Apply should_drop_federated_event to federation invites (#18330)

Co-authored-by: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com>
2025-12-15 00:00:50 -05:00 · 2025-05-02 06:04:01 -07:00 · 2025-05-02 06:04:01 -07:00 · 411d239db4
commit 411d239db4
parent d18edf67d6
3 changed files with 9 additions and 0 deletions
--- a/changelog.d/18330.misc
+++ b/changelog.d/18330.misc
@ -0,0 +1 @@
+Apply `should_drop_federated_event` to federation invites.
--- a/docs/modules/spam_checker_callbacks.md
+++ b/docs/modules/spam_checker_callbacks.md
@ -353,6 +353,8 @@ callback returns `False`, Synapse falls through to the next one. The value of th
 callback that does not return `False` will be used. If this happens, Synapse will not call
 any of the subsequent implementations of this callback.

+Note that this check is applied to federation invites as of Synapse v1.130.0.
+

 ### `check_login_for_spam`

--- a/synapse/federation/federation_server.py
+++ b/synapse/federation/federation_server.py
@ -701,6 +701,12 @@ class FederationServer(FederationBase):
        pdu = event_from_pdu_json(content, room_version)
        origin_host, _ = parse_server_name(origin)
        await self.check_server_matches_acl(origin_host, pdu.room_id)
+        if await self._spam_checker_module_callbacks.should_drop_federated_event(pdu):
+            logger.info(
+                "Federated event contains spam, dropping %s",
+                pdu.event_id,
+            )
+            raise SynapseError(403, Codes.FORBIDDEN)
        try:
            pdu = await self._check_sigs_and_hash(room_version, pdu)
        except InvalidEventSignatureError as e:
				`@ -0,0 +1 @@`
				Apply `should_drop_federated_event` to federation invites.