Validate parsed message size, not base64-encoded message size

service/src/main/java/org/whispersystems/textsecuregcm/entities/IncomingMessage.java

@@ -5,15 +5,21 @@
 package org.whispersystems.textsecuregcm.entities;
 
 import com.google.protobuf.ByteString;
+import io.micrometer.core.instrument.Metrics;
+import jakarta.validation.constraints.AssertTrue;
 import java.util.Base64;
 import javax.annotation.Nullable;
 import org.apache.commons.lang3.StringUtils;
 import org.whispersystems.textsecuregcm.identity.AciServiceIdentifier;
 import org.whispersystems.textsecuregcm.identity.ServiceIdentifier;
+import org.whispersystems.textsecuregcm.metrics.MetricsUtil;
 import org.whispersystems.textsecuregcm.storage.Account;
 
 public record IncomingMessage(int type, byte destinationDeviceId, int destinationRegistrationId, String content) {
 
+  private static final String REJECT_INVALID_ENVELOPE_TYPE_COUNTER_NAME =
+      MetricsUtil.name(IncomingMessage.class, "rejectInvalidEnvelopeType");
+
   public MessageProtos.Envelope toEnvelope(final ServiceIdentifier destinationIdentifier,
       @Nullable Account sourceAccount,
       @Nullable Byte sourceDeviceId,
@@ -23,15 +29,10 @@ public record IncomingMessage(int type, byte destinationDeviceId, int destinatio
       final boolean urgent,
       @Nullable byte[] reportSpamToken) {
 
-    final MessageProtos.Envelope.Type envelopeType = MessageProtos.Envelope.Type.forNumber(type());
-
-    if (envelopeType == null) {
-      throw new IllegalArgumentException("Bad envelope type: " + type());
-    }
-
     final MessageProtos.Envelope.Builder envelopeBuilder = MessageProtos.Envelope.newBuilder();
 
-    envelopeBuilder.setType(envelopeType)
+    envelopeBuilder
+        .setType(MessageProtos.Envelope.Type.forNumber(type))
         .setClientTimestamp(timestamp)
         .setServerTimestamp(System.currentTimeMillis())
         .setDestinationServiceId(destinationIdentifier.toServiceIdentifierString())
@@ -55,4 +56,17 @@ public record IncomingMessage(int type, byte destinationDeviceId, int destinatio
 
     return envelopeBuilder.build();
   }
+
+  @AssertTrue
+  public boolean isValidEnvelopeType() {
+    if (type() == MessageProtos.Envelope.Type.SERVER_DELIVERY_RECEIPT_VALUE ||
+        MessageProtos.Envelope.Type.forNumber(type()) == null) {
+
+      Metrics.counter(REJECT_INVALID_ENVELOPE_TYPE_COUNTER_NAME).increment();
+
+      return false;
+    }
+
+    return true;
+  }
 }

service/src/main/java/org/whispersystems/textsecuregcm/entities/IncomingMessageList.java

@@ -8,18 +8,16 @@ import static com.codahale.metrics.MetricRegistry.name;
 
 import com.fasterxml.jackson.annotation.JsonCreator;
 import com.fasterxml.jackson.annotation.JsonProperty;
-
-import jakarta.validation.constraints.Max;
-import jakarta.validation.constraints.PositiveOrZero;
-import org.whispersystems.textsecuregcm.controllers.MessageController;
-
 import io.micrometer.core.instrument.Counter;
 import io.micrometer.core.instrument.Metrics;
-
-import java.util.List;
 import jakarta.validation.Valid;
 import jakarta.validation.constraints.AssertTrue;
+import jakarta.validation.constraints.Max;
 import jakarta.validation.constraints.NotNull;
+import jakarta.validation.constraints.PositiveOrZero;
+import java.util.List;
+import java.util.Objects;
+import org.whispersystems.textsecuregcm.controllers.MessageController;
 
 public record IncomingMessageList(@NotNull
                                   @Valid
@@ -49,10 +47,14 @@ public record IncomingMessageList(@NotNull
 
   @AssertTrue
   public boolean hasNoDuplicateRecipients() {
-    boolean valid = messages.stream().filter(m -> m != null).map(IncomingMessage::destinationDeviceId).distinct().count() == messages.size();
+    final boolean valid = messages.stream()
+        .filter(Objects::nonNull)
+        .map(IncomingMessage::destinationDeviceId).distinct().count() == messages.size();
+
     if (!valid) {
       REJECT_DUPLICATE_RECIPIENT_COUNTER.increment();
     }
+
     return valid;
   }
 }