Skip to content
Snippets Groups Projects
Unverified Commit 88d7182a authored by Richard van der Hoff's avatar Richard van der Hoff Committed by GitHub
Browse files

Improve startup checks for insecure notary configs (#5392) 

It's not really a problem to trust notary responses signed by the old key so
long as we are also doing TLS validation.

This commit adds a check to the config parsing code at startup to check that
we do not have the insecure matrix.org key without tls validation, and refuses
to start without it.

This allows us to remove the rather alarming-looking warning which happens at
runtime.
parent 7c455a86
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment