Cached checked certificates in overlays (#1338)

2025-03-09 15:40:10 +00:00 · 2024-11-18 10:38:32 +04:00 · 2024-11-18 10:38:32 +04:00 · 413da6cd20
commit 413da6cd20
parent f00ff75548
4 changed files with 49 additions and 29 deletions
--- a/overlay/overlay-manager.cpp
+++ b/overlay/overlay-manager.cpp
@ -564,7 +564,7 @@ td::Result<std::shared_ptr<Certificate>> Certificate::create(tl_object_ptr<ton_a
 }

 BroadcastCheckResult Certificate::check(PublicKeyHash node, OverlayIdShort overlay_id, td::int32 unix_time,
-                                        td::uint32 size, bool is_fec) const {
+                                        td::uint32 size, bool is_fec, bool skip_check_signature) const {
  if (size > max_size_) {
    return BroadcastCheckResult::Forbidden;
  }
@ -575,16 +575,16 @@ BroadcastCheckResult Certificate::check(PublicKeyHash node, OverlayIdShort overl
    return BroadcastCheckResult::Forbidden;
  }

-  auto R1 = issued_by_.get<PublicKey>().create_encryptor();
-  if (R1.is_error()) {
-    return BroadcastCheckResult::Forbidden;
-  }
-  auto E = R1.move_as_ok();
-
-  auto B = to_sign(overlay_id, node);
-
-  if (E->check_signature(B.as_slice(), signature_.as_slice()).is_error()) {
-    return BroadcastCheckResult::Forbidden;
+  if (!skip_check_signature) {
+    auto R1 = issued_by_.get<PublicKey>().create_encryptor();
+    if (R1.is_error()) {
+      return BroadcastCheckResult::Forbidden;
+    }
+    auto E = R1.move_as_ok();
+    auto B = to_sign(overlay_id, node);
+    if (E->check_signature(B.as_slice(), signature_.as_slice()).is_error()) {
+      return BroadcastCheckResult::Forbidden;
+    }
  }

  return (flags_ & CertificateFlags::Trusted) ? BroadcastCheckResult::Allowed : BroadcastCheckResult::NeedCheck;