fix(dht): optimisation, no decrypt if public key dest doesn't match

tari-project · May 24, 2022 · 99158bb · 99158bb
1 parent 331751d
commit 99158bb
Showing 1 changed file with 19 additions and 0 deletions.
diff --git a/comms/dht/src/inbound/decryption.rs b/comms/dht/src/inbound/decryption.rs
@@ -220,6 +220,25 @@ where S: Service<DecryptedDhtMessage, Response = (), Error = PipelineError>
             return Err(DecryptionError::EncryptedMessageNoDestination);
         }
 
+        if !message.dht_header.destination.is_unknown() {
+            if message
+                .dht_header
+                .destination
+                .public_key()
+                .map(|pk| pk != node_identity.public_key())
+                .unwrap_or(false)
+            {
+                debug!(
+                    target: LOG_TARGET,
+                    "Encrypted message (source={}, {}) not destined for this peer. Passing to next service (Trace: {})",
+                    message.source_peer.node_id,
+                    message.dht_header.message_tag,
+                    message.tag
+                );
+                return Ok(DecryptedDhtMessage::failed(message));
+            }
+        }
+
         let e_pk = dht_header
             .ephemeral_public_key
             .as_ref()