signalapp/Signal-Server
signalapp/Signal-Server
1
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity
5,087 Commits 3 Branches 1,249 Tags 61 MiB
main
Commit Graph

5087 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ravi Khadiwala
b441fde213 Enforce key-ids fit in a positive signed 32-bit int 2026-04-29 10:28:15 -05:00
Jon Chambers
de5cb3370d
Don't try to decode null session IDs 2026-04-17 14:51:07 -04:00
Ameya Lokare
52b4e0b87f Enforce rate limiting on batch identity check endpoint 2026-04-17 13:52:41 -04:00
Jon Chambers
3e19b415b6
Always use fresh, non-cached Account instances when changing numbers 2026-04-17 13:47:54 -04:00
Jon Chambers
3790b53496 Update to the latest version of the spam filter 2026-04-17 11:48:27 -04:00
Jon Chambers
6c26c38b96 Turn on compact object headers 2026-04-17 11:47:58 -04:00
Chris Eager
aa1ff253fb Enforce AccountAttributes#isUnrestrictedUakValid 2026-04-17 09:54:53 -04:00
Jon Chambers
1301bfda93 Avoid blocking in an async context 2026-04-17 09:54:36 -04:00
Jon Chambers
c02667e2e4 Add unit tests for PhoneVerificationTokenManager 2026-04-17 09:54:36 -04:00
Jon Chambers
9e6cbe8f82 Always use fresh/non-cached copies of accounts when making modifications 2026-04-17 09:41:59 -04:00
Chris Eager
1e2d27585a Add gRPC size annotations; allow non-empty UAK for unrestricted 2026-04-16 13:18:56 -05:00
Chris Eager
c70674ed26 Update serialization test 2026-04-16 13:18:56 -05:00
Chris Eager
0281756c01 Add metrics for invalid unrestricted UAK 2026-04-16 13:18:56 -05:00
Chris Eager
5e1338a571 Factor out DeviceAttributes from AccountAttributes 2026-04-16 13:18:56 -05:00
Chris Eager
149de6c464 Add UAK validator to AccountAttributes 2026-04-16 13:18:56 -05:00
Chris Eager
b551e0cb34 Require UAKs to be non-zero length or null 2026-04-16 13:18:56 -05:00
Chris Eager
2344d3d9b7 Add AccountAttributes serialization test 2026-04-16 13:18:56 -05:00
Chris Eager
04aa528ad8 Add Accounts.SetZkCredentialKey 2026-04-16 12:13:34 -05:00
Jon Chambers
1b5c602351 Retire the device count override system 2026-04-16 12:52:15 -04:00
Ravi Khadiwala
bbeeed9d1f Remove unused static grpcAllowList configuration 2026-04-15 18:05:06 -04:00
Chris Eager
aabbbe486f Update exception for empty non-sync messages to MessageSender 2026-04-15 17:03:10 -05:00
Jon Chambers
b702d9d5a9 Remove service level objectives for captcha outcome distribution 2026-04-15 18:01:59 -04:00
Jon Chambers
efc39573e4 Use CaptchaMetrics to measure captcha scores for sending messages and verification 2026-04-15 16:40:06 -04:00
Jon Chambers
87e88dd3a1 Introduce CaptchaMetrics 2026-04-15 16:40:06 -04:00
Chris Eager
4ae82cbb59 Add @NotEmpty validation to IncomingMessageList 2026-04-15 16:38:19 -04:00
Jon Chambers
dcb5187629 Retire V1 authentication tokens 2026-04-15 16:37:52 -04:00
Jon Chambers
bb589d6daa Retire AccountsManager#updateDeviceAuthentication 2026-04-15 16:37:52 -04:00
Ameya Lokare
bb7d855aca Prevent reg lock bypass on alternate phone number forms 2026-04-15 16:37:18 -04:00
Ameya Lokare
288b9f82d7 Prevent potentially orphaned usernames due to concurrent username 
confirmation during account deletion
 2026-04-15 16:36:41 -04:00
Ameya Lokare
61f5998e8a Add rate limiter to batch profile check 2026-04-15 16:35:24 -04:00
Chris Eager
53a35a827e Remove obsolete Profiles cache key 2026-04-14 11:01:57 -05:00
Chris Eager
a3c712f8d3 Migrate Profiles cache key to use hash tag 2026-04-14 09:50:52 -05:00
Jon Chambers
56f25f5a39 Avoid overflows when calculating media ciphertext size 2026-04-14 10:46:16 -04:00
Chris Eager
68b3e9a07c Exclude ExpiringProfileKeyCredentialProfileResponse.credential for non-current versions 2026-04-14 09:23:53 -05:00
Chris Eager
5190b197e8 Update to Java 25 2026-04-14 09:13:50 -05:00
Chris Eager
09c18205d4 Validate level in OneTimeDonationController 2026-04-13 17:12:35 -05:00
Chris Eager
ea1e4f02d0 Clean up trivial warnings in OneTimeDonationController 2026-04-13 17:12:35 -05:00
Chris Eager
b5e490b987 Make gift amount validation consistent between PayPal and Stripe 2026-04-13 17:12:35 -05:00
Chris Eager
7b8141d174 Update Maven plugins 2026-04-13 17:10:54 -05:00
Chris Eager
83ebd994c7 Update to the latest version of the spam filter 2026-04-13 17:02:33 -05:00
Ravi Khadiwala
c4a48dd1e6 Add a base64url gRPC validator and apply it to backup copy 2026-04-13 17:01:38 -05:00
Ravi Khadiwala
5bb7edcade Reject DeviceCheck assertions if they race with a counter update 2026-04-13 17:01:25 -05:00
Chris Eager
75948dc617 Update to the latest version of the spam filter 2026-04-09 16:43:44 -05:00
Ameya Lokare
0edfcab8dd Update dependencies 2026-04-09 16:40:41 -05:00
Ravi Khadiwala
95843529ba Add comments to explain why we remove RRPs early 2026-04-09 16:35:08 -05:00
Ravi Khadiwala
3930b1841e Add missing join() in when deleting RRPs after verification 2026-04-09 16:35:08 -05:00
Jon Chambers
070aa5f0cd Limit cardinality of HTTP methods in request metrics 2026-04-09 17:35:06 -04:00
Jon Chambers
0d42f37a5c Add a (failing!) test for spurious HTTP methods in request metrics 2026-04-09 17:35:06 -04:00
Jon Chambers
837065bfbd Retire commands for removing accounts/devices that do not support SPQR 2026-04-09 17:34:50 -04:00
Jon Chambers
2f9ec6936f Update to the latest version of the spam filter 2026-04-01 20:22:19 -04:00