Skip to content

fix: enforce identity CID size limits #10949

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 11 commits into from
Sep 9, 2025
Merged

fix: enforce identity CID size limits #10949

merged 11 commits into from
Sep 9, 2025

Conversation

@lidel
Copy link
Member

@lidel lidel commented Aug 30, 2025
edited
Loading

Important

This PR fixes #6011:

  • validate --inline-limit against verifcid.MaxDigestSize
  • add error when --hash=identity exceeds size limit
  • add tests for identity CID overflow scenarios
  • update help text to show maximum inline limit

This prevents creation of unbounded identity CIDs by enforcing the 128-byte limit defined in verifcid + automatically switches to non-identity once limit is reached.

@lidel
fix: enforce identity CID size limits
f3a5642 
- validate --inline-limit against verifcid.MaxDigestSize
- add error when --hash=identity exceeds size limit
- add tests for identity CID overflow scenarios
- update help text to show maximum inline limit

This prevents creation of unbounded identity CIDs by enforcing
the 128-byte limit defined in verifcid.MaxDigestSize.

Fixes #6011
@lidel lidel force-pushed the feat/identity-cid-size-limits branch from eda9f67 to f3a5642 Compare August 30, 2025 02:46
lidel added 5 commits August 30, 2025 05:00
@lidel
fix: update to use new verifcid sentinel errors
2695755 
- replace deprecated ErrBelowMinimumHashLength with ErrDigestTooSmall
- update sharness test error messages to match new sentinel errors
@lidel
refactor: use verifcid.DefaultMaxIdentityDigestSize constant
f915117 
- replace hardcoded 128 byte limit with named constant
- improve code clarity and maintainability
- align with boxo verifcid package updates
@lidel
docs: add v0.38 changelog highlights
b3bac62 
- document --inline-limit enforcement using DefaultMaxIdentityDigestSize
- note ipfs files write fixes for codec preservation and raw node support
- highlight identity CID overflow prevention
@lidel
test: fix identity CID test assertion
163b0b8 
- update test to match actual error message format
- remove unnecessary empty line in files.go
@lidel
docs: changelog
a48d152
@lidel lidel marked this pull request as ready for review September 2, 2025 02:03
@lidel lidel requested a review from a team as a code owner September 2, 2025 02:03
lidel added 5 commits September 9, 2025 18:21
@lidel
chore: latest boxo#1018
af1cc5d
@lidel
merge: origin/master keeping boxo#1018
2b0b43c
@lidel
docs: clarify identity CIDs as experimental optimization
d0ae0d9 
highlight that identity CIDs were an experimental feature that was
easy to misuse and could become an anti-pattern without proper limits
@lidel
chore: boxo@main
aa776fa
@lidel
docs: fix changelog accuracy for identity CID behavior
d11f151 
correct claim that --hash=identity auto-switches to SHA-256; it errors instead
@lidel
Copy link
Member Author

lidel commented Sep 9, 2025

Merged ipfs/boxo#1018 and switched this PR to latest boxo@main.

Once CI is green, ok to squash-merge I think, and include in 0.38 RC1.

@lidel lidel merged commit 20f8151 into master Sep 9, 2025
16 checks passed
@lidel lidel deleted the feat/identity-cid-size-limits branch September 9, 2025 18:22
@lidel lidel mentioned this pull request Sep 19, 2025
Closed
@BrewTestBot BrewTestBot mentioned this pull request Oct 8, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Carefully audit and reason through inline CIDs

2 participants

@lidel