fix: move validateToRawMessage() out of validateReceivedMessage()

twoeths · twoeths · commit f6830fa63111 · 2025-11-28T09:16:03.000+07:00
diff --git a/src/index.ts b/src/index.ts
@@ -54,7 +54,7 @@ import {
   type MessageId,
   type PublishOpts
 } from './types.js'
-import { buildRawMessage, validateToRawMessage } from './utils/buildRawMessage.js'
+import { buildRawMessage, validateStrictNoSignMessage, validateStrictSignMessage, type ValidationResult } from './utils/buildRawMessage.js'
 import { createGossipRpc, ensureControl } from './utils/create-gossip-rpc.js'
 import { shuffle, messageIdToString } from './utils/index.js'
 import { msgIdFnStrictNoSign, msgIdFnStrictSign } from './utils/msgIdFn.js'
@@ -1214,28 +1214,40 @@ export class GossipSub extends TypedEventEmitter<GossipsubEvents> implements Pub
   private async handleReceivedMessage (from: PeerId, rpcMsg: RPC.Message): Promise<void> {
     this.metrics?.onMsgRecvPreValidation(rpcMsg.topic)
 
-    let validationResult = await this.validateReceivedMessage(from, rpcMsg)
-
-    if (validationResult.code === MessageStatus.valid) {
-      // (Optional) Provide custom validation here with dynamic validators per topic
-      // NOTE: This custom topicValidator() must resolve fast (< 100ms) to allow scores
-      // to not penalize peers for long validation times.
-      const msgIdStr = validationResult.messageId.msgIdStr
-      const topicValidator = this.topicValidators.get(rpcMsg.topic)
-      if (topicValidator != null) {
-        let acceptance: TopicValidatorResult
-        // Use try {} catch {} in case topicValidator() is synchronous
-        try {
-          acceptance = await topicValidator(from, validationResult.msg)
-        } catch (e) {
-          const errCode = (e as { code: string }).code
-          if (errCode === constants.ERR_TOPIC_VALIDATOR_IGNORE) acceptance = TopicValidatorResult.Ignore
-          if (errCode === constants.ERR_TOPIC_VALIDATOR_REJECT) acceptance = TopicValidatorResult.Reject
-          else acceptance = TopicValidatorResult.Ignore
-        }
+    let validationResult: ReceivedMessageResult
+    // Fast message ID stuff
+    const fastMsgIdStr = this.fastMsgIdFn?.(rpcMsg)
+    const msgIdCached = fastMsgIdStr !== undefined ? this.fastMsgIdCache?.get(fastMsgIdStr) : undefined
 
-        if (acceptance !== TopicValidatorResult.Accept) {
-          validationResult = { code: MessageStatus.invalid, reason: rejectReasonFromAcceptance(acceptance), msgIdStr }
+    if (msgIdCached != null) {
+      // This message has been seen previously. Ignore it
+      validationResult = { code: MessageStatus.duplicate, msgIdStr: msgIdCached }
+    } else {
+      const rawValidationResult = this.globalSignaturePolicy === StrictNoSign ? validateStrictNoSignMessage(rpcMsg) : await validateStrictSignMessage(rpcMsg)
+      // Perform basic validation on message and convert to RawGossipsubMessage for fastMsgIdFn()
+      validationResult = this.validateReceivedMessage(from, rpcMsg, fastMsgIdStr, rawValidationResult)
+
+      if (validationResult.code === MessageStatus.valid) {
+        // (Optional) Provide custom validation here with dynamic validators per topic
+        // NOTE: This custom topicValidator() must resolve fast (< 100ms) to allow scores
+        // to not penalize peers for long validation times.
+        const msgIdStr = validationResult.messageId.msgIdStr
+        const topicValidator = this.topicValidators.get(rpcMsg.topic)
+        if (topicValidator != null) {
+          let acceptance: TopicValidatorResult
+          // Use try {} catch {} in case topicValidator() is synchronous
+          try {
+            acceptance = await topicValidator(from, validationResult.msg)
+          } catch (e) {
+            const errCode = (e as { code: string }).code
+            if (errCode === constants.ERR_TOPIC_VALIDATOR_IGNORE) acceptance = TopicValidatorResult.Ignore
+            if (errCode === constants.ERR_TOPIC_VALIDATOR_REJECT) acceptance = TopicValidatorResult.Reject
+            else acceptance = TopicValidatorResult.Ignore
+          }
+
+          if (acceptance !== TopicValidatorResult.Accept) {
+            validationResult = { code: MessageStatus.invalid, reason: rejectReasonFromAcceptance(acceptance), msgIdStr }
+          }
         }
       }
     }
@@ -1316,22 +1328,12 @@ export class GossipSub extends TypedEventEmitter<GossipsubEvents> implements Pub
    * Handles a newly received message from an RPC.
    * May forward to all peers in the mesh.
    */
-  private async validateReceivedMessage (
+  private validateReceivedMessage (
     propagationSource: PeerId,
-    rpcMsg: RPC.Message
-  ): Promise<ReceivedMessageResult> {
-    // Fast message ID stuff
-    const fastMsgIdStr = this.fastMsgIdFn?.(rpcMsg)
-    const msgIdCached = fastMsgIdStr !== undefined ? this.fastMsgIdCache?.get(fastMsgIdStr) : undefined
-
-    if (msgIdCached != null) {
-      // This message has been seen previously. Ignore it
-      return { code: MessageStatus.duplicate, msgIdStr: msgIdCached }
-    }
-
-    // Perform basic validation on message and convert to RawGossipsubMessage for fastMsgIdFn()
-    const validationResult = await validateToRawMessage(this.globalSignaturePolicy, rpcMsg)
-
+    rpcMsg: RPC.Message,
+    fastMsgIdStr: string | number | undefined,
+    validationResult: ValidationResult
+  ): ReceivedMessageResult {
     if (!validationResult.valid) {
       return { code: MessageStatus.invalid, reason: RejectReason.Error, error: validationResult.error }
     }
diff --git a/src/utils/buildRawMessage.ts b/src/utils/buildRawMessage.ts
@@ -1,6 +1,6 @@
 import { randomBytes } from '@libp2p/crypto'
 import { publicKeyFromProtobuf } from '@libp2p/crypto/keys'
-import { StrictSign, StrictNoSign, type Message, type PublicKey, type PeerId } from '@libp2p/interface'
+import { type Message, type PublicKey, type PeerId } from '@libp2p/interface'
 import { peerIdFromMultihash } from '@libp2p/peer-id'
 import * as Digest from 'multiformats/hashes/digest'
 import { concat as uint8ArrayConcat } from 'uint8arrays/concat'
@@ -80,92 +80,84 @@ export async function buildRawMessage (
 
 export type ValidationResult = { valid: true, message: Message } | { valid: false, error: ValidateError }
 
-export async function validateToRawMessage (
-  signaturePolicy: typeof StrictNoSign | typeof StrictSign,
+export function validateStrictNoSignMessage (
+  msg: RPC.Message
+): ValidationResult {
+  if (msg.signature != null) return { valid: false, error: ValidateError.SignaturePresent }
+  if (msg.seqno != null) return { valid: false, error: ValidateError.SeqnoPresent }
+  if (msg.from != null) return { valid: false, error: ValidateError.FromPresent }
+
+  return { valid: true, message: { type: 'unsigned', topic: msg.topic, data: msg.data ?? new Uint8Array(0) } }
+}
+
+export async function validateStrictSignMessage (
   msg: RPC.Message
 ): Promise<ValidationResult> {
-  // If strict-sign, verify all
-  // If anonymous (no-sign), ensure no preven
-
-  switch (signaturePolicy) {
-    case StrictNoSign:
-      if (msg.signature != null) return { valid: false, error: ValidateError.SignaturePresent }
-      if (msg.seqno != null) return { valid: false, error: ValidateError.SeqnoPresent }
-      if (msg.from != null) return { valid: false, error: ValidateError.FromPresent }
-
-      return { valid: true, message: { type: 'unsigned', topic: msg.topic, data: msg.data ?? new Uint8Array(0) } }
-
-    case StrictSign: {
-      // Verify seqno
-      if (msg.seqno == null) return { valid: false, error: ValidateError.InvalidSeqno }
-      if (msg.seqno.length !== 8) {
-        return { valid: false, error: ValidateError.InvalidSeqno }
-      }
+  // Verify seqno
+  if (msg.seqno == null) return { valid: false, error: ValidateError.InvalidSeqno }
+  if (msg.seqno.length !== 8) {
+    return { valid: false, error: ValidateError.InvalidSeqno }
+  }
 
-      if (msg.signature == null) return { valid: false, error: ValidateError.InvalidSignature }
-      if (msg.from == null) return { valid: false, error: ValidateError.InvalidPeerId }
+  if (msg.signature == null) return { valid: false, error: ValidateError.InvalidSignature }
+  if (msg.from == null) return { valid: false, error: ValidateError.InvalidPeerId }
 
-      let fromPeerId: PeerId
-      try {
-        // TODO: Fix PeerId types
-        fromPeerId = peerIdFromMultihash(Digest.decode(msg.from))
-      } catch (e) {
-        return { valid: false, error: ValidateError.InvalidPeerId }
-      }
+  let fromPeerId: PeerId
+  try {
+    // TODO: Fix PeerId types
+    fromPeerId = peerIdFromMultihash(Digest.decode(msg.from))
+  } catch (e) {
+    return { valid: false, error: ValidateError.InvalidPeerId }
+  }
 
-      // - check from defined
-      // - transform source to PeerId
-      // - parse signature
-      // - get .key, else from source
-      // - check key == source if present
-      // - verify sig
-
-      let publicKey: PublicKey
-      if (msg.key != null) {
-        publicKey = publicKeyFromProtobuf(msg.key)
-        // TODO: Should `fromPeerId.pubKey` be optional?
-        if (fromPeerId.publicKey !== undefined && !publicKey.equals(fromPeerId.publicKey)) {
-          return { valid: false, error: ValidateError.InvalidPeerId }
-        }
-      } else {
-        if (fromPeerId.publicKey == null) {
-          return { valid: false, error: ValidateError.InvalidPeerId }
-        }
-        publicKey = fromPeerId.publicKey
-      }
+  // - check from defined
+  // - transform source to PeerId
+  // - parse signature
+  // - get .key, else from source
+  // - check key == source if present
+  // - verify sig
+
+  let publicKey: PublicKey
+  if (msg.key != null) {
+    publicKey = publicKeyFromProtobuf(msg.key)
+    // TODO: Should `fromPeerId.pubKey` be optional?
+    if (fromPeerId.publicKey !== undefined && !publicKey.equals(fromPeerId.publicKey)) {
+      return { valid: false, error: ValidateError.InvalidPeerId }
+    }
+  } else {
+    if (fromPeerId.publicKey == null) {
+      return { valid: false, error: ValidateError.InvalidPeerId }
+    }
+    publicKey = fromPeerId.publicKey
+  }
 
-      const rpcMsgPreSign: RPC.Message = {
-        from: msg.from,
-        data: msg.data,
-        seqno: msg.seqno,
-        topic: msg.topic,
-        signature: undefined, // Exclude signature field for signing
-        key: undefined // Exclude key field for signing
-      }
+  const rpcMsgPreSign: RPC.Message = {
+    from: msg.from,
+    data: msg.data,
+    seqno: msg.seqno,
+    topic: msg.topic,
+    signature: undefined, // Exclude signature field for signing
+    key: undefined // Exclude key field for signing
+  }
 
-      // Get the message in bytes, and prepend with the pubsub prefix
-      // the signature is over the bytes "libp2p-pubsub:<protobuf-message>"
-      const bytes = uint8ArrayConcat([SignPrefix, RPC.Message.encode(rpcMsgPreSign)])
+  // Get the message in bytes, and prepend with the pubsub prefix
+  // the signature is over the bytes "libp2p-pubsub:<protobuf-message>"
+  const bytes = uint8ArrayConcat([SignPrefix, RPC.Message.encode(rpcMsgPreSign)])
 
-      if (!(await publicKey.verify(bytes, msg.signature))) {
-        return { valid: false, error: ValidateError.InvalidSignature }
-      }
+  if (!(await publicKey.verify(bytes, msg.signature))) {
+    return { valid: false, error: ValidateError.InvalidSignature }
+  }
 
-      return {
-        valid: true,
-        message: {
-          type: 'signed',
-          from: fromPeerId,
-          data: msg.data ?? new Uint8Array(0),
-          sequenceNumber: BigInt(`0x${uint8ArrayToString(msg.seqno, 'base16')}`),
-          topic: msg.topic,
-          signature: msg.signature,
-          key: publicKey
-        }
-      }
+  return {
+    valid: true,
+    message: {
+      type: 'signed',
+      from: fromPeerId,
+      data: msg.data ?? new Uint8Array(0),
+      sequenceNumber: BigInt(`0x${uint8ArrayToString(msg.seqno, 'base16')}`),
+      topic: msg.topic,
+      signature: msg.signature,
+      key: publicKey
     }
-
-    default:
-      throw new Error('Unreachable')
   }
 }
