File size: 7,489 Bytes
1a4aa87
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
"""

Payload Validation Middleware for AegisLM



Provides middleware to validate job payloads before processing.

"""

from typing import Any, Dict, List, Optional
from enum import Enum

from fastapi import Request, HTTPException
from pydantic import BaseModel, Field, validator


class EvaluationMode(str, Enum):
    """Evaluation modes."""
    LIGHTWEIGHT = "lightweight"
    FULL = "full"


class AttackType(str, Enum):
    """Valid attack types."""
    INJECTION = "injection"
    JAILBREAK = "jailbreak"
    BIAS_TRIGGER = "bias_trigger"
    CONTEXT_POISON = "context_poison"
    ROLE_CONFUSION = "role_confusion"
    CHAINING = "chaining"


class MutationType(str, Enum):
    """Valid mutation types."""
    SYNONYM = "synonym"
    ROLE_SWAP = "role_swap"
    CONTEXT_OBFUSCATION = "context_obfuscation"
    MULTI_HOP = "multi_hop"
    PARAPHRASE = "paraphrase"


class JobPayloadSchema(BaseModel):
    """Schema for job payload validation."""
    
    model_name: str = Field(..., min_length=1, max_length=255)
    model_version: str = Field(..., min_length=1, max_length=100)
    dataset_name: str = Field(..., min_length=1, max_length=255)
    dataset_version: str = Field(..., min_length=1, max_length=100)
    
    # Evaluation settings
    evaluation_mode: EvaluationMode = EvaluationMode.FULL
    temperature: float = Field(default=0.7, ge=0.0, le=2.0)
    max_tokens: int = Field(default=512, ge=1, le=4096)
    
    # Attack settings
    attack_types: Optional[List[str]] = None
    mutation_enabled: bool = True
    mutation_depth: int = Field(default=1, ge=0, le=5)
    
    # Batch settings
    batch_size: int = Field(default=10, ge=1, le=100)
    max_samples: Optional[int] = Field(default=None, ge=1)
    
    @validator("attack_types")
    def validate_attack_types(cls, v):
        if v is not None:
            valid_attacks = [a.value for a in AttackType]
            for attack in v:
                if attack not in valid_attacks:
                    raise ValueError(f"Invalid attack type: {attack}")
        return v
    
    @validator("dataset_name")
    def validate_dataset_name(cls, v):
        # Check against known datasets
        allowed_datasets = ["advbench", "truthfulqa", "aegislm-harmful-queries"]
        if v not in allowed_datasets:
            # Allow for custom datasets but warn
            pass
        return v


class PayloadValidator:
    """

    Validates job payloads for security and integrity.

    

    Checks:

    - Required fields present

    - Field values within acceptable ranges

    - Dataset and model versions exist

    - Attack types are valid

    - Weights sum to 1.0 (if provided)

    """
    
    # Valid dataset names
    ALLOWED_DATASETS = ["advbench", "truthfulqa", "aegislm-harmful-queries"]
    
    # Valid attack types
    ALLOWED_ATTACKS = [a.value for a in AttackType]
    
    # Valid mutation types
    ALLOWED_MUTATIONS = [m.value for m in MutationType]
    
    # Max mutation depth
    MAX_MUTATION_DEPTH = 5
    
    @classmethod
    def validate_payload(cls, payload: Dict[str, Any]) -> JobPayloadSchema:
        """

        Validate a job payload.

        

        Args:

            payload: The payload to validate

            

        Returns:

            Validated payload as JobPayloadSchema

            

        Raises:

            HTTPException: If validation fails

        """
        try:
            validated = JobPayloadSchema(**payload)
            return validated
        except Exception as e:
            raise HTTPException(
                status_code=400,
                detail={
                    "error": "invalid_payload",
                    "message": str(e),
                }
            )
    
    @classmethod
    def validate_model_version(cls, model_name: str, model_version: str) -> bool:
        """

        Validate that a model version exists.

        

        Args:

            model_name: Name of the model

            model_version: Version of the model

            

        Returns:

            True if valid, False otherwise

        """
        # In a real implementation, this would check against the model registry
        # For now, we accept any model/version but could add validation
        return True
    
    @classmethod
    def validate_dataset_version(cls, dataset_name: str, dataset_version: str) -> bool:
        """

        Validate that a dataset version exists.

        

        Args:

            dataset_name: Name of the dataset

            dataset_version: Version of the dataset

            

        Returns:

            True if valid, False otherwise

        """
        # In a real implementation, this would check against the dataset registry
        # For now, we accept any dataset/version but could add validation
        return True
    
    @classmethod
    def validate_weights(cls, weights: Dict[str, float]) -> bool:
        """

        Validate that scoring weights sum to 1.0.

        

        Args:

            weights: Dictionary of metric weights

            

        Returns:

            True if valid

            

        Raises:

            HTTPException: If weights don't sum to 1.0

        """
        required_keys = {"hallucination", "toxicity", "bias", "confidence"}
        
        if set(weights.keys()) != required_keys:
            raise HTTPException(
                status_code=400,
                detail={
                    "error": "invalid_weights",
                    "message": f"Weights must include exactly: {required_keys}",
                }
            )
        
        total = sum(weights.values())
        if abs(total - 1.0) > 1e-6:
            raise HTTPException(
                status_code=400,
                detail={
                    "error": "invalid_weights",
                    "message": f"Weights must sum to 1.0, got {total}",
                }
            )
        
        return True
    
    @classmethod
    def validate_mutation_depth(cls, depth: int) -> bool:
        """

        Validate mutation depth is within allowed range.

        

        Args:

            depth: Mutation depth

            

        Returns:

            True if valid

            

        Raises:

            HTTPException: If depth is out of range

        """
        if depth < 0 or depth > cls.MAX_MUTATION_DEPTH:
            raise HTTPException(
                status_code=400,
                detail={
                    "error": "invalid_mutation_depth",
                    "message": f"Mutation depth must be between 0 and {cls.MAX_MUTATION_DEPTH}",
                }
            )
        
        return True


async def validate_job_payload(request: Request) -> Dict[str, Any]:
    """

    FastAPI dependency to validate job payloads.

    

    Usage:

        @router.post("/jobs")

        async def create_job(

            payload: dict = Depends(validate_job_payload)

        ):

            ...

    """
    try:
        body = await request.json()
    except Exception:
        raise HTTPException(
            status_code=400,
            detail={
                "error": "invalid_json",
                "message": "Request body must be valid JSON",
            }
        )
    
    return PayloadValidator.validate_payload(body)