about summary refs log tree commit diff
path: root/app
diff options
context:
space:
mode:
authorEugen Rochko <eugen@zeonfederated.com>2020-02-03 17:48:23 +0100
committerGitHub <noreply@github.com>2020-02-03 17:48:23 +0100
commit5265df0a8a9d66a88cbb45bff5e9316a357e934a (patch)
treee84a3922220952d6f995bbc287b8ab75ef651497 /app
parent62f0b306170ef12c925f3e72a4e2c5f94d1ae06f (diff)
Change signature verification to ignore signatures with invalid host (#13033)
Instead of returning a signature verification error, pretend there
was no signature (i.e., this does not allow access to resources that
need a valid signature), so public resources can still be fetched

Fix #13011
Diffstat (limited to 'app')
-rw-r--r--app/controllers/concerns/signature_verification.rb2
1 files changed, 2 insertions, 0 deletions
diff --git a/app/controllers/concerns/signature_verification.rb b/app/controllers/concerns/signature_verification.rb
index ce353f1de..10efbf2e0 100644
--- a/app/controllers/concerns/signature_verification.rb
+++ b/app/controllers/concerns/signature_verification.rb
@@ -160,6 +160,8 @@ module SignatureVerification
       account ||= stoplight_wrap_request { ActivityPub::FetchRemoteKeyService.new.call(key_id, id: false) }
       account
     end
+  rescue Mastodon::HostValidationError
+    nil
   end
 
   def stoplight_wrap_request(&block)