Filip/matrix-spec
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-spec synced 2026-04-03 17:54:14 +02:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

Clarify how multiple signatures should be handled during verification

Browse source 
Signed-off-by: timedout <git@nexy7574.co.uk>
This commit is contained in:
timedout 2026-03-21 16:46:52 +00:00
parent 3c9ba4a06d
commit f2b51f6a62
No known key found for this signature in database
GPG key ID: 0FA334385D0B689F
1 changed files with 4 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
content/server-server-api.md
View file

@ -1484,10 +1484,9 @@ the Policy Server for a signature too.
When a server receives an event over federation from another server, the When a server receives an event over federation from another server, the
receiving server should check the hashes and signatures on that event. receiving server should check the hashes and signatures on that event.
First the signature is checked. The event is redacted following the First the signatures are checked. The event is redacted following the
[redaction [redaction algorithm](/client-server-api#redactions), and
algorithm](/client-server-api#redactions), and the resultant object is checked for signatures from the originating
the resultant object is checked for a signature from the originating
server, following the algorithm described in [Checking for a server, following the algorithm described in [Checking for a
signature](/appendices#checking-for-a-signature). Note that this signature](/appendices#checking-for-a-signature). Note that this
step should succeed whether we have been sent the full event or a step should succeed whether we have been sent the full event or a
@ -1503,7 +1502,7 @@ The signatures expected on an event are:
Other room versions do not track the `event_id` over federation and Other room versions do not track the `event_id` over federation and
therefore do not need a signature from those servers. therefore do not need a signature from those servers.
If the signature is found to be valid, the expected content hash is If all signatures from known keys are found to be valid, the expected content hash is
calculated as described below. The content hash in the `hashes` property calculated as described below. The content hash in the `hashes` property
of the received event is base64-decoded, and the two are compared for of the received event is base64-decoded, and the two are compared for
equality. equality.