           Pleroma.Object.Fetcher.fetch_and_contain_remote_object_from_id(key_id),
+         {:ok, ap_id, public_key_pem} <- handle_signature_response(resp) do
+      Logger.debug("Fetched remote key: #{ap_id}")
+      # fetch the user
+      {:ok, user} = User.get_or_fetch_by_ap_id(ap_id)
+      # store the key
+      key = %__MODULE__{
+        user_id: user.id,
+        public_key: public_key_pem,
+        key_id: key_id
+      }

-            Repo.insert(key, on_conflict: :replace_all, conflict_target: :key_id)
-
-          e ->
-            Logger.debug("Failed to fetch remote key: #{inspect(e)}")
-            {:error, "Could not fetch key"}
-        end
-
-      _ ->
-        Logger.debug("Failed to fetch remote key: #{inspect(resp)}")
+      Repo.insert(key, on_conflict: :replace_all, conflict_target: :key_id)
+    else
+      e ->
+        Logger.debug("Failed to fetch remote key: #{inspect(e)}")
        {:error, "Could not fetch key"}
    end
  end
--- a/mix.exs
+++ b/mix.exs
@ -4,7 +4,7 @@ defmodule Pleroma.Mixfile do
  def project do
    [
      app: :pleroma,
-      version: version("3.13.2"),
+      version: version("3.13.3"),
      elixir: "~> 1.14",
      elixirc_paths: elixirc_paths(Mix.env()),
      compilers: Mix.compilers(),
--- a/priv/repo/migrations/20240625220752_move_signing_keys.exs
+++ b/priv/repo/migrations/20240625220752_move_signing_keys.exs
@ -8,13 +8,14 @@ def up do
    # we do not handle remote users here!
    # because we want to store a key id -> user id mapping, and we don't
    # currently store key ids for remote users...
-    query =
-      from(u in User)
-      |> where(local: true)
-
-    Repo.stream(query, timeout: :infinity)
+    # Also this MUST use select, else the migration will fail in future installs with new user fields!
+    from(u in Pleroma.User,
+      where: u.local == true,
+      select: {u.id, u.keys, u.ap_id}
+    )
+    |> Repo.stream(timeout: :infinity)
    |> Enum.each(fn
-      %User{id: user_id, keys: private_key, local: true, ap_id: ap_id} ->
+      {user_id, private_key, ap_id} ->
        IO.puts("Migrating user #{user_id}")
        # we can precompute the public key here...
        # we do use it on every user view which makes it a bit of a dos attack vector
--- a/priv/repo/migrations/20241126093029_add_signing_key_index.exs
+++ b/priv/repo/migrations/20241126093029_add_signing_key_index.exs
@ -0,0 +1,7 @@
+defmodule Pleroma.Repo.Migrations.AddSigningKeyIndex do
+  use Ecto.Migration
+
+  def change do
+    create_if_not_exists(index(:signing_keys, [:user_id], name: :signing_keys_user_id_index))
+  end
+end
--- a/test/pleroma/user_test.exs
+++ b/test/pleroma/user_test.exs
@ -966,6 +966,21 @@ test "it is invalid given a local user" do

      refute cs.valid?
    end
+
+    test "it truncates fields" do
+      clear_config([:instance, :max_remote_account_fields], 2)
+
+      fields = [
+        %{"name" => "One", "value" => "Uno"},
+        %{"name" => "Two", "value" => "Dos"},
+        %{"name" => "Three", "value" => "Tres"}
+      ]
+
+      cs = User.remote_user_changeset(@valid_remote |> Map.put(:fields, fields))
+
+      assert [%{"name" => "One", "value" => "Uno"}, %{"name" => "Two", "value" => "Dos"}] ==
+               Ecto.Changeset.get_field(cs, :fields)
+    end
  end

  describe "followers and friends" do
--- a/test/pleroma/web/activity_pub/transmogrifier/user_update_handling_test.exs
+++ b/test/pleroma/web/activity_pub/transmogrifier/user_update_handling_test.exs
@ -119,8 +119,8 @@ test "it works with custom profile fields" do
    user = User.get_cached_by_ap_id(user.ap_id)

    assert user.fields == [
-             %{"name" => "foo", "value" => "updated"},
-             %{"name" => "foo1", "value" => "updated"}
+             %{"name" => "foo", "value" => "bar"},
+             %{"name" => "foo11", "value" => "bar11"}
           ]

    update_data =
Author	SHA1	Message	Date
Oneric	294de939cb	signing_key: refactor nested case into with statement The error branches were already effectively identical before. This change is purely cosmetic.	2024-12-08 20:43:57 +00:00
Oneric	7583eceb38	Make SigningKey data migration future-proof Bug originally discovered by tudbut	2024-12-08 20:43:10 +00:00
Floatingghost	834edfcf96	add changelog	2024-11-26 09:50:04 +00:00
Floatingghost	79b282dea6	bump version	2024-11-26 09:36:20 +00:00
Floatingghost	d1d82782db	add signing key index	2024-11-26 09:35:56 +00:00
Haelwenn (lanodan) Monnier	2b1a252cc7	User: truncate remote user fields instead of rejecting	2024-11-26 09:29:44 +00:00