async def test_pool_open(path_home, pool_name, pool_genesis_txn_data, pool_ip):
print(
Ink.YELLOW(
'\n\n== Testing Node Pool Config vs. IP {} =='.format(pool_ip)))
try:
NodePool(pool_name, config={'extra': 'not allowed'})
assert False
except JSONValidation:
pass
# Set up node pool ledger config and wallets, open pool, init anchors
p_mgr = NodePoolManager()
if pool_name not in await p_mgr.list():
await p_mgr.add_config(pool_name, pool_genesis_txn_data)
pool = p_mgr.get(pool_name)
async with pool:
assert pool.handle is not None
assert pool.handle is None
await pool.close() # exercise double-close: should silently carry on
pool.config['timeout'] = 'should be an integer'
try:
async with pool:
assert False
except IndyError as x_indy:
assert x_indy.error_code == ErrorCode.CommonInvalidStructure
pool.config.pop('timeout')
print(
'\n\n== 1 == Pool {} opens and closes OK from existing ledger configuration'
.format(pool))
async def admin_delete(ini_path: str, ident: str) -> int:
"""
Set configuration from file, open node pool and anchor, and request deletion from tails file server
of tails files that identifier specifies.
:param ini_path: path to configuration file
:param ident: identifier to specify in deletion request
:return: 0 for OK, 1 for failure.
"""
config = inis2dict(ini_path)
pool_data = NodePoolData(
config['Node Pool']['name'],
config['Node Pool'].get('genesis.txn.path', None) or None) # nudge empty value from '' to None
tsan_data = AnchorData(
Role.USER,
config['VON Anchor']['name'],
config['VON Anchor'].get('seed', None) or None,
None,
config['VON Anchor'].get('wallet.create', '0').lower() in ['1', 'true', 'yes'],
config['VON Anchor'].get('wallet.type', None) or None,
config['VON Anchor'].get('wallet.access', None) or None)
# Set up node pool ledger config and wallet
manager = NodePoolManager()
if pool_data.name not in await manager.list():
if pool_data.genesis_txn_path:
await manager.add_config(pool_data.name, pool_data.genesis_txn_path)
else:
logging.error(
'Node pool %s has no ledger configuration but %s specifies no genesis transaction path',
pool_data.name,
ini_path)
return 1
wallet = await get_wallet(tsan_data)
async with wallet, (
manager.get(pool_data.name)) as pool, (
NominalAnchor(wallet, pool)) as noman:
host = config['Tails Server']['host']
port = config['Tails Server']['port']
epoch = int(time())
url = 'http://{}:{}/tails/{}/{}'.format(host, port, quote(ident), epoch)
signature = await noman.sign('{}||{}'.format(epoch, ident))
try:
resp = requests.delete(url, data=signature)
logging.info('DELETE: url %s status %s', url, resp.status_code)
if resp.status_code != requests.codes.ok:
return 1
except RequestsConnectionError:
logging.error('DELETE connection refused: %s', url)
return 1
async def test_pool_open(path_home, pool_name, pool_genesis_txn_data, pool_ip):
print(
Ink.YELLOW(
'\n\n== Testing Node Pool Config vs. IP {} =='.format(pool_ip)))
try:
NodePool(pool_name, config={'extra': 'not allowed'})
assert False
except JSONValidation:
pass
# Set up node pool ledger config and wallets, open pool, init anchors
manager = NodePoolManager()
if pool_name not in await manager.list():
await manager.add_config(pool_name, pool_genesis_txn_data)
pool = manager.get(pool_name)
await pool.open()
assert pool.handle is not None
await pool.close()
print(
'\n\n== 1 == Pool {} opens and closes OK from existing ledger configuration'
.format(pool_name))
async def test_manager(path_home, pool_genesis_txn_data, pool_ip):
print(
Ink.YELLOW(
'\n\n== Testing Node Pool Manager vs. IP {} =='.format(pool_ip)))
# Create node pool manager
p_mgr = NodePoolManager()
p_mgr.protocol = Protocol.V_18
assert p_mgr.protocol == Protocol.DEFAULT
# Create new pool on raw data
name = 'pool-{}'.format(int(time()))
assert name not in await p_mgr.list()
print('\n\n== 1 == Pool {} not initially configured'.format(name))
try: # exercise bad pool addition
await p_mgr.add_config(name, 'Not genesis transaction data')
assert False
except AbsentPool:
pass
await p_mgr.add_config(name, pool_genesis_txn_data)
assert name in await p_mgr.list()
print(
'\n\n== 2 == Added pool {} configuration on genesis transaction data'.
format(name))
try:
await p_mgr.add_config(name, pool_genesis_txn_data)
assert False
except ExtantPool:
pass
try:
pool = p_mgr.get('no-such-pool.{}'.format(int(time())))
await pool.open()
assert False
except AbsentPool:
pass
pool = p_mgr.get(name)
await pool.open()
await pool.refresh()
assert pool.handle is not None
await pool.close()
print(
'\n\n== 3 == Opened, refreshed, and closed pool {} on default configuration'
.format(name))
pool = p_mgr.get(name, {'timeout': 3600, 'extended_timeout': 7200})
await pool.open()
await pool.refresh()
assert pool.handle is not None
await pool.close()
print(
'\n\n== 4 == Opened, refreshed, and closed pool {} on explicit configuration'
.format(name))
await p_mgr.remove(name)
assert name not in await p_mgr.list()
print('\n\n== 5 == Removed pool {} configuration'.format(name))
with NamedTemporaryFile(mode='w+b', buffering=0) as fh_gen:
fh_gen.write(pool_genesis_txn_data.encode())
await p_mgr.add_config(name, fh_gen.name)
assert name in await p_mgr.list()
print(
'\n\n== 6 == Added pool {} configuration on genesis transaction file'.
format(name))
pool = p_mgr.get(name, {'timeout': 3600, 'extended_timeout': 7200})
await pool.open()
await pool.refresh()
assert pool.handle is not None
try:
await p_mgr.remove(name) # exercise non-removal of open pool
assert False
except ExtantPool:
pass
await pool.close()
print(
'\n\n== 7 == Opened, refreshed, and closed pool {} on explicit configuration'
.format(name))
await p_mgr.remove(name)
assert name not in await p_mgr.list()
print('\n\n== 8 == Removed pool {} configuration'.format(name))
async def test_anchors_tails_load(
pool_name,
pool_genesis_txn_data,
seed_trustee1):
rrbx = True
print(Ink.YELLOW('\n\n== Load-testing tails on {}ternal rev reg builder ==').format("ex" if rrbx else "in"))
await RevRegBuilder.stop(WALLET_NAME) # in case of re-run
# Set up node pool ledger config and wallets, open pool, init anchors
p_mgr = NodePoolManager()
if pool_name not in await p_mgr.list():
await p_mgr.add_config(pool_name, pool_genesis_txn_data)
pool = p_mgr.get(pool_name)
await pool.open()
w_mgr = WalletManager()
wallets = {
'trustee-anchor': {
'seed': seed_trustee1,
'storage_type': None,
'config': None,
'access_creds': None
},
WALLET_NAME: {
'seed': 'Superstar-Anchor-000000000000000',
'storage_type': None,
'config': None,
'access_creds': {
'key': 'rrbx-test'
}
}
}
for (name, wdata) in wallets.items():
try:
wdata['wallet'] = await w_mgr.create({
'id': name,
'seed': wdata['seed']
})
except ExtantWallet:
wdata['wallet'] = w_mgr.get({'id': name})
finally:
await wdata['wallet'].open()
tan = TrusteeAnchor(wallets['trustee-anchor']['wallet'], pool)
no_prox = rrbx_prox()
san = OrgHubAnchor(wallets[WALLET_NAME]['wallet'], pool, rrbx=rrbx)
if rrbx:
await beep('external rev reg builder process on {}'.format(WALLET_NAME), 15)
if rrbx_prox() != no_prox + 1:
await RevRegBuilder.stop(WALLET_NAME)
assert False, "External rev reg builder process did not start"
async with OrgHubAnchor(
wallets[WALLET_NAME]['wallet'],
pool,
rrbx=rrbx): # check for exactly 1 external rev reg builder process
await beep('external rev reg builder process uniqueness test on {}'.format(WALLET_NAME), 5)
if rrbx_prox() != no_prox + 1:
await RevRegBuilder.stop(WALLET_NAME)
assert False, "External rev reg builder process was not unique"
assert pool.handle
await tan.open()
await san.open()
# Publish anchor particulars to ledger if not yet present
for an in (tan, san):
if not json.loads(await tan.get_nym(an.did)):
await tan.send_nym(an.did, an.verkey, an.wallet.name, an.least_role())
nyms = {
'tan': json.loads(await tan.get_nym(tan.did)),
'san': json.loads(await tan.get_nym(san.did))
}
print('\n\n== 1 == nyms: {}'.format(ppjson(nyms)))
for k in nyms:
assert 'dest' in nyms[k]
# Publish schema to ledger if not yet present; get from ledger
S_ID = schema_id(san.did, 'tails_load', '{}.0'.format(int(time.time())))
S_KEY = schema_key(S_ID)
schema_data = {
'name': schema_key(S_ID).name,
'version': schema_key(S_ID).version,
'attr_names': [
'number',
'remainder'
]
}
try:
await san.get_schema(S_KEY) # may exist (almost certainly not)
except AbsentSchema:
await san.send_schema(json.dumps(schema_data))
schema_json = await san.get_schema(S_KEY)
schema = json.loads(schema_json)
assert schema # should exist now
print('\n\n== 2 == SCHEMA [{} v{}]: {}'.format(S_KEY.name, S_KEY.version, ppjson(schema)))
# Setup link secret for creation of cred req or proof
await san.create_link_secret('LinkSecret')
# SRI anchor create, store, publish cred definitions to ledger; create cred offers
await san.send_cred_def(S_ID, revo=True)
cd_id = cred_def_id(S_KEY.origin_did, schema['seqNo'], pool.protocol)
assert ((not Tails.unlinked(san.dir_tails)) and
[f for f in Tails.links(san.dir_tails, san.did) if cd_id in f])
cred_def_json = await san.get_cred_def(cd_id) # ought to exist now
cred_def = json.loads(cred_def_json)
print('\n\n== 3.0 == Cred def [{} v{}]: {}'.format(
S_KEY.name,
S_KEY.version,
ppjson(json.loads(cred_def_json))))
assert cred_def.get('schemaId', None) == str(schema['seqNo'])
cred_offer_json = await san.create_cred_offer(schema['seqNo'])
print('\n\n== 3.1 == Credential offer [{} v{}]: {}'.format(
S_KEY.name,
S_KEY.version,
ppjson(cred_offer_json)))
(cred_req_json, cred_req_metadata_json) = await san.create_cred_req(cred_offer_json, cd_id)
print('\n\n== 4 == Credential request [{} v{}]: metadata {}, cred-req {}'.format(
S_KEY.name,
S_KEY.version,
ppjson(cred_req_metadata_json),
ppjson(cred_req_json)))
assert json.loads(cred_req_json)
# BC Reg anchor (as Issuer) issues creds and stores at HolderProver: get cred req, create cred, store cred
CREDS = 4034 # enough to kick off rev reg on size 4096 and issue two creds in it: 1 needing set-rev-reg, 1 not
print('\n\n== 5 == creating {} credentials'.format(CREDS))
swatch = Stopwatch(2)
optima = {} # per rev-reg, fastest/slowest pairs
for number in range(CREDS):
swatch.mark()
(cred_json, _) = await san.create_cred(
cred_offer_json,
cred_req_json,
{
'number': str(number),
'remainder': str(number % 100)
})
elapsed = swatch.mark()
tag = rev_reg_id2tag(Tails.current_rev_reg_id(san.dir_tails, cd_id))
if tag not in optima:
optima[tag] = (elapsed, elapsed)
else:
optima[tag] = (min(optima[tag][0], elapsed), max(optima[tag][1], elapsed))
print('.', end='', flush=True)
if ((number + 1) % 100) == 0:
print('{}: #{}: {:.2f}-{:.2f}s'.format(number + 1, tag, *optima[tag]), flush=True)
assert json.loads(cred_json)
print('{}: #{}: {:.2f}-{:.2f}s'.format(number + 1, tag, *optima[tag]), flush=True)
print('\n\n== 6 == best, worst times by revocation registry: {}'.format(ppjson(optima)))
assert (not rrbx) or (max(optima[tag][1] for tag in optima) <
4 * min(optima[tag][1] for tag in optima if int(tag) > 0)) # if waiting on rr beyond #0, sizes increase as 2^n
await san.close()
if rrbx:
await RevRegBuilder.stop(WALLET_NAME)
await tan.close()
for (name, wdata) in wallets.items():
await wdata['wallet'].close()
await pool.close()
async def test_setnym(pool_ip, pool_name, pool_genesis_txn_data, seed_trustee1,
path_setnym_ini, setnym_ini_file):
print(
Ink.YELLOW('\n\n== Testing setnym operation on node pool {} =='.format(
pool_ip)))
with open(path_setnym_ini, 'r') as cfg_fh:
print('\n\n== 1 == Initial configuration:\n{}'.format(cfg_fh.read()))
cfg = inis2dict(str(path_setnym_ini))
# Set up node pool ledger config and wallets, open pool, init anchors
p_mgr = NodePoolManager()
if pool_name not in await p_mgr.list():
await p_mgr.add_config(pool_name, pool_genesis_txn_data)
wallets = await get_wallets(
{
'trustee-anchor': {
'seed': seed_trustee1
},
cfg['VON Anchor']['name']: {
'seed': cfg['VON Anchor']['seed']
},
'x-anchor': {
'seed': 'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'
}
},
open_all=True)
try:
async with NominalAnchor(wallets['x-anchor']) as xan:
await xan.get_nym()
except AbsentPool:
pass
wallets.pop('x-anchor')
# Open pool, check if nym already present
pool = p_mgr.get(pool_name)
await pool.open()
assert pool.handle
tan = TrusteeAnchor(wallets['trustee-anchor'], pool)
await tan.open()
noman = NominalAnchor(wallets[cfg['VON Anchor']['name']], pool)
nym = json.loads(await noman.get_nym(noman.did))
print('\n\n== 2 == Nym {} on ledger for anchor {} on DID {}'.format(
'{} already'.format(ppjson(nym)) if nym else 'not yet',
noman.wallet.name, noman.did))
await tan.close()
await pool.close()
# Run setnym on initial configuration, check ledger
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert not sub_proc.returncode
print('\n\n== 3 == Set nym with TRUST_ANCHOR role on {} for {}'.format(
noman.did, noman.wallet.name))
await pool.open()
await noman.open()
nym = json.loads(await noman.get_nym(noman.did))
assert nym and Role.get(nym['role']) == Role.TRUST_ANCHOR
print('\n\n== 4 == Got nym transaction from ledger for DID {} ({}): {}'.
format(noman.did, noman.wallet.name, ppjson(nym)))
await noman.close()
await pool.close()
# Run setnym on configuration with DID and explicit storage type, check ledger
with open(path_setnym_ini, 'w+') as ini_fh:
for section in cfg:
print('[{}]'.format(section), file=ini_fh)
for (key, value) in cfg[section].items():
if section == 'VON Anchor':
if key == 'seed':
print('did={}'.format(noman.did), file=ini_fh)
elif key == 'wallet.type':
print('wallet.type=default', file=ini_fh)
else:
print('{}={}'.format(key, value), file=ini_fh)
else:
print('{}={}'.format(key, value), file=ini_fh)
print(file=ini_fh)
with open(path_setnym_ini, 'r') as cfg_fh:
print(
'\n\n== 5 == Next configuration, on DID instead of seed and explicit wallet type:\n{}'
.format(cfg_fh.read()))
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert not sub_proc.returncode
print('\n\n== 6 == Set nym with TRUST_ANCHOR role on {} for {}'.format(
noman.did, noman.wallet.name))
await pool.open()
await noman.open()
nym = json.loads(await noman.get_nym(noman.did))
assert nym and Role.get(nym['role']) == Role.TRUST_ANCHOR
last_nym_seqno = nym['seqNo']
print('\n\n== 7 == Got nym transaction from ledger for DID {} ({}): {}'.
format(noman.did, noman.wallet.name, ppjson(nym)))
await noman.close()
await pool.close()
# Run setnym on configuration with no seeds nor VON Anchor role, check ledger
with open(path_setnym_ini, 'w+') as ini_fh:
for section in cfg:
print('[{}]'.format(section), file=ini_fh)
for (key, value) in cfg[section].items():
if key in ('seed', 'genesis.txn.path'):
continue
print('{}={}'.format(
key, '${X_ROLE:-}' if key == 'role' else value),
file=ini_fh) # exercise default
print(file=ini_fh)
with open(path_setnym_ini, 'r') as cfg_fh:
print(
'\n\n== 8 == Next configuration, no seeds, no VON Anchor role:\n{}'
.format(cfg_fh.read()))
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert not sub_proc.returncode
print('\n\n== 9 == Set nym with USER role on {} for {}'.format(
noman.did, noman.wallet.name))
await pool.open()
await noman.open()
nym = json.loads(await noman.get_nym(noman.did))
assert nym and Role.get(nym['role']) == Role.USER
last_nym_seqno = nym['seqNo']
print('\n\n== 10 == Got nym transaction from ledger for DID {} ({}): {}'.
format(noman.did, noman.wallet.name, ppjson(nym)))
await noman.close()
await pool.close()
# Run again to check idempotence
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert not sub_proc.returncode
print('\n\n== 11 == Set nym again with default role on {} for {}'.format(
noman.did, noman.wallet.name))
await pool.open()
await noman.open()
nym = json.loads(await noman.get_nym(noman.did))
last_nym_seqno = nym['seqNo']
print(
'\n\n== 12 == Got (same) nym transaction from ledger for DID {} ({}): {}'
.format(noman.did, noman.wallet.name, ppjson(nym)))
await noman.close()
await pool.close()
# Run setnym on configuration with no seeds and bad VON Anchor role, check ledger
with open(path_setnym_ini, 'w+') as ini_fh:
for section in cfg:
print('[{}]'.format(section), file=ini_fh)
for (key, value) in cfg[section].items():
if key in ('seed', 'genesis.txn.path'):
continue
print('{}={}'.format(key,
'BAD_ROLE' if key == 'role' else value),
file=ini_fh)
print(file=ini_fh)
with open(path_setnym_ini, 'r') as cfg_fh:
print(
'\n\n== 13 == Next configuration, no seeds, bad VON Anchor role:\n{}'
.format(cfg_fh.read()))
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert sub_proc.returncode
assert str(int(ErrorCode.BadRole)) in sub_proc.stdout.decode()
print(
'\n\n== 14 == Called to set bad role for {}, got error text {}'.format(
noman.wallet.name, sub_proc.stdout.decode()))
await pool.open()
await noman.open()
nym = json.loads(await noman.get_nym(noman.did))
noman_role = await noman.get_nym_role()
assert nym and nym['seqNo'] == last_nym_seqno
await noman.close()
await pool.close()
print('\n\n== 15 == Got nym transaction from ledger for DID {} ({}): {}'.
format(noman.did, noman.wallet.name, ppjson(nym)))
# Exercise reseed, ensure no side effect to role on ledger
await pool.open()
pan = ProctorAnchor(wallets[cfg['VON Anchor']['name']], pool, rrbx=False)
await pan.open()
next_seed = '{}000000000000VonAnchor1'.format(int(time()) + 1)
await pan.reseed(next_seed)
nym = json.loads(await pan.get_nym(noman.did))
pan_role = await pan.get_nym_role()
await pool.close()
assert nym and nym['seqNo'] != last_nym_seqno
assert pan_role == noman_role
print(
'\n\n== 16 == As Proctor Anchor, reseeded, then got nym transaction from ledger for DID {} ({}): {}'
.format(pan.did, pan.wallet.name, ppjson(nym)))
last_nym_seqno = nym['seqNo']
# Run setnym on configuration with same wallet for trustee and VON anchor
with open(path_setnym_ini, 'w+') as ini_fh:
for section in cfg:
print('[{}]'.format(section), file=ini_fh)
for (key, value) in cfg[section].items():
if section == 'VON Anchor' and key == 'name':
print('{}={}'.format(key, cfg['Trustee Anchor']['name']),
file=ini_fh)
else:
print('{}={}'.format(key, value), file=ini_fh)
print(file=ini_fh)
with open(path_setnym_ini, 'r') as cfg_fh:
print(
'\n\n== 17 == Next configuration, same wallet for trustee anchor and VON anchor:\n{}'
.format(cfg_fh.read()))
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert sub_proc.returncode
assert str(int(ErrorCode.ExtantWallet)) in sub_proc.stdout.decode()
print(
'\n\n== 18 == Called with same wallet for trustee anchor and VON anchor, got error text {}'
.format(sub_proc.stdout.decode()))
# Run setnym on configuration with new ledger node pool configuration
genesis_tmp = NamedTemporaryFile(mode='w+b', buffering=0, delete=False)
with genesis_tmp:
genesis_tmp.write(pool_genesis_txn_data.encode())
pool_copy = '{}.{}'.format(cfg['Node Pool']['name'], int(time()))
with open(path_setnym_ini, 'w+') as ini_fh:
for section in cfg:
print('[{}]'.format(section), file=ini_fh)
for (key, value) in cfg[section].items():
if section == 'Node Pool':
if key == 'name':
print('name={}'.format(pool_copy), file=ini_fh)
elif key == 'genesis.txn.path':
print('genesis.txn.path={}'.format(genesis_tmp.name),
file=ini_fh) # includes /tmp/ path
else:
print('{}={}.xxx'.format(key, value), file=ini_fh)
else:
print('{}={}'.format(key, value), file=ini_fh)
print(file=ini_fh)
with open(path_setnym_ini, 'r') as cfg_fh:
print(
'\n\n== 19 == Next configuration, calling for copy of node pool ledger config:\n{}'
.format(cfg_fh.read()))
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert not sub_proc.returncode
print('\n\n== 20 == Called for new copy {} of node pool ledger config'.
format(pool_copy))
unlink(genesis_tmp.name)
await p_mgr.remove(pool_copy)
await pool.open()
await pan.open()
nym = json.loads(await pan.get_nym(pan.did))
assert nym and Role.get(nym['role']) == Role.TRUST_ANCHOR
assert nym and nym['seqNo'] != last_nym_seqno
print('\n\n== 21 == Got nym transaction from ledger for DID {} ({}): {}'.
format(pan.did, pan.wallet.name, ppjson(nym)))
await pan.close()
await pool.close()
# Run setnym on configuration with wrong genesis transaction path
with open(path_setnym_ini, 'w+') as ini_fh:
for section in cfg:
print('[{}]'.format(section), file=ini_fh)
for (key, value) in cfg[section].items():
if section == 'Node Pool':
print('{}={}.xxx'.format(key, value), file=ini_fh)
else:
print('{}={}'.format(key, value), file=ini_fh)
print(file=ini_fh)
with open(path_setnym_ini, 'r') as cfg_fh:
print(
'\n\n== 22 == Next configuration, missing pool and bad genesis txn path:\n{}'
.format(cfg_fh.read()))
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert sub_proc.returncode
assert str(int(ErrorCode.AbsentPool)) in sub_proc.stdout.decode()
print(
'\n\n== 23 == Called with missing pool and bad genesis txn path, got error text {}'
.format(sub_proc.stdout.decode()))
# Run setnym on configuration with no node pool ledger configuration
with open(path_setnym_ini, 'w+') as ini_fh:
for section in cfg:
print('[{}]'.format(section), file=ini_fh)
for (key, value) in cfg[section].items():
if section == 'Node Pool':
if key == 'name':
print('{}={}.xxx'.format(key, value), file=ini_fh)
elif key == 'genesis.txn.path':
print('genesis.txn.path=', file=ini_fh)
else:
print('{}={}'.format(key, value), file=ini_fh)
else:
print('{}={}'.format(key, value), file=ini_fh)
print(file=ini_fh)
with open(path_setnym_ini, 'r') as cfg_fh:
print(
'\n\n== 24 == Next configuration, missing pool and no genesis txn path:\n{}'
.format(cfg_fh.read()))
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert sub_proc.returncode
assert str(int(ErrorCode.AbsentPool)) in sub_proc.stdout.decode()
print(
'\n\n== 25 == Called with missing pool and no genesis txn path, got error text {}'
.format(sub_proc.stdout.decode()))
# Run again without trustee anchor wallet present
await wallets['trustee-anchor'].close()
await wallets['trustee-anchor'].remove()
wallets.pop('trustee-anchor')
noman = NominalAnchor(wallets[cfg['VON Anchor']['name']], pool)
with open(path_setnym_ini, 'w+') as ini_fh:
for section in cfg:
print('[{}]'.format(section), file=ini_fh)
for (key, value) in cfg[section].items():
print('{}={}'.format(key, value), file=ini_fh)
print(file=ini_fh)
with open(path_setnym_ini, 'r') as cfg_fh:
print(
'\n\n== 26 == Set VON anchor configuration, no Trustee anchor wallet a priori:\n{}'
.format(cfg_fh.read()))
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert not sub_proc.returncode
print('\n\n== 27 == Set nym with TRUST_ANCHOR role on {} for {}'.format(
noman.did, noman.wallet.name))
await pool.open()
await noman.open()
nym = json.loads(await noman.get_nym(noman.did))
assert nym and Role.get(nym['role']) == Role.TRUST_ANCHOR
print('\n\n== 28 == Got nym transaction from ledger for DID {} ({}): {}'.
format(noman.did, noman.wallet.name, ppjson(nym)))
await noman.close()
await pool.close()
await pan.close()
for name in wallets:
await wallets[name].close()
async def setnym(ini_path: str) -> int:
"""
Set configuration. Open pool, trustee anchor, and wallet of anchor whose nym to send.
Register exit hooks to close pool and trustee anchor.
Engage trustee anchor to send nym for VON anchor, if it differs on the ledger from configuration.
:param ini_path: path to configuration file
:return: 0 for OK, 1 for failure
"""
config = inis2dict(ini_path)
if config['Trustee Anchor']['name'] == config['VON Anchor']['name']:
raise ExtantWallet(
'Wallet names must differ between VON Anchor and Trustee Anchor')
cfg_van_role = config['VON Anchor'].get(
'role', None) or None # nudge empty value from '' to None
if not ok_role(cfg_van_role):
raise BadRole('Configured role {} is not valid'.format(cfg_van_role))
pool_data = NodePoolData(
config['Node Pool']['name'],
config['Node Pool'].get('genesis.txn.path', None) or None)
an_data = {
'tan':
AnchorData(
Role.TRUSTEE, config['Trustee Anchor']['name'],
config['Trustee Anchor'].get('seed', None) or None,
config['Trustee Anchor'].get('did', None) or None,
config['Trustee Anchor'].get('wallet.create',
'0').lower() in ['1', 'true', 'yes'],
config['Trustee Anchor'].get('wallet.type', None) or None,
config['Trustee Anchor'].get('wallet.access', None) or None),
'van':
AnchorData(
Role.get(cfg_van_role), config['VON Anchor']['name'],
config['VON Anchor'].get('seed', None) or None,
config['VON Anchor'].get('did', None) or None,
config['VON Anchor'].get('wallet.create',
'0').lower() in ['1', 'true', 'yes'],
config['VON Anchor'].get('wallet.type', None) or None,
config['VON Anchor'].get('wallet.access', None) or None)
}
an_wallet = await _set_wallets(an_data)
p_mgr = NodePoolManager()
if pool_data.name not in await p_mgr.list():
if pool_data.genesis_txn_path:
await p_mgr.add_config(pool_data.name, pool_data.genesis_txn_path)
else:
raise AbsentPool(
'Node pool {} has no ledger configuration, but {} specifies no genesis txn path'
.format(pool_data.name, ini_path))
async with an_wallet['tan'] as w_tan, (an_wallet['van']) as w_van, (
p_mgr.get(pool_data.name)) as pool, (TrusteeAnchor(
w_tan, pool)) as tan, (NominalAnchor(w_van, pool)) as van:
send_verkey = van.verkey
try:
nym_role = await tan.get_nym_role(van.did)
if an_data['van'].role == nym_role:
return 0 # ledger is as per configuration
send_verkey = None # only owner can touch verkey
if nym_role != Role.USER: # only remove role when it is not already None on the ledger
await tan.send_nym(van.did, send_verkey, van.wallet.name,
Role.ROLE_REMOVE)
except AbsentNym:
pass # cryptonym not there yet, fall through
await tan.send_nym(van.did, send_verkey, van.wallet.name,
an_data['van'].role)
return 0
def boot() -> None:
"""
Boot the service: instantiate tails server anchor. Raise AbsentPool if node pool ledger configuration
neither present nor sufficiently specified; raise AbsentNym if tails server anchor nym is not on the ledger.
"""
config = do_wait(MEM_CACHE.get('config'))
# setup pool and wallet
pool_data = NodePoolData(config['Node Pool']['name'],
config['Node Pool'].get('genesis.txn.path', None)
or None) # nudge empty value from '' to None
p_mgr = NodePoolManager()
if pool_data.name not in do_wait(p_mgr.list()):
if pool_data.genesis_txn_path:
do_wait(
p_mgr.add_config(pool_data.name, pool_data.genesis_txn_path))
else:
LOGGER.debug(
'Node pool %s has no ledger configuration but %s specifies no genesis txn path',
pool_data.name, do_wait(MEM_CACHE.get('config.ini')))
raise AbsentPool(
'Node pool {} has no ledger configuration but {} specifies no genesis txn path'
.format(pool_data.name, do_wait(MEM_CACHE.get('config.ini'))))
pool = p_mgr.get(pool_data.name)
do_wait(pool.open())
do_wait(MEM_CACHE.set('pool', pool))
# instantiate tails server anchor
tsan_data = AnchorData(
Role.USER, config['VON Anchor']['name'],
config['VON Anchor'].get('seed', None) or None, None,
config['VON Anchor'].get('wallet.create', '0').lower()
in ['1', 'true', 'yes'], config['VON Anchor'].get('wallet.type', None)
or None, config['VON Anchor'].get('wallet.access', None) or None)
w_mgr = WalletManager()
wallet = None
wallet_config = {'id': tsan_data.name}
if tsan_data.wallet_type:
wallet_config['storage_type'] = tsan_data.wallet_type
if tsan_data.wallet_create:
if tsan_data.seed:
wallet_config['seed'] = tsan_data.seed
try:
wallet = do_wait(
w_mgr.create(wallet_config, access=tsan_data.wallet_access))
LOGGER.info('Created wallet %s', tsan_data.name)
except ExtantWallet:
wallet = w_mgr.get(wallet_config, access=tsan_data.wallet_access)
LOGGER.warning(
'Wallet %s already exists: remove seed and wallet.create from config file',
tsan_data.name)
else:
wallet = w_mgr.get(wallet_config, access=tsan_data.wallet_access)
do_wait(wallet.open())
tsan = NominalAnchor(wallet, pool)
do_wait(tsan.open())
if not json.loads(do_wait(tsan.get_nym())):
LOGGER.debug('Anchor %s has no cryptonym on ledger %s',
tsan_data.wallet_name, pool_data.name)
raise AbsentNym('Anchor {} has no cryptonym on ledger {}'.format(
tsan_data.wallet_name, pool_data.name))
do_wait(MEM_CACHE.set('tsan', tsan))
async def test_manager(path_home, pool_genesis_txn_data, pool_ip):
print(
Ink.YELLOW(
'\n\n== Testing Node Pool Manager vs. IP {} =='.format(pool_ip)))
# Create node pool manager
manager = NodePoolManager()
assert manager.protocol == Protocol.DEFAULT
# Create new pool on raw data
name = 'pool-{}'.format(int(time()))
assert name not in await manager.list()
print('\n\n== 1 == Pool {} not initially configured'.format(name))
await manager.add_config(name, pool_genesis_txn_data)
assert name in await manager.list()
print(
'\n\n== 2 == Added pool {} configuration on genesis transaction data'.
format(name))
try:
await manager.add_config(name, pool_genesis_txn_data)
assert False
except ExtantPool:
pass
try:
pool = manager.get('no-such-pool.{}'.format(int(time())))
await pool.open()
assert False
except AbsentPool:
pass
pool = manager.get(name)
await pool.open()
await pool.refresh()
assert pool.handle is not None
await pool.close()
print(
'\n\n== 3 == Opened, refreshed, and closed pool {} on default configuration'
.format(name))
cache_id = pool.cache_id
sleep(1)
x_name = 'pool-{}'.format(int(time()))
await manager.add_config(
'pool-{}'.format(int(time())),
'\n'.join(pool_genesis_txn_data.split('\n')[::-1]))
x_pool = manager.get(x_name)
assert x_pool.cache_id == cache_id
await manager.remove(x_name)
print('\n\n== 4 == Confirmed cache id consistency: {}'.format(cache_id))
pool = manager.get(name, {'timeout': 3600, 'extended_timeout': 7200})
await pool.open()
await pool.refresh()
assert pool.handle is not None
await pool.close()
print(
'\n\n== 5 == Opened, refreshed, and closed pool {} on explicit configuration'
.format(name))
await manager.remove(name)
assert name not in await manager.list()
print('\n\n== 6 == Removed pool {} configuration'.format(name))
with NamedTemporaryFile(mode='w+b', buffering=0) as fh_gen:
fh_gen.write(pool_genesis_txn_data.encode())
await manager.add_config(name, fh_gen.name)
assert name in await manager.list()
print(
'\n\n== 7 == Added pool {} configuration on genesis transaction file'.
format(name))
pool = manager.get(name, {'timeout': 3600, 'extended_timeout': 7200})
await pool.open()
await pool.refresh()
assert pool.handle is not None
await pool.close()
print(
'\n\n== 8 == Opened, refreshed, and closed pool {} on explicit configuration'
.format(name))
await manager.remove(name)
assert name not in await manager.list()
print('\n\n== 9 == Removed pool {} configuration'.format(name))
async def setnym(ini_path: str) -> int:
"""
Set configuration. Open pool, trustee anchor, and wallet of anchor whose nym to send.
Register exit hooks to close pool and trustee anchor.
Engage trustee anchor to send nym for VON anchor, if it differs on the ledger from configuration.
:param ini_path: path to configuration file
:return: 0 for OK, 1 for failure
"""
config = inis2dict(ini_path)
cfg_van_role = config['VON Anchor'].get(
'role', None) or None # nudge empty value from '' to None
if not ok_role(cfg_van_role):
raise BadRole('Configured role {} is not valid'.format(cfg_van_role))
if config['Trustee Anchor']['wallet.name'] == config['VON Anchor'][
'wallet.name']:
raise ExtantWallet(
'Wallet names must differ between VON Anchor and Trustee Anchor')
pool_data = NodePoolData(
config['Node Pool']['name'],
config['Node Pool'].get('genesis.txn.path', None) or None)
an_data = {
'tan':
AnchorData(Role.TRUSTEE, config['Trustee Anchor'].get('seed', None)
or None, config['Trustee Anchor']['wallet.name'],
config['Trustee Anchor'].get('wallet.type', None) or None,
config['Trustee Anchor'].get('wallet.key', None) or None),
'van':
AnchorData(Role.get(cfg_van_role),
config['VON Anchor'].get('seed', None) or None,
config['VON Anchor']['wallet.name'],
config['VON Anchor'].get('wallet.type', None) or None,
config['VON Anchor'].get('wallet.key', None) or None)
}
an_wallet = {
an: Wallet(an_data[an].wallet_name, an_data[an].wallet_type, None,
{'key': an_data[an].wallet_key}
if an_data[an].wallet_key else None)
for an in an_data
}
for anchor in an_data: # create wallet if seed configured, silently continue if extant
if an_data[anchor].seed:
try:
await an_wallet[anchor].create(an_data[anchor].seed)
except ExtantWallet:
pass
manager = NodePoolManager()
if pool_data.name not in await manager.list():
if pool_data.genesis_txn_path:
await manager.add_config(pool_data.name,
pool_data.genesis_txn_path)
else:
raise AbsentPool(
'Node pool {} has no ledger configuration, but {} specifies no genesis txn path'
.format(pool_data.name, ini_path))
async with an_wallet['tan'] as w_tan, (an_wallet['van']) as w_van, (
manager.get(pool_data.name)) as pool, (TrusteeAnchor(
w_tan, pool)) as tan, (NominalAnchor(w_van, pool)) as van:
send_verkey = van.verkey
try:
nym_role = await tan.get_nym_role(van.did)
if an_data['van'].role == nym_role:
return 0 # ledger is as per configuration
send_verkey = None # only owner can touch verkey
await tan.send_nym(van.did, send_verkey, van.wallet.name,
Role.ROLE_REMOVE)
except AbsentNym:
pass # cryptonym not there yet, fall through
await tan.send_nym(van.did, send_verkey, van.wallet.name,
an_data['van'].role)
return 0
async def setup(ini_path: str) -> tuple:
"""
Set configuration from file. If configured profile is issuer, open and return node pool and anchor,
then register both for shutdown at program exit.
:param ini_path: path to configuration file
:return: tuple (profile, issuer anchor) for issuer or (profile, None) for prover.
"""
global CONFIG
CONFIG = inis2dict(ini_path)
profile = Profile.get(CONFIG['Tails Client']['profile'])
if profile != Profile.ISSUER:
return (profile, None)
pool_data = NodePoolData(CONFIG['Node Pool']['name'],
CONFIG['Node Pool'].get('genesis.txn.path', None)
or None) # nudge empty value from '' to None
# Set up node pool ledger config and wallet
manager = NodePoolManager()
if pool_data.name not in await manager.list():
if pool_data.genesis_txn_path:
await manager.add_config(pool_data.name,
pool_data.genesis_txn_path)
else:
logging.error(
'Node pool %s has no ledger configuration but %s specifies no genesis txn path',
pool_data.name, ini_path)
return (None, None)
pool = manager.get(pool_data.name)
await pool.open()
atexit.register(close_pool, pool)
noman_data = AnchorData(
Role.USER, CONFIG['VON Anchor']['name'],
CONFIG['VON Anchor'].get('seed', None) or None, None,
CONFIG['VON Anchor'].get('wallet.create', '0').lower()
in ['1', 'true', 'yes'], CONFIG['VON Anchor'].get('wallet.type', None)
or None, CONFIG['VON Anchor'].get('wallet.access', None) or None)
w_mgr = WalletManager()
wallet = None
wallet_config = {'id': noman_data.name}
if noman_data.wallet_type:
wallet_config['storage_type'] = noman_data.wallet_type
if noman_data.wallet_create:
if noman_data.seed:
wallet_config['seed'] = noman_data.seed
try:
wallet = await w_mgr.create(wallet_config,
access=noman_data.wallet_access)
logging.info('Created wallet %s', noman_data.name)
except ExtantWallet:
wallet = w_mgr.get(wallet_config, access=noman_data.wallet_access)
logging.warning(
'Wallet %s already exists: remove seed and wallet.create from config file',
noman_data.name)
else:
wallet = w_mgr.get(wallet_config, access=noman_data.wallet_access)
await wallet.open()
noman = NominalAnchor(wallet, pool)
await noman.open()
atexit.register(close_anchor, noman)
return (profile, noman)
async def test_setnym(pool_ip, pool_name, pool_genesis_txn_data, seed_trustee1,
path_setnym_ini, setnym_ini_file):
print(
Ink.YELLOW('\n\n== Testing setnym operation on node pool {} =='.format(
pool_ip)))
with open(path_setnym_ini, 'r') as cfg_fh:
print('\n\n== 1 == Initial configuration:\n{}'.format(cfg_fh.read()))
cfg = inis2dict(str(path_setnym_ini))
# Set up node pool ledger config and wallets, open pool, init anchors
manager = NodePoolManager()
if pool_name not in await manager.list():
await manager.add_config(pool_name, pool_genesis_txn_data)
seeds = {
'trustee-anchor': seed_trustee1,
cfg['VON Anchor']['wallet.name']: cfg['VON Anchor']['seed'],
'x-anchor': 'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'
}
wallets = await get_wallets(seeds, True)
try:
async with NominalAnchor(wallets['x-anchor']) as xan:
await xan.get_nym()
except AbsentPool:
pass
wallets.pop('x-anchor')
# Open pool, check if nym already present
pool = manager.get(pool_name)
await pool.open()
assert pool.handle
tan = TrusteeAnchor(wallets['trustee-anchor'], pool)
await tan.open()
noman = NominalAnchor(wallets[cfg['VON Anchor']['wallet.name']], pool)
nym = json.loads(await noman.get_nym(noman.did))
print('\n\n== 2 == Nym {} on ledger for anchor {} on DID {}'.format(
'{} already'.format(ppjson(nym)) if nym else 'not yet',
noman.wallet.name, noman.did))
await tan.close()
await pool.close()
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert not sub_proc.returncode
print('\n\n== 3 == Set nym with TRUST_ANCHOR role on {} for {}'.format(
noman.did, noman.wallet.name))
await pool.open()
await noman.open()
nym = json.loads(await noman.get_nym(noman.did))
assert nym and Role.get(nym['role']) == Role.TRUST_ANCHOR
print('\n\n== 4 == Got nym transaction from ledger for DID {} ({}): {}'.
format(noman.did, noman.wallet.name, ppjson(nym)))
await noman.close()
await pool.close()
with open(path_setnym_ini, 'w+') as ini_fh:
for section in cfg:
print('[{}]'.format(section), file=ini_fh)
for (key, value) in cfg[section].items():
if key in ('seed', 'genesis.txn.path'):
continue
print('{}={}'.format(
key, '${X_ROLE:-}' if key == 'role' else value),
file=ini_fh) # exercise default
print(file=ini_fh)
with open(path_setnym_ini, 'r') as cfg_fh:
print(
'\n\n== 5 == Next configuration, no seeds, no VON Anchor role:\n{}'
.format(cfg_fh.read()))
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert not sub_proc.returncode
print('\n\n== 6 == Set nym with default role on {} for {}'.format(
noman.did, noman.wallet.name))
await pool.open()
await noman.open()
nym = json.loads(await noman.get_nym(noman.did))
assert nym and Role.get(nym['role']) == Role.USER
last_nym_seqno = nym['seqNo']
print('\n\n== 7 == Got nym transaction from ledger for DID {} ({}): {}'.
format(noman.did, noman.wallet.name, ppjson(nym)))
await noman.close()
await pool.close()
sub_proc = subprocess.run( # do it again
[
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor',
'op', 'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert not sub_proc.returncode
print('\n\n== 8 == Set nym again with default role on {} for {}'.format(
noman.did, noman.wallet.name))
await pool.open()
await noman.open()
nym = json.loads(await noman.get_nym(noman.did))
last_nym_seqno = nym['seqNo']
print(
'\n\n== 9 == Got (same) nym transaction from ledger for DID {} ({}): {}'
.format(noman.did, noman.wallet.name, ppjson(nym)))
await noman.close()
await pool.close()
with open(path_setnym_ini, 'w+') as ini_fh:
for section in cfg:
print('[{}]'.format(section), file=ini_fh)
for (key, value) in cfg[section].items():
if key in ('seed', 'genesis.txn.path'):
continue
print('{}={}'.format(key,
'BAD_ROLE' if key == 'role' else value),
file=ini_fh)
print(file=ini_fh)
with open(path_setnym_ini, 'r') as cfg_fh:
print(
'\n\n== 10 == Next configuration, no seeds, bad VON Anchor role:\n{}'
.format(cfg_fh.read()))
sub_proc = subprocess.run([
'python',
join(dirname(dirname(dirname(realpath(__file__)))), 'von_anchor', 'op',
'setnym.py'),
str(path_setnym_ini)
],
stdout=subprocess.PIPE,
stderr=subprocess.DEVNULL)
assert sub_proc.returncode
print(
'\n\n== 11 == Called to set bad role for {}, got error text {}'.format(
noman.wallet.name, sub_proc.stdout.decode()))
await pool.open()
await noman.open()
nym = json.loads(await noman.get_nym(noman.did))
noman_role = await noman.get_nym_role()
assert nym and nym['seqNo'] == last_nym_seqno
await noman.close()
await pool.close()
print('\n\n== 12 == Got nym transaction from ledger for DID {} ({}): {}'.
format(noman.did, noman.wallet.name, ppjson(nym)))
await pool.open()
san = SRIAnchor(wallets[cfg['VON Anchor']['wallet.name']], pool)
await san.open()
next_seed = "{}000000000000VonAnchor1".format(int(time()) + 1)
await san.reseed(next_seed)
nym = json.loads(await san.get_nym(noman.did))
san_role = await san.get_nym_role()
assert nym and nym['seqNo'] != last_nym_seqno
assert san_role == noman_role # ensure that reseed does not side-effect role on ledger
print(
'\n\n== 13 == As SRI Anchor, reseeded, then got nym transaction from ledger for DID {} ({}): {}'
.format(san.did, san.wallet.name, ppjson(nym)))
await san.close()
await pool.close()
for name in wallets:
await wallets[name].close()
