Element-web sends tens of thousands of room key requests after login, effectively DoSsing a server #19488
Labels
A-E2EE
O-Occasional
Affects or can be seen by some users regularly or most users rarely
S-Major
Severely degrades major functionality or product features, with no satisfactory workaround
T-Defect
Comments
SimonBrandner
added
A-E2EE
S-Major
dbkr
added
the
O-Occasional
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Steps to reproduce
matrix-org/synapse#11049 includes reports from a user whose server was effectively DoSed over a period of an hour, by a single element-desktop client sending room key requests. This apparently occurred during an attempt to log in:
Outcome
What did you expect?
Fewer room key requests.
What happened instead?
Tens of thousands of room key requests.
Operating system
No response
Application version
No response
How did you install the app?
No response
Homeserver
No response
Will you send logs?
No
The text was updated successfully, but these errors were encountered: