diff --git a/.gitignore b/.gitignore
index f3ae176bcc..68b8472e9b 100644
--- a/.gitignore
+++ b/.gitignore
@@ -32,6 +32,7 @@ lib/dokka.jar
.idea/libraries
.idea/shelf
.idea/dataSources
+/gradle-plugins/.idea
# Include the -parameters compiler option by default in IntelliJ required for serialization.
!.idea/compiler.xml
@@ -53,6 +54,7 @@ lib/dokka.jar
# Gradle:
# .idea/gradle.xml
# .idea/libraries
+/gradle-plugins/gradle*
# Mongo Explorer plugin:
# .idea/mongoSettings.xml
@@ -65,6 +67,7 @@ lib/dokka.jar
# IntelliJ
/out/
+/classes/
# mpeltonen/sbt-idea plugin
.idea_modules/
diff --git a/.idea/compiler.xml b/.idea/compiler.xml
index d639c80f07..acd527bc35 100644
--- a/.idea/compiler.xml
+++ b/.idea/compiler.xml
@@ -17,6 +17,8 @@
+
+
@@ -59,10 +61,13 @@
+
+
+
diff --git a/build.gradle b/build.gradle
index bf86531ff6..54bc126c8b 100644
--- a/build.gradle
+++ b/build.gradle
@@ -16,6 +16,11 @@ buildscript {
// TODO: Sort this alphabetically.
ext.kotlin_version = constants.getProperty("kotlinVersion")
ext.quasar_version = '0.7.6' // TODO: Upgrade to 0.7.7+ when Quasar bug 238 is resolved.
+
+ // gradle-capsule-plugin:1.0.2 contains capsule:1.0.1
+ // TODO: Upgrade gradle-capsule-plugin to a version with capsule:1.0.3
+ ext.capsule_version = '1.0.1'
+
ext.asm_version = '0.5.3'
ext.artemis_version = '1.5.3'
ext.jackson_version = '2.8.5'
@@ -41,6 +46,7 @@ buildscript {
ext.rxjava_version = '1.2.4'
ext.requery_version = '1.2.1'
ext.dokka_version = '0.9.13'
+ ext.eddsa_version = '0.2.0'
// Update 121 is required for ObjectInputFilter and at time of writing 131 was latest:
ext.java8_minUpdateVersion = '131'
@@ -60,12 +66,14 @@ buildscript {
classpath "org.jetbrains.kotlin:kotlin-noarg:$kotlin_version"
classpath "org.jetbrains.dokka:dokka-gradle-plugin:${dokka_version}"
classpath "org.ajoberstar:grgit:1.1.0"
+ classpath "net.i2p.crypto:eddsa:$eddsa_version" // Needed for ServiceIdentityGenerator in the build environment.
}
}
plugins {
// TODO The capsule plugin requires the newer DSL plugin block.It would be nice if we could unify all the plugins into one style,
// but the DSL has some restrictions e.g can't be used on the allprojects section. So we should revisit this if there are improvements in Gradle.
+ // Version 1.0.2 of this plugin uses capsule:1.0.1
id "us.kirchmeier.capsule" version "1.0.2"
}
@@ -249,7 +257,7 @@ bintrayConfig {
projectUrl = 'https://github.com/corda/corda'
gpgSign = true
gpgPassphrase = System.getenv('CORDA_BINTRAY_GPG_PASSPHRASE')
- publications = ['jfx', 'mock', 'rpc', 'core', 'corda', 'corda-webserver', 'finance', 'node', 'node-api', 'node-schemas', 'test-utils', 'jackson', 'verifier', 'webserver']
+ publications = ['jfx', 'mock', 'rpc', 'core', 'corda', 'cordform-common', 'corda-webserver', 'finance', 'node', 'node-api', 'node-schemas', 'test-utils', 'jackson', 'verifier', 'webserver']
license {
name = 'Apache-2.0'
url = 'https://www.apache.org/licenses/LICENSE-2.0'
diff --git a/client/jackson/src/main/kotlin/net/corda/jackson/JacksonSupport.kt b/client/jackson/src/main/kotlin/net/corda/jackson/JacksonSupport.kt
index 361313dbe3..100fc2f2f7 100644
--- a/client/jackson/src/main/kotlin/net/corda/jackson/JacksonSupport.kt
+++ b/client/jackson/src/main/kotlin/net/corda/jackson/JacksonSupport.kt
@@ -10,6 +10,7 @@ import com.fasterxml.jackson.module.kotlin.KotlinModule
import net.corda.core.contracts.Amount
import net.corda.core.contracts.BusinessCalendar
import net.corda.core.crypto.*
+import net.corda.core.identity.AbstractParty
import net.corda.core.identity.AnonymousParty
import net.corda.core.identity.Party
import net.corda.core.messaging.CordaRPCOps
@@ -43,18 +44,21 @@ object JacksonSupport {
}
class RpcObjectMapper(val rpc: CordaRPCOps, factory: JsonFactory) : PartyObjectMapper, ObjectMapper(factory) {
+ @Suppress("OverridingDeprecatedMember", "DEPRECATION")
override fun partyFromName(partyName: String): Party? = rpc.partyFromName(partyName)
override fun partyFromPrincipal(principal: X500Name): Party? = rpc.partyFromX500Name(principal)
override fun partyFromKey(owningKey: PublicKey): Party? = rpc.partyFromKey(owningKey)
}
class IdentityObjectMapper(val identityService: IdentityService, factory: JsonFactory) : PartyObjectMapper, ObjectMapper(factory) {
+ @Suppress("OverridingDeprecatedMember", "DEPRECATION")
override fun partyFromName(partyName: String): Party? = identityService.partyFromName(partyName)
override fun partyFromPrincipal(principal: X500Name): Party? = identityService.partyFromX500Name(principal)
override fun partyFromKey(owningKey: PublicKey): Party? = identityService.partyFromKey(owningKey)
}
class NoPartyObjectMapper(factory: JsonFactory) : PartyObjectMapper, ObjectMapper(factory) {
+ @Suppress("OverridingDeprecatedMember", "DEPRECATION")
override fun partyFromName(partyName: String): Party? = throw UnsupportedOperationException()
override fun partyFromPrincipal(principal: X500Name): Party? = throw UnsupportedOperationException()
override fun partyFromKey(owningKey: PublicKey): Party? = throw UnsupportedOperationException()
@@ -66,6 +70,7 @@ object JacksonSupport {
addDeserializer(AnonymousParty::class.java, AnonymousPartyDeserializer)
addSerializer(Party::class.java, PartySerializer)
addDeserializer(Party::class.java, PartyDeserializer)
+ addDeserializer(AbstractParty::class.java, PartyDeserializer)
addSerializer(BigDecimal::class.java, ToStringSerializer)
addDeserializer(BigDecimal::class.java, NumberDeserializers.BigDecimalDeserializer())
addSerializer(SecureHash::class.java, SecureHashSerializer)
@@ -160,8 +165,20 @@ object JacksonSupport {
}
val mapper = parser.codec as PartyObjectMapper
- val principal = X500Name(parser.text)
- return mapper.partyFromPrincipal(principal) ?: throw JsonParseException(parser, "Could not find a Party with name ${principal}")
+ // TODO: We should probably have a better specified way of identifying X.500 names vs keys
+ // Base58 keys never include an equals character, while X.500 names always will, so we use that to determine
+ // how to parse the content
+ return if (parser.text.contains("=")) {
+ val principal = X500Name(parser.text)
+ mapper.partyFromPrincipal(principal) ?: throw JsonParseException(parser, "Could not find a Party with name ${principal}")
+ } else {
+ val key = try {
+ parsePublicKeyBase58(parser.text)
+ } catch (e: Exception) {
+ throw JsonParseException(parser, "Could not interpret ${parser.text} as a base58 encoded public key")
+ }
+ mapper.partyFromKey(key) ?: throw JsonParseException(parser, "Could not find a Party with key ${key.toStringShort()}")
+ }
}
}
diff --git a/client/jackson/src/main/kotlin/net/corda/jackson/StringToMethodCallParser.kt b/client/jackson/src/main/kotlin/net/corda/jackson/StringToMethodCallParser.kt
index 225bb9ec59..45454ef1d0 100644
--- a/client/jackson/src/main/kotlin/net/corda/jackson/StringToMethodCallParser.kt
+++ b/client/jackson/src/main/kotlin/net/corda/jackson/StringToMethodCallParser.kt
@@ -193,8 +193,7 @@ open class StringToMethodCallParser @JvmOverloads constructor(
val parameterString = "{ $args }"
val tree: JsonNode = om.readTree(parameterString) ?: throw UnparseableCallException(args)
if (tree.size() > parameters.size) throw UnparseableCallException.TooManyParameters(methodNameHint, args)
- val inOrderParams: List = parameters.mapIndexed { _, param ->
- val (argName, argType) = param
+ val inOrderParams: List = parameters.mapIndexed { _, (argName, argType) ->
val entry = tree[argName] ?: throw UnparseableCallException.MissingParameter(methodNameHint, argName, args)
try {
om.readValue(entry.traverse(om), argType)
diff --git a/client/jackson/src/test/kotlin/net/corda/jackson/StringToMethodCallParserTest.kt b/client/jackson/src/test/kotlin/net/corda/jackson/StringToMethodCallParserTest.kt
index 7c46e4919b..7610fbf91b 100644
--- a/client/jackson/src/test/kotlin/net/corda/jackson/StringToMethodCallParserTest.kt
+++ b/client/jackson/src/test/kotlin/net/corda/jackson/StringToMethodCallParserTest.kt
@@ -1,14 +1,16 @@
package net.corda.jackson
import net.corda.core.crypto.SecureHash
+import org.junit.Assert.assertArrayEquals
import org.junit.Test
+import kotlin.reflect.full.primaryConstructor
import kotlin.test.assertEquals
class StringToMethodCallParserTest {
@Suppress("UNUSED")
class Target {
fun simple() = "simple"
- fun string(note: String) = note
+ fun string(noteTextWord: String) = noteTextWord
fun twoStrings(a: String, b: String) = a + b
fun simpleObject(hash: SecureHash.SHA256) = hash.toString()
fun complexObject(pair: Pair) = pair
@@ -20,7 +22,7 @@ class StringToMethodCallParserTest {
val randomHash = "361170110f61086f77ff2c5b7ab36513705da1a3ebabf14dbe5cc9c982c45401"
val tests = mapOf(
"simple" to "simple",
- "string note: A test of barewords" to "A test of barewords",
+ "string noteTextWord: A test of barewords" to "A test of barewords",
"twoStrings a: Some words, b: ' and some words, like, Kirk, would, speak'" to "Some words and some words, like, Kirk, would, speak",
"simpleObject hash: $randomHash" to randomHash.toUpperCase(),
"complexObject pair: { first: 12, second: Word up brother }" to Pair(12, "Word up brother"),
@@ -36,4 +38,31 @@ class StringToMethodCallParserTest {
assertEquals(output, parser.parse(target, input).invoke())
}
}
+
+ @Suppress("UNUSED")
+ class ConstructorTarget(val someWord: String, val aDifferentThing: Int) {
+ constructor(alternativeWord: String) : this(alternativeWord, 0)
+ }
+
+ @Test
+ fun ctor1() {
+ val clazz = ConstructorTarget::class.java
+ val parser = StringToMethodCallParser(clazz)
+ val ctor = clazz.constructors.single { it.parameterCount == 2 }
+ val names: List = parser.paramNamesFromConstructor(ctor)
+ assertEquals(listOf("someWord", "aDifferentThing"), names)
+ val args: Array = parser.parseArguments(clazz.name, names.zip(ctor.parameterTypes), "someWord: Blah blah blah, aDifferentThing: 12")
+ assertArrayEquals(args, arrayOf("Blah blah blah", 12))
+ }
+
+ @Test
+ fun ctor2() {
+ val clazz = ConstructorTarget::class.java
+ val parser = StringToMethodCallParser(clazz)
+ val ctor = clazz.constructors.single { it.parameterCount == 1 }
+ val names: List = parser.paramNamesFromConstructor(ctor)
+ assertEquals(listOf("alternativeWord"), names)
+ val args: Array = parser.parseArguments(clazz.name, names.zip(ctor.parameterTypes), "alternativeWord: Foo bar!")
+ assertArrayEquals(args, arrayOf("Foo bar!"))
+ }
}
\ No newline at end of file
diff --git a/client/rpc/build.gradle b/client/rpc/build.gradle
index ec52494023..95f0ed0fcc 100644
--- a/client/rpc/build.gradle
+++ b/client/rpc/build.gradle
@@ -11,6 +11,9 @@ configurations {
integrationTestCompile.extendsFrom testCompile
integrationTestRuntime.extendsFrom testRuntime
+
+ smokeTestCompile.extendsFrom compile
+ smokeTestRuntime.extendsFrom runtime
}
sourceSets {
@@ -21,6 +24,24 @@ sourceSets {
srcDir file('src/integration-test/kotlin')
}
}
+ smokeTest {
+ kotlin {
+ // We must NOT have any Node code on the classpath, so do NOT
+ // include the test or integrationTest dependencies here.
+ compileClasspath += main.output
+ runtimeClasspath += main.output
+ srcDir file('src/smoke-test/kotlin')
+ }
+ }
+}
+
+processSmokeTestResources {
+ from(file("$rootDir/config/test/log4j2.xml")) {
+ rename 'log4j2\\.xml', 'log4j2-test.xml'
+ }
+ from(project(':node:capsule').tasks.buildCordaJAR) {
+ rename 'corda-(.*)', 'corda.jar'
+ }
}
// To find potential version conflicts, run "gradle htmlDependencyReport" and then look in
@@ -38,11 +59,22 @@ dependencies {
testCompile project(':test-utils')
testCompile project(':client:mock')
- // Integration test helpers
- integrationTestCompile "junit:junit:$junit_version"
+ // Smoke tests do NOT have any Node code on the classpath!
+ smokeTestCompile project(':finance')
+ smokeTestCompile "org.apache.logging.log4j:log4j-slf4j-impl:$log4j_version"
+ smokeTestCompile "org.apache.logging.log4j:log4j-core:$log4j_version"
+ smokeTestCompile "org.jetbrains.kotlin:kotlin-test:$kotlin_version"
+ smokeTestCompile "org.assertj:assertj-core:${assertj_version}"
+ smokeTestCompile "junit:junit:$junit_version"
}
task integrationTest(type: Test) {
testClassesDir = sourceSets.integrationTest.output.classesDir
classpath = sourceSets.integrationTest.runtimeClasspath
}
+
+task smokeTest(type: Test) {
+ testClassesDir = sourceSets.smokeTest.output.classesDir
+ classpath = sourceSets.smokeTest.runtimeClasspath
+ systemProperties['build.dir'] = buildDir
+}
diff --git a/client/rpc/src/integration-test/kotlin/net/corda/client/rpc/RPCStabilityTests.kt b/client/rpc/src/integration-test/kotlin/net/corda/client/rpc/RPCStabilityTests.kt
index 5287a0de4f..3ecb3eda6e 100644
--- a/client/rpc/src/integration-test/kotlin/net/corda/client/rpc/RPCStabilityTests.kt
+++ b/client/rpc/src/integration-test/kotlin/net/corda/client/rpc/RPCStabilityTests.kt
@@ -5,26 +5,181 @@ import com.esotericsoftware.kryo.Serializer
import com.esotericsoftware.kryo.io.Input
import com.esotericsoftware.kryo.io.Output
import com.esotericsoftware.kryo.pool.KryoPool
+import com.google.common.net.HostAndPort
import com.google.common.util.concurrent.Futures
+import net.corda.client.rpc.internal.RPCClient
+import net.corda.client.rpc.internal.RPCClientConfiguration
+import net.corda.core.*
import net.corda.core.messaging.RPCOps
-import net.corda.core.millis
-import net.corda.core.random63BitValue
+import net.corda.node.driver.poll
import net.corda.node.services.messaging.RPCServerConfiguration
import net.corda.nodeapi.RPCApi
import net.corda.nodeapi.RPCKryo
import net.corda.testing.*
import org.apache.activemq.artemis.api.core.SimpleString
+import org.junit.Assert.assertEquals
+import org.junit.Assert.assertTrue
import org.junit.Test
import rx.Observable
import rx.subjects.PublishSubject
import rx.subjects.UnicastSubject
import java.time.Duration
+import java.util.concurrent.ConcurrentLinkedQueue
+import java.util.concurrent.Executors
+import java.util.concurrent.ScheduledExecutorService
import java.util.concurrent.TimeUnit
import java.util.concurrent.atomic.AtomicInteger
class RPCStabilityTests {
+ object DummyOps : RPCOps {
+ override val protocolVersion = 0
+ }
+
+ private fun waitUntilNumberOfThreadsStable(executorService: ScheduledExecutorService): Int {
+ val values = ConcurrentLinkedQueue()
+ return poll(executorService, "number of threads to become stable", 250.millis) {
+ values.add(Thread.activeCount())
+ if (values.size > 5) {
+ values.poll()
+ }
+ val first = values.peek()
+ if (values.size == 5 && values.all { it == first }) {
+ first
+ } else {
+ null
+ }
+ }.get()
+ }
+
+ @Test
+ fun `client and server dont leak threads`() {
+ val executor = Executors.newScheduledThreadPool(1)
+ fun startAndStop() {
+ rpcDriver {
+ val server = startRpcServer(ops = DummyOps)
+ startRpcClient(server.get().broker.hostAndPort!!).get()
+ }
+ }
+ repeat(5) {
+ startAndStop()
+ }
+ val numberOfThreadsBefore = waitUntilNumberOfThreadsStable(executor)
+ repeat(5) {
+ startAndStop()
+ }
+ val numberOfThreadsAfter = waitUntilNumberOfThreadsStable(executor)
+ // This is a less than check because threads from other tests may be shutting down while this test is running.
+ // This is therefore a "best effort" check. When this test is run on its own this should be a strict equality.
+ assertTrue(numberOfThreadsBefore >= numberOfThreadsAfter)
+ executor.shutdownNow()
+ }
+
+ @Test
+ fun `client doesnt leak threads when it fails to start`() {
+ val executor = Executors.newScheduledThreadPool(1)
+ fun startAndStop() {
+ rpcDriver {
+ ErrorOr.catch { startRpcClient(HostAndPort.fromString("localhost:9999")).get() }
+ val server = startRpcServer(ops = DummyOps)
+ ErrorOr.catch { startRpcClient(
+ server.get().broker.hostAndPort!!,
+ configuration = RPCClientConfiguration.default.copy(minimumServerProtocolVersion = 1)
+ ).get() }
+ }
+ }
+ repeat(5) {
+ startAndStop()
+ }
+ val numberOfThreadsBefore = waitUntilNumberOfThreadsStable(executor)
+ repeat(5) {
+ startAndStop()
+ }
+ val numberOfThreadsAfter = waitUntilNumberOfThreadsStable(executor)
+ assertTrue(numberOfThreadsBefore >= numberOfThreadsAfter)
+ executor.shutdownNow()
+ }
+
+ fun RpcBrokerHandle.getStats(): Map {
+ return serverControl.run {
+ mapOf(
+ "connections" to listConnectionIDs().toSet(),
+ "sessionCount" to listConnectionIDs().flatMap { listSessions(it).toList() }.size,
+ "consumerCount" to totalConsumerCount
+ )
+ }
+ }
+
+ @Test
+ fun `rpc server close doesnt leak broker resources`() {
+ rpcDriver {
+ fun startAndCloseServer(broker: RpcBrokerHandle) {
+ startRpcServerWithBrokerRunning(
+ configuration = RPCServerConfiguration.default.copy(consumerPoolSize = 1, producerPoolBound = 1),
+ ops = DummyOps,
+ brokerHandle = broker
+ ).rpcServer.close()
+ }
+
+ val broker = startRpcBroker().get()
+ startAndCloseServer(broker)
+ val initial = broker.getStats()
+ repeat(100) {
+ startAndCloseServer(broker)
+ }
+ pollUntilTrue("broker resources to be released") {
+ initial == broker.getStats()
+ }
+ }
+ }
+
+ @Test
+ fun `rpc client close doesnt leak broker resources`() {
+ rpcDriver {
+ val server = startRpcServer(configuration = RPCServerConfiguration.default.copy(consumerPoolSize = 1, producerPoolBound = 1), ops = DummyOps).get()
+ RPCClient(server.broker.hostAndPort!!).start(RPCOps::class.java, rpcTestUser.username, rpcTestUser.password).close()
+ val initial = server.broker.getStats()
+ repeat(100) {
+ val connection = RPCClient(server.broker.hostAndPort!!).start(RPCOps::class.java, rpcTestUser.username, rpcTestUser.password)
+ connection.close()
+ }
+ pollUntilTrue("broker resources to be released") {
+ initial == server.broker.getStats()
+ }
+ }
+ }
+
+ @Test
+ fun `rpc server close is idempotent`() {
+ rpcDriver {
+ val server = startRpcServer(ops = DummyOps).get()
+ repeat(10) {
+ server.rpcServer.close()
+ }
+ }
+ }
+
+ @Test
+ fun `rpc client close is idempotent`() {
+ rpcDriver {
+ val serverShutdown = shutdownManager.follower()
+ val server = startRpcServer(ops = DummyOps).get()
+ serverShutdown.unfollow()
+ // With the server up
+ val connection1 = RPCClient(server.broker.hostAndPort!!).start(RPCOps::class.java, rpcTestUser.username, rpcTestUser.password)
+ repeat(10) {
+ connection1.close()
+ }
+ val connection2 = RPCClient(server.broker.hostAndPort!!).start(RPCOps::class.java, rpcTestUser.username, rpcTestUser.password)
+ serverShutdown.shutdown()
+ // With the server down
+ repeat(10) {
+ connection2.close()
+ }
+ }
+ }
+
interface LeakObservableOps: RPCOps {
fun leakObservable(): Observable
}
@@ -42,7 +197,7 @@ class RPCStabilityTests {
}
}
val server = startRpcServer(ops = leakObservableOpsImpl)
- val proxy = startRpcClient(server.get().hostAndPort).get()
+ val proxy = startRpcClient(server.get().broker.hostAndPort!!).get()
// Leak many observables
val N = 200
(1..N).toList().parallelStream().forEach {
@@ -57,6 +212,31 @@ class RPCStabilityTests {
}
}
+ interface ReconnectOps : RPCOps {
+ fun ping(): String
+ }
+
+ @Test
+ fun `client reconnects to rebooted server`() {
+ rpcDriver {
+ val ops = object : ReconnectOps {
+ override val protocolVersion = 0
+ override fun ping() = "pong"
+ }
+ val serverFollower = shutdownManager.follower()
+ val serverPort = startRpcServer(ops = ops).getOrThrow().broker.hostAndPort!!
+ serverFollower.unfollow()
+ val clientFollower = shutdownManager.follower()
+ val client = startRpcClient(serverPort).getOrThrow()
+ clientFollower.unfollow()
+ assertEquals("pong", client.ping())
+ serverFollower.shutdown()
+ startRpcServer(ops = ops, customPort = serverPort).getOrThrow()
+ assertEquals("pong", client.ping())
+ clientFollower.shutdown() // Driver would do this after the new server, causing hang.
+ }
+ }
+
interface TrackSubscriberOps : RPCOps {
fun subscribe(): Observable
}
@@ -86,7 +266,7 @@ class RPCStabilityTests {
val numberOfClients = 4
val clients = Futures.allAsList((1 .. numberOfClients).map {
- startRandomRpcClient(server.hostAndPort)
+ startRandomRpcClient(server.broker.hostAndPort!!)
}).get()
// Poll until all clients connect
@@ -131,7 +311,7 @@ class RPCStabilityTests {
// Construct an RPC session manually so that we can hang in the message handler
val myQueue = "${RPCApi.RPC_CLIENT_QUEUE_NAME_PREFIX}.test.${random63BitValue()}"
- val session = startArtemisSession(server.hostAndPort)
+ val session = startArtemisSession(server.broker.hostAndPort!!)
session.createTemporaryQueue(myQueue, myQueue)
val consumer = session.createConsumer(myQueue, null, -1, -1, false)
consumer.setMessageHandler {
@@ -163,7 +343,7 @@ class RPCStabilityTests {
fun RPCDriverExposedDSLInterface.pollUntilClientNumber(server: RpcServerHandle, expected: Int) {
pollUntilTrue("number of RPC clients to become $expected") {
- val clientAddresses = server.serverControl.addressNames.filter { it.startsWith(RPCApi.RPC_CLIENT_QUEUE_NAME_PREFIX) }
+ val clientAddresses = server.broker.serverControl.addressNames.filter { it.startsWith(RPCApi.RPC_CLIENT_QUEUE_NAME_PREFIX) }
clientAddresses.size == expected
}.get()
}
\ No newline at end of file
diff --git a/client/rpc/src/main/kotlin/net/corda/client/rpc/CordaRPCClient.kt b/client/rpc/src/main/kotlin/net/corda/client/rpc/CordaRPCClient.kt
index a6c97c3e3a..199cdd6d67 100644
--- a/client/rpc/src/main/kotlin/net/corda/client/rpc/CordaRPCClient.kt
+++ b/client/rpc/src/main/kotlin/net/corda/client/rpc/CordaRPCClient.kt
@@ -9,10 +9,12 @@ import net.corda.nodeapi.ConnectionDirection
import net.corda.nodeapi.config.SSLConfiguration
import java.time.Duration
+/** @see RPCClient.RPCConnection */
class CordaRPCConnection internal constructor(
connection: RPCClient.RPCConnection
) : RPCClient.RPCConnection by connection
+/** @see RPCClientConfiguration */
data class CordaRPCClientConfiguration(
val connectionMaxRetryInterval: Duration
) {
@@ -29,6 +31,7 @@ data class CordaRPCClientConfiguration(
}
}
+/** @see RPCClient */
class CordaRPCClient(
hostAndPort: HostAndPort,
sslConfiguration: SSLConfiguration? = null,
diff --git a/client/rpc/src/main/kotlin/net/corda/client/rpc/internal/RPCClient.kt b/client/rpc/src/main/kotlin/net/corda/client/rpc/internal/RPCClient.kt
index 60d50928bd..3e52dbd946 100644
--- a/client/rpc/src/main/kotlin/net/corda/client/rpc/internal/RPCClient.kt
+++ b/client/rpc/src/main/kotlin/net/corda/client/rpc/internal/RPCClient.kt
@@ -53,10 +53,12 @@ data class RPCClientConfiguration(
val connectionRetryIntervalMultiplier: Double,
/** Maximum retry interval */
val connectionMaxRetryInterval: Duration,
+ val maxReconnectAttempts: Int,
/** Maximum file size */
val maxFileSize: Int
) {
companion object {
+ val unlimitedReconnectAttempts = -1
@JvmStatic
val default = RPCClientConfiguration(
minimumServerProtocolVersion = 0,
@@ -68,6 +70,7 @@ data class RPCClientConfiguration(
connectionRetryInterval = 5.seconds,
connectionRetryIntervalMultiplier = 1.5,
connectionMaxRetryInterval = 3.minutes,
+ maxReconnectAttempts = unlimitedReconnectAttempts,
/** 10 MiB maximum allowed file size for attachments, including message headers. TODO: acquire this value from Network Map when supported. */
maxFileSize = 10485760
)
@@ -114,9 +117,9 @@ class RPCClient(
*
* The [RPCOps] defines what client RPCs are available. If an RPC returns an [Observable] anywhere in the object
* graph returned then the server-side observable is transparently forwarded to the client side here.
- * *You are expected to use it*. The server will begin buffering messages immediately that it will expect you to
- * drain by subscribing to the returned observer. You can opt-out of this by simply calling the
- * [net.corda.client.rpc.notUsed] method on it. You don't have to explicitly close the observable if you actually
+ * *You are expected to use it*. The server will begin sending messages immediately that will be buffered on the
+ * client, you are expected to drain by subscribing to the returned observer. You can opt-out of this by simply
+ * calling the [net.corda.client.rpc.notUsed] method on it. You don't have to explicitly close the observable if you actually
* subscribe to it: it will close itself and free up the server-side resources either when the client or JVM itself
* is shutdown, or when there are no more subscribers to it. Once all the subscribers to a returned observable are
* unsubscribed or the observable completes successfully or with an error, the observable is closed and you can't
@@ -139,30 +142,37 @@ class RPCClient(
retryInterval = rpcConfiguration.connectionRetryInterval.toMillis()
retryIntervalMultiplier = rpcConfiguration.connectionRetryIntervalMultiplier
maxRetryInterval = rpcConfiguration.connectionMaxRetryInterval.toMillis()
+ reconnectAttempts = rpcConfiguration.maxReconnectAttempts
minLargeMessageSize = rpcConfiguration.maxFileSize
}
val proxyHandler = RPCClientProxyHandler(rpcConfiguration, username, password, serverLocator, clientAddress, rpcOpsClass)
- proxyHandler.start()
+ try {
+ proxyHandler.start()
- @Suppress("UNCHECKED_CAST")
- val ops = Proxy.newProxyInstance(rpcOpsClass.classLoader, arrayOf(rpcOpsClass), proxyHandler) as I
+ @Suppress("UNCHECKED_CAST")
+ val ops = Proxy.newProxyInstance(rpcOpsClass.classLoader, arrayOf(rpcOpsClass), proxyHandler) as I
- val serverProtocolVersion = ops.protocolVersion
- if (serverProtocolVersion < rpcConfiguration.minimumServerProtocolVersion) {
- throw RPCException("Requested minimum protocol version (${rpcConfiguration.minimumServerProtocolVersion}) is higher" +
- " than the server's supported protocol version ($serverProtocolVersion)")
- }
- proxyHandler.setServerProtocolVersion(serverProtocolVersion)
-
- log.debug("RPC connected, returning proxy")
- object : RPCConnection {
- override val proxy = ops
- override val serverProtocolVersion = serverProtocolVersion
- override fun close() {
- proxyHandler.close()
- serverLocator.close()
+ val serverProtocolVersion = ops.protocolVersion
+ if (serverProtocolVersion < rpcConfiguration.minimumServerProtocolVersion) {
+ throw RPCException("Requested minimum protocol version (${rpcConfiguration.minimumServerProtocolVersion}) is higher" +
+ " than the server's supported protocol version ($serverProtocolVersion)")
}
+ proxyHandler.setServerProtocolVersion(serverProtocolVersion)
+
+ log.debug("RPC connected, returning proxy")
+ object : RPCConnection {
+ override val proxy = ops
+ override val serverProtocolVersion = serverProtocolVersion
+ override fun close() {
+ proxyHandler.close()
+ serverLocator.close()
+ }
+ }
+ } catch (exception: Throwable) {
+ proxyHandler.close()
+ serverLocator.close()
+ throw exception
}
}
}
diff --git a/client/rpc/src/main/kotlin/net/corda/client/rpc/internal/RPCClientProxyHandler.kt b/client/rpc/src/main/kotlin/net/corda/client/rpc/internal/RPCClientProxyHandler.kt
index da95f01b4d..2fde6fcaaf 100644
--- a/client/rpc/src/main/kotlin/net/corda/client/rpc/internal/RPCClientProxyHandler.kt
+++ b/client/rpc/src/main/kotlin/net/corda/client/rpc/internal/RPCClientProxyHandler.kt
@@ -25,16 +25,11 @@ import org.apache.activemq.artemis.api.core.client.ServerLocator
import rx.Notification
import rx.Observable
import rx.subjects.UnicastSubject
-import sun.reflect.CallerSensitive
import java.lang.reflect.InvocationHandler
import java.lang.reflect.Method
import java.util.*
-import java.util.concurrent.ConcurrentHashMap
-import java.util.concurrent.Executors
-import java.util.concurrent.ScheduledFuture
-import java.util.concurrent.TimeUnit
+import java.util.concurrent.*
import java.util.concurrent.atomic.AtomicInteger
-import kotlin.collections.ArrayList
import kotlin.reflect.jvm.javaMethod
/**
@@ -81,16 +76,13 @@ class RPCClientProxyHandler(
val log = loggerFor()
// Note that this KryoPool is not yet capable of deserialising Observables, it requires Proxy-specific context
// to do that. However it may still be used for serialisation of RPC requests and related messages.
- val kryoPool = KryoPool.Builder { RPCKryo(RpcClientObservableSerializer) }.build()
+ val kryoPool: KryoPool = KryoPool.Builder { RPCKryo(RpcClientObservableSerializer) }.build()
// To check whether toString() is being invoked
val toStringMethod: Method = Object::toString.javaMethod!!
}
// Used for reaping
- private val reaperExecutor = Executors.newScheduledThreadPool(
- 1,
- ThreadFactoryBuilder().setNameFormat("rpc-client-reaper-%d").build()
- )
+ private var reaperExecutor: ScheduledExecutorService? = null
// A sticky pool for running Observable.onNext()s. We need the stickiness to preserve the observation ordering.
private val observationExecutorThreadFactory = ThreadFactoryBuilder().setNameFormat("rpc-client-observation-pool-%d").build()
@@ -109,7 +101,7 @@ class RPCClientProxyHandler(
hardReferenceStore = Collections.synchronizedSet(mutableSetOf>())
)
// Holds a reference to the scheduled reaper.
- private lateinit var reaperScheduledFuture: ScheduledFuture<*>
+ private var reaperScheduledFuture: ScheduledFuture<*>? = null
// The protocol version of the server, to be initialised to the value of [RPCOps.protocolVersion]
private var serverProtocolVersion: Int? = null
@@ -145,7 +137,7 @@ class RPCClientProxyHandler(
// TODO We may need to pool these somehow anyway, otherwise if the server sends many big messages in parallel a
// single consumer may be starved for flow control credits. Recheck this once Artemis's large message streaming is
// integrated properly.
- private lateinit var sessionAndConsumer: ArtemisConsumer
+ private var sessionAndConsumer: ArtemisConsumer? = null
// Pool producers to reduce contention on the client side.
private val sessionAndProducerPool = LazyPool(bound = rpcConfiguration.producerPoolBound) {
// Note how we create new sessions *and* session factories per producer.
@@ -162,7 +154,12 @@ class RPCClientProxyHandler(
* Start the client. This creates the per-client queue, starts the consumer session and the reaper.
*/
fun start() {
- reaperScheduledFuture = reaperExecutor.scheduleAtFixedRate(
+ lifeCycle.requireState(State.UNSTARTED)
+ reaperExecutor = Executors.newScheduledThreadPool(
+ 1,
+ ThreadFactoryBuilder().setNameFormat("rpc-client-reaper-%d").build()
+ )
+ reaperScheduledFuture = reaperExecutor!!.scheduleAtFixedRate(
this::reapObservables,
rpcConfiguration.reapInterval.toMillis(),
rpcConfiguration.reapInterval.toMillis(),
@@ -187,7 +184,7 @@ class RPCClientProxyHandler(
if (method == toStringMethod) {
return "Client RPC proxy for $rpcOpsClass"
}
- if (sessionAndConsumer.session.isClosed) {
+ if (sessionAndConsumer!!.session.isClosed) {
throw RPCException("RPC Proxy is closed")
}
val rpcId = RPCApi.RpcRequestId(random63BitValue())
@@ -211,6 +208,12 @@ class RPCClientProxyHandler(
it.session.commit()
}
return replyFuture.getOrThrow()
+ } catch (e: RuntimeException) {
+ // Already an unchecked exception, so just rethrow it
+ throw e
+ } catch (e: Exception) {
+ // This must be a checked exception, so wrap it
+ throw RPCException(e.message ?: "", e)
} finally {
callSiteMap?.remove(rpcId.toLong)
}
@@ -268,24 +271,19 @@ class RPCClientProxyHandler(
* Closes the RPC proxy. Reaps all observables, shuts down the reaper, closes all sessions and executors.
*/
fun close() {
- sessionAndConsumer.consumer.close()
- sessionAndConsumer.session.close()
- sessionAndConsumer.sessionFactory.close()
- reaperScheduledFuture.cancel(false)
+ sessionAndConsumer?.sessionFactory?.close()
+ reaperScheduledFuture?.cancel(false)
observableContext.observableMap.invalidateAll()
reapObservables()
- reaperExecutor.shutdownNow()
+ reaperExecutor?.shutdownNow()
sessionAndProducerPool.close().forEach {
- it.producer.close()
- it.session.close()
it.sessionFactory.close()
}
// Note the ordering is important, we shut down the consumer *before* the observation executor, otherwise we may
// leak borrowed executors.
val observationExecutors = observationExecutorPool.close()
observationExecutors.forEach { it.shutdownNow() }
- observationExecutors.forEach { it.awaitTermination(100, TimeUnit.MILLISECONDS) }
- lifeCycle.transition(State.STARTED, State.FINISHED)
+ lifeCycle.justTransition(State.FINISHED)
}
/**
diff --git a/client/rpc/src/smoke-test/kotlin/net/corda/kotlin/rpc/NodeConfig.kt b/client/rpc/src/smoke-test/kotlin/net/corda/kotlin/rpc/NodeConfig.kt
new file mode 100644
index 0000000000..75c4074be1
--- /dev/null
+++ b/client/rpc/src/smoke-test/kotlin/net/corda/kotlin/rpc/NodeConfig.kt
@@ -0,0 +1,48 @@
+package net.corda.kotlin.rpc
+
+import com.typesafe.config.*
+import net.corda.core.crypto.commonName
+import net.corda.core.identity.Party
+import net.corda.nodeapi.User
+
+class NodeConfig(
+ val party: Party,
+ val p2pPort: Int,
+ val rpcPort: Int,
+ val webPort: Int,
+ val extraServices: List,
+ val users: List,
+ var networkMap: NodeConfig? = null
+) {
+ companion object {
+ val renderOptions: ConfigRenderOptions = ConfigRenderOptions.defaults().setOriginComments(false)
+ }
+
+ val commonName: String = party.name.commonName
+
+ /*
+ * The configuration object depends upon the networkMap,
+ * which is mutable.
+ */
+ fun toFileConfig(): Config = ConfigFactory.empty()
+ .withValue("myLegalName", valueFor(party.name.toString()))
+ .withValue("p2pAddress", addressValueFor(p2pPort))
+ .withValue("extraAdvertisedServiceIds", valueFor(extraServices))
+ .withFallback(optional("networkMapService", networkMap, { c, n ->
+ c.withValue("address", addressValueFor(n.p2pPort))
+ .withValue("legalName", valueFor(n.party.name.toString()))
+ }))
+ .withValue("webAddress", addressValueFor(webPort))
+ .withValue("rpcAddress", addressValueFor(rpcPort))
+ .withValue("rpcUsers", valueFor(users.map(User::toMap).toList()))
+ .withValue("useTestClock", valueFor(true))
+
+ fun toText(): String = toFileConfig().root().render(renderOptions)
+
+ private fun valueFor(any: T): ConfigValue? = ConfigValueFactory.fromAnyRef(any)
+ private fun addressValueFor(port: Int) = valueFor("localhost:$port")
+ private inline fun optional(path: String, obj: T?, body: (Config, T) -> Config): Config {
+ val config = ConfigFactory.empty()
+ return if (obj == null) config else body(config, obj).atPath(path)
+ }
+}
diff --git a/client/rpc/src/smoke-test/kotlin/net/corda/kotlin/rpc/NodeProcess.kt b/client/rpc/src/smoke-test/kotlin/net/corda/kotlin/rpc/NodeProcess.kt
new file mode 100644
index 0000000000..3d81f9ad83
--- /dev/null
+++ b/client/rpc/src/smoke-test/kotlin/net/corda/kotlin/rpc/NodeProcess.kt
@@ -0,0 +1,107 @@
+package net.corda.kotlin.rpc
+
+import com.google.common.net.HostAndPort
+import net.corda.client.rpc.CordaRPCClient
+import net.corda.client.rpc.CordaRPCConnection
+import net.corda.core.utilities.loggerFor
+import java.io.File
+import java.nio.file.Files
+import java.nio.file.Path
+import java.nio.file.Paths
+import java.util.concurrent.Executors
+import java.util.concurrent.TimeUnit.SECONDS
+import kotlin.test.*
+
+class NodeProcess(
+ val config: NodeConfig,
+ val nodeDir: Path,
+ private val node: Process,
+ private val client: CordaRPCClient
+) : AutoCloseable {
+ private companion object {
+ val log = loggerFor()
+ val javaPath: Path = Paths.get(System.getProperty("java.home"), "bin", "java")
+ val corda = File(this::class.java.getResource("/corda.jar").toURI())
+ val buildDir: Path = Paths.get(System.getProperty("build.dir"))
+ val capsuleDir: Path = buildDir.resolve("capsule")
+ }
+
+ fun connect(): CordaRPCConnection {
+ val user = config.users[0]
+ return client.start(user.username, user.password)
+ }
+
+ override fun close() {
+ log.info("Stopping node '${config.commonName}'")
+ node.destroy()
+ if (!node.waitFor(60, SECONDS)) {
+ log.warn("Node '${config.commonName}' has not shutdown correctly")
+ node.destroyForcibly()
+ }
+
+ log.info("Deleting Artemis directories, because they're large!")
+ nodeDir.resolve("artemis").toFile().deleteRecursively()
+ }
+
+ class Factory(val nodesDir: Path) {
+ init {
+ assertTrue(nodesDir.toFile().forceDirectory(), "Directory '$nodesDir' does not exist")
+ }
+
+ fun create(config: NodeConfig): NodeProcess {
+ val nodeDir = Files.createTempDirectory(nodesDir, config.commonName)
+ log.info("Node directory: {}", nodeDir)
+
+ val confFile = nodeDir.resolve("node.conf").toFile()
+ confFile.writeText(config.toText())
+
+ val process = startNode(nodeDir)
+ val client = CordaRPCClient(HostAndPort.fromParts("localhost", config.rpcPort))
+ val user = config.users[0]
+
+ val setupExecutor = Executors.newSingleThreadScheduledExecutor()
+ try {
+ setupExecutor.scheduleWithFixedDelay({
+ try {
+ if (!process.isAlive) {
+ log.error("Node '${config.commonName}' has died.")
+ return@scheduleWithFixedDelay
+ }
+ val conn = client.start(user.username, user.password)
+ conn.close()
+
+ // Cancel the "setup" task now that we've created the RPC client.
+ setupExecutor.shutdown()
+ } catch (e: Exception) {
+ log.warn("Node '{}' not ready yet (Error: {})", config.commonName, e.message)
+ }
+ }, 5, 1, SECONDS)
+
+ val setupOK = setupExecutor.awaitTermination(120, SECONDS)
+ assertTrue(setupOK && process.isAlive, "Failed to create RPC connection")
+ } catch (e: Exception) {
+ process.destroyForcibly()
+ throw e
+ } finally {
+ setupExecutor.shutdownNow()
+ }
+
+ return NodeProcess(config, nodeDir, process, client)
+ }
+
+ private fun startNode(nodeDir: Path): Process {
+ val builder = ProcessBuilder()
+ .command(javaPath.toString(), "-jar", corda.path)
+ .directory(nodeDir.toFile())
+
+ builder.environment().putAll(mapOf(
+ "CAPSULE_CACHE_DIR" to capsuleDir.toString()
+ ))
+
+ return builder.start()
+ }
+ }
+}
+
+private fun File.forceDirectory(): Boolean = this.isDirectory || this.mkdirs()
+
diff --git a/client/rpc/src/smoke-test/kotlin/net/corda/kotlin/rpc/StandaloneCordaRPClientTest.kt b/client/rpc/src/smoke-test/kotlin/net/corda/kotlin/rpc/StandaloneCordaRPClientTest.kt
new file mode 100644
index 0000000000..f7863c4029
--- /dev/null
+++ b/client/rpc/src/smoke-test/kotlin/net/corda/kotlin/rpc/StandaloneCordaRPClientTest.kt
@@ -0,0 +1,158 @@
+package net.corda.kotlin.rpc
+
+import java.io.FilterInputStream
+import java.io.InputStream
+import java.nio.file.Path
+import java.nio.file.Paths
+import java.time.Duration.ofSeconds
+import java.util.Currency
+import java.util.concurrent.atomic.AtomicInteger
+import kotlin.test.*
+import net.corda.client.rpc.CordaRPCConnection
+import net.corda.client.rpc.notUsed
+import net.corda.core.contracts.*
+import net.corda.core.getOrThrow
+import net.corda.core.identity.Party
+import net.corda.core.messaging.CordaRPCOps
+import net.corda.core.messaging.StateMachineUpdate
+import net.corda.core.messaging.startFlow
+import net.corda.core.messaging.startTrackedFlow
+import net.corda.core.serialization.OpaqueBytes
+import net.corda.core.sizedInputStreamAndHash
+import net.corda.core.utilities.DUMMY_NOTARY
+import net.corda.core.utilities.loggerFor
+import net.corda.flows.CashIssueFlow
+import net.corda.nodeapi.User
+import org.junit.After
+import org.junit.Before
+import org.junit.Test
+
+class StandaloneCordaRPClientTest {
+ private companion object {
+ val log = loggerFor()
+ val buildDir: Path = Paths.get(System.getProperty("build.dir"))
+ val nodesDir: Path = buildDir.resolve("nodes")
+ val user = User("user1", "test", permissions = setOf("ALL"))
+ val factory = NodeProcess.Factory(nodesDir)
+ val port = AtomicInteger(15000)
+ const val attachmentSize = 2116
+ const val timeout = 60L
+ }
+
+ private lateinit var notary: NodeProcess
+ private lateinit var rpcProxy: CordaRPCOps
+ private lateinit var connection: CordaRPCConnection
+ private lateinit var notaryIdentity: Party
+
+ private val notaryConfig = NodeConfig(
+ party = DUMMY_NOTARY,
+ p2pPort = port.andIncrement,
+ rpcPort = port.andIncrement,
+ webPort = port.andIncrement,
+ extraServices = listOf("corda.notary.validating"),
+ users = listOf(user)
+ )
+
+ @Before
+ fun setUp() {
+ notary = factory.create(notaryConfig)
+ connection = notary.connect()
+ rpcProxy = connection.proxy
+ notaryIdentity = fetchNotaryIdentity()
+ }
+
+ @After
+ fun done() {
+ try {
+ connection.close()
+ } finally {
+ notary.close()
+ }
+ }
+
+ @Test
+ fun `test attachment upload`() {
+ val attachment = sizedInputStreamAndHash(attachmentSize)
+ assertFalse(rpcProxy.attachmentExists(attachment.sha256))
+ val id = WrapperStream(attachment.inputStream).use { rpcProxy.uploadAttachment(it) }
+ assertEquals(id, attachment.sha256, "Attachment has incorrect SHA256 hash")
+ }
+
+ @Test
+ fun `test starting flow`() {
+ rpcProxy.startFlow(::CashIssueFlow, 127.POUNDS, OpaqueBytes.of(0), notaryIdentity, notaryIdentity)
+ .returnValue.getOrThrow(ofSeconds(timeout))
+ }
+
+ @Test
+ fun `test starting tracked flow`() {
+ var trackCount = 0
+ val handle = rpcProxy.startTrackedFlow(
+ ::CashIssueFlow, 429.DOLLARS, OpaqueBytes.of(0), notaryIdentity, notaryIdentity
+ )
+ handle.progress.subscribe { msg ->
+ log.info("Flow>> $msg")
+ ++trackCount
+ }
+ handle.returnValue.getOrThrow(ofSeconds(timeout))
+ assertNotEquals(0, trackCount)
+ }
+
+ @Test
+ fun `test network map`() {
+ assertEquals(DUMMY_NOTARY.name, notaryIdentity.name)
+ }
+
+ @Test
+ fun `test state machines`() {
+ val (stateMachines, updates) = rpcProxy.stateMachinesAndUpdates()
+ assertEquals(0, stateMachines.size)
+
+ var updateCount = 0
+ updates.subscribe { update ->
+ if (update is StateMachineUpdate.Added) {
+ log.info("StateMachine>> Id=${update.id}")
+ ++updateCount
+ }
+ }
+
+ // Now issue some cash
+ rpcProxy.startFlow(::CashIssueFlow, 513.SWISS_FRANCS, OpaqueBytes.of(0), notaryIdentity, notaryIdentity)
+ .returnValue.getOrThrow(ofSeconds(timeout))
+ assertEquals(1, updateCount)
+ }
+
+ @Test
+ fun `test vault`() {
+ val (vault, vaultUpdates) = rpcProxy.vaultAndUpdates()
+ assertEquals(0, vault.size)
+
+ var updateCount = 0
+ vaultUpdates.subscribe { update ->
+ log.info("Vault>> FlowId=${update.flowId}")
+ ++updateCount
+ }
+
+ // Now issue some cash
+ rpcProxy.startFlow(::CashIssueFlow, 629.POUNDS, OpaqueBytes.of(0), notaryIdentity, notaryIdentity)
+ .returnValue.getOrThrow(ofSeconds(timeout))
+ assertNotEquals(0, updateCount)
+
+ // Check that this cash exists in the vault
+ val cashBalance = rpcProxy.getCashBalances()
+ log.info("Cash Balances: $cashBalance")
+ assertEquals(1, cashBalance.size)
+ assertEquals(629.POUNDS, cashBalance[Currency.getInstance("GBP")])
+ }
+
+
+ private fun fetchNotaryIdentity(): Party {
+ val (nodeInfo, nodeUpdates) = rpcProxy.networkMapUpdates()
+ nodeUpdates.notUsed()
+ assertEquals(1, nodeInfo.size)
+ return nodeInfo[0].legalIdentity
+ }
+
+ // This InputStream cannot have been whitelisted.
+ private class WrapperStream(input: InputStream) : FilterInputStream(input)
+}
diff --git a/client/rpc/src/test/kotlin/net/corda/client/rpc/AbstractRPCTest.kt b/client/rpc/src/test/kotlin/net/corda/client/rpc/AbstractRPCTest.kt
index 6139ad79fb..20026ab7c1 100644
--- a/client/rpc/src/test/kotlin/net/corda/client/rpc/AbstractRPCTest.kt
+++ b/client/rpc/src/test/kotlin/net/corda/client/rpc/AbstractRPCTest.kt
@@ -47,8 +47,8 @@ open class AbstractRPCTest {
}.get()
RPCTestMode.Netty ->
startRpcServer(ops = ops, rpcUser = rpcUser, configuration = serverConfiguration).flatMap { server ->
- startRpcClient(server.hostAndPort, rpcUser.username, rpcUser.password, clientConfiguration).map {
- TestProxy(it, { startArtemisSession(server.hostAndPort, rpcUser.username, rpcUser.password) })
+ startRpcClient(server.broker.hostAndPort!!, rpcUser.username, rpcUser.password, clientConfiguration).map {
+ TestProxy(it, { startArtemisSession(server.broker.hostAndPort!!, rpcUser.username, rpcUser.password) })
}
}.get()
}
diff --git a/constants.properties b/constants.properties
index 6312235f73..74d2be1352 100644
--- a/constants.properties
+++ b/constants.properties
@@ -1,4 +1,4 @@
-gradlePluginsVersion=0.12.0
+gradlePluginsVersion=0.12.1
kotlinVersion=1.1.2
guavaVersion=21.0
bouncycastleVersion=1.56
diff --git a/cordform-common/build.gradle b/cordform-common/build.gradle
new file mode 100644
index 0000000000..c3c1676b23
--- /dev/null
+++ b/cordform-common/build.gradle
@@ -0,0 +1,15 @@
+apply plugin: 'java'
+apply plugin: 'maven-publish'
+apply plugin: 'net.corda.plugins.publish-utils'
+
+repositories {
+ mavenCentral()
+}
+
+dependencies {
+ // TypeSafe Config: for simple and human friendly config files.
+ compile "com.typesafe:config:$typesafe_config_version"
+
+ // Bouncy Castle: for X.500 distinguished name manipulation
+ compile "org.bouncycastle:bcprov-jdk15on:$bouncycastle_version"
+}
diff --git a/cordform-common/src/main/java/net/corda/cordform/CordformContext.java b/cordform-common/src/main/java/net/corda/cordform/CordformContext.java
new file mode 100644
index 0000000000..c127392f5c
--- /dev/null
+++ b/cordform-common/src/main/java/net/corda/cordform/CordformContext.java
@@ -0,0 +1,8 @@
+package net.corda.cordform;
+
+import org.bouncycastle.asn1.x500.X500Name;
+import java.nio.file.Path;
+
+public interface CordformContext {
+ Path baseDirectory(X500Name nodeName);
+}
diff --git a/cordform-common/src/main/java/net/corda/cordform/CordformDefinition.java b/cordform-common/src/main/java/net/corda/cordform/CordformDefinition.java
new file mode 100644
index 0000000000..85a171f8fa
--- /dev/null
+++ b/cordform-common/src/main/java/net/corda/cordform/CordformDefinition.java
@@ -0,0 +1,27 @@
+package net.corda.cordform;
+
+import org.bouncycastle.asn1.x500.X500Name;
+import java.nio.file.Path;
+import java.util.ArrayList;
+import java.util.function.Consumer;
+
+public abstract class CordformDefinition {
+ public final Path driverDirectory;
+ public final ArrayList> nodeConfigurers = new ArrayList<>();
+ public final X500Name networkMapNodeName;
+
+ public CordformDefinition(Path driverDirectory, X500Name networkMapNodeName) {
+ this.driverDirectory = driverDirectory;
+ this.networkMapNodeName = networkMapNodeName;
+ }
+
+ public void addNode(Consumer configurer) {
+ nodeConfigurers.add(configurer);
+ }
+
+ /**
+ * Make arbitrary changes to the node directories before they are started.
+ * @param context Lookup of node directory by node name.
+ */
+ public abstract void setup(CordformContext context);
+}
diff --git a/cordform-common/src/main/java/net/corda/cordform/CordformNode.java b/cordform-common/src/main/java/net/corda/cordform/CordformNode.java
new file mode 100644
index 0000000000..d8160d70cc
--- /dev/null
+++ b/cordform-common/src/main/java/net/corda/cordform/CordformNode.java
@@ -0,0 +1,92 @@
+package net.corda.cordform;
+
+import static java.util.Collections.emptyList;
+import com.typesafe.config.Config;
+import com.typesafe.config.ConfigFactory;
+import com.typesafe.config.ConfigValueFactory;
+import java.util.List;
+import java.util.Map;
+
+public class CordformNode {
+ protected static final String DEFAULT_HOST = "localhost";
+
+ /**
+ * Name of the node.
+ */
+ private String name;
+
+ public String getName() {
+ return name;
+ }
+
+ /**
+ * A list of advertised services ID strings.
+ */
+ public List advertisedServices = emptyList();
+
+ /**
+ * If running a distributed notary, a list of node addresses for joining the Raft cluster
+ */
+ public List notaryClusterAddresses = emptyList();
+ /**
+ * Set the RPC users for this node. This configuration block allows arbitrary configuration.
+ * The recommended current structure is:
+ * [[['username': "username_here", 'password': "password_here", 'permissions': ["permissions_here"]]]
+ * The above is a list to a map of keys to values using Groovy map and list shorthands.
+ *
+ * Incorrect configurations will not cause a DSL error.
+ */
+ public List> rpcUsers = emptyList();
+
+ protected Config config = ConfigFactory.empty();
+
+ public Config getConfig() {
+ return config;
+ }
+
+ /**
+ * Set the name of the node.
+ *
+ * @param name The node name.
+ */
+ public void name(String name) {
+ this.name = name;
+ config = config.withValue("myLegalName", ConfigValueFactory.fromAnyRef(name));
+ }
+
+ /**
+ * Set the nearest city to the node.
+ *
+ * @param nearestCity The name of the nearest city to the node.
+ */
+ public void nearestCity(String nearestCity) {
+ config = config.withValue("nearestCity", ConfigValueFactory.fromAnyRef(nearestCity));
+ }
+
+ /**
+ * Set the Artemis P2P port for this node.
+ *
+ * @param p2pPort The Artemis messaging queue port.
+ */
+ public void p2pPort(Integer p2pPort) {
+ config = config.withValue("p2pAddress", ConfigValueFactory.fromAnyRef(DEFAULT_HOST + ':' + p2pPort));
+ }
+
+ /**
+ * Set the Artemis RPC port for this node.
+ *
+ * @param rpcPort The Artemis RPC queue port.
+ */
+ public void rpcPort(Integer rpcPort) {
+ config = config.withValue("rpcAddress", ConfigValueFactory.fromAnyRef(DEFAULT_HOST + ':' + rpcPort));
+ }
+
+ /**
+ * Set the port which to bind the Copycat (Raft) node to
+ *
+ * @param notaryPort The Raft port.
+ */
+ public void notaryNodePort(Integer notaryPort) {
+ config = config.withValue("notaryNodeAddress", ConfigValueFactory.fromAnyRef(DEFAULT_HOST + ':' + notaryPort));
+ }
+}
diff --git a/core/build.gradle b/core/build.gradle
index 0e24a0eb52..f0029a6672 100644
--- a/core/build.gradle
+++ b/core/build.gradle
@@ -63,7 +63,7 @@ dependencies {
compile "com.fasterxml.jackson.core:jackson-databind:${jackson_version}"
// Java ed25519 implementation. See https://github.com/str4d/ed25519-java/
- compile 'net.i2p.crypto:eddsa:0.2.0'
+ compile "net.i2p.crypto:eddsa:$eddsa_version"
// Bouncy castle support needed for X509 certificate manipulation
compile "org.bouncycastle:bcprov-jdk15on:${bouncycastle_version}"
diff --git a/core/src/main/kotlin/net/corda/core/Utils.kt b/core/src/main/kotlin/net/corda/core/Utils.kt
index 6bdb45d83e..c4218c1784 100644
--- a/core/src/main/kotlin/net/corda/core/Utils.kt
+++ b/core/src/main/kotlin/net/corda/core/Utils.kt
@@ -9,6 +9,7 @@ import com.google.common.util.concurrent.*
import net.corda.core.crypto.SecureHash
import net.corda.core.crypto.newSecureRandom
import net.corda.core.crypto.sha256
+import net.corda.core.flows.FlowException
import net.corda.core.serialization.CordaSerializable
import org.slf4j.Logger
import rx.Observable
@@ -32,13 +33,7 @@ import java.util.zip.Deflater
import java.util.zip.ZipEntry
import java.util.zip.ZipInputStream
import java.util.zip.ZipOutputStream
-import kotlin.collections.Iterable
import kotlin.collections.LinkedHashMap
-import kotlin.collections.List
-import kotlin.collections.filter
-import kotlin.collections.firstOrNull
-import kotlin.collections.fold
-import kotlin.collections.forEach
import kotlin.concurrent.withLock
import kotlin.reflect.KProperty
@@ -113,8 +108,17 @@ infix fun ListenableFuture.success(body: (T) -> Unit): ListenableFuture ListenableFuture.failure(body: (Throwable) -> Unit): ListenableFuture = apply { failure(RunOnCallerThread, body) }
@Suppress("UNCHECKED_CAST") // We need the awkward cast because otherwise F cannot be nullable, even though it's safe.
infix fun ListenableFuture.map(mapper: (F) -> T): ListenableFuture = Futures.transform(this, { (mapper as (F?) -> T)(it) })
-
infix fun ListenableFuture.flatMap(mapper: (F) -> ListenableFuture): ListenableFuture = Futures.transformAsync(this) { mapper(it!!) }
+
+inline fun Collection.mapToArray(transform: (T) -> R) = run {
+ val iterator = iterator()
+ var expected = 0
+ Array(size) {
+ expected++ == it || throw UnsupportedOperationException("Array constructor is non-sequential!")
+ transform(iterator.next())
+ }
+}
+
/** Executes the given block and sets the future to either the result, or any exception that was thrown. */
inline fun SettableFuture.catch(block: () -> T) {
try {
@@ -136,7 +140,8 @@ fun ListenableFuture.toObservable(): Observable {
}
/** Allows you to write code like: Paths.get("someDir") / "subdir" / "filename" but using the Paths API to avoid platform separator problems. */
-operator fun Path.div(other: String): Path = resolve(other)
+operator fun Path.div(other: String) = resolve(other)
+operator fun String.div(other: String) = Paths.get(this) / other
fun Path.createDirectory(vararg attrs: FileAttribute<*>): Path = Files.createDirectory(this, *attrs)
fun Path.createDirectories(vararg attrs: FileAttribute<*>): Path = Files.createDirectories(this, *attrs)
@@ -271,7 +276,7 @@ class ThreadBox(val content: T, val lock: ReentrantLock = ReentrantLock()
* We avoid the use of the word transient here to hopefully reduce confusion with the term in relation to (Java) serialization.
*/
@CordaSerializable
-abstract class RetryableException(message: String) : Exception(message)
+abstract class RetryableException(message: String) : FlowException(message)
/**
* A simple wrapper that enables the use of Kotlin's "val x by TransientProperty { ... }" syntax. Such a property
diff --git a/core/src/main/kotlin/net/corda/core/contracts/ContractsDSL.kt b/core/src/main/kotlin/net/corda/core/contracts/ContractsDSL.kt
index 5b62e342f9..437dcb4e96 100644
--- a/core/src/main/kotlin/net/corda/core/contracts/ContractsDSL.kt
+++ b/core/src/main/kotlin/net/corda/core/contracts/ContractsDSL.kt
@@ -56,6 +56,7 @@ infix fun Amount.issuedBy(deposit: PartyAndReference) = Amount(quantit
//// Requirements /////////////////////////////////////////////////////////////////////////////////////////////////////
object Requirements {
+ /** Throws [IllegalArgumentException] if the given expression evaluates to false. */
@Suppress("NOTHING_TO_INLINE") // Inlining this takes it out of our committed ABI.
infix inline fun String.using(expr: Boolean) {
if (!expr) throw IllegalArgumentException("Failed requirement: $this")
@@ -93,13 +94,14 @@ inline fun Collection
filter { if (parties == null) true else it.signingParties.containsAll(parties) }.
map { AuthenticatedObject(it.signers, it.signingParties, it.value as T) }
+/** Ensures that a transaction has only one command that is of the given type, otherwise throws an exception. */
inline fun Collection>.requireSingleCommand() = try {
select().single()
} catch (e: NoSuchElementException) {
throw IllegalStateException("Required ${T::class.qualifiedName} command") // Better error message.
}
-// For Java
+/** Ensures that a transaction has only one command that is of the given type, otherwise throws an exception. */
fun Collection>.requireSingleCommand(klass: Class) =
mapNotNull { @Suppress("UNCHECKED_CAST") if (klass.isInstance(it.value)) it as AuthenticatedObject else null }.single()
@@ -115,7 +117,7 @@ inline fun verifyMoveCommand(inputs: List()
val keysThatSigned = command.signers.toSet()
requireThat {
diff --git a/core/src/main/kotlin/net/corda/core/contracts/DummyContract.kt b/core/src/main/kotlin/net/corda/core/contracts/DummyContract.kt
index f7116222ac..31e85f859c 100644
--- a/core/src/main/kotlin/net/corda/core/contracts/DummyContract.kt
+++ b/core/src/main/kotlin/net/corda/core/contracts/DummyContract.kt
@@ -1,9 +1,9 @@
package net.corda.core.contracts
import net.corda.core.crypto.SecureHash
+import net.corda.core.identity.AbstractParty
import net.corda.core.identity.Party
import net.corda.core.transactions.TransactionBuilder
-import java.security.PublicKey
// The dummy contract doesn't do anything useful. It exists for testing purposes.
@@ -14,12 +14,12 @@ data class DummyContract(override val legalContractReference: SecureHash = Secur
val magicNumber: Int
}
- data class SingleOwnerState(override val magicNumber: Int = 0, override val owner: PublicKey) : OwnableState, State {
+ data class SingleOwnerState(override val magicNumber: Int = 0, override val owner: AbstractParty) : OwnableState, State {
override val contract = DUMMY_PROGRAM_ID
- override val participants: List
+ override val participants: List
get() = listOf(owner)
- override fun withNewOwner(newOwner: PublicKey) = Pair(Commands.Move(), copy(owner = newOwner))
+ override fun withNewOwner(newOwner: AbstractParty) = Pair(Commands.Move(), copy(owner = newOwner))
}
/**
@@ -28,9 +28,9 @@ data class DummyContract(override val legalContractReference: SecureHash = Secur
* in a different field, however this is a good example of a contract with multiple states.
*/
data class MultiOwnerState(override val magicNumber: Int = 0,
- val owners: List) : ContractState, State {
+ val owners: List) : ContractState, State {
override val contract = DUMMY_PROGRAM_ID
- override val participants: List get() = owners
+ override val participants: List get() = owners
}
interface Commands : CommandData {
@@ -47,22 +47,22 @@ data class DummyContract(override val legalContractReference: SecureHash = Secur
fun generateInitial(magicNumber: Int, notary: Party, owner: PartyAndReference, vararg otherOwners: PartyAndReference): TransactionBuilder {
val owners = listOf(owner) + otherOwners
return if (owners.size == 1) {
- val state = SingleOwnerState(magicNumber, owners.first().party.owningKey)
+ val state = SingleOwnerState(magicNumber, owners.first().party)
TransactionType.General.Builder(notary = notary).withItems(state, Command(Commands.Create(), owners.first().party.owningKey))
} else {
- val state = MultiOwnerState(magicNumber, owners.map { it.party.owningKey })
+ val state = MultiOwnerState(magicNumber, owners.map { it.party })
TransactionType.General.Builder(notary = notary).withItems(state, Command(Commands.Create(), owners.map { it.party.owningKey }))
}
}
- fun move(prior: StateAndRef, newOwner: PublicKey) = move(listOf(prior), newOwner)
- fun move(priors: List>, newOwner: PublicKey): TransactionBuilder {
+ fun move(prior: StateAndRef, newOwner: AbstractParty) = move(listOf(prior), newOwner)
+ fun move(priors: List>, newOwner: AbstractParty): TransactionBuilder {
require(priors.isNotEmpty())
val priorState = priors[0].state.data
val (cmd, state) = priorState.withNewOwner(newOwner)
return TransactionType.General.Builder(notary = priors[0].state.notary).withItems(
/* INPUTS */ *priors.toTypedArray(),
- /* COMMAND */ Command(cmd, priorState.owner),
+ /* COMMAND */ Command(cmd, priorState.owner.owningKey),
/* OUTPUT */ state
)
}
diff --git a/core/src/main/kotlin/net/corda/core/contracts/DummyContractV2.kt b/core/src/main/kotlin/net/corda/core/contracts/DummyContractV2.kt
index 2fcc633144..a0c4386236 100644
--- a/core/src/main/kotlin/net/corda/core/contracts/DummyContractV2.kt
+++ b/core/src/main/kotlin/net/corda/core/contracts/DummyContractV2.kt
@@ -1,9 +1,9 @@
package net.corda.core.contracts
import net.corda.core.crypto.SecureHash
+import net.corda.core.identity.AbstractParty
import net.corda.core.transactions.WireTransaction
import net.corda.flows.ContractUpgradeFlow
-import java.security.PublicKey
// The dummy contract doesn't do anything useful. It exists for testing purposes.
val DUMMY_V2_PROGRAM_ID = DummyContractV2()
@@ -15,9 +15,9 @@ val DUMMY_V2_PROGRAM_ID = DummyContractV2()
class DummyContractV2 : UpgradedContract {
override val legacyContract = DummyContract::class.java
- data class State(val magicNumber: Int = 0, val owners: List) : ContractState {
+ data class State(val magicNumber: Int = 0, val owners: List) : ContractState {
override val contract = DUMMY_V2_PROGRAM_ID
- override val participants: List = owners
+ override val participants: List = owners
}
interface Commands : CommandData {
@@ -44,16 +44,16 @@ class DummyContractV2 : UpgradedContract): Pair> {
+ fun generateUpgradeFromV1(vararg states: StateAndRef): Pair> {
val notary = states.map { it.state.notary }.single()
require(states.isNotEmpty())
- val signees = states.flatMap { it.state.data.participants }.toSet()
+ val signees: Set = states.flatMap { it.state.data.participants }.distinct().toSet()
return Pair(TransactionType.General.Builder(notary).apply {
states.forEach {
addInputState(it)
addOutputState(upgrade(it.state.data))
- addCommand(UpgradeCommand(DUMMY_V2_PROGRAM_ID.javaClass), signees.toList())
+ addCommand(UpgradeCommand(DUMMY_V2_PROGRAM_ID.javaClass), signees.map { it.owningKey }.toList())
}
}.toWireTransaction(), signees)
}
diff --git a/core/src/main/kotlin/net/corda/core/contracts/DummyState.kt b/core/src/main/kotlin/net/corda/core/contracts/DummyState.kt
index 0eb8d4555f..1498b8c379 100644
--- a/core/src/main/kotlin/net/corda/core/contracts/DummyState.kt
+++ b/core/src/main/kotlin/net/corda/core/contracts/DummyState.kt
@@ -1,12 +1,12 @@
package net.corda.core.contracts
-import java.security.PublicKey
+import net.corda.core.identity.AbstractParty
/**
* Dummy state for use in testing. Not part of any contract, not even the [DummyContract].
*/
data class DummyState(val magicNumber: Int = 0) : ContractState {
override val contract = DUMMY_PROGRAM_ID
- override val participants: List
+ override val participants: List
get() = emptyList()
}
diff --git a/core/src/main/kotlin/net/corda/core/contracts/FungibleAsset.kt b/core/src/main/kotlin/net/corda/core/contracts/FungibleAsset.kt
index da4dca8a32..bf6d856d97 100644
--- a/core/src/main/kotlin/net/corda/core/contracts/FungibleAsset.kt
+++ b/core/src/main/kotlin/net/corda/core/contracts/FungibleAsset.kt
@@ -1,12 +1,8 @@
package net.corda.core.contracts
-import net.corda.core.identity.Party
import net.corda.core.flows.FlowException
-import net.corda.core.transactions.TransactionBuilder
-import net.corda.core.utilities.loggerFor
-import net.corda.core.utilities.trace
+import net.corda.core.identity.AbstractParty
import java.security.PublicKey
-import java.util.*
class InsufficientBalanceException(val amountMissing: Amount<*>) : FlowException("Insufficient balance, missing $amountMissing")
@@ -32,9 +28,9 @@ interface FungibleAsset : OwnableState {
*/
val exitKeys: Collection
/** There must be a MoveCommand signed by this key to claim the amount */
- override val owner: PublicKey
+ override val owner: AbstractParty
- fun move(newAmount: Amount>, newOwner: PublicKey): FungibleAsset
+ fun move(newAmount: Amount>, newOwner: AbstractParty): FungibleAsset
// Just for grouping
interface Commands : CommandData {
diff --git a/core/src/main/kotlin/net/corda/core/contracts/Structures.kt b/core/src/main/kotlin/net/corda/core/contracts/Structures.kt
index 6ea81ca9a5..5f687b2fb4 100644
--- a/core/src/main/kotlin/net/corda/core/contracts/Structures.kt
+++ b/core/src/main/kotlin/net/corda/core/contracts/Structures.kt
@@ -4,6 +4,7 @@ import net.corda.core.contracts.clauses.Clause
import net.corda.core.crypto.SecureHash
import net.corda.core.flows.FlowLogicRef
import net.corda.core.flows.FlowLogicRefFactory
+import net.corda.core.identity.AbstractParty
import net.corda.core.identity.AnonymousParty
import net.corda.core.identity.Party
import net.corda.core.node.services.ServiceType
@@ -114,7 +115,7 @@ interface ContractState {
* The participants list should normally be derived from the contents of the state. E.g. for [Cash] the participants
* list should just contain the owner.
*/
- val participants: List
+ val participants: List
}
/**
@@ -174,10 +175,10 @@ fun Amount>.withoutIssuer(): Amount = Amount(quantity, to
*/
interface OwnableState : ContractState {
/** There must be a MoveCommand signed by this key to claim the amount */
- val owner: PublicKey
+ val owner: AbstractParty
/** Copies the underlying data structure, replacing the owner field with this new value and leaving the rest alone */
- fun withNewOwner(newOwner: PublicKey): Pair
+ fun withNewOwner(newOwner: AbstractParty): Pair
}
/** Something which is scheduled to happen at a point in time */
@@ -280,7 +281,7 @@ interface DealState : LinearState {
* separate process exchange certificates to ascertain identities. Thus decoupling identities from
* [ContractState]s.
* */
- val parties: List
+ val parties: List
/**
* Generate a partial transaction representing an agreement (command) to this deal, allowing a general
@@ -343,9 +344,7 @@ inline fun Iterable>.filt
* ledger. The reference is intended to be encrypted so it's meaningless to anyone other than the party.
*/
@CordaSerializable
-data class PartyAndReference(val party: AnonymousParty, val reference: OpaqueBytes) {
- constructor(party: Party, reference: OpaqueBytes) : this(party.toAnonymous(), reference)
-
+data class PartyAndReference(val party: AbstractParty, val reference: OpaqueBytes) {
override fun toString() = "$party$reference"
}
@@ -411,7 +410,12 @@ data class AuthenticatedObject(
* between (after, before).
*/
@CordaSerializable
-data class Timestamp(val after: Instant?, val before: Instant?) {
+data class Timestamp(
+ /** The time at which this transaction is said to have occurred is after this moment */
+ val after: Instant?,
+ /** The time at which this transaction is said to have occurred is before this moment */
+ val before: Instant?
+) {
init {
if (after == null && before == null)
throw IllegalArgumentException("At least one of before/after must be specified")
diff --git a/core/src/main/kotlin/net/corda/core/contracts/TransactionTypes.kt b/core/src/main/kotlin/net/corda/core/contracts/TransactionTypes.kt
index bac9fbde9d..e4d343a3c6 100644
--- a/core/src/main/kotlin/net/corda/core/contracts/TransactionTypes.kt
+++ b/core/src/main/kotlin/net/corda/core/contracts/TransactionTypes.kt
@@ -2,6 +2,7 @@ package net.corda.core.contracts
import net.corda.core.identity.Party
import net.corda.core.serialization.CordaSerializable
+import net.corda.core.serialization.DeserializeAsKotlinObjectDef
import net.corda.core.transactions.LedgerTransaction
import net.corda.core.transactions.TransactionBuilder
import java.security.PublicKey
@@ -60,7 +61,7 @@ sealed class TransactionType {
abstract fun verifyTransaction(tx: LedgerTransaction)
/** A general transaction type where transaction validity is determined by custom contract code */
- object General : TransactionType() {
+ object General : TransactionType(), DeserializeAsKotlinObjectDef {
/** Just uses the default [TransactionBuilder] with no special logic */
class Builder(notary: Party?) : TransactionBuilder(General, notary)
@@ -140,14 +141,14 @@ sealed class TransactionType {
* A special transaction type for reassigning a notary for a state. Validation does not involve running
* any contract code, it just checks that the states are unmodified apart from the notary field.
*/
- object NotaryChange : TransactionType() {
+ object NotaryChange : TransactionType(), DeserializeAsKotlinObjectDef {
/**
* A transaction builder that automatically sets the transaction type to [NotaryChange]
* and adds the list of participants to the signers set for every input state.
*/
class Builder(notary: Party) : TransactionBuilder(NotaryChange, notary) {
override fun addInputState(stateAndRef: StateAndRef<*>) {
- signers.addAll(stateAndRef.state.data.participants)
+ signers.addAll(stateAndRef.state.data.participants.map { it.owningKey })
super.addInputState(stateAndRef)
}
}
@@ -170,6 +171,6 @@ sealed class TransactionType {
}
}
- override fun getRequiredSigners(tx: LedgerTransaction) = tx.inputs.flatMap { it.state.data.participants }.toSet()
+ override fun getRequiredSigners(tx: LedgerTransaction) = tx.inputs.flatMap { it.state.data.participants }.map { it.owningKey }.toSet()
}
}
diff --git a/core/src/main/kotlin/net/corda/core/crypto/CompositeSignature.kt b/core/src/main/kotlin/net/corda/core/crypto/CompositeSignature.kt
index 69214c380b..328af22603 100644
--- a/core/src/main/kotlin/net/corda/core/crypto/CompositeSignature.kt
+++ b/core/src/main/kotlin/net/corda/core/crypto/CompositeSignature.kt
@@ -1,6 +1,8 @@
package net.corda.core.crypto
import net.corda.core.serialization.deserialize
+import org.bouncycastle.asn1.ASN1ObjectIdentifier
+import org.bouncycastle.asn1.x509.AlgorithmIdentifier
import java.io.ByteArrayOutputStream
import java.security.*
import java.security.spec.AlgorithmParameterSpec
@@ -10,7 +12,12 @@ import java.security.spec.AlgorithmParameterSpec
*/
class CompositeSignature : Signature(ALGORITHM) {
companion object {
- val ALGORITHM = "X-Corda-CompositeSig"
+ val ALGORITHM = "2.25.30086077608615255153862931087626791003"
+ // UUID-based OID
+ // TODO: Register for an OID space and issue our own shorter OID
+ val ALGORITHM_IDENTIFIER = AlgorithmIdentifier(ASN1ObjectIdentifier(ALGORITHM))
+
+ fun getService(provider: Provider) = Provider.Service(provider, "Signature", ALGORITHM, CompositeSignature::class.java.name, emptyList(), emptyMap())
}
private var signatureState: State? = null
diff --git a/core/src/main/kotlin/net/corda/core/crypto/Crypto.kt b/core/src/main/kotlin/net/corda/core/crypto/Crypto.kt
index e102c2bd99..6e1a2fec15 100644
--- a/core/src/main/kotlin/net/corda/core/crypto/Crypto.kt
+++ b/core/src/main/kotlin/net/corda/core/crypto/Crypto.kt
@@ -21,13 +21,20 @@ import org.bouncycastle.cert.jcajce.JcaX509CertificateConverter
import org.bouncycastle.cert.jcajce.JcaX509v3CertificateBuilder
import org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPrivateKey
import org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPublicKey
+import org.bouncycastle.jcajce.provider.asymmetric.rsa.BCRSAPrivateKey
+import org.bouncycastle.jcajce.provider.asymmetric.rsa.BCRSAPublicKey
import org.bouncycastle.jcajce.provider.util.AsymmetricKeyInfoConverter
import org.bouncycastle.jce.ECNamedCurveTable
import org.bouncycastle.jce.provider.BouncyCastleProvider
import org.bouncycastle.pkcs.PKCS10CertificationRequest
import org.bouncycastle.pkcs.jcajce.JcaPKCS10CertificationRequestBuilder
import org.bouncycastle.pqc.jcajce.provider.BouncyCastlePQCProvider
+import org.bouncycastle.pqc.jcajce.provider.sphincs.BCSphincs256PrivateKey
+import org.bouncycastle.pqc.jcajce.provider.sphincs.BCSphincs256PublicKey
import org.bouncycastle.pqc.jcajce.spec.SPHINCS256KeyGenParameterSpec
+import sun.security.pkcs.PKCS8Key
+import sun.security.util.DerValue
+import sun.security.x509.X509Key
import java.math.BigInteger
import java.security.*
import java.security.KeyFactory
@@ -140,6 +147,10 @@ object Crypto {
SPHINCS256_SHA256
).associateBy { it.schemeCodeName }
+ // We need to group signature schemes per algorithm, so to quickly identify them during decoding.
+ // Please note there are schemes with the same algorithm, e.g. EC (or ECDSA) keys are used for both ECDSA_SECP256K1_SHA256 and ECDSA_SECP256R1_SHA256.
+ private val algorithmGroups = supportedSignatureSchemes.values.groupBy { it.algorithmName }
+
// This map is required to defend against users that forcibly call Security.addProvider / Security.removeProvider
// that could cause unexpected and suspicious behaviour.
// i.e. if someone removes a Provider and then he/she adds a new one with the same name.
@@ -167,37 +178,20 @@ object Crypto {
* @return a currently supported SignatureScheme.
* @throws IllegalArgumentException if the requested signature scheme is not supported.
*/
- fun findSignatureScheme(schemeCodeName: String): SignatureScheme = supportedSignatureSchemes[schemeCodeName] ?: throw IllegalArgumentException("Unsupported key/algorithm for metadata schemeCodeName: $schemeCodeName")
+ fun findSignatureScheme(schemeCodeName: String): SignatureScheme = supportedSignatureSchemes[schemeCodeName] ?: throw IllegalArgumentException("Unsupported key/algorithm for schemeCodeName: $schemeCodeName")
/**
* Retrieve the corresponding [SignatureScheme] based on the type of the input [Key].
* This function is usually called when requiring to verify signatures and the signing schemes must be defined.
- * Note that only the Corda platform standard schemes are supported (see [Crypto]).
- * Note that we always need to add an additional if-else statement when there are signature schemes
- * with the same algorithmName, but with different parameters (e.g. now there are two ECDSA schemes, each using its own curve).
+ * For the supported signature schemes see [Crypto].
* @param key either private or public.
* @return a currently supported SignatureScheme.
* @throws IllegalArgumentException if the requested key type is not supported.
*/
fun findSignatureScheme(key: Key): SignatureScheme {
- for (sig in supportedSignatureSchemes.values) {
- var algorithm = key.algorithm
- if (algorithm == "EC") algorithm = "ECDSA" // required to read ECC keys from Keystore, because encoding may change algorithm name from ECDSA to EC.
- if (algorithm == "SPHINCS-256") algorithm = "SPHINCS256" // because encoding may change algorithm name from SPHINCS256 to SPHINCS-256.
- if (algorithm == sig.algorithmName) {
- // If more than one ECDSA schemes are supported, we should distinguish between them by checking their curve parameters.
- if (algorithm == "EdDSA") {
- if ((key is EdDSAPublicKey && publicKeyOnCurve(sig, key)) || (key is EdDSAPrivateKey && key.params == sig.algSpec)) {
- return sig
- } else break // use continue if in the future we support more than one Edwards curves.
- } else if (algorithm == "ECDSA") {
- if ((key is BCECPublicKey && publicKeyOnCurve(sig, key)) || (key is BCECPrivateKey && key.parameters == sig.algSpec)) {
- return sig
- } else continue
- } else return sig // it's either RSA_SHA256 or SPHINCS-256.
- }
- }
- throw IllegalArgumentException("Unsupported key/algorithm for the key: ${key.encoded.toBase58()}")
+ val algorithm = matchingAlgorithmName(key.algorithm)
+ algorithmGroups[algorithm]?.filter { validateKey(it, key) }?.firstOrNull { return it }
+ throw IllegalArgumentException("Unsupported key algorithm: ${key.algorithm} or invalid key format")
}
/**
@@ -209,11 +203,16 @@ object Crypto {
*/
@Throws(IllegalArgumentException::class)
fun decodePrivateKey(encodedKey: ByteArray): PrivateKey {
- for ((_, _, _, providerName, algorithmName) in supportedSignatureSchemes.values) {
+ val algorithm = matchingAlgorithmName(PKCS8Key.parseKey(DerValue(encodedKey)).algorithm)
+ // There are cases where the same key algorithm is applied to different signature schemes.
+ // Currently, this occurs with ECDSA as it applies to either secp256K1 or secp256R1 curves.
+ // In such a case, we should try and identify which of the candidate schemes is the correct one so as
+ // to generate the appropriate key.
+ for (signatureScheme in algorithmGroups[algorithm]!!) {
try {
- return KeyFactory.getInstance(algorithmName, providerMap[providerName]).generatePrivate(PKCS8EncodedKeySpec(encodedKey))
+ return KeyFactory.getInstance(signatureScheme.algorithmName, providerMap[signatureScheme.providerName]).generatePrivate(PKCS8EncodedKeySpec(encodedKey))
} catch (ikse: InvalidKeySpecException) {
- // ignore it - only used to bypass the scheme that causes an exception.
+ // ignore it - only used to bypass the scheme that causes an exception, as it has the same name, but different params.
}
}
throw IllegalArgumentException("This private key cannot be decoded, please ensure it is PKCS8 encoded and the signature scheme is supported.")
@@ -240,6 +239,8 @@ object Crypto {
*/
@Throws(IllegalArgumentException::class, InvalidKeySpecException::class)
fun decodePrivateKey(signatureScheme: SignatureScheme, encodedKey: ByteArray): PrivateKey {
+ if (!isSupportedSignatureScheme(signatureScheme))
+ throw IllegalArgumentException("Unsupported key/algorithm for schemeCodeName: $signatureScheme.schemeCodeName")
try {
return KeyFactory.getInstance(signatureScheme.algorithmName, providerMap[signatureScheme.providerName]).generatePrivate(PKCS8EncodedKeySpec(encodedKey))
} catch (ikse: InvalidKeySpecException) {
@@ -256,11 +257,16 @@ object Crypto {
*/
@Throws(IllegalArgumentException::class)
fun decodePublicKey(encodedKey: ByteArray): PublicKey {
- for ((_, _, _, providerName, algorithmName) in supportedSignatureSchemes.values) {
+ val algorithm = matchingAlgorithmName(X509Key.parse(DerValue(encodedKey)).algorithm)
+ // There are cases where the same key algorithm is applied to different signature schemes.
+ // Currently, this occurs with ECDSA as it applies to either secp256K1 or secp256R1 curves.
+ // In such a case, we should try and identify which of the candidate schemes is the correct one so as
+ // to generate the appropriate key.
+ for (signatureScheme in algorithmGroups[algorithm]!!) {
try {
- return KeyFactory.getInstance(algorithmName, providerMap[providerName]).generatePublic(X509EncodedKeySpec(encodedKey))
+ return KeyFactory.getInstance(signatureScheme.algorithmName, providerMap[signatureScheme.providerName]).generatePublic(X509EncodedKeySpec(encodedKey))
} catch (ikse: InvalidKeySpecException) {
- // ignore it - only used to bypass the scheme that causes an exception.
+ // ignore it - only used to bypass the scheme that causes an exception, as it has the same name, but different params.
}
}
throw IllegalArgumentException("This public key cannot be decoded, please ensure it is X509 encoded and the signature scheme is supported.")
@@ -271,7 +277,7 @@ object Crypto {
* This should be used when the type key is known, e.g. during Kryo deserialisation or with key caches or key managers.
* @param schemeCodeName a [String] that should match a key in supportedSignatureSchemes map (e.g. ECDSA_SECP256K1_SHA256).
* @param encodedKey an X509 encoded public key.
- * @throws IllegalArgumentException if the requested scheme is not supported
+ * @throws IllegalArgumentException if the requested scheme is not supported.
* @throws InvalidKeySpecException if the given key specification
* is inappropriate for this key factory to produce a public key.
*/
@@ -283,12 +289,14 @@ object Crypto {
* This should be used when the type key is known, e.g. during Kryo deserialisation or with key caches or key managers.
* @param signatureScheme a signature scheme (e.g. ECDSA_SECP256K1_SHA256).
* @param encodedKey an X509 encoded public key.
- * @throws IllegalArgumentException if the requested scheme is not supported
+ * @throws IllegalArgumentException if the requested scheme is not supported.
* @throws InvalidKeySpecException if the given key specification
* is inappropriate for this key factory to produce a public key.
*/
@Throws(IllegalArgumentException::class, InvalidKeySpecException::class)
fun decodePublicKey(signatureScheme: SignatureScheme, encodedKey: ByteArray): PublicKey {
+ if (!isSupportedSignatureScheme(signatureScheme))
+ throw IllegalArgumentException("Unsupported key/algorithm for schemeCodeName: $signatureScheme.schemeCodeName")
try {
return KeyFactory.getInstance(signatureScheme.algorithmName, providerMap[signatureScheme.providerName]).generatePublic(X509EncodedKeySpec(encodedKey))
} catch (ikse: InvalidKeySpecException) {
@@ -334,7 +342,7 @@ object Crypto {
*/
@Throws(IllegalArgumentException::class, InvalidKeyException::class, SignatureException::class)
fun doSign(signatureScheme: SignatureScheme, privateKey: PrivateKey, clearData: ByteArray): ByteArray {
- if (!supportedSignatureSchemes.containsKey(signatureScheme.schemeCodeName))
+ if (!isSupportedSignatureScheme(signatureScheme))
throw IllegalArgumentException("Unsupported key/algorithm for schemeCodeName: $signatureScheme.schemeCodeName")
val signature = Signature.getInstance(signatureScheme.signatureName, providerMap[signatureScheme.providerName])
if (clearData.isEmpty()) throw Exception("Signing of an empty array is not permitted!")
@@ -414,7 +422,7 @@ object Crypto {
*/
@Throws(InvalidKeyException::class, SignatureException::class, IllegalArgumentException::class)
fun doVerify(signatureScheme: SignatureScheme, publicKey: PublicKey, signatureData: ByteArray, clearData: ByteArray): Boolean {
- if (!supportedSignatureSchemes.containsKey(signatureScheme.schemeCodeName))
+ if (!isSupportedSignatureScheme(signatureScheme))
throw IllegalArgumentException("Unsupported key/algorithm for schemeCodeName: $signatureScheme.schemeCodeName")
if (signatureData.isEmpty()) throw IllegalArgumentException("Signature data is empty!")
if (clearData.isEmpty()) throw IllegalArgumentException("Clear data is empty, nothing to verify!")
@@ -440,7 +448,7 @@ object Crypto {
*/
@Throws(InvalidKeyException::class, SignatureException::class, IllegalArgumentException::class)
fun doVerify(publicKey: PublicKey, transactionSignature: TransactionSignature): Boolean {
- if (publicKey != transactionSignature.metaData.publicKey) IllegalArgumentException("MetaData's publicKey: ${transactionSignature.metaData.publicKey.encoded.toBase58()} does not match the input clearData: ${publicKey.encoded.toBase58()}")
+ if (publicKey != transactionSignature.metaData.publicKey) IllegalArgumentException("MetaData's publicKey: ${transactionSignature.metaData.publicKey.toStringShort()} does not match")
return Crypto.doVerify(publicKey, transactionSignature.signatureData, transactionSignature.metaData.bytes())
}
@@ -477,7 +485,7 @@ object Crypto {
*/
@Throws(SignatureException::class, IllegalArgumentException::class)
fun isValid(signatureScheme: SignatureScheme, publicKey: PublicKey, signatureData: ByteArray, clearData: ByteArray): Boolean {
- if (!supportedSignatureSchemes.containsKey(signatureScheme.schemeCodeName))
+ if (!isSupportedSignatureScheme(signatureScheme))
throw IllegalArgumentException("Unsupported key/algorithm for schemeCodeName: $signatureScheme.schemeCodeName")
val signature = Signature.getInstance(signatureScheme.signatureName, providerMap[signatureScheme.providerName])
signature.initVerify(publicKey)
@@ -505,7 +513,7 @@ object Crypto {
@Throws(IllegalArgumentException::class)
@JvmOverloads
fun generateKeyPair(signatureScheme: SignatureScheme = DEFAULT_SIGNATURE_SCHEME): KeyPair {
- if (!supportedSignatureSchemes.containsKey(signatureScheme.schemeCodeName))
+ if (!isSupportedSignatureScheme(signatureScheme))
throw IllegalArgumentException("Unsupported key/algorithm for schemeCodeName: $signatureScheme.schemeCodeName")
val keyPairGenerator = KeyPairGenerator.getInstance(signatureScheme.algorithmName, providerMap[signatureScheme.providerName])
if (signatureScheme.algSpec != null)
@@ -547,20 +555,16 @@ object Crypto {
return KeyPair(EdDSAPublicKey(pub), EdDSAPrivateKey(priv))
}
- /** Check if the requested signature scheme is supported by the system. */
- fun isSupportedSignatureScheme(schemeCodeName: String): Boolean = schemeCodeName in supportedSignatureSchemes
-
- fun isSupportedSignatureScheme(signatureScheme: SignatureScheme): Boolean = signatureScheme.schemeCodeName in supportedSignatureSchemes
-
/**
- * Use bouncy castle utilities to sign completed X509 certificate with CA cert private key
+ * Use bouncy castle utilities to sign completed X509 certificate with CA cert private key.
*/
fun createCertificate(issuer: X500Name, issuerKeyPair: KeyPair,
subject: X500Name, subjectPublicKey: PublicKey,
keyUsage: KeyUsage, purposes: List,
- signatureScheme: SignatureScheme, validityWindow: Pair,
+ validityWindow: Pair,
pathLength: Int? = null, subjectAlternativeName: List? = null): X509Certificate {
+ val signatureScheme = findSignatureScheme(issuerKeyPair.private)
val provider = providerMap[signatureScheme.providerName]
val serial = BigInteger.valueOf(random63BitValue())
val keyPurposes = DERSequence(ASN1EncodableVector().apply { purposes.forEach { add(it) } })
@@ -598,9 +602,9 @@ object Crypto {
* Check if a point's coordinates are on the expected curve to avoid certain types of ECC attacks.
* Point-at-infinity is not permitted as well.
* @see Small subgroup and invalid-curve attacks for a more descriptive explanation on such attacks.
- * We use this function on [findSignatureScheme] for a [PublicKey]; currently used for signature verification only.
+ * We use this function on [validatePublicKey], which is currently used for signature verification only.
* Thus, as these attacks are mostly not relevant to signature verification, we should note that
- * we're doing it out of an abundance of caution and specifically to proactively protect developers
+ * we are doing it out of an abundance of caution and specifically to proactively protect developers
* against using these points as part of a DH key agreement or for use cases as yet unimagined.
* This method currently applies to BouncyCastle's ECDSA (both R1 and K1 curves) and I2P's EdDSA (ed25519 curve).
* @param publicKey a [PublicKey], usually used to validate a signer's public key in on the Curve.
@@ -622,4 +626,69 @@ object Crypto {
// return true if EdDSA publicKey is point at infinity.
// For EdDSA a custom function is required as it is not supported by the I2P implementation.
private fun isEdDSAPointAtInfinity(publicKey: EdDSAPublicKey) = publicKey.a.toP3() == (EDDSA_ED25519_SHA512.algSpec as EdDSANamedCurveSpec).curve.getZero(GroupElement.Representation.P3)
+
+ /** Check if the requested [SignatureScheme] is supported by the system. */
+ fun isSupportedSignatureScheme(signatureScheme: SignatureScheme): Boolean = supportedSignatureSchemes[signatureScheme.schemeCodeName] === signatureScheme
+
+ // map algorithm names returned from Keystore (or after encode/decode) to the supported algorithm names.
+ private fun matchingAlgorithmName(algorithm: String): String {
+ return when (algorithm) {
+ "EC" -> "ECDSA"
+ "SPHINCS-256" -> "SPHINCS256"
+ "1.3.6.1.4.1.22554.2.1" -> "SPHINCS256" // Unfortunately, PKCS8Key and X509Key parsing return the OID as the algorithm name and not SPHINCS256.
+ else -> algorithm
+ }
+ }
+
+ // validate a key, by checking its algorithmic params.
+ private fun validateKey(signatureScheme: SignatureScheme, key: Key): Boolean {
+ return when (key) {
+ is PublicKey -> validatePublicKey(signatureScheme, key)
+ is PrivateKey -> validatePrivateKey(signatureScheme, key)
+ else -> throw IllegalArgumentException("Unsupported key type: ${key::class}")
+ }
+ }
+
+ // check if a public key satisfies algorithm specs (for ECC: key should lie on the curve and not being point-at-infinity).
+ private fun validatePublicKey(signatureScheme: SignatureScheme, key: PublicKey): Boolean {
+ when (key) {
+ is BCECPublicKey, is EdDSAPublicKey -> return publicKeyOnCurve(signatureScheme, key)
+ is BCRSAPublicKey, is BCSphincs256PublicKey -> return true // TODO: Check if non-ECC keys satisfy params (i.e. approved/valid RSA modulus size).
+ else -> throw IllegalArgumentException("Unsupported key type: ${key::class}")
+ }
+ }
+
+ // check if a private key satisfies algorithm specs.
+ private fun validatePrivateKey(signatureScheme: SignatureScheme, key: PrivateKey): Boolean {
+ when (key) {
+ is BCECPrivateKey -> return key.parameters == signatureScheme.algSpec
+ is EdDSAPrivateKey -> return key.params == signatureScheme.algSpec
+ is BCRSAPrivateKey, is BCSphincs256PrivateKey -> return true // TODO: Check if non-ECC keys satisfy params (i.e. approved/valid RSA modulus size).
+ else -> throw IllegalArgumentException("Unsupported key type: ${key::class}")
+ }
+ }
+
+ /**
+ * Convert a public key to a supported implementation. This can be used to convert a SUN's EC key to an BC key.
+ * This method is usually required to retrieve a key (via its corresponding cert) from JKS keystores that by default return SUN implementations.
+ * @param key a public key.
+ * @return a supported implementation of the input public key.
+ * @throws IllegalArgumentException on not supported scheme or if the given key specification
+ * is inappropriate for a supported key factory to produce a private key.
+ */
+ fun toSupportedPublicKey(key: PublicKey): PublicKey {
+ return Crypto.decodePublicKey(key.encoded)
+ }
+
+ /**
+ * Convert a private key to a supported implementation. This can be used to convert a SUN's EC key to an BC key.
+ * This method is usually required to retrieve keys from JKS keystores that by default return SUN implementations.
+ * @param key a private key.
+ * @return a supported implementation of the input private key.
+ * @throws IllegalArgumentException on not supported scheme or if the given key specification
+ * is inappropriate for a supported key factory to produce a private key.
+ */
+ fun toSupportedPrivateKey(key: PrivateKey): PrivateKey {
+ return Crypto.decodePrivateKey(key.encoded)
+ }
}
diff --git a/core/src/main/kotlin/net/corda/core/crypto/CryptoUtils.kt b/core/src/main/kotlin/net/corda/core/crypto/CryptoUtils.kt
index 4a51cb10c1..0090e89014 100644
--- a/core/src/main/kotlin/net/corda/core/crypto/CryptoUtils.kt
+++ b/core/src/main/kotlin/net/corda/core/crypto/CryptoUtils.kt
@@ -2,10 +2,11 @@
package net.corda.core.crypto
+import net.corda.core.identity.AbstractParty
+import net.corda.core.identity.AnonymousParty
import net.corda.core.identity.Party
import net.corda.core.serialization.CordaSerializable
import net.corda.core.serialization.OpaqueBytes
-import net.i2p.crypto.eddsa.EdDSAPublicKey
import java.math.BigInteger
import net.corda.core.utilities.SgxSupport
import java.security.*
@@ -19,6 +20,8 @@ object NullPublicKey : PublicKey, Comparable {
override fun toString() = "NULL_KEY"
}
+val NULL_PARTY = AnonymousParty(NullPublicKey)
+
// TODO: Clean up this duplication between Null and Dummy public key
@CordaSerializable
class DummyPublicKey(val s: String) : PublicKey, Comparable {
@@ -69,11 +72,9 @@ fun KeyPair.sign(bytesToSign: OpaqueBytes, party: Party) = sign(bytesToSign.byte
// implementation of CompositeSignature.
@Throws(InvalidKeyException::class)
fun KeyPair.sign(bytesToSign: ByteArray, party: Party): DigitalSignature.LegallyIdentifiable {
+ // Quick workaround when we have CompositeKey as Party owningKey.
+ if (party.owningKey is CompositeKey) throw InvalidKeyException("Signing for parties with CompositeKey not supported.")
val sig = sign(bytesToSign)
- val sigKey = when (party.owningKey) { // Quick workaround when we have CompositeKey as Party owningKey.
- is CompositeKey -> throw InvalidKeyException("Signing for parties with CompositeKey not supported.")
- else -> party.owningKey
- }
return DigitalSignature.LegallyIdentifiable(party, sig.bytes)
}
diff --git a/core/src/main/kotlin/net/corda/core/crypto/KeyStoreUtilities.kt b/core/src/main/kotlin/net/corda/core/crypto/KeyStoreUtilities.kt
index e07ef9d8c5..138eed3c56 100644
--- a/core/src/main/kotlin/net/corda/core/crypto/KeyStoreUtilities.kt
+++ b/core/src/main/kotlin/net/corda/core/crypto/KeyStoreUtilities.kt
@@ -16,10 +16,10 @@ object KeyStoreUtilities {
/**
* Helper method to either open an existing keystore for modification, or create a new blank keystore.
- * @param keyStoreFilePath location of KeyStore file
+ * @param keyStoreFilePath location of KeyStore file.
* @param storePassword password to open the store. This does not have to be the same password as any keys stored,
* but for SSL purposes this is recommended.
- * @return returns the KeyStore opened/created
+ * @return returns the KeyStore opened/created.
*/
fun loadOrCreateKeyStore(keyStoreFilePath: Path, storePassword: String): KeyStore {
val pass = storePassword.toCharArray()
@@ -34,11 +34,11 @@ object KeyStoreUtilities {
}
/**
- * Helper method to open an existing keystore for modification/read
- * @param keyStoreFilePath location of KeyStore file which must exist, or this will throw FileNotFoundException
+ * Helper method to open an existing keystore for modification/read.
+ * @param keyStoreFilePath location of KeyStore file which must exist, or this will throw FileNotFoundException.
* @param storePassword password to open the store. This does not have to be the same password as any keys stored,
* but for SSL purposes this is recommended.
- * @return returns the KeyStore opened
+ * @return returns the KeyStore opened.
* @throws IOException if there was an error reading the key store from the file.
* @throws KeyStoreException if the password is incorrect or the key store is damaged.
*/
@@ -48,11 +48,11 @@ object KeyStoreUtilities {
}
/**
- * Helper method to open an existing keystore for modification/read
- * @param input stream containing a KeyStore e.g. loaded from a resource file
+ * Helper method to open an existing keystore for modification/read.
+ * @param input stream containing a KeyStore e.g. loaded from a resource file.
* @param storePassword password to open the store. This does not have to be the same password as any keys stored,
* but for SSL purposes this is recommended.
- * @return returns the KeyStore opened
+ * @return returns the KeyStore opened.
* @throws IOException if there was an error reading the key store from the stream.
* @throws KeyStoreException if the password is incorrect or the key store is damaged.
*/
@@ -68,12 +68,12 @@ object KeyStoreUtilities {
}
/**
- * Helper extension method to add, or overwrite any key data in store
- * @param alias name to record the private key and certificate chain under
- * @param key cryptographic key to store
+ * Helper extension method to add, or overwrite any key data in store.
+ * @param alias name to record the private key and certificate chain under.
+ * @param key cryptographic key to store.
* @param password password for unlocking the key entry in the future. This does not have to be the same password as any keys stored,
* but for SSL purposes this is recommended.
- * @param chain the sequence of certificates starting with the public key certificate for this key and extending to the root CA cert
+ * @param chain the sequence of certificates starting with the public key certificate for this key and extending to the root CA cert.
*/
fun KeyStore.addOrReplaceKey(alias: String, key: Key, password: CharArray, chain: Array) {
if (containsAlias(alias)) {
@@ -83,9 +83,9 @@ fun KeyStore.addOrReplaceKey(alias: String, key: Key, password: CharArray, chain
}
/**
- * Helper extension method to add, or overwrite any public certificate data in store
- * @param alias name to record the public certificate under
- * @param cert certificate to store
+ * Helper extension method to add, or overwrite any public certificate data in store.
+ * @param alias name to record the public certificate under.
+ * @param cert certificate to store.
*/
fun KeyStore.addOrReplaceCertificate(alias: String, cert: Certificate) {
if (containsAlias(alias)) {
@@ -96,8 +96,8 @@ fun KeyStore.addOrReplaceCertificate(alias: String, cert: Certificate) {
/**
- * Helper method save KeyStore to storage
- * @param keyStoreFilePath the file location to save to
+ * Helper method save KeyStore to storage.
+ * @param keyStoreFilePath the file location to save to.
* @param storePassword password to access the store in future. This does not have to be the same password as any keys stored,
* but for SSL purposes this is recommended.
*/
@@ -108,29 +108,47 @@ fun KeyStore.store(out: OutputStream, password: String) = store(out, password.to
/**
* Extract public and private keys from a KeyStore file assuming storage alias is known.
- * @param keyPassword Password to unlock the private key entries
- * @param alias The name to lookup the Key and Certificate chain from
- * @return The KeyPair found in the KeyStore under the specified alias
+ * @param alias The name to lookup the Key and Certificate chain from.
+ * @param keyPassword Password to unlock the private key entries.
+ * @return The KeyPair found in the KeyStore under the specified alias.
*/
-fun KeyStore.getKeyPair(alias: String, keyPassword: String): KeyPair = getCertificateAndKey(alias, keyPassword).keyPair
+fun KeyStore.getKeyPair(alias: String, keyPassword: String): KeyPair = getCertificateAndKeyPair(alias, keyPassword).keyPair
/**
* Helper method to load a Certificate and KeyPair from their KeyStore.
* The access details should match those of the createCAKeyStoreAndTrustStore call used to manufacture the keys.
- * @param keyPassword The password for the PrivateKey (not the store access password)
* @param alias The name to search for the data. Typically if generated with the methods here this will be one of
- * CERT_PRIVATE_KEY_ALIAS, ROOT_CA_CERT_PRIVATE_KEY_ALIAS, INTERMEDIATE_CA_PRIVATE_KEY_ALIAS defined above
+ * CERT_PRIVATE_KEY_ALIAS, ROOT_CA_CERT_PRIVATE_KEY_ALIAS, INTERMEDIATE_CA_PRIVATE_KEY_ALIAS defined above.
+ * @param keyPassword The password for the PrivateKey (not the store access password).
*/
-fun KeyStore.getCertificateAndKey(alias: String, keyPassword: String): CertificateAndKey {
- val keyPass = keyPassword.toCharArray()
- val key = getKey(alias, keyPass) as PrivateKey
+fun KeyStore.getCertificateAndKeyPair(alias: String, keyPassword: String): CertificateAndKeyPair {
val cert = getCertificate(alias) as X509Certificate
- return CertificateAndKey(cert, KeyPair(cert.publicKey, key))
+ return CertificateAndKeyPair(cert, KeyPair(Crypto.toSupportedPublicKey(cert.publicKey), getSupportedKey(alias, keyPassword)))
}
/**
- * Extract public X509 certificate from a KeyStore file assuming storage alias is know
- * @param alias The name to lookup the Key and Certificate chain from
- * @return The X509Certificate found in the KeyStore under the specified alias
+ * Extract public X509 certificate from a KeyStore file assuming storage alias is known.
+ * @param alias The name to lookup the Key and Certificate chain from.
+ * @return The X509Certificate found in the KeyStore under the specified alias.
*/
fun KeyStore.getX509Certificate(alias: String): X509Certificate = getCertificate(alias) as X509Certificate
+
+/**
+ * Extract a private key from a KeyStore file assuming storage alias is known.
+ * By default, a JKS keystore returns PrivateKey implementations supported by the SUN provider.
+ * For instance, if one imports a BouncyCastle ECC key, JKS will return a SUN ECC key implementation on getKey.
+ * To convert to a supported implementation, an encode->decode method is applied to the keystore's returned object.
+ * @param alias The name to lookup the Key.
+ * @param keyPassword Password to unlock the private key entries.
+ * @return the requested private key in supported type.
+ * @throws KeyStoreException if the keystore has not been initialized.
+ * @throws NoSuchAlgorithmException if the algorithm for recovering the key cannot be found (not supported from the Keystore provider).
+ * @throws UnrecoverableKeyException if the key cannot be recovered (e.g., the given password is wrong).
+ * @throws IllegalArgumentException on not supported scheme or if the given key specification
+ * is inappropriate for a supported key factory to produce a private key.
+ */
+fun KeyStore.getSupportedKey(alias: String, keyPassword: String): PrivateKey {
+ val keyPass = keyPassword.toCharArray()
+ val key = getKey(alias, keyPass) as PrivateKey
+ return Crypto.toSupportedPrivateKey(key)
+}
diff --git a/core/src/main/kotlin/net/corda/core/crypto/Party.kt b/core/src/main/kotlin/net/corda/core/crypto/Party.kt
deleted file mode 100644
index 883dff284c..0000000000
--- a/core/src/main/kotlin/net/corda/core/crypto/Party.kt
+++ /dev/null
@@ -1,7 +0,0 @@
-package net.corda.core.crypto
-
-import org.bouncycastle.asn1.x500.X500Name
-import java.security.PublicKey
-
-@Deprecated("Party has moved to identity package", ReplaceWith("net.corda.core.identity.Party"))
-class Party(name: X500Name, owningKey: PublicKey) : net.corda.core.identity.Party(name, owningKey)
\ No newline at end of file
diff --git a/core/src/main/kotlin/net/corda/core/crypto/X509Utilities.kt b/core/src/main/kotlin/net/corda/core/crypto/X509Utilities.kt
index aba3573bf3..73a7192afa 100644
--- a/core/src/main/kotlin/net/corda/core/crypto/X509Utilities.kt
+++ b/core/src/main/kotlin/net/corda/core/crypto/X509Utilities.kt
@@ -17,11 +17,12 @@ import java.io.FileWriter
import java.io.InputStream
import java.net.InetAddress
import java.nio.file.Path
+import java.security.InvalidAlgorithmParameterException
import java.security.KeyPair
import java.security.KeyStore
import java.security.PublicKey
-import java.security.cert.CertificateFactory
-import java.security.cert.X509Certificate
+import java.security.cert.*
+import java.time.Duration
import java.time.Instant
import java.time.temporal.ChronoUnit
import java.util.*
@@ -42,29 +43,43 @@ object X509Utilities {
private val CA_KEY_PURPOSES = listOf(KeyPurposeId.id_kp_serverAuth, KeyPurposeId.id_kp_clientAuth, KeyPurposeId.anyExtendedKeyUsage)
private val CLIENT_KEY_PURPOSES = listOf(KeyPurposeId.id_kp_serverAuth, KeyPurposeId.id_kp_clientAuth)
- private val DEFAULT_VALIDITY_WINDOW = Pair(0, 365 * 10)
+ private val DEFAULT_VALIDITY_WINDOW = Pair(Duration.ofMillis(0), Duration.ofDays(365 * 10))
+
/**
- * Helper method to get a notBefore and notAfter pair from current day bounded by parent certificate validity range
- * @param daysBefore number of days to roll back returned start date relative to current date
- * @param daysAfter number of days to roll forward returned end date relative to current date
- * @param parentNotBefore if provided is used to lower bound the date interval returned
- * @param parentNotAfter if provided is used to upper bound the date interval returned
- * Note we use Date rather than LocalDate as the consuming java.security and BouncyCastle certificate apis all use Date
- * Thus we avoid too many round trip conversions.
+ * Helper function to return the latest out of an instant and an optional date.
*/
- private fun getCertificateValidityWindow(daysBefore: Int, daysAfter: Int, parentNotBefore: Date? = null, parentNotAfter: Date? = null): Pair {
+ private fun max(first: Instant, second: Date?): Date {
+ return if (second != null && second.time > first.toEpochMilli())
+ second
+ else
+ Date(first.toEpochMilli())
+ }
+
+ /**
+ * Helper function to return the earliest out of an instant and an optional date.
+ */
+ private fun min(first: Instant, second: Date?): Date {
+ return if (second != null && second.time < first.toEpochMilli())
+ second
+ else
+ Date(first.toEpochMilli())
+ }
+
+ /**
+ * Helper method to get a notBefore and notAfter pair from current day bounded by parent certificate validity range.
+ * @param before duration to roll back returned start date relative to current date.
+ * @param after duration to roll forward returned end date relative to current date.
+ * @param parent if provided certificate whose validity should bound the date interval returned.
+ */
+ private fun getCertificateValidityWindow(before: Duration, after: Duration, parent: X509Certificate? = null): Pair {
val startOfDayUTC = Instant.now().truncatedTo(ChronoUnit.DAYS)
- val notBefore = Date.from(startOfDayUTC.minus(daysBefore.toLong(), ChronoUnit.DAYS)).let { notBefore ->
- if (parentNotBefore != null && parentNotBefore.after(notBefore)) parentNotBefore else notBefore
- }
- val notAfter = Date.from(startOfDayUTC.plus(daysAfter.toLong(), ChronoUnit.DAYS)).let { notAfter ->
- if (parentNotAfter != null && parentNotAfter.after(notAfter)) parentNotAfter else notAfter
- }
+ val notBefore = max(startOfDayUTC - before, parent?.notBefore)
+ val notAfter = min(startOfDayUTC + after, parent?.notAfter)
return Pair(notBefore, notAfter)
}
/**
- * Return a bogus X509 for dev purposes.
+ * Return a bogus X509 for dev purposes. Use [getX509Name] for something more real.
*/
@Deprecated("Full legal names should be specified in all configurations")
fun getDevX509Name(commonName: String): X500Name {
@@ -96,71 +111,106 @@ object X509Utilities {
/*
* Create a de novo root self-signed X509 v3 CA cert and [KeyPair].
- * @param subject the cert Subject will be populated with the domain string
+ * @param subject the cert Subject will be populated with the domain string.
* @param signatureScheme The signature scheme which will be used to generate keys and certificate. Default to [DEFAULT_TLS_SIGNATURE_SCHEME] if not provided.
* @param validityWindow The certificate's validity window. Default to [DEFAULT_VALIDITY_WINDOW] if not provided.
* @return A data class is returned containing the new root CA Cert and its [KeyPair] for signing downstream certificates.
- * Note the generated certificate tree is capped at max depth of 2 to be in line with commercially available certificates
+ * Note the generated certificate tree is capped at max depth of 2 to be in line with commercially available certificates.
*/
@JvmStatic
- fun createSelfSignedCACert(subject: X500Name, signatureScheme: SignatureScheme = DEFAULT_TLS_SIGNATURE_SCHEME, validityWindow: Pair = DEFAULT_VALIDITY_WINDOW): CertificateAndKey {
- val keyPair = generateKeyPair(signatureScheme)
+ fun createSelfSignedCACert(subject: X500Name,
+ keyPair: KeyPair,
+ validityWindow: Pair = DEFAULT_VALIDITY_WINDOW): CertificateAndKeyPair {
val window = getCertificateValidityWindow(validityWindow.first, validityWindow.second)
- val cert = Crypto.createCertificate(subject, keyPair, subject, keyPair.public, CA_KEY_USAGE, CA_KEY_PURPOSES, signatureScheme, window, pathLength = 2)
- return CertificateAndKey(cert, keyPair)
+ val cert = Crypto.createCertificate(subject, keyPair, subject, keyPair.public, CA_KEY_USAGE, CA_KEY_PURPOSES, window, pathLength = 2)
+ return CertificateAndKeyPair(cert, keyPair)
}
+ @JvmStatic
+ fun createSelfSignedCACert(subject: X500Name, signatureScheme: SignatureScheme = DEFAULT_TLS_SIGNATURE_SCHEME,
+ validityWindow: Pair = DEFAULT_VALIDITY_WINDOW): CertificateAndKeyPair
+ = createSelfSignedCACert(subject, generateKeyPair(signatureScheme), validityWindow)
+
/**
* Create a de novo root intermediate X509 v3 CA cert and KeyPair.
* @param subject subject of the generated certificate.
- * @param ca The Public certificate and KeyPair of the root CA certificate above this used to sign it
+ * @param ca The Public certificate and KeyPair of the root CA certificate above this used to sign it.
* @param signatureScheme The signature scheme which will be used to generate keys and certificate. Default to [DEFAULT_TLS_SIGNATURE_SCHEME] if not provided.
* @param validityWindow The certificate's validity window. Default to [DEFAULT_VALIDITY_WINDOW] if not provided.
* @return A data class is returned containing the new intermediate CA Cert and its KeyPair for signing downstream certificates.
- * Note the generated certificate tree is capped at max depth of 1 below this to be in line with commercially available certificates
+ * Note the generated certificate tree is capped at max depth of 1 below this to be in line with commercially available certificates.
*/
@JvmStatic
- fun createIntermediateCert(subject: X500Name, ca: CertificateAndKey, signatureScheme: SignatureScheme = DEFAULT_TLS_SIGNATURE_SCHEME, validityWindow: Pair = DEFAULT_VALIDITY_WINDOW): CertificateAndKey {
+ fun createIntermediateCert(subject: X500Name,
+ ca: CertificateAndKeyPair,
+ signatureScheme: SignatureScheme = DEFAULT_TLS_SIGNATURE_SCHEME,
+ validityWindow: Pair = DEFAULT_VALIDITY_WINDOW): CertificateAndKeyPair {
val keyPair = generateKeyPair(signatureScheme)
val issuer = X509CertificateHolder(ca.certificate.encoded).subject
- val window = getCertificateValidityWindow(validityWindow.first, validityWindow.second, ca.certificate.notBefore, ca.certificate.notAfter)
- val cert = Crypto.createCertificate(issuer, ca.keyPair, subject, keyPair.public, CA_KEY_USAGE, CA_KEY_PURPOSES, signatureScheme, window, pathLength = 1)
- return CertificateAndKey(cert, keyPair)
+ val window = getCertificateValidityWindow(validityWindow.first, validityWindow.second, ca.certificate)
+ val cert = Crypto.createCertificate(issuer, ca.keyPair, subject, keyPair.public, CA_KEY_USAGE, CA_KEY_PURPOSES, window, pathLength = 1)
+ return CertificateAndKeyPair(cert, keyPair)
}
/**
* Create an X509v3 certificate suitable for use in TLS roles.
- * @param subject The contents to put in the subject field of the certificate
- * @param publicKey The PublicKey to be wrapped in the certificate
- * @param ca The Public certificate and KeyPair of the parent CA that will sign this certificate
- * @param subjectAlternativeNameDomains A set of alternate DNS names to be supported by the certificate during validation of the TLS handshakes
- * @param subjectAlternativeNameIps A set of alternate IP addresses to be supported by the certificate during validation of the TLS handshakes
- * @param signatureScheme The signature scheme which will be used to generate keys and certificate. Default to [DEFAULT_TLS_SIGNATURE_SCHEME] if not provided.
+ * @param subject The contents to put in the subject field of the certificate.
+ * @param publicKey The PublicKey to be wrapped in the certificate.
+ * @param ca The Public certificate and KeyPair of the parent CA that will sign this certificate.
+ * @param subjectAlternativeNameDomains A set of alternate DNS names to be supported by the certificate during validation of the TLS handshakes.
+ * @param subjectAlternativeNameIps A set of alternate IP addresses to be supported by the certificate during validation of the TLS handshakes.
* @param validityWindow The certificate's validity window. Default to [DEFAULT_VALIDITY_WINDOW] if not provided.
* @return The generated X509Certificate suitable for use as a Server/Client certificate in TLS.
* This certificate is not marked as a CA cert to be similar in nature to commercial certificates.
*/
@JvmStatic
- fun createServerCert(subject: X500Name, publicKey: PublicKey,
- ca: CertificateAndKey,
- subjectAlternativeNameDomains: List,
- subjectAlternativeNameIps: List,
- signatureScheme: SignatureScheme = DEFAULT_TLS_SIGNATURE_SCHEME,
- validityWindow: Pair = DEFAULT_VALIDITY_WINDOW): X509Certificate {
+ fun createTlsServerCert(subject: X500Name, publicKey: PublicKey,
+ ca: CertificateAndKeyPair,
+ subjectAlternativeNameDomains: List,
+ subjectAlternativeNameIps: List,
+ validityWindow: Pair = DEFAULT_VALIDITY_WINDOW): X509Certificate {
val issuer = X509CertificateHolder(ca.certificate.encoded).subject
- val window = getCertificateValidityWindow(validityWindow.first, validityWindow.second, ca.certificate.notBefore, ca.certificate.notAfter)
+ val window = getCertificateValidityWindow(validityWindow.first, validityWindow.second, ca.certificate)
val dnsNames = subjectAlternativeNameDomains.map { GeneralName(GeneralName.dNSName, it) }
val ipAddresses = subjectAlternativeNameIps.filter {
IPAddress.isValidIPv6WithNetmask(it) || IPAddress.isValidIPv6(it) || IPAddress.isValidIPv4WithNetmask(it) || IPAddress.isValidIPv4(it)
}.map { GeneralName(GeneralName.iPAddress, it) }
- return Crypto.createCertificate(issuer, ca.keyPair, subject, publicKey, CLIENT_KEY_USAGE, CLIENT_KEY_PURPOSES, signatureScheme, window, subjectAlternativeName = dnsNames + ipAddresses)
+ return Crypto.createCertificate(issuer, ca.keyPair, subject, publicKey, CLIENT_KEY_USAGE, CLIENT_KEY_PURPOSES, window, subjectAlternativeName = dnsNames + ipAddresses)
}
/**
- * Helper method to store a .pem/.cer format file copy of a certificate if required for import into a PC/Mac, or for inspection
- * @param x509Certificate certificate to save
- * @param filename Target filename
+ * Build a certificate path from a trusted root certificate to a target certificate. This will always return a path
+ * directly from the root to the target, with no intermediate certificates (presuming that path is valid).
+ *
+ * @param rootCertAndKey trusted root certificate that will be the start of the path.
+ * @param targetCertAndKey certificate the path ends at.
+ * @param revocationEnabled whether revocation of certificates in the path should be checked.
+ */
+ fun createCertificatePath(rootCertAndKey: CertificateAndKeyPair,
+ targetCertAndKey: X509Certificate,
+ revocationEnabled: Boolean): CertPathBuilderResult {
+ val intermediateCertificates = setOf(targetCertAndKey)
+ val certStore = CertStore.getInstance("Collection", CollectionCertStoreParameters(intermediateCertificates))
+ val certPathFactory = CertPathBuilder.getInstance("PKIX")
+ val trustAnchor = TrustAnchor(rootCertAndKey.certificate, null)
+ val certPathParameters = try {
+ PKIXBuilderParameters(setOf(trustAnchor), X509CertSelector().apply {
+ certificate = targetCertAndKey
+ })
+ } catch (ex: InvalidAlgorithmParameterException) {
+ throw RuntimeException(ex)
+ }.apply {
+ addCertStore(certStore)
+ isRevocationEnabled = revocationEnabled
+ }
+ return certPathFactory.build(certPathParameters)
+ }
+
+ /**
+ * Helper method to store a .pem/.cer format file copy of a certificate if required for import into a PC/Mac, or for inspection.
+ * @param x509Certificate certificate to save.
+ * @param filename Target filename.
*/
@JvmStatic
fun saveCertificateAsPEMFile(x509Certificate: X509Certificate, filename: Path) {
@@ -172,9 +222,9 @@ object X509Utilities {
}
/**
- * Helper method to load back a .pem/.cer format file copy of a certificate
- * @param filename Source filename
- * @return The X509Certificate that was encoded in the file
+ * Helper method to load back a .pem/.cer format file copy of a certificate.
+ * @param filename Source filename.
+ * @return The X509Certificate that was encoded in the file.
*/
@JvmStatic
fun loadCertificateFromPEMFile(filename: Path): X509Certificate {
@@ -186,14 +236,14 @@ object X509Utilities {
}
/**
- * An all in wrapper to manufacture a server certificate and keys all stored in a KeyStore suitable for running TLS on the local machine
- * @param keyStoreFilePath KeyStore path to save output to
- * @param storePassword access password for KeyStore
+ * An all in wrapper to manufacture a server certificate and keys all stored in a KeyStore suitable for running TLS on the local machine.
+ * @param keyStoreFilePath KeyStore path to save output to.
+ * @param storePassword access password for KeyStore.
* @param keyPassword PrivateKey access password for the generated keys.
* It is recommended that this is the same as the storePassword as most TLS libraries assume they are the same.
- * @param caKeyStore KeyStore containing CA keys generated by createCAKeyStoreAndTrustStore
- * @param caKeyPassword password to unlock private keys in the CA KeyStore
- * @return The KeyStore created containing a private key, certificate chain and root CA public cert for use in TLS applications
+ * @param caKeyStore KeyStore containing CA keys generated by createCAKeyStoreAndTrustStore.
+ * @param caKeyPassword password to unlock private keys in the CA KeyStore.
+ * @return The KeyStore created containing a private key, certificate chain and root CA public cert for use in TLS applications.
*/
fun createKeystoreForSSL(keyStoreFilePath: Path,
storePassword: String,
@@ -203,12 +253,12 @@ object X509Utilities {
commonName: X500Name,
signatureScheme: SignatureScheme = DEFAULT_TLS_SIGNATURE_SCHEME): KeyStore {
- val rootCA = caKeyStore.getCertificateAndKey(CORDA_ROOT_CA_PRIVATE_KEY, caKeyPassword)
- val intermediateCA = caKeyStore.getCertificateAndKey(CORDA_INTERMEDIATE_CA_PRIVATE_KEY, caKeyPassword)
+ val rootCA = caKeyStore.getCertificateAndKeyPair(CORDA_ROOT_CA_PRIVATE_KEY, caKeyPassword)
+ val intermediateCA = caKeyStore.getCertificateAndKeyPair(CORDA_INTERMEDIATE_CA_PRIVATE_KEY, caKeyPassword)
val serverKey = generateKeyPair(signatureScheme)
val host = InetAddress.getLocalHost()
- val serverCert = createServerCert(commonName, serverKey.public, intermediateCA, listOf(host.hostName), listOf(host.hostAddress), signatureScheme)
+ val serverCert = createTlsServerCert(commonName, serverKey.public, intermediateCA, listOf(host.hostName), listOf(host.hostAddress))
val keyPass = keyPassword.toCharArray()
val keyStore = KeyStoreUtilities.loadOrCreateKeyStore(keyStoreFilePath, storePassword)
@@ -228,7 +278,7 @@ object X509Utilities {
/**
* Rebuild the distinguished name, adding a postfix to the common name. If no common name is present, this throws an
- * exception
+ * exception.
*/
@Throws(IllegalArgumentException::class)
fun X500Name.appendToCommonName(commonName: String): X500Name = mutateCommonName { attr -> attr.toString() + commonName }
@@ -238,7 +288,7 @@ fun X500Name.appendToCommonName(commonName: String): X500Name = mutateCommonName
* adds one.
*/
@Throws(IllegalArgumentException::class)
-fun X500Name.replaceCommonName(commonName: String): X500Name = mutateCommonName { attr -> commonName }
+fun X500Name.replaceCommonName(commonName: String): X500Name = mutateCommonName { _ -> commonName }
/**
* Rebuild the distinguished name, replacing the common name with a value generated from the provided function.
@@ -267,6 +317,7 @@ private fun X500Name.mutateCommonName(mutator: (ASN1Encodable) -> String): X500N
}
val X500Name.commonName: String get() = getRDNs(BCStyle.CN).first().first.value.toString()
+val X500Name.orgName: String? get() = getRDNs(BCStyle.O).firstOrNull()?.first?.value?.toString()
val X500Name.location: String get() = getRDNs(BCStyle.L).first().first.value.toString()
class CertificateStream(val input: InputStream) {
@@ -275,4 +326,4 @@ class CertificateStream(val input: InputStream) {
fun nextCertificate(): X509Certificate = certificateFactory.generateCertificate(input) as X509Certificate
}
-data class CertificateAndKey(val certificate: X509Certificate, val keyPair: KeyPair)
+data class CertificateAndKeyPair(val certificate: X509Certificate, val keyPair: KeyPair)
diff --git a/core/src/main/kotlin/net/corda/core/flows/FlowLogicRef.kt b/core/src/main/kotlin/net/corda/core/flows/FlowLogicRef.kt
index 7b4ff2e6ce..3f9996c081 100644
--- a/core/src/main/kotlin/net/corda/core/flows/FlowLogicRef.kt
+++ b/core/src/main/kotlin/net/corda/core/flows/FlowLogicRef.kt
@@ -9,11 +9,12 @@ import net.corda.core.serialization.CordaSerializable
* the flow to run at the scheduled time.
*/
interface FlowLogicRefFactory {
- fun create(type: Class>, vararg args: Any?): FlowLogicRef
+ fun create(flowClass: Class>, vararg args: Any?): FlowLogicRef
}
@CordaSerializable
-class IllegalFlowLogicException(type: Class<*>, msg: String) : IllegalArgumentException("${FlowLogicRef::class.java.simpleName} cannot be constructed for ${FlowLogic::class.java.simpleName} of type ${type.name} $msg")
+class IllegalFlowLogicException(type: Class<*>, msg: String) : IllegalArgumentException(
+ "${FlowLogicRef::class.java.simpleName} cannot be constructed for ${FlowLogic::class.java.simpleName} of type ${type.name} $msg")
/**
* A handle interface representing a [FlowLogic] instance which would be possible to safely pass out of the contract sandbox.
diff --git a/core/src/main/kotlin/net/corda/core/flows/SchedulableFlow.kt b/core/src/main/kotlin/net/corda/core/flows/SchedulableFlow.kt
new file mode 100644
index 0000000000..729299ee1a
--- /dev/null
+++ b/core/src/main/kotlin/net/corda/core/flows/SchedulableFlow.kt
@@ -0,0 +1,14 @@
+package net.corda.core.flows
+
+import java.lang.annotation.Inherited
+import kotlin.annotation.AnnotationTarget.CLASS
+
+/**
+ * Any [FlowLogic] which is schedulable and is designed to be invoked by a [net.corda.core.contracts.SchedulableState]
+ * must have this annotation. If it's missing [FlowLogicRefFactory.create] will throw an exception when it comes time
+ * to schedule the next activity in [net.corda.core.contracts.SchedulableState.nextScheduledActivity].
+ */
+@Target(CLASS)
+@Inherited
+@MustBeDocumented
+annotation class SchedulableFlow
\ No newline at end of file
diff --git a/core/src/main/kotlin/net/corda/core/flows/StartableByRPC.kt b/core/src/main/kotlin/net/corda/core/flows/StartableByRPC.kt
new file mode 100644
index 0000000000..6eafd3d699
--- /dev/null
+++ b/core/src/main/kotlin/net/corda/core/flows/StartableByRPC.kt
@@ -0,0 +1,15 @@
+package net.corda.core.flows
+
+import java.lang.annotation.Inherited
+import kotlin.annotation.AnnotationTarget.CLASS
+
+/**
+ * Any [FlowLogic] which is to be started by the RPC interface ([net.corda.core.messaging.CordaRPCOps.startFlowDynamic]
+ * and [net.corda.core.messaging.CordaRPCOps.startTrackedFlowDynamic]) must have this annotation. If it's missing the
+ * flow will not be allowed to start and an exception will be thrown.
+ */
+@Target(CLASS)
+@Inherited
+@MustBeDocumented
+// TODO Consider a different name, something along the lines of SchedulableFlow
+annotation class StartableByRPC
\ No newline at end of file
diff --git a/core/src/main/kotlin/net/corda/core/identity/AbstractParty.kt b/core/src/main/kotlin/net/corda/core/identity/AbstractParty.kt
index 9f90a5267a..6b285c3698 100644
--- a/core/src/main/kotlin/net/corda/core/identity/AbstractParty.kt
+++ b/core/src/main/kotlin/net/corda/core/identity/AbstractParty.kt
@@ -16,7 +16,6 @@ abstract class AbstractParty(val owningKey: PublicKey) {
override fun equals(other: Any?): Boolean = other is AbstractParty && this.owningKey == other.owningKey
override fun hashCode(): Int = owningKey.hashCode()
- abstract fun toAnonymous(): AnonymousParty
abstract fun nameOrNull(): X500Name?
abstract fun ref(bytes: OpaqueBytes): PartyAndReference
diff --git a/core/src/main/kotlin/net/corda/core/identity/AnonymousParty.kt b/core/src/main/kotlin/net/corda/core/identity/AnonymousParty.kt
index 81c04846cc..dc1ec16f58 100644
--- a/core/src/main/kotlin/net/corda/core/identity/AnonymousParty.kt
+++ b/core/src/main/kotlin/net/corda/core/identity/AnonymousParty.kt
@@ -18,5 +18,4 @@ class AnonymousParty(owningKey: PublicKey) : AbstractParty(owningKey) {
override fun nameOrNull(): X500Name? = null
override fun ref(bytes: OpaqueBytes): PartyAndReference = PartyAndReference(this, bytes)
- override fun toAnonymous() = this
}
\ No newline at end of file
diff --git a/core/src/main/kotlin/net/corda/core/identity/Party.kt b/core/src/main/kotlin/net/corda/core/identity/Party.kt
index 1016bb4352..b94f266b8c 100644
--- a/core/src/main/kotlin/net/corda/core/identity/Party.kt
+++ b/core/src/main/kotlin/net/corda/core/identity/Party.kt
@@ -1,6 +1,7 @@
package net.corda.core.identity
import net.corda.core.contracts.PartyAndReference
+import net.corda.core.crypto.CertificateAndKeyPair
import net.corda.core.crypto.toBase58String
import net.corda.core.serialization.OpaqueBytes
import org.bouncycastle.asn1.x500.X500Name
@@ -25,11 +26,10 @@ import java.security.PublicKey
*
* @see CompositeKey
*/
-// TODO: Remove "open" from [Party] once deprecated crypto.Party class is removed
-open class Party(val name: X500Name, owningKey: PublicKey) : AbstractParty(owningKey) {
- override fun toAnonymous(): AnonymousParty = AnonymousParty(owningKey)
- override fun toString() = "${owningKey.toBase58String()} ($name)"
+class Party(val name: X500Name, owningKey: PublicKey) : AbstractParty(owningKey) {
+ constructor(certAndKey: CertificateAndKeyPair) : this(X500Name(certAndKey.certificate.subjectDN.name), certAndKey.keyPair.public)
+ override fun toString() = name.toString()
override fun nameOrNull(): X500Name? = name
- override fun ref(bytes: OpaqueBytes): PartyAndReference = PartyAndReference(this.toAnonymous(), bytes)
+ override fun ref(bytes: OpaqueBytes): PartyAndReference = PartyAndReference(this, bytes)
}
diff --git a/core/src/main/kotlin/net/corda/core/messaging/CordaRPCOps.kt b/core/src/main/kotlin/net/corda/core/messaging/CordaRPCOps.kt
index d5c4a02de3..190f2456a0 100644
--- a/core/src/main/kotlin/net/corda/core/messaging/CordaRPCOps.kt
+++ b/core/src/main/kotlin/net/corda/core/messaging/CordaRPCOps.kt
@@ -148,14 +148,14 @@ interface CordaRPCOps : RPCOps {
fun networkMapUpdates(): Pair, Observable>
/**
- * Start the given flow with the given arguments.
+ * Start the given flow with the given arguments. [logicType] must be annotated with [net.corda.core.flows.StartableByRPC].
*/
@RPCReturnsObservables
fun startFlowDynamic(logicType: Class>, vararg args: Any?): FlowHandle
/**
* Start the given flow with the given arguments, returning an [Observable] with a single observation of the
- * result of running the flow.
+ * result of running the flow. [logicType] must be annotated with [net.corda.core.flows.StartableByRPC].
*/
@RPCReturnsObservables
fun startTrackedFlowDynamic(logicType: Class>, vararg args: Any?): FlowProgressHandle
diff --git a/core/src/main/kotlin/net/corda/core/node/CordaPluginRegistry.kt b/core/src/main/kotlin/net/corda/core/node/CordaPluginRegistry.kt
index e2ed48355b..6d73439665 100644
--- a/core/src/main/kotlin/net/corda/core/node/CordaPluginRegistry.kt
+++ b/core/src/main/kotlin/net/corda/core/node/CordaPluginRegistry.kt
@@ -8,42 +8,38 @@ import java.util.function.Function
* Implement this interface on a class advertised in a META-INF/services/net.corda.core.node.CordaPluginRegistry file
* to extend a Corda node with additional application services.
*/
-abstract class CordaPluginRegistry(
- /**
- * List of lambdas returning JAX-RS objects. They may only depend on the RPC interface, as the webserver should
- * potentially be able to live in a process separate from the node itself.
- */
- open val webApis: List> = emptyList(),
+abstract class CordaPluginRegistry {
+ /**
+ * List of lambdas returning JAX-RS objects. They may only depend on the RPC interface, as the webserver should
+ * potentially be able to live in a process separate from the node itself.
+ */
+ open val webApis: List> get() = emptyList()
- /**
- * Map of static serving endpoints to the matching resource directory. All endpoints will be prefixed with "/web" and postfixed with "\*.
- * Resource directories can be either on disk directories (especially when debugging) in the form "a/b/c". Serving from a JAR can
- * be specified with: javaClass.getResource("").toExternalForm()
- */
- open val staticServeDirs: Map = emptyMap(),
+ /**
+ * Map of static serving endpoints to the matching resource directory. All endpoints will be prefixed with "/web" and postfixed with "\*.
+ * Resource directories can be either on disk directories (especially when debugging) in the form "a/b/c". Serving from a JAR can
+ * be specified with: javaClass.getResource("").toExternalForm()
+ */
+ open val staticServeDirs: Map get() = emptyMap()
- /**
- * A Map with an entry for each consumed Flow used by the webAPIs.
- * The key of each map entry should contain the FlowLogic class name.
- * The associated map values are the union of all concrete class names passed to the Flow constructor.
- * Standard java.lang.* and kotlin.* types do not need to be included explicitly.
- * This is used to extend the white listed Flows that can be initiated from the ServiceHub invokeFlowAsync method.
- */
- open val requiredFlows: Map> = emptyMap(),
+ @Suppress("unused")
+ @Deprecated("This is no longer needed. Instead annotate any flows that need to be invoked via RPC with " +
+ "@StartableByRPC and any scheduled flows with @SchedulableFlow", level = DeprecationLevel.ERROR)
+ open val requiredFlows: Map> get() = emptyMap()
+
+ /**
+ * List of lambdas constructing additional long lived services to be hosted within the node.
+ * They expect a single [PluginServiceHub] parameter as input.
+ * The [PluginServiceHub] will be fully constructed before the plugin service is created and will
+ * allow access to the Flow factory and Flow initiation entry points there.
+ */
+ open val servicePlugins: List> get() = emptyList()
- /**
- * List of lambdas constructing additional long lived services to be hosted within the node.
- * They expect a single [PluginServiceHub] parameter as input.
- * The [PluginServiceHub] will be fully constructed before the plugin service is created and will
- * allow access to the Flow factory and Flow initiation entry points there.
- */
- open val servicePlugins: List> = emptyList()
-) {
/**
* Optionally whitelist types for use in object serialization, as we lock down the types that can be serialized.
*
- * For example, if you add a new [ContractState] it needs to be whitelisted. You can do that either by
- * adding the @CordaSerializable annotation or via this method.
+ * For example, if you add a new [net.corda.core.contracts.ContractState] it needs to be whitelisted. You can do that
+ * either by adding the [net.corda.core.serialization.CordaSerializable] annotation or via this method.
**
* @return true if you register types, otherwise you will be filtered out of the list of plugins considered in future.
*/
diff --git a/core/src/main/kotlin/net/corda/core/node/ServiceHub.kt b/core/src/main/kotlin/net/corda/core/node/ServiceHub.kt
index c32c6937d1..5e589834dd 100644
--- a/core/src/main/kotlin/net/corda/core/node/ServiceHub.kt
+++ b/core/src/main/kotlin/net/corda/core/node/ServiceHub.kt
@@ -1,10 +1,11 @@
package net.corda.core.node
import net.corda.core.contracts.*
-import net.corda.core.crypto.keys
+import net.corda.core.crypto.DigitalSignature
import net.corda.core.node.services.*
import net.corda.core.transactions.SignedTransaction
-import java.security.KeyPair
+import net.corda.core.transactions.TransactionBuilder
+import java.security.PublicKey
import java.time.Clock
/**
@@ -82,23 +83,107 @@ interface ServiceHub : ServicesForResolution {
}
/**
- * Helper property to shorten code for fetching the Node's KeyPair associated with the
- * public legalIdentity Party from the key management service.
+ * Helper property to shorten code for fetching the the [PublicKey] portion of the
+ * Node's primary signing identity.
* Typical use is during signing in flows and for unit test signing.
- *
- * TODO: legalIdentity can now be composed of multiple keys, should we return a list of keyPairs here? Right now
- * the logic assumes the legal identity has a composite key with only one node
+ * When this [PublicKey] is passed into the signing methods below, or on the KeyManagementService
+ * the matching [PrivateKey] will be looked up internally and used to sign.
+ * If the key is actually a CompositeKey, the first leaf key hosted on this node
+ * will be used to create the signature.
*/
- val legalIdentityKey: KeyPair get() = this.keyManagementService.toKeyPair(this.myInfo.legalIdentity.owningKey.keys)
+ val legalIdentityKey: PublicKey get() = this.myInfo.legalIdentity.owningKey
/**
- * Helper property to shorten code for fetching the Node's KeyPair associated with the
- * public notaryIdentity Party from the key management service. It is assumed that this is only
- * used in contexts where the Node knows it is hosting a Notary Service. Otherwise, it will throw
- * an IllegalArgumentException.
+ * Helper property to shorten code for fetching the the [PublicKey] portion of the
+ * Node's Notary signing identity. It is required that the Node hosts a notary service,
+ * otherwise an IllegalArgumentException will be thrown.
* Typical use is during signing in flows and for unit test signing.
- *
- * TODO: same problem as with legalIdentityKey.
+ * When this [PublicKey] is passed into the signing methods below, or on the KeyManagementService
+ * the matching [PrivateKey] will be looked up internally and used to sign.
+ * If the key is actually a [CompositeKey], the first leaf key hosted on this node
+ * will be used to create the signature.
*/
- val notaryIdentityKey: KeyPair get() = this.keyManagementService.toKeyPair(this.myInfo.notaryIdentity.owningKey.keys)
-}
+ val notaryIdentityKey: PublicKey get() = this.myInfo.notaryIdentity.owningKey
+
+ /**
+ * Helper method to construct an initial partially signed transaction from a [TransactionBuilder]
+ * using keys stored inside the node.
+ * @param builder The [TransactionBuilder] to seal with the node's signature.
+ * Any existing signatures on the builder will be preserved.
+ * @param publicKey The [PublicKey] matched to the internal [PrivateKey] to use in signing this transaction.
+ * If the passed in key is actually a CompositeKey the code searches for the first child key hosted within this node
+ * to sign with.
+ * @return Returns a SignedTransaction with the new node signature attached.
+ */
+ fun signInitialTransaction(builder: TransactionBuilder, publicKey: PublicKey): SignedTransaction {
+ val sig = keyManagementService.sign(builder.toWireTransaction().id.bytes, publicKey)
+ builder.addSignatureUnchecked(sig)
+ return builder.toSignedTransaction(false)
+ }
+
+
+ /**
+ * Helper method to construct an initial partially signed transaction from a TransactionBuilder
+ * using the default identity key contained in the node.
+ * @param builder The TransactionBuilder to seal with the node's signature.
+ * Any existing signatures on the builder will be preserved.
+ * @return Returns a SignedTransaction with the new node signature attached.
+ */
+ fun signInitialTransaction(builder: TransactionBuilder): SignedTransaction = signInitialTransaction(builder, legalIdentityKey)
+
+
+ /**
+ * Helper method to construct an initial partially signed transaction from a [TransactionBuilder]
+ * using a set of keys all held in this node.
+ * @param builder The [TransactionBuilder] to seal with the node's signature.
+ * Any existing signatures on the builder will be preserved.
+ * @param signingPubKeys A list of [PublicKeys] used to lookup the matching [PrivateKey] and sign.
+ * @throws IllegalArgumentException is thrown if any keys are unavailable locally.
+ * @return Returns a [SignedTransaction] with the new node signature attached.
+ */
+ fun signInitialTransaction(builder: TransactionBuilder, signingPubKeys: List): SignedTransaction {
+ var stx: SignedTransaction? = null
+ for (pubKey in signingPubKeys) {
+ stx = if (stx == null) {
+ signInitialTransaction(builder, pubKey)
+ } else {
+ addSignature(stx, pubKey)
+ }
+ }
+ return stx!!
+ }
+
+ /**
+ * Helper method to create an additional signature for an existing (partially) [SignedTransaction].
+ * @param signedTransaction The [SignedTransaction] to which the signature will apply.
+ * @param publicKey The [PublicKey] matching to a signing [PrivateKey] hosted in the node.
+ * If the [PublicKey] is actually a [CompositeKey] the first leaf key found locally will be used for signing.
+ * @return The [DigitalSignature.WithKey] generated by signing with the internally held [PrivateKey].
+ */
+ fun createSignature(signedTransaction: SignedTransaction, publicKey: PublicKey): DigitalSignature.WithKey = keyManagementService.sign(signedTransaction.id.bytes, publicKey)
+
+ /**
+ * Helper method to create an additional signature for an existing (partially) SignedTransaction
+ * using the default identity signing key of the node.
+ * @param signedTransaction The SignedTransaction to which the signature will apply.
+ * @return The DigitalSignature.WithKey generated by signing with the internally held identity PrivateKey.
+ */
+ fun createSignature(signedTransaction: SignedTransaction): DigitalSignature.WithKey = createSignature(signedTransaction, legalIdentityKey)
+
+ /**
+ * Helper method to append an additional signature to an existing (partially) [SignedTransaction].
+ * @param signedTransaction The [SignedTransaction] to which the signature will be added.
+ * @param publicKey The [PublicKey] matching to a signing [PrivateKey] hosted in the node.
+ * If the [PublicKey] is actually a [CompositeKey] the first leaf key found locally will be used for signing.
+ * @return A new [SignedTransaction] with the addition of the new signature.
+ */
+ fun addSignature(signedTransaction: SignedTransaction, publicKey: PublicKey): SignedTransaction = signedTransaction + createSignature(signedTransaction, publicKey)
+
+ /**
+ * Helper method to ap-pend an additional signature for an existing (partially) [SignedTransaction]
+ * using the default identity signing key of the node.
+ * @param signedTransaction The [SignedTransaction] to which the signature will be added.
+ * @return A new [SignedTransaction] with the addition of the new signature.
+ */
+ fun addSignature(signedTransaction: SignedTransaction): SignedTransaction = addSignature(signedTransaction, legalIdentityKey)
+}
\ No newline at end of file
diff --git a/core/src/main/kotlin/net/corda/core/node/services/IdentityService.kt b/core/src/main/kotlin/net/corda/core/node/services/IdentityService.kt
index 61fb00b6b3..4dafa52ef0 100644
--- a/core/src/main/kotlin/net/corda/core/node/services/IdentityService.kt
+++ b/core/src/main/kotlin/net/corda/core/node/services/IdentityService.kt
@@ -1,10 +1,13 @@
package net.corda.core.node.services
import net.corda.core.contracts.PartyAndReference
+import net.corda.core.identity.AbstractParty
import net.corda.core.identity.AnonymousParty
import net.corda.core.identity.Party
import org.bouncycastle.asn1.x500.X500Name
import java.security.PublicKey
+import java.security.cert.CertPath
+import java.security.cert.X509Certificate
/**
* An identity service maintains an bidirectional map of [Party]s to their associated public keys and thus supports
@@ -14,6 +17,29 @@ import java.security.PublicKey
interface IdentityService {
fun registerIdentity(party: Party)
+ /**
+ * Verify and then store the certificates proving that an anonymous party's key is owned by the given full
+ * party.
+ *
+ * @param trustedRoot trusted root certificate, typically the R3 master signing certificate.
+ * @param anonymousParty an anonymised party belonging to the legal entity.
+ * @param path certificate path from the trusted root to the anonymised party.
+ * @throws IllegalArgumentException if the chain does not link the two parties, or if there is already an existing
+ * certificate chain for the anonymous party. Anonymous parties must always resolve to a single owning party.
+ */
+ // TODO: Move this into internal identity service once available
+ @Throws(IllegalArgumentException::class)
+ fun registerPath(trustedRoot: X509Certificate, anonymousParty: AnonymousParty, path: CertPath)
+
+ /**
+ * Asserts that an anonymous party maps to the given full party, by looking up the certificate chain associated with
+ * the anonymous party and resolving it back to the given full party.
+ *
+ * @throws IllegalStateException if the anonymous party is not owned by the full party.
+ */
+ @Throws(IllegalStateException::class)
+ fun assertOwnership(party: Party, anonymousParty: AnonymousParty)
+
/**
* Get all identities known to the service. This is expensive, and [partyFromKey] or [partyFromX500Name] should be
* used in preference where possible.
@@ -29,6 +55,13 @@ interface IdentityService {
fun partyFromName(name: String): Party?
fun partyFromX500Name(principal: X500Name): Party?
- fun partyFromAnonymous(party: AnonymousParty): Party?
+ fun partyFromAnonymous(party: AbstractParty): Party?
fun partyFromAnonymous(partyRef: PartyAndReference) = partyFromAnonymous(partyRef.party)
+
+ /**
+ * Get the certificate chain showing an anonymous party is owned by the given party.
+ */
+ fun pathForAnonymous(anonymousParty: AnonymousParty): CertPath?
+
+ class UnknownAnonymousPartyException(msg: String) : Exception(msg)
}
diff --git a/core/src/main/kotlin/net/corda/core/node/services/Services.kt b/core/src/main/kotlin/net/corda/core/node/services/Services.kt
index c29f534a2e..6116441b0a 100644
--- a/core/src/main/kotlin/net/corda/core/node/services/Services.kt
+++ b/core/src/main/kotlin/net/corda/core/node/services/Services.kt
@@ -3,7 +3,8 @@ package net.corda.core.node.services
import co.paralleluniverse.fibers.Suspendable
import com.google.common.util.concurrent.ListenableFuture
import net.corda.core.contracts.*
-import net.corda.core.crypto.*
+import net.corda.core.crypto.DigitalSignature
+import net.corda.core.crypto.SecureHash
import net.corda.core.flows.FlowException
import net.corda.core.identity.AbstractParty
import net.corda.core.identity.Party
@@ -18,8 +19,6 @@ import net.corda.core.transactions.TransactionBuilder
import net.corda.core.transactions.WireTransaction
import rx.Observable
import java.io.InputStream
-import java.security.KeyPair
-import java.security.PrivateKey
import java.security.PublicKey
import java.time.Instant
import java.util.*
@@ -286,7 +285,7 @@ interface VaultService {
@Suspendable
fun generateSpend(tx: TransactionBuilder,
amount: Amount,
- to: PublicKey,
+ to: AbstractParty,
onlyFromParties: Set? = null): Pair>
// DOCSTART VaultStatesQuery
@@ -371,32 +370,32 @@ class StatesNotAvailableException(override val message: String?, override val ca
/**
* The KMS is responsible for storing and using private keys to sign things. An implementation of this may, for example,
* call out to a hardware security module that enforces various auditing and frequency-of-use requirements.
- *
- * The current interface is obviously not usable for those use cases: this is just where we'd put a real signing
- * interface if/when one is developed.
*/
interface KeyManagementService {
- /** Returns a snapshot of the current pubkey->privkey mapping. */
- val keys: Map
+ /**
+ * Returns a snapshot of the current signing [PublicKey]s.
+ * For each of these keys a [PrivateKey] is available, that can be used later for signing.
+ */
+ val keys: Set
- @Throws(IllegalStateException::class)
- fun toPrivate(publicKey: PublicKey) = keys[publicKey] ?: throw IllegalStateException("No private key known for requested public key ${publicKey.toStringShort()}")
+ /**
+ * Generates a new random [KeyPair] and adds it to the internal key storage. Returns the public part of the pair.
+ */
+ @Suspendable
+ fun freshKey(): PublicKey
- @Throws(IllegalArgumentException::class)
- fun toKeyPair(publicKey: PublicKey): KeyPair {
- when (publicKey) {
- is CompositeKey -> throw IllegalArgumentException("Got CompositeKey when single PublicKey expected.")
- else -> return KeyPair(publicKey, toPrivate(publicKey))
- }
- }
-
- /** Returns the first [KeyPair] matching any of the [publicKeys] */
- @Throws(IllegalArgumentException::class)
- fun toKeyPair(publicKeys: Iterable) = publicKeys.first { keys.contains(it) }.let { toKeyPair(it) }
-
- /** Generates a new random key and adds it to the exposed map. */
- fun freshKey(): KeyPair
+ /** Using the provided signing [PublicKey] internally looks up the matching [PrivateKey] and signs the data.
+ * @param bytes The data to sign over using the chosen key.
+ * @param publicKey The [PublicKey] partner to an internally held [PrivateKey], either derived from the node's primary identity,
+ * or previously generated via the [freshKey] method.
+ * If the [PublicKey] is actually a [CompositeKey] the first leaf signing key hosted by the node is used.
+ * @throws IllegalArgumentException if the input key is not a member of [keys].
+ * TODO A full [KeyManagementService] implementation needs to record activity to the [AuditService] and to limit signing to
+ * appropriately authorised contexts and initiating users.
+ */
+ @Suspendable
+ fun sign(bytes: ByteArray, publicKey: PublicKey): DigitalSignature.WithKey
}
// TODO: Move to a more appropriate location
diff --git a/core/src/main/kotlin/net/corda/core/schemas/PersistentTypes.kt b/core/src/main/kotlin/net/corda/core/schemas/PersistentTypes.kt
index ed401c2f39..514c3384bf 100644
--- a/core/src/main/kotlin/net/corda/core/schemas/PersistentTypes.kt
+++ b/core/src/main/kotlin/net/corda/core/schemas/PersistentTypes.kt
@@ -37,9 +37,9 @@ interface QueryableState : ContractState {
* @param version The version number of this instance within the family.
* @param mappedTypes The JPA entity classes that the ORM layer needs to be configure with for this schema.
*/
-abstract class MappedSchema(schemaFamily: Class<*>,
- val version: Int,
- val mappedTypes: Iterable>) {
+open class MappedSchema(schemaFamily: Class<*>,
+ val version: Int,
+ val mappedTypes: Iterable>) {
val name: String = schemaFamily.name
override fun toString(): String = "${this.javaClass.simpleName}(name=$name, version=$version)"
}
diff --git a/core/src/main/kotlin/net/corda/core/serialization/DefaultKryoCustomizer.kt b/core/src/main/kotlin/net/corda/core/serialization/DefaultKryoCustomizer.kt
index b553a0f67f..825ce18a20 100644
--- a/core/src/main/kotlin/net/corda/core/serialization/DefaultKryoCustomizer.kt
+++ b/core/src/main/kotlin/net/corda/core/serialization/DefaultKryoCustomizer.kt
@@ -26,9 +26,12 @@ import org.bouncycastle.pqc.jcajce.provider.sphincs.BCSphincs256PrivateKey
import org.bouncycastle.pqc.jcajce.provider.sphincs.BCSphincs256PublicKey
import org.objenesis.strategy.StdInstantiatorStrategy
import org.slf4j.Logger
+import sun.security.provider.certpath.X509CertPath
import java.io.BufferedInputStream
import java.io.FileInputStream
import java.io.InputStream
+import java.security.cert.CertPath
+import java.security.cert.X509Certificate
import java.util.*
object DefaultKryoCustomizer {
@@ -97,6 +100,12 @@ object DefaultKryoCustomizer {
// Note that return type should be specifically set to InputStream, otherwise it may not work, i.e. val aStream : InputStream = HashCheckingStream(...).
addDefaultSerializer(InputStream::class.java, InputStreamSerializer)
+ register(CertPath::class.java, CertPathSerializer)
+ register(X509CertPath::class.java, CertPathSerializer)
+ // TODO: We shouldn't need to serialize raw certificates, and if we do then we need a cleaner solution
+ // than this mess.
+ val x509CertObjectClazz = Class.forName("org.bouncycastle.jcajce.provider.asymmetric.x509.X509CertificateObject")
+ register(x509CertObjectClazz, X509CertificateSerializer)
register(X500Name::class.java, X500NameSerializer)
register(BCECPrivateKey::class.java, PrivateKeySerializer)
diff --git a/core/src/main/kotlin/net/corda/core/serialization/Kryo.kt b/core/src/main/kotlin/net/corda/core/serialization/Kryo.kt
index 881046fb82..c18bfedc0b 100644
--- a/core/src/main/kotlin/net/corda/core/serialization/Kryo.kt
+++ b/core/src/main/kotlin/net/corda/core/serialization/Kryo.kt
@@ -31,6 +31,9 @@ import java.nio.file.Files
import java.nio.file.Path
import java.security.PrivateKey
import java.security.PublicKey
+import java.security.cert.CertPath
+import java.security.cert.CertificateFactory
+import java.security.cert.X509Certificate
import java.security.spec.InvalidKeySpecException
import java.time.Instant
import java.util.*
@@ -617,6 +620,36 @@ object X500NameSerializer : Serializer() {
}
}
+/**
+ * For serialising an [CertPath] in an X.500 standard format.
+ */
+@ThreadSafe
+object CertPathSerializer : Serializer() {
+ val factory = CertificateFactory.getInstance("X.509")
+ override fun read(kryo: Kryo, input: Input, type: Class): CertPath {
+ return factory.generateCertPath(input)
+ }
+
+ override fun write(kryo: Kryo, output: Output, obj: CertPath) {
+ output.writeBytes(obj.encoded)
+ }
+}
+
+/**
+ * For serialising an [CX509Certificate] in an X.500 standard format.
+ */
+@ThreadSafe
+object X509CertificateSerializer : Serializer() {
+ val factory = CertificateFactory.getInstance("X.509")
+ override fun read(kryo: Kryo, input: Input, type: Class): X509Certificate {
+ return factory.generateCertificate(input) as X509Certificate
+ }
+
+ override fun write(kryo: Kryo, output: Output, obj: X509Certificate) {
+ output.writeBytes(obj.encoded)
+ }
+}
+
class KryoPoolWithContext(val baseKryoPool: KryoPool, val contextKey: Any, val context: Any) : KryoPool {
override fun run(callback: KryoCallback): T {
val kryo = borrow()
diff --git a/core/src/main/kotlin/net/corda/core/transactions/MerkleTransaction.kt b/core/src/main/kotlin/net/corda/core/transactions/MerkleTransaction.kt
index 952544be36..78c25f7154 100644
--- a/core/src/main/kotlin/net/corda/core/transactions/MerkleTransaction.kt
+++ b/core/src/main/kotlin/net/corda/core/transactions/MerkleTransaction.kt
@@ -1,13 +1,16 @@
package net.corda.core.transactions
import net.corda.core.contracts.*
-import net.corda.core.crypto.*
+import net.corda.core.crypto.MerkleTree
+import net.corda.core.crypto.MerkleTreeException
+import net.corda.core.crypto.PartialMerkleTree
+import net.corda.core.crypto.SecureHash
import net.corda.core.identity.Party
import net.corda.core.serialization.CordaSerializable
import net.corda.core.serialization.p2PKryo
import net.corda.core.serialization.serialize
-import java.security.PublicKey
import net.corda.core.serialization.withoutReferences
+import java.security.PublicKey
fun serializedHash(x: T): SecureHash {
return p2PKryo().run { kryo -> kryo.withoutReferences { x.serialize(kryo).hash } }
@@ -91,7 +94,7 @@ class FilteredLeaves(
*/
fun checkWithFun(checkingFun: (Any) -> Boolean): Boolean {
val checkList = availableComponents.map { checkingFun(it) }
- return (!checkList.isEmpty()) && checkList.all { true }
+ return (!checkList.isEmpty()) && checkList.all { it }
}
}
diff --git a/core/src/main/kotlin/net/corda/core/transactions/SignedTransaction.kt b/core/src/main/kotlin/net/corda/core/transactions/SignedTransaction.kt
index e4358a9092..e100c89793 100644
--- a/core/src/main/kotlin/net/corda/core/transactions/SignedTransaction.kt
+++ b/core/src/main/kotlin/net/corda/core/transactions/SignedTransaction.kt
@@ -3,14 +3,12 @@ package net.corda.core.transactions
import net.corda.core.contracts.AttachmentResolutionException
import net.corda.core.contracts.NamedByHash
import net.corda.core.contracts.TransactionResolutionException
-import net.corda.core.node.ServiceHub
import net.corda.core.crypto.DigitalSignature
import net.corda.core.crypto.SecureHash
import net.corda.core.crypto.isFulfilledBy
-import net.corda.core.crypto.sign
+import net.corda.core.node.ServiceHub
import net.corda.core.serialization.CordaSerializable
import net.corda.core.serialization.SerializedBytes
-import java.security.KeyPair
import java.security.PublicKey
import java.security.SignatureException
import java.util.*
@@ -146,14 +144,5 @@ data class SignedTransaction(val txBits: SerializedBytes,
@Throws(AttachmentResolutionException::class, TransactionResolutionException::class, SignatureException::class)
fun toLedgerTransaction(services: ServiceHub) = verifySignatures().toLedgerTransaction(services)
- /**
- * Utility to simplify the act of signing the transaction.
- *
- * @param keyPair the signer's public/private key pair.
- *
- * @return a digital signature of the transaction.
- */
- fun signWithECDSA(keyPair: KeyPair) = keyPair.sign(this.id.bytes)
-
override fun toString(): String = "${javaClass.simpleName}(id=$id)"
}
diff --git a/core/src/main/kotlin/net/corda/core/utilities/LazyPool.kt b/core/src/main/kotlin/net/corda/core/utilities/LazyPool.kt
index 1a1abebdca..2649924aa1 100644
--- a/core/src/main/kotlin/net/corda/core/utilities/LazyPool.kt
+++ b/core/src/main/kotlin/net/corda/core/utilities/LazyPool.kt
@@ -59,8 +59,10 @@ class LazyPool(
* the returned iterable will be inaccurate.
*/
fun close(): Iterable {
- lifeCycle.transition(State.STARTED, State.FINISHED)
- return poolQueue
+ lifeCycle.justTransition(State.FINISHED)
+ val elements = poolQueue.toList()
+ poolQueue.clear()
+ return elements
}
inline fun run(withInstance: (A) -> R): R {
diff --git a/core/src/main/kotlin/net/corda/core/utilities/LegalNameValidator.kt b/core/src/main/kotlin/net/corda/core/utilities/LegalNameValidator.kt
index 8dc0c45270..804dd4ed7a 100644
--- a/core/src/main/kotlin/net/corda/core/utilities/LegalNameValidator.kt
+++ b/core/src/main/kotlin/net/corda/core/utilities/LegalNameValidator.kt
@@ -24,12 +24,14 @@ fun validateLegalName(normalizedLegalName: String) {
rules.forEach { it.validate(normalizedLegalName) }
}
+val WHITESPACE = "\\s++".toRegex()
+
/**
* The normalize function will trim the input string, replace any multiple spaces with a single space,
* and normalize the string according to NFKC normalization form.
*/
fun normaliseLegalName(legalName: String): String {
- val trimmedLegalName = legalName.trim().replace(Regex("\\s+"), " ")
+ val trimmedLegalName = legalName.trim().replace(WHITESPACE, " ")
return Normalizer.normalize(trimmedLegalName, Normalizer.Form.NFKC)
}
diff --git a/core/src/main/kotlin/net/corda/core/utilities/LifeCycle.kt b/core/src/main/kotlin/net/corda/core/utilities/LifeCycle.kt
index 2a7b0c2bb3..bc73e9f51a 100644
--- a/core/src/main/kotlin/net/corda/core/utilities/LifeCycle.kt
+++ b/core/src/main/kotlin/net/corda/core/utilities/LifeCycle.kt
@@ -13,7 +13,7 @@ class LifeCycle>(initial: S) {
private val lock = ReentrantReadWriteLock()
private var state = initial
- /** Assert that the lifecycle in the [requiredState] */
+ /** Assert that the lifecycle in the [requiredState]. */
fun requireState(requiredState: S) {
requireState({ "Required state to be $requiredState, was $it" }) { it == requiredState }
}
@@ -28,11 +28,18 @@ class LifeCycle>(initial: S) {
}
}
- /** Transition the state from [from] to [to] */
+ /** Transition the state from [from] to [to]. */
fun transition(from: S, to: S) {
lock.writeLock().withLock {
require(state == from) { "Required state to be $from to transition to $to, was $state" }
state = to
}
}
+
+ /** Transition the state to [to] without performing a current state check. */
+ fun justTransition(to: S) {
+ lock.writeLock().withLock {
+ state = to
+ }
+ }
}
\ No newline at end of file
diff --git a/core/src/main/kotlin/net/corda/flows/AbstractStateReplacementFlow.kt b/core/src/main/kotlin/net/corda/flows/AbstractStateReplacementFlow.kt
index fccf706b97..f00941e786 100644
--- a/core/src/main/kotlin/net/corda/flows/AbstractStateReplacementFlow.kt
+++ b/core/src/main/kotlin/net/corda/flows/AbstractStateReplacementFlow.kt
@@ -4,9 +4,11 @@ import co.paralleluniverse.fibers.Suspendable
import net.corda.core.contracts.ContractState
import net.corda.core.contracts.StateAndRef
import net.corda.core.contracts.StateRef
-import net.corda.core.crypto.*
+import net.corda.core.crypto.DigitalSignature
+import net.corda.core.crypto.isFulfilledBy
import net.corda.core.flows.FlowException
import net.corda.core.flows.FlowLogic
+import net.corda.core.identity.AbstractParty
import net.corda.core.identity.Party
import net.corda.core.serialization.CordaSerializable
import net.corda.core.transactions.SignedTransaction
@@ -59,13 +61,13 @@ abstract class AbstractStateReplacementFlow {
progressTracker.currentStep = SIGNING
- val myKey = serviceHub.myInfo.legalIdentity.owningKey
+ val myKey = serviceHub.myInfo.legalIdentity
val me = listOf(myKey)
val signatures = if (participants == me) {
getNotarySignatures(stx)
} else {
- collectSignatures(participants - me, stx)
+ collectSignatures((participants - me).map { it.owningKey }, stx)
}
val finalTx = stx + signatures
@@ -73,7 +75,7 @@ abstract class AbstractStateReplacementFlow {
return finalTx.tx.outRef(0)
}
- abstract protected fun assembleTx(): Pair>
+ abstract protected fun assembleTx(): Pair>
@Suspendable
private fun collectSignatures(participants: Iterable, stx: SignedTransaction): List {
@@ -187,8 +189,7 @@ abstract class AbstractStateReplacementFlow {
}
private fun sign(stx: SignedTransaction): DigitalSignature.WithKey {
- val myKey = serviceHub.legalIdentityKey
- return myKey.sign(stx.id)
+ return serviceHub.createSignature(stx)
}
}
}
diff --git a/core/src/main/kotlin/net/corda/flows/CollectSignaturesFlow.kt b/core/src/main/kotlin/net/corda/flows/CollectSignaturesFlow.kt
new file mode 100644
index 0000000000..acfbba8541
--- /dev/null
+++ b/core/src/main/kotlin/net/corda/flows/CollectSignaturesFlow.kt
@@ -0,0 +1,259 @@
+package net.corda.flows
+
+import co.paralleluniverse.fibers.Suspendable
+import net.corda.core.crypto.DigitalSignature
+import net.corda.core.crypto.isFulfilledBy
+import net.corda.core.crypto.toBase58String
+import net.corda.core.flows.FlowException
+import net.corda.core.flows.FlowLogic
+import net.corda.core.identity.Party
+import net.corda.core.node.ServiceHub
+import net.corda.core.transactions.SignedTransaction
+import net.corda.core.transactions.WireTransaction
+import net.corda.core.utilities.ProgressTracker
+import net.corda.core.utilities.unwrap
+import java.security.PublicKey
+
+/**
+ * The [CollectSignaturesFlow] is used to automate the collection of counter-party signatures for a given transaction.
+ *
+ * You would typically use this flow after you have built a transaction with the TransactionBuilder and signed it with
+ * your key pair. If there are additional signatures to collect then they can be collected using this flow. Signatures
+ * are collected based upon the [WireTransaction.mustSign] property which contains the union of all the PublicKeys
+ * listed in the transaction's commands as well as a notary's public key, if required. This flow returns a
+ * [SignedTransaction] which can then be passed to the [FinalityFlow] for notarisation. The other side of this flow is
+ * the [SignTransactionFlow].
+ *
+ * **WARNING**: This flow ONLY works with [ServiceHub.legalIdentityKey]s and WILL break if used with randomly generated
+ * keys by the [ServiceHub.keyManagementService].
+ *
+ * Usage:
+ *
+ * - Call the [CollectSignaturesFlow] flow as a [subFlow] and pass it a [SignedTransaction] which has at least been
+ * signed by the transaction creator (and possibly an oracle, if required)
+ * - The flow expects that the calling node has signed the provided transaction, if not the flow will fail
+ * - The flow will also fail if:
+ * 1. The provided transaction is invalid
+ * 2. Any of the required signing parties cannot be found in the [ServiceHub.networkMapCache] of the initiator
+ * 3. If the wrong key has been used by a counterparty to sign the transaction
+ * 4. The counterparty rejects the provided transaction
+ * - The flow will return a [SignedTransaction] with all the counter-party signatures (but not the notary's!)
+ * - If the provided transaction has already been signed by all counter-parties then this flow simply returns the
+ * provided transaction without contacting any counter-parties
+ * - Call the [FinalityFlow] with the return value of this flow
+ *
+ * Example - issuing a multi-lateral agreement which requires N signatures:
+ *
+ * val builder = TransactionType.General.Builder(notaryRef)
+ * val issueCommand = Command(Agreement.Commands.Issue(), state.participants)
+ *
+ * builder.withItems(state, issueCommand)
+ * builder.toWireTransaction().toLedgerTransaction(serviceHub).verify()
+ *
+ * // Transaction creator signs transaction.
+ * val ptx = builder.signWith(serviceHub.legalIdentityKey).toSignedTransaction(false)
+ *
+ * // Call to CollectSignaturesFlow.
+ * // The returned signed transaction will have all signatures appended apart from the notary's.
+ * val stx = subFlow(CollectSignaturesFlow(ptx))
+ *
+ * @param partiallySignedTx Transaction to collect the remaining signatures for
+ */
+// TODO: AbstractStateReplacementFlow needs updating to use this flow.
+// TODO: TwoPartyTradeFlow needs updating to use this flow.
+// TODO: Update this flow to handle randomly generated keys when that works is complete.
+class CollectSignaturesFlow(val partiallySignedTx: SignedTransaction,
+ override val progressTracker: ProgressTracker = tracker()): FlowLogic() {
+
+ companion object {
+ object COLLECTING : ProgressTracker.Step("Collecting signatures from counter-parties.")
+ object VERIFYING : ProgressTracker.Step("Verifying collected signatures.")
+
+ fun tracker() = ProgressTracker(COLLECTING, VERIFYING)
+
+ // TODO: Make the progress tracker adapt to the number of counter-parties to collect from.
+ }
+
+ @Suspendable override fun call(): SignedTransaction {
+ // TODO: Revisit when key management is properly fleshed out.
+ // This will break if a party uses anything other than their legalIdentityKey.
+ // Check the signatures which have already been provided and that the transaction is valid.
+ // Usually just the Initiator and possibly an oracle would have signed at this point.
+ val myKey = serviceHub.myInfo.legalIdentity.owningKey
+ val signed = partiallySignedTx.sigs.map { it.by }
+ val notSigned = partiallySignedTx.tx.mustSign - signed
+
+ // One of the signatures collected so far MUST be from the initiator of this flow.
+ require(partiallySignedTx.sigs.any { it.by == myKey }) {
+ "The Initiator of CollectSignaturesFlow must have signed the transaction."
+ }
+
+ // The signatures must be valid and the transaction must be valid.
+ partiallySignedTx.verifySignatures(*notSigned.toTypedArray())
+ partiallySignedTx.tx.toLedgerTransaction(serviceHub).verify()
+
+ // Determine who still needs to sign.
+ progressTracker.currentStep = COLLECTING
+ val notaryKey = partiallySignedTx.tx.notary?.owningKey
+ // If present, we need to exclude the notary's PublicKey as the notary signature is collected separately with
+ // the FinalityFlow.
+ val unsigned = if (notaryKey != null) notSigned - notaryKey else notSigned
+
+ // If the unsigned counter-parties list is empty then we don't need to collect any more signatures here.
+ if (unsigned.isEmpty()) return partiallySignedTx
+
+ // Collect signatures from all counter-parties and append them to the partially signed transaction.
+ val counterpartySignatures = keysToParties(unsigned).map { collectSignature(it) }
+ val stx = partiallySignedTx + counterpartySignatures
+
+ // Verify all but the notary's signature if the transaction requires a notary, otherwise verify all signatures.
+ progressTracker.currentStep = VERIFYING
+ if (notaryKey != null) stx.verifySignatures(notaryKey) else stx.verifySignatures()
+
+ return stx
+ }
+
+ /**
+ * Lookup the [Party] object for each [PublicKey] using the [ServiceHub.networkMapCache].
+ */
+ @Suspendable private fun keysToParties(keys: List): List = keys.map {
+ // TODO: Revisit when IdentityService supports resolution of a (possibly random) public key to a legal identity key.
+ val partyNode = serviceHub.networkMapCache.getNodeByLegalIdentityKey(it)
+ ?: throw IllegalStateException("Party ${it.toBase58String()} not found on the network.")
+ partyNode.legalIdentity
+ }
+
+ /**
+ * Get and check the required signature.
+ */
+ @Suspendable private fun collectSignature(counterparty: Party): DigitalSignature.WithKey {
+ return sendAndReceive(counterparty, partiallySignedTx).unwrap {
+ require(counterparty.owningKey.isFulfilledBy(it.by)) { "Not signed by the required Party." }
+ it
+ }
+ }
+}
+
+/**
+ * The [SignTransactionFlow] should be called in response to the [CollectSignaturesFlow]. It automates the signing of
+ * a transaction providing the transaction:
+ *
+ * 1. Should actually be signed by the [Party] invoking this flow
+ * 2. Is valid as per the contracts referenced in the transaction
+ * 3. Has been, at least, signed by the counter-party which created it
+ * 4. Conforms to custom checking provided in the [checkTransaction] method of the [SignTransactionFlow]
+ *
+ * Usage:
+ *
+ * - Subclass [SignTransactionFlow] - this can be done inside an existing flow (as shown below)
+ * - Override the [checkTransaction] method to add some custom verification logic
+ * - Call the flow via [FlowLogic.subFlow]
+ * - The flow returns the fully signed transaction once it has been committed to the ledger
+ *
+ * Example - checking and signing a transaction involving a [net.corda.core.contracts.DummyContract], see
+ * CollectSignaturesFlowTests.kt for further examples:
+ *
+ * class Responder(val otherParty: Party): FlowLogic() {
+ * @Suspendable override fun call(): SignedTransaction {
+ * // [SignTransactionFlow] sub-classed as a singleton object.
+ * val flow = object : SignTransactionFlow(otherParty) {
+ * @Suspendable override fun checkTransaction(stx: SignedTransaction) = requireThat {
+ * val tx = stx.tx
+ * val magicNumberState = tx.outputs.single().data as DummyContract.MultiOwnerState
+ * "Must be 1337 or greater" using (magicNumberState.magicNumber >= 1337)
+ * }
+ * }
+ *
+ * // Invoke the subFlow, in response to the counterparty calling [CollectSignaturesFlow].
+ * val stx = subFlow(flow)
+ *
+ * return waitForLedgerCommit(stx.id)
+ * }
+ * }
+ *
+ * @param otherParty The counter-party which is providing you a transaction to sign.
+ */
+abstract class SignTransactionFlow(val otherParty: Party,
+ override val progressTracker: ProgressTracker = tracker()) : FlowLogic() {
+
+ companion object {
+ object RECEIVING : ProgressTracker.Step("Receiving transaction proposal for signing.")
+ object VERIFYING : ProgressTracker.Step("Verifying transaction proposal.")
+ object SIGNING : ProgressTracker.Step("Signing transaction proposal.")
+
+ fun tracker() = ProgressTracker(RECEIVING, VERIFYING, SIGNING)
+ }
+
+ @Suspendable override fun call(): SignedTransaction {
+ progressTracker.currentStep = RECEIVING
+ val checkedProposal = receive(otherParty).unwrap { proposal ->
+ progressTracker.currentStep = VERIFYING
+ // Check that the Responder actually needs to sign.
+ checkMySignatureRequired(proposal)
+ // Check the signatures which have already been provided. Usually the Initiators and possibly an Oracle's.
+ checkSignatures(proposal)
+ // Resolve dependencies and verify, pass in the WireTransaction as we don't have all signatures.
+ subFlow(ResolveTransactionsFlow(proposal.tx, otherParty))
+ proposal.tx.toLedgerTransaction(serviceHub).verify()
+ // Perform some custom verification over the transaction.
+ try {
+ checkTransaction(proposal)
+ } catch(e: Exception) {
+ if (e is IllegalStateException || e is IllegalArgumentException || e is AssertionError)
+ throw FlowException(e)
+ else
+ throw e
+ }
+ // All good. Unwrap the proposal.
+ proposal
+ }
+
+ // Sign and send back our signature to the Initiator.
+ progressTracker.currentStep = SIGNING
+ val mySignature = serviceHub.createSignature(checkedProposal)
+ send(otherParty, mySignature)
+
+ // Return the fully signed transaction once it has been committed.
+ return waitForLedgerCommit(checkedProposal.id)
+ }
+
+ @Suspendable private fun checkSignatures(stx: SignedTransaction) {
+ require(stx.sigs.any { it.by == otherParty.owningKey }) {
+ "The Initiator of CollectSignaturesFlow must have signed the transaction."
+ }
+ val signed = stx.sigs.map { it.by }
+ val allSigners = stx.tx.mustSign
+ val notSigned = allSigners - signed
+ stx.verifySignatures(*notSigned.toTypedArray())
+ }
+
+ /**
+ * The [checkTransaction] method allows the caller of this flow to provide some additional checks over the proposed
+ * transaction received from the counter-party. For example:
+ *
+ * - Ensuring that the transaction you are receiving is the transaction you *EXPECT* to receive. I.e. is has the
+ * expected type and number of inputs and outputs
+ * - Checking that the properties of the outputs are as you would expect. Linking into any reference data sources
+ * might be appropriate here
+ * - Checking that the transaction is not incorrectly spending (perhaps maliciously) one of your asset states, as
+ * potentially the transaction creator has access to some of your state references
+ *
+ * **WARNING**: If appropriate checks, such as the ones listed above, are not defined then it is likely that your
+ * node will sign any transaction if it conforms to the contract code in the transaction's referenced contracts.
+ *
+ * [IllegalArgumentException], [IllegalStateException] and [AssertionError] will be caught and rethrown as flow
+ * exceptions i.e. the other side will be given information about what exact check failed.
+ *
+ * @param stx a partially signed transaction received from your counter-party.
+ * @throws FlowException if the proposed transaction fails the checks.
+ */
+ @Suspendable abstract protected fun checkTransaction(stx: SignedTransaction)
+
+ @Suspendable private fun checkMySignatureRequired(stx: SignedTransaction) {
+ // TODO: Revisit when key management is properly fleshed out.
+ val myKey = serviceHub.myInfo.legalIdentity.owningKey
+ require(myKey in stx.tx.mustSign) {
+ "Party is not a participant for any of the input states of transaction ${stx.id}"
+ }
+ }
+}
diff --git a/core/src/main/kotlin/net/corda/flows/ContractUpgradeFlow.kt b/core/src/main/kotlin/net/corda/flows/ContractUpgradeFlow.kt
index fd73271e45..e876bcabbd 100644
--- a/core/src/main/kotlin/net/corda/flows/ContractUpgradeFlow.kt
+++ b/core/src/main/kotlin/net/corda/flows/ContractUpgradeFlow.kt
@@ -2,6 +2,8 @@ package net.corda.flows
import net.corda.core.contracts.*
import net.corda.core.flows.InitiatingFlow
+import net.corda.core.flows.StartableByRPC
+import net.corda.core.identity.AbstractParty
import net.corda.core.transactions.SignedTransaction
import net.corda.core.transactions.TransactionBuilder
import java.security.PublicKey
@@ -15,6 +17,7 @@ import java.security.PublicKey
* use the new updated state for future transactions.
*/
@InitiatingFlow
+@StartableByRPC
class ContractUpgradeFlow(
originalState: StateAndRef,
newContractClass: Class>
@@ -30,12 +33,12 @@ class ContractUpgradeFlow = input.participants.toSet()
+ val participantKeys: Set = input.participants.map { it.owningKey }.toSet()
val keysThatSigned: Set = commandData.signers.toSet()
@Suppress("UNCHECKED_CAST")
val upgradedContract = command.upgradedContractClass.newInstance() as UpgradedContract
requireThat {
- "The signing keys include all participant keys" using keysThatSigned.containsAll(participants)
+ "The signing keys include all participant keys" using keysThatSigned.containsAll(participantKeys)
"Inputs state reference the legacy contract" using (input.contract.javaClass == upgradedContract.legacyContract)
"Outputs state reference the upgraded contract" using (output.contract.javaClass == command.upgradedContractClass)
"Output state must be an upgraded version of the input state" using (output == upgradedContract.upgrade(input))
@@ -51,14 +54,13 @@ class ContractUpgradeFlow> {
- val stx = assembleBareTx(originalState, modification)
- .signWith(serviceHub.legalIdentityKey)
- .toSignedTransaction(false)
+ override fun assembleTx(): Pair> {
+ val baseTx = assembleBareTx(originalState, modification)
+ val stx = serviceHub.signInitialTransaction(baseTx)
return stx to originalState.state.data.participants
}
}
diff --git a/core/src/main/kotlin/net/corda/flows/FinalityFlow.kt b/core/src/main/kotlin/net/corda/flows/FinalityFlow.kt
index 0d1168f42f..ff62d89deb 100644
--- a/core/src/main/kotlin/net/corda/flows/FinalityFlow.kt
+++ b/core/src/main/kotlin/net/corda/flows/FinalityFlow.kt
@@ -13,7 +13,7 @@ import net.corda.core.transactions.SignedTransaction
import net.corda.core.utilities.ProgressTracker
/**
- * Verifies the given transactions, then sends them to the named notaries. If the notary agrees that the transactions
+ * Verifies the given transactions, then sends them to the named notary. If the notary agrees that the transactions
* are acceptable then they are from that point onwards committed to the ledger, and will be written through to the
* vault. Additionally they will be distributed to the parties reflected in the participants list of the states.
*
@@ -37,6 +37,7 @@ class FinalityFlow(val transactions: Iterable,
override val progressTracker: ProgressTracker) : FlowLogic>() {
constructor(transaction: SignedTransaction, extraParticipants: Set) : this(listOf(transaction), extraParticipants, tracker())
constructor(transaction: SignedTransaction) : this(listOf(transaction), emptySet(), tracker())
+ constructor(transaction: SignedTransaction, progressTracker: ProgressTracker) : this(listOf(transaction), emptySet(), progressTracker)
companion object {
object NOTARISING : ProgressTracker.Step("Requesting signature by notary service") {
@@ -105,7 +106,7 @@ class FinalityFlow(val transactions: Iterable,
// Calculate who is meant to see the results based on the participants involved.
val keys = ltx.outputs.flatMap { it.data.participants } + ltx.inputs.flatMap { it.state.data.participants }
// TODO: Is it safe to drop participants we don't know how to contact? Does not knowing how to contact them count as a reason to fail?
- val parties = keys.mapNotNull { serviceHub.identityService.partyFromKey(it) }.toSet()
+ val parties = keys.mapNotNull { serviceHub.identityService.partyFromAnonymous(it) }.toSet()
Pair(stx, parties)
}
}
diff --git a/core/src/main/kotlin/net/corda/flows/NotaryChangeFlow.kt b/core/src/main/kotlin/net/corda/flows/NotaryChangeFlow.kt
index 4a80599021..8de5b096e7 100644
--- a/core/src/main/kotlin/net/corda/flows/NotaryChangeFlow.kt
+++ b/core/src/main/kotlin/net/corda/flows/NotaryChangeFlow.kt
@@ -2,6 +2,7 @@ package net.corda.flows
import net.corda.core.contracts.*
import net.corda.core.flows.InitiatingFlow
+import net.corda.core.identity.AbstractParty
import net.corda.core.identity.Party
import net.corda.core.transactions.SignedTransaction
import net.corda.core.transactions.TransactionBuilder
@@ -24,11 +25,11 @@ class NotaryChangeFlow(
progressTracker: ProgressTracker = tracker())
: AbstractStateReplacementFlow.Instigator(originalState, newNotary, progressTracker) {
- override fun assembleTx(): Pair> {
+ override fun assembleTx(): Pair> {
val state = originalState.state
val tx = TransactionType.NotaryChange.Builder(originalState.state.notary)
- val participants: Iterable
+ val participants: Iterable
if (state.encumbrance == null) {
val modifiedState = TransactionState(state.data, modification)
@@ -39,10 +40,7 @@ class NotaryChangeFlow(
participants = resolveEncumbrances(tx)
}
- val myKey = serviceHub.legalIdentityKey
- tx.signWith(myKey)
-
- val stx = tx.toSignedTransaction(false)
+ val stx = serviceHub.signInitialTransaction(tx)
return Pair(stx, participants)
}
@@ -53,14 +51,14 @@ class NotaryChangeFlow(
*
* @return union of all added states' participants
*/
- private fun resolveEncumbrances(tx: TransactionBuilder): Iterable {
+ private fun resolveEncumbrances(tx: TransactionBuilder): Iterable {
val stateRef = originalState.ref
val txId = stateRef.txhash
val issuingTx = serviceHub.storageService.validatedTransactions.getTransaction(txId)
?: throw StateReplacementException("Transaction $txId not found")
val outputs = issuingTx.tx.outputs
- val participants = mutableSetOf()
+ val participants = mutableSetOf()
var nextStateIndex = stateRef.index
var newOutputPosition = tx.outputStates().size
diff --git a/core/src/main/kotlin/net/corda/flows/NotaryFlow.kt b/core/src/main/kotlin/net/corda/flows/NotaryFlow.kt
index 58819c9c7b..32ff54484b 100644
--- a/core/src/main/kotlin/net/corda/flows/NotaryFlow.kt
+++ b/core/src/main/kotlin/net/corda/flows/NotaryFlow.kt
@@ -3,7 +3,10 @@ package net.corda.flows
import co.paralleluniverse.fibers.Suspendable
import net.corda.core.contracts.StateRef
import net.corda.core.contracts.Timestamp
-import net.corda.core.crypto.*
+import net.corda.core.crypto.DigitalSignature
+import net.corda.core.crypto.SecureHash
+import net.corda.core.crypto.SignedData
+import net.corda.core.crypto.keys
import net.corda.core.flows.FlowException
import net.corda.core.flows.FlowLogic
import net.corda.core.flows.InitiatingFlow
@@ -144,8 +147,7 @@ object NotaryFlow {
}
private fun sign(bits: ByteArray): DigitalSignature.WithKey {
- val mySigningKey = serviceHub.notaryIdentityKey
- return mySigningKey.sign(bits)
+ return serviceHub.keyManagementService.sign(bits, serviceHub.notaryIdentityKey)
}
private fun notaryException(txId: SecureHash, e: UniquenessException): NotaryException {
diff --git a/core/src/main/kotlin/net/corda/flows/TwoPartyDealFlow.kt b/core/src/main/kotlin/net/corda/flows/TwoPartyDealFlow.kt
index 6284955239..c776be45e8 100644
--- a/core/src/main/kotlin/net/corda/flows/TwoPartyDealFlow.kt
+++ b/core/src/main/kotlin/net/corda/flows/TwoPartyDealFlow.kt
@@ -2,21 +2,21 @@ package net.corda.flows
import co.paralleluniverse.fibers.Suspendable
import net.corda.core.contracts.DealState
-import net.corda.core.crypto.*
+import net.corda.core.contracts.requireThat
+import net.corda.core.crypto.SecureHash
+import net.corda.core.crypto.expandedCompositeKeys
import net.corda.core.flows.FlowLogic
import net.corda.core.identity.AbstractParty
import net.corda.core.identity.Party
import net.corda.core.node.NodeInfo
+import net.corda.core.node.services.ServiceType
import net.corda.core.seconds
import net.corda.core.serialization.CordaSerializable
import net.corda.core.transactions.SignedTransaction
import net.corda.core.transactions.TransactionBuilder
-import net.corda.core.transactions.WireTransaction
import net.corda.core.utilities.ProgressTracker
-import net.corda.core.utilities.UntrustworthyData
import net.corda.core.utilities.trace
import net.corda.core.utilities.unwrap
-import java.security.KeyPair
import java.security.PublicKey
/**
@@ -26,7 +26,7 @@ import java.security.PublicKey
*
* TODO: Also, the term Deal is used here where we might prefer Agreement.
*
- * TODO: Consider whether we can merge this with [TwoPartyTradeFlow]
+ * TODO: Make this flow more generic.
*
*/
object TwoPartyDealFlow {
@@ -34,151 +34,57 @@ object TwoPartyDealFlow {
@CordaSerializable
data class Handshake(val payload: T, val publicKey: PublicKey)
- @CordaSerializable
- class SignaturesFromPrimary(val sellerSig: DigitalSignature.WithKey, val notarySigs: List)
-
/**
* Abstracted bilateral deal flow participant that initiates communication/handshake.
- *
- * There's a good chance we can push at least some of this logic down into core flow logic
- * and helper methods etc.
*/
abstract class Primary(override val progressTracker: ProgressTracker = Primary.tracker()) : FlowLogic() {
companion object {
- object AWAITING_PROPOSAL : ProgressTracker.Step("Handshaking and awaiting transaction proposal")
- object VERIFYING : ProgressTracker.Step("Verifying proposed transaction")
- object SIGNING : ProgressTracker.Step("Signing transaction")
- object NOTARY : ProgressTracker.Step("Getting notary signature")
- object SENDING_SIGS : ProgressTracker.Step("Sending transaction signatures to other party")
- object RECORDING : ProgressTracker.Step("Recording completed transaction")
- object COPYING_TO_REGULATOR : ProgressTracker.Step("Copying regulator")
-
- fun tracker() = ProgressTracker(AWAITING_PROPOSAL, VERIFYING, SIGNING, NOTARY, SENDING_SIGS, RECORDING, COPYING_TO_REGULATOR)
+ object SENDING_PROPOSAL : ProgressTracker.Step("Handshaking and awaiting transaction proposal.")
+ fun tracker() = ProgressTracker(SENDING_PROPOSAL)
}
abstract val payload: Any
abstract val notaryNode: NodeInfo
abstract val otherParty: Party
- abstract val myKeyPair: KeyPair
-
- @Suspendable
- fun getPartialTransaction(): UntrustworthyData {
- progressTracker.currentStep = AWAITING_PROPOSAL
+ abstract val myKey: PublicKey
+ @Suspendable override fun call(): SignedTransaction {
+ progressTracker.currentStep = SENDING_PROPOSAL
// Make the first message we'll send to kick off the flow.
- val hello = Handshake(payload, myKeyPair.public)
- val maybeSTX = sendAndReceive(otherParty, hello)
+ val hello = Handshake(payload, serviceHub.myInfo.legalIdentity.owningKey)
+ // Wait for the FinalityFlow to finish on the other side and return the tx when it's available.
+ send(otherParty, hello)
- return maybeSTX
- }
-
- @Suspendable
- fun verifyPartialTransaction(untrustedPartialTX: UntrustworthyData): SignedTransaction {
- progressTracker.currentStep = VERIFYING
-
- untrustedPartialTX.unwrap { stx ->
- progressTracker.nextStep()
-
- // Check that the tx proposed by the buyer is valid.
- val wtx: WireTransaction = stx.verifySignatures(myKeyPair.public, notaryNode.notaryIdentity.owningKey)
- logger.trace { "Received partially signed transaction: ${stx.id}" }
-
- checkDependencies(stx)
-
- // This verifies that the transaction is contract-valid, even though it is missing signatures.
- wtx.toLedgerTransaction(serviceHub).verify()
-
- // There are all sorts of funny games a malicious secondary might play here, we should fix them:
- //
- // - This tx may attempt to send some assets we aren't intending to sell to the secondary, if
- // we're reusing keys! So don't reuse keys!
- // - This tx may include output states that impose odd conditions on the movement of the cash,
- // once we implement state pairing.
- //
- // but the goal of this code is not to be fully secure (yet), but rather, just to find good ways to
- // express flow state machines on top of the messaging layer.
-
- return stx
- }
- }
-
- @Suspendable
- private fun checkDependencies(stx: SignedTransaction) {
- // Download and check all the transactions that this transaction depends on, but do not check this
- // transaction itself.
- val dependencyTxIDs = stx.tx.inputs.map { it.txhash }.toSet()
- subFlow(ResolveTransactionsFlow(dependencyTxIDs, otherParty))
- }
-
- @Suspendable
- override fun call(): SignedTransaction {
- val stx: SignedTransaction = verifyPartialTransaction(getPartialTransaction())
-
- // These two steps could be done in parallel, in theory. Our framework doesn't support that yet though.
- val ourSignature = computeOurSignature(stx)
- val allPartySignedTx = stx + ourSignature
- val notarySignatures = getNotarySignatures(allPartySignedTx)
-
- val fullySigned = sendSignatures(allPartySignedTx, ourSignature, notarySignatures)
-
- progressTracker.currentStep = RECORDING
-
- serviceHub.recordTransactions(fullySigned)
-
- logger.trace { "Deal stored" }
-
- progressTracker.currentStep = COPYING_TO_REGULATOR
- val regulators = serviceHub.networkMapCache.regulatorNodes
- if (regulators.isNotEmpty()) {
- // If there are regulators in the network, then we could copy them in on the transaction via a sub-flow
- // which would simply send them the transaction.
+ val signTransactionFlow = object : SignTransactionFlow(otherParty) {
+ override fun checkTransaction(stx: SignedTransaction) = checkProposal(stx)
}
- return fullySigned
+ subFlow(signTransactionFlow)
+
+ val txHash = receive(otherParty).unwrap { it }
+
+ return waitForLedgerCommit(txHash)
}
- @Suspendable
- private fun getNotarySignatures(stx: SignedTransaction): List {
- progressTracker.currentStep = NOTARY
- return subFlow(NotaryFlow.Client(stx))
- }
-
- open fun computeOurSignature(partialTX: SignedTransaction): DigitalSignature.WithKey {
- progressTracker.currentStep = SIGNING
- return myKeyPair.sign(partialTX.id)
- }
-
- @Suspendable
- private fun sendSignatures(allPartySignedTx: SignedTransaction, ourSignature: DigitalSignature.WithKey,
- notarySignatures: List): SignedTransaction {
- progressTracker.currentStep = SENDING_SIGS
- val fullySigned = allPartySignedTx + notarySignatures
-
- logger.trace { "Built finished transaction, sending back to other party!" }
-
- send(otherParty, SignaturesFromPrimary(ourSignature, notarySignatures))
- return fullySigned
- }
+ @Suspendable abstract fun checkProposal(stx: SignedTransaction)
}
-
/**
* Abstracted bilateral deal flow participant that is recipient of initial communication.
- *
- * There's a good chance we can push at least some of this logic down into core flow logic
- * and helper methods etc.
*/
abstract class Secondary(override val progressTracker: ProgressTracker = Secondary.tracker()) : FlowLogic() {
companion object {
- object RECEIVING : ProgressTracker.Step("Waiting for deal info")
- object VERIFYING : ProgressTracker.Step("Verifying deal info")
- object SIGNING : ProgressTracker.Step("Generating and signing transaction proposal")
- object SWAPPING_SIGNATURES : ProgressTracker.Step("Swapping signatures with the other party")
- object RECORDING : ProgressTracker.Step("Recording completed transaction")
+ object RECEIVING : ProgressTracker.Step("Waiting for deal info.")
+ object VERIFYING : ProgressTracker.Step("Verifying deal info.")
+ object SIGNING : ProgressTracker.Step("Generating and signing transaction proposal.")
+ object COLLECTING_SIGNATURES : ProgressTracker.Step("Collecting signatures from other parties.")
+ object RECORDING : ProgressTracker.Step("Recording completed transaction.")
+ object COPYING_TO_REGULATOR : ProgressTracker.Step("Copying regulator.")
+ object COPYING_TO_COUNTERPARTY : ProgressTracker.Step("Copying counterparty.")
- fun tracker() = ProgressTracker(RECEIVING, VERIFYING, SIGNING, SWAPPING_SIGNATURES, RECORDING)
+ fun tracker() = ProgressTracker(RECEIVING, VERIFYING, SIGNING, COLLECTING_SIGNATURES, RECORDING, COPYING_TO_REGULATOR, COPYING_TO_COUNTERPARTY)
}
abstract val otherParty: Party
@@ -188,23 +94,35 @@ object TwoPartyDealFlow {
val handshake = receiveAndValidateHandshake()
progressTracker.currentStep = SIGNING
- val (ptx, additionalSigningPubKeys) = assembleSharedTX(handshake)
- val stx = signWithOurKeys(additionalSigningPubKeys, ptx)
+ val (utx, additionalSigningPubKeys) = assembleSharedTX(handshake)
+ val ptx = signWithOurKeys(additionalSigningPubKeys, utx)
- val signatures = swapSignaturesWithPrimary(stx)
+ logger.trace { "Signed proposed transaction." }
+
+ progressTracker.currentStep = COLLECTING_SIGNATURES
+ val stx = subFlow(CollectSignaturesFlow(ptx))
logger.trace { "Got signatures from other party, verifying ... " }
- val fullySigned = stx + signatures.sellerSig + signatures.notarySigs
- fullySigned.verifySignatures()
-
- logger.trace { "Signatures received are valid. Deal transaction complete! :-)" }
-
progressTracker.currentStep = RECORDING
- serviceHub.recordTransactions(fullySigned)
+ val ftx = subFlow(FinalityFlow(stx, setOf(otherParty, serviceHub.myInfo.legalIdentity))).single()
- logger.trace { "Deal transaction stored" }
- return fullySigned
+ logger.trace { "Recorded transaction." }
+
+ progressTracker.currentStep = COPYING_TO_REGULATOR
+ val regulators = serviceHub.networkMapCache.regulatorNodes
+ if (regulators.isNotEmpty()) {
+ // Copy the transaction to every regulator in the network. This is obviously completely bogus, it's
+ // just for demo purposes.
+ regulators.forEach { send(it.serviceIdentities(ServiceType.regulator).first(), ftx) }
+ }
+
+ progressTracker.currentStep = COPYING_TO_COUNTERPARTY
+ // Send the final transaction hash back to the other party.
+ // We need this so we don't break the IRS demo and the SIMM Demo.
+ send(otherParty, ftx.id)
+
+ return ftx
}
@Suspendable
@@ -217,24 +135,9 @@ object TwoPartyDealFlow {
return handshake.unwrap { validateHandshake(it) }
}
- @Suspendable
- private fun swapSignaturesWithPrimary(stx: SignedTransaction): SignaturesFromPrimary {
- progressTracker.currentStep = SWAPPING_SIGNATURES
- logger.trace { "Sending partially signed transaction to other party" }
-
- // TODO: Protect against the seller terminating here and leaving us in the lurch without the final tx.
-
- return sendAndReceive(otherParty, stx).unwrap { it }
- }
-
private fun signWithOurKeys(signingPubKeys: List, ptx: TransactionBuilder): SignedTransaction {
// Now sign the transaction with whatever keys we need to move the cash.
- for (publicKey in signingPubKeys.expandedCompositeKeys) {
- val privateKey = serviceHub.keyManagementService.toPrivate(publicKey)
- ptx.signWith(KeyPair(publicKey, privateKey))
- }
-
- return ptx.toSignedTransaction(checkSufficientSignatures = false)
+ return serviceHub.signInitialTransaction(ptx, signingPubKeys)
}
@Suspendable protected abstract fun validateHandshake(handshake: Handshake): Handshake
@@ -244,17 +147,20 @@ object TwoPartyDealFlow {
@CordaSerializable
data class AutoOffer(val notary: Party, val dealBeingOffered: DealState)
-
/**
* One side of the flow for inserting a pre-agreed deal.
*/
open class Instigator(override val otherParty: Party,
override val payload: AutoOffer,
- override val myKeyPair: KeyPair,
+ override val myKey: PublicKey,
override val progressTracker: ProgressTracker = Primary.tracker()) : Primary() {
override val notaryNode: NodeInfo get() =
serviceHub.networkMapCache.notaryNodes.filter { it.notaryIdentity == payload.notary }.single()
+
+ @Suspendable override fun checkProposal(stx: SignedTransaction) = requireThat {
+ // Add some constraints here.
+ }
}
/**
@@ -281,5 +187,4 @@ object TwoPartyDealFlow {
return Pair(ptx, arrayListOf(deal.parties.single { it == serviceHub.myInfo.legalIdentity as AbstractParty }.owningKey))
}
}
-
}
diff --git a/core/src/main/kotlin/net/corda/flows/TxKeyFlowUtilities.kt b/core/src/main/kotlin/net/corda/flows/TxKeyFlowUtilities.kt
index 4fa07b2e44..8e7d85b240 100644
--- a/core/src/main/kotlin/net/corda/flows/TxKeyFlowUtilities.kt
+++ b/core/src/main/kotlin/net/corda/flows/TxKeyFlowUtilities.kt
@@ -29,7 +29,7 @@ object TxKeyFlowUtilities {
*/
@Suspendable
fun provideKey(flow: FlowLogic<*>, otherSide: Party): PublicKey {
- val key = flow.serviceHub.keyManagementService.freshKey().public
+ val key = flow.serviceHub.keyManagementService.freshKey()
// TODO: Generate and sign certificate for the key, once we have signing support for composite keys
// (in this case the legal identity key)
flow.send(otherSide, ProvidedTransactionKey(key, null))
diff --git a/core/src/main/resources/net/corda/core/node/isolated.jar b/core/src/main/resources/net/corda/core/node/isolated.jar
index 1d6808b4b0..e2db13bf3c 100644
Binary files a/core/src/main/resources/net/corda/core/node/isolated.jar and b/core/src/main/resources/net/corda/core/node/isolated.jar differ
diff --git a/core/src/test/kotlin/net/corda/core/contracts/DummyContractV2Tests.kt b/core/src/test/kotlin/net/corda/core/contracts/DummyContractV2Tests.kt
index 1e5034b681..dfe175ded2 100644
--- a/core/src/test/kotlin/net/corda/core/contracts/DummyContractV2Tests.kt
+++ b/core/src/test/kotlin/net/corda/core/contracts/DummyContractV2Tests.kt
@@ -1,6 +1,7 @@
package net.corda.core.contracts
import net.corda.core.crypto.SecureHash
+import net.corda.core.utilities.ALICE
import net.corda.core.utilities.DUMMY_NOTARY
import net.corda.testing.ALICE_PUBKEY
import org.junit.Test
@@ -14,7 +15,7 @@ class DummyContractV2Tests {
@Test
fun `upgrade from v1`() {
val contractUpgrade = DummyContractV2()
- val v1State = TransactionState(DummyContract.SingleOwnerState(0, ALICE_PUBKEY), DUMMY_NOTARY)
+ val v1State = TransactionState(DummyContract.SingleOwnerState(0, ALICE), DUMMY_NOTARY)
val v1Ref = StateRef(SecureHash.randomSHA256(), 0)
val v1StateAndRef = StateAndRef(v1State, v1Ref)
val (tx, _) = DummyContractV2().generateUpgradeFromV1(v1StateAndRef)
diff --git a/core/src/test/kotlin/net/corda/core/contracts/TransactionEncumbranceTests.kt b/core/src/test/kotlin/net/corda/core/contracts/TransactionEncumbranceTests.kt
index a00380e7df..8fd3bad22a 100644
--- a/core/src/test/kotlin/net/corda/core/contracts/TransactionEncumbranceTests.kt
+++ b/core/src/test/kotlin/net/corda/core/contracts/TransactionEncumbranceTests.kt
@@ -2,13 +2,12 @@ package net.corda.core.contracts
import net.corda.contracts.asset.Cash
import net.corda.core.crypto.SecureHash
-import net.corda.core.utilities.DUMMY_PUBKEY_1
-import net.corda.core.utilities.DUMMY_PUBKEY_2
+import net.corda.core.identity.AbstractParty
import net.corda.testing.MEGA_CORP
+import net.corda.testing.MINI_CORP
import net.corda.testing.ledger
import net.corda.testing.transaction
import org.junit.Test
-import java.security.PublicKey
import java.time.Instant
import java.time.temporal.ChronoUnit
@@ -19,9 +18,9 @@ class TransactionEncumbranceTests {
val state = Cash.State(
amount = 1000.DOLLARS `issued by` defaultIssuer,
- owner = DUMMY_PUBKEY_1
+ owner = MEGA_CORP
)
- val stateWithNewOwner = state.copy(owner = DUMMY_PUBKEY_2)
+ val stateWithNewOwner = state.copy(owner = MINI_CORP)
val FOUR_PM: Instant = Instant.parse("2015-04-17T16:00:00.00Z")
val FIVE_PM: Instant = FOUR_PM.plus(1, ChronoUnit.HOURS)
@@ -40,7 +39,7 @@ class TransactionEncumbranceTests {
data class State(
val validFrom: Instant
) : ContractState {
- override val participants: List = emptyList()
+ override val participants: List = emptyList()
override val contract: Contract = TEST_TIMELOCK_ID
}
}
@@ -52,7 +51,7 @@ class TransactionEncumbranceTests {
input { state }
output(encumbrance = 1) { stateWithNewOwner }
output("5pm time-lock") { timeLock }
- command(DUMMY_PUBKEY_1) { Cash.Commands.Move() }
+ command(MEGA_CORP.owningKey) { Cash.Commands.Move() }
verifies()
}
}
@@ -70,7 +69,7 @@ class TransactionEncumbranceTests {
input("state encumbered by 5pm time-lock")
input("5pm time-lock")
output { stateWithNewOwner }
- command(DUMMY_PUBKEY_1) { Cash.Commands.Move() }
+ command(MEGA_CORP.owningKey) { Cash.Commands.Move() }
timestamp(FIVE_PM)
verifies()
}
@@ -89,7 +88,7 @@ class TransactionEncumbranceTests {
input("state encumbered by 5pm time-lock")
input("5pm time-lock")
output { state }
- command(DUMMY_PUBKEY_1) { Cash.Commands.Move() }
+ command(MEGA_CORP.owningKey) { Cash.Commands.Move() }
timestamp(FOUR_PM)
this `fails with` "the time specified in the time-lock has passed"
}
@@ -106,7 +105,7 @@ class TransactionEncumbranceTests {
transaction {
input("state encumbered by 5pm time-lock")
output { stateWithNewOwner }
- command(DUMMY_PUBKEY_1) { Cash.Commands.Move() }
+ command(MEGA_CORP.owningKey) { Cash.Commands.Move() }
timestamp(FIVE_PM)
this `fails with` "Missing required encumbrance 1 in INPUT"
}
@@ -118,7 +117,7 @@ class TransactionEncumbranceTests {
transaction {
input { state }
output(encumbrance = 0) { stateWithNewOwner }
- command(DUMMY_PUBKEY_1) { Cash.Commands.Move() }
+ command(MEGA_CORP.owningKey) { Cash.Commands.Move() }
this `fails with` "Missing required encumbrance 0 in OUTPUT"
}
}
@@ -129,7 +128,7 @@ class TransactionEncumbranceTests {
input { state }
output(encumbrance = 2) { stateWithNewOwner }
output { timeLock }
- command(DUMMY_PUBKEY_1) { Cash.Commands.Move() }
+ command(MEGA_CORP.owningKey) { Cash.Commands.Move() }
this `fails with` "Missing required encumbrance 2 in OUTPUT"
}
}
@@ -146,7 +145,7 @@ class TransactionEncumbranceTests {
input("state encumbered by some other state")
input("5pm time-lock")
output { stateWithNewOwner }
- command(DUMMY_PUBKEY_1) { Cash.Commands.Move() }
+ command(MEGA_CORP.owningKey) { Cash.Commands.Move() }
timestamp(FIVE_PM)
this `fails with` "Missing required encumbrance 1 in INPUT"
}
diff --git a/core/src/test/kotlin/net/corda/core/contracts/TransactionTests.kt b/core/src/test/kotlin/net/corda/core/contracts/TransactionTests.kt
index c4a777948c..05b2e39479 100644
--- a/core/src/test/kotlin/net/corda/core/contracts/TransactionTests.kt
+++ b/core/src/test/kotlin/net/corda/core/contracts/TransactionTests.kt
@@ -11,7 +11,6 @@ import net.corda.core.transactions.LedgerTransaction
import net.corda.core.transactions.SignedTransaction
import net.corda.core.transactions.WireTransaction
import net.corda.core.utilities.*
-import net.corda.testing.ALICE_PUBKEY
import org.junit.Test
import java.security.KeyPair
import kotlin.test.assertEquals
@@ -95,7 +94,7 @@ class TransactionTests {
@Test
fun `transactions with no inputs can have any notary`() {
- val baseOutState = TransactionState(DummyContract.SingleOwnerState(0, ALICE_PUBKEY), DUMMY_NOTARY)
+ val baseOutState = TransactionState(DummyContract.SingleOwnerState(0, ALICE), DUMMY_NOTARY)
val inputs = emptyList>()
val outputs = listOf(baseOutState, baseOutState.copy(notary = ALICE), baseOutState.copy(notary = BOB))
val commands = emptyList>()
@@ -120,7 +119,7 @@ class TransactionTests {
@Test
fun `transaction verification fails for duplicate inputs`() {
- val baseOutState = TransactionState(DummyContract.SingleOwnerState(0, ALICE_PUBKEY), DUMMY_NOTARY)
+ val baseOutState = TransactionState(DummyContract.SingleOwnerState(0, ALICE), DUMMY_NOTARY)
val stateRef = StateRef(SecureHash.randomSHA256(), 0)
val stateAndRef = StateAndRef(baseOutState, stateRef)
val inputs = listOf(stateAndRef, stateAndRef)
@@ -148,7 +147,7 @@ class TransactionTests {
@Test
fun `general transactions cannot change notary`() {
val notary: Party = DUMMY_NOTARY
- val inState = TransactionState(DummyContract.SingleOwnerState(0, ALICE_PUBKEY), notary)
+ val inState = TransactionState(DummyContract.SingleOwnerState(0, ALICE), notary)
val outState = inState.copy(notary = ALICE)
val inputs = listOf(StateAndRef(inState, StateRef(SecureHash.randomSHA256(), 0)))
val outputs = listOf(outState)
diff --git a/core/src/test/kotlin/net/corda/core/crypto/PartialMerkleTreeTest.kt b/core/src/test/kotlin/net/corda/core/crypto/PartialMerkleTreeTest.kt
index 475bb65ee7..dbbc52c5e0 100644
--- a/core/src/test/kotlin/net/corda/core/crypto/PartialMerkleTreeTest.kt
+++ b/core/src/test/kotlin/net/corda/core/crypto/PartialMerkleTreeTest.kt
@@ -12,9 +12,7 @@ import net.corda.core.transactions.WireTransaction
import net.corda.core.utilities.DUMMY_NOTARY
import net.corda.core.utilities.DUMMY_PUBKEY_1
import net.corda.core.utilities.TEST_TX_TIME
-import net.corda.testing.MEGA_CORP
-import net.corda.testing.MEGA_CORP_PUBKEY
-import net.corda.testing.ledger
+import net.corda.testing.*
import org.junit.Test
import java.security.PublicKey
import kotlin.test.*
@@ -30,20 +28,20 @@ class PartialMerkleTreeTest {
output("MEGA_CORP cash") {
Cash.State(
amount = 1000.DOLLARS `issued by` MEGA_CORP.ref(1, 1),
- owner = MEGA_CORP_PUBKEY
+ owner = MEGA_CORP
)
}
output("dummy cash 1") {
Cash.State(
amount = 900.DOLLARS `issued by` MEGA_CORP.ref(1, 1),
- owner = DUMMY_PUBKEY_1
+ owner = MINI_CORP
)
}
}
transaction {
input("MEGA_CORP cash")
- output("MEGA_CORP cash".output().copy(owner = DUMMY_PUBKEY_1))
+ output("MEGA_CORP cash".output().copy(owner = MINI_CORP))
command(MEGA_CORP_PUBKEY) { Cash.Commands.Move() }
timestamp(TEST_TX_TIME)
this.verifies()
@@ -61,7 +59,7 @@ class PartialMerkleTreeTest {
@Test
fun `building Merkle tree - no hashes`() {
- assertFailsWith { MerkleTree.Companion.getMerkleTree(emptyList()) }
+ assertFailsWith { MerkleTree.getMerkleTree(emptyList()) }
}
@Test
@@ -98,7 +96,7 @@ class PartialMerkleTreeTest {
fun filtering(elem: Any): Boolean {
return when (elem) {
is StateRef -> true
- is TransactionState<*> -> elem.data.participants[0].keys == DUMMY_PUBKEY_1.keys
+ is TransactionState<*> -> elem.data.participants[0].owningKey.keys == MINI_CORP_PUBKEY.keys
is Command -> MEGA_CORP_PUBKEY in elem.signers
is Timestamp -> true
is PublicKey -> elem == MEGA_CORP_PUBKEY
diff --git a/core/src/test/kotlin/net/corda/core/crypto/X509UtilitiesTest.kt b/core/src/test/kotlin/net/corda/core/crypto/X509UtilitiesTest.kt
index faedf36c5d..4612349134 100644
--- a/core/src/test/kotlin/net/corda/core/crypto/X509UtilitiesTest.kt
+++ b/core/src/test/kotlin/net/corda/core/crypto/X509UtilitiesTest.kt
@@ -2,7 +2,6 @@ package net.corda.core.crypto
import net.corda.core.div
import net.corda.testing.MEGA_CORP
-import net.i2p.crypto.eddsa.EdDSAEngine
import net.corda.testing.getTestX509Name
import org.bouncycastle.asn1.x500.X500Name
import org.bouncycastle.asn1.x509.GeneralName
@@ -57,7 +56,7 @@ class X509UtilitiesTest {
val caCertAndKey = X509Utilities.createSelfSignedCACert(getTestX509Name("Test CA Cert"))
val subjectDN = getTestX509Name("Server Cert")
val keyPair = Crypto.generateKeyPair(X509Utilities.DEFAULT_TLS_SIGNATURE_SCHEME)
- val serverCert = X509Utilities.createServerCert(subjectDN, keyPair.public, caCertAndKey, listOf("alias name"), listOf("10.0.0.54"))
+ val serverCert = X509Utilities.createTlsServerCert(subjectDN, keyPair.public, caCertAndKey, listOf("alias name"), listOf("10.0.0.54"))
assertTrue { serverCert.subjectDN.name.contains("CN=Server Cert") } // using our subject common name
assertEquals(caCertAndKey.certificate.issuerDN, serverCert.issuerDN) // Issued by our CA cert
serverCert.checkValidity(Date()) // throws on verification problems
@@ -107,7 +106,7 @@ class X509UtilitiesTest {
val tmpKeyStore = tempFile("keystore.jks")
val ecDSACert = X509Utilities.createSelfSignedCACert(X500Name("CN=Test"))
val edDSAKeypair = Crypto.generateKeyPair("EDDSA_ED25519_SHA512")
- val edDSACert = X509Utilities.createServerCert(X500Name("CN=TestEdDSA"), edDSAKeypair.public, ecDSACert, listOf("alias name"), listOf("10.0.0.54"))
+ val edDSACert = X509Utilities.createTlsServerCert(X500Name("CN=TestEdDSA"), edDSAKeypair.public, ecDSACert, listOf("alias name"), listOf("10.0.0.54"))
// Save the EdDSA private key with cert chains.
val keyStore = KeyStoreUtilities.loadOrCreateKeyStore(tmpKeyStore, "keystorepass")
@@ -177,14 +176,14 @@ class X509UtilitiesTest {
// Load signing intermediate CA cert
val caKeyStore = KeyStoreUtilities.loadKeyStore(tmpCAKeyStore, "cakeystorepass")
- val caCertAndKey = caKeyStore.getCertificateAndKey(X509Utilities.CORDA_INTERMEDIATE_CA_PRIVATE_KEY, "cakeypass")
+ val caCertAndKey = caKeyStore.getCertificateAndKeyPair(X509Utilities.CORDA_INTERMEDIATE_CA_PRIVATE_KEY, "cakeypass")
// Generate server cert and private key and populate another keystore suitable for SSL
X509Utilities.createKeystoreForSSL(tmpServerKeyStore, "serverstorepass", "serverkeypass", caKeyStore, "cakeypass", MEGA_CORP.name)
// Load back server certificate
val serverKeyStore = KeyStoreUtilities.loadKeyStore(tmpServerKeyStore, "serverstorepass")
- val serverCertAndKey = serverKeyStore.getCertificateAndKey(X509Utilities.CORDA_CLIENT_CA_PRIVATE_KEY, "serverkeypass")
+ val serverCertAndKey = serverKeyStore.getCertificateAndKeyPair(X509Utilities.CORDA_CLIENT_CA_PRIVATE_KEY, "serverkeypass")
serverCertAndKey.certificate.checkValidity(Date())
serverCertAndKey.certificate.verify(caCertAndKey.certificate.publicKey)
@@ -349,4 +348,18 @@ class X509UtilitiesTest {
return keyStore
}
+ @Test
+ fun `Get correct private key type from Keystore`() {
+ val keyPair = Crypto.generateKeyPair(Crypto.ECDSA_SECP256R1_SHA256)
+ val selfSignCert = X509Utilities.createSelfSignedCACert(X500Name("CN=Test"), keyPair)
+ val keyStore = KeyStoreUtilities.loadOrCreateKeyStore(tempFile("testKeystore.jks"), "keystorepassword")
+ keyStore.setKeyEntry("Key", keyPair.private, "keypassword".toCharArray(), arrayOf(selfSignCert.certificate))
+
+ val keyFromKeystore = keyStore.getKey("Key", "keypassword".toCharArray())
+ val keyFromKeystoreCasted = keyStore.getSupportedKey("Key", "keypassword")
+
+ assertTrue(keyFromKeystore is java.security.interfaces.ECPrivateKey) // by default JKS returns SUN EC key
+ assertTrue(keyFromKeystoreCasted is org.bouncycastle.jce.interfaces.ECPrivateKey)
+ }
+
}
diff --git a/core/src/test/kotlin/net/corda/core/flows/CollectSignaturesFlowTests.kt b/core/src/test/kotlin/net/corda/core/flows/CollectSignaturesFlowTests.kt
new file mode 100644
index 0000000000..7e30609ca7
--- /dev/null
+++ b/core/src/test/kotlin/net/corda/core/flows/CollectSignaturesFlowTests.kt
@@ -0,0 +1,192 @@
+package net.corda.core.flows
+
+import co.paralleluniverse.fibers.Suspendable
+import net.corda.core.contracts.Command
+import net.corda.core.contracts.DummyContract
+import net.corda.core.contracts.TransactionType
+import net.corda.core.contracts.requireThat
+import net.corda.core.getOrThrow
+import net.corda.core.identity.Party
+import net.corda.core.node.PluginServiceHub
+import net.corda.core.transactions.SignedTransaction
+import net.corda.core.utilities.unwrap
+import net.corda.flows.CollectSignaturesFlow
+import net.corda.flows.FinalityFlow
+import net.corda.flows.SignTransactionFlow
+import net.corda.testing.MINI_CORP_KEY
+import net.corda.testing.node.MockNetwork
+import org.junit.After
+import org.junit.Before
+import org.junit.Test
+import java.util.concurrent.ExecutionException
+import kotlin.test.assertFailsWith
+
+class CollectSignaturesFlowTests {
+ lateinit var mockNet: MockNetwork
+ lateinit var a: MockNetwork.MockNode
+ lateinit var b: MockNetwork.MockNode
+ lateinit var c: MockNetwork.MockNode
+ lateinit var notary: Party
+
+ @Before
+ fun setup() {
+ mockNet = MockNetwork()
+ val nodes = mockNet.createSomeNodes(3)
+ a = nodes.partyNodes[0]
+ b = nodes.partyNodes[1]
+ c = nodes.partyNodes[2]
+ notary = nodes.notaryNode.info.notaryIdentity
+ mockNet.runNetwork()
+ CollectSigsTestCorDapp.registerFlows(a.services)
+ CollectSigsTestCorDapp.registerFlows(b.services)
+ CollectSigsTestCorDapp.registerFlows(c.services)
+ }
+
+ @After
+ fun tearDown() {
+ mockNet.stopNodes()
+ }
+
+ object CollectSigsTestCorDapp {
+ // Would normally be called by custom service init in a CorDapp.
+ fun registerFlows(pluginHub: PluginServiceHub) {
+ pluginHub.registerFlowInitiator(TestFlow.Initiator::class.java) { TestFlow.Responder(it) }
+ pluginHub.registerFlowInitiator(TestFlowTwo.Initiator::class.java) { TestFlowTwo.Responder(it) }
+ }
+ }
+
+ // With this flow, the initiators sends an "offer" to the responder, who then initiates the collect signatures flow.
+ // This flow is a more simplifed version of the "TwoPartyTrade" flow and is a useful example of how both the
+ // "collectSignaturesFlow" and "SignTransactionFlow" can be used in practise.
+ object TestFlow {
+ @InitiatingFlow
+ class Initiator(val state: DummyContract.MultiOwnerState, val otherParty: Party) : FlowLogic() {
+ @Suspendable
+ override fun call(): SignedTransaction {
+ send(otherParty, state)
+
+ val flow = object : SignTransactionFlow(otherParty) {
+ @Suspendable override fun checkTransaction(stx: SignedTransaction) = requireThat {
+ val tx = stx.tx
+ "There should only be one output state" using (tx.outputs.size == 1)
+ "There should only be one output state" using (tx.inputs.isEmpty())
+ val magicNumberState = tx.outputs.single().data as DummyContract.MultiOwnerState
+ "Must be 1337 or greater" using (magicNumberState.magicNumber >= 1337)
+ }
+ }
+
+ val stx = subFlow(flow)
+ val ftx = waitForLedgerCommit(stx.id)
+
+ return ftx
+ }
+ }
+
+ class Responder(val otherParty: Party) : FlowLogic() {
+ @Suspendable
+ override fun call(): SignedTransaction {
+ val state = receive(otherParty).unwrap { it }
+ val notary = serviceHub.networkMapCache.notaryNodes.single().notaryIdentity
+
+ val command = Command(DummyContract.Commands.Create(), state.participants.map { it.owningKey })
+ val builder = TransactionType.General.Builder(notary = notary).withItems(state, command)
+ val ptx = serviceHub.signInitialTransaction(builder)
+ val stx = subFlow(CollectSignaturesFlow(ptx))
+ val ftx = subFlow(FinalityFlow(stx)).single()
+
+ return ftx
+ }
+ }
+ }
+
+ // With this flow, the initiator starts the "CollectTransactionFlow". It is then the responders responsibility to
+ // override "checkTransaction" and add whatever logic their require to verify the SignedTransaction they are
+ // receiving off the wire.
+ object TestFlowTwo {
+ @InitiatingFlow
+ class Initiator(val state: DummyContract.MultiOwnerState, val otherParty: Party) : FlowLogic() {
+ @Suspendable
+ override fun call(): SignedTransaction {
+ val notary = serviceHub.networkMapCache.notaryNodes.single().notaryIdentity
+ val command = Command(DummyContract.Commands.Create(), state.participants.map { it.owningKey })
+ val builder = TransactionType.General.Builder(notary = notary).withItems(state, command)
+ val ptx = serviceHub.signInitialTransaction(builder)
+ val stx = subFlow(CollectSignaturesFlow(ptx))
+ val ftx = subFlow(FinalityFlow(stx)).single()
+
+ return ftx
+ }
+ }
+
+ class Responder(val otherParty: Party) : FlowLogic() {
+ @Suspendable override fun call(): SignedTransaction {
+ val flow = object : SignTransactionFlow(otherParty) {
+ @Suspendable override fun checkTransaction(stx: SignedTransaction) = requireThat {
+ val tx = stx.tx
+ "There should only be one output state" using (tx.outputs.size == 1)
+ "There should only be one output state" using (tx.inputs.isEmpty())
+ val magicNumberState = tx.outputs.single().data as DummyContract.MultiOwnerState
+ "Must be 1337 or greater" using (magicNumberState.magicNumber >= 1337)
+ }
+ }
+
+ val stx = subFlow(flow)
+
+ return waitForLedgerCommit(stx.id)
+ }
+ }
+ }
+
+
+ @Test
+ fun `successfully collects two signatures`() {
+ val magicNumber = 1337
+ val parties = listOf(a.info.legalIdentity, b.info.legalIdentity, c.info.legalIdentity)
+ val state = DummyContract.MultiOwnerState(magicNumber, parties)
+ val flow = a.services.startFlow(TestFlowTwo.Initiator(state, b.info.legalIdentity))
+ mockNet.runNetwork()
+ val result = flow.resultFuture.getOrThrow()
+ result.verifySignatures()
+ println(result.tx)
+ println(result.sigs)
+ }
+
+ @Test
+ fun `no need to collect any signatures`() {
+ val onePartyDummyContract = DummyContract.generateInitial(1337, notary, a.info.legalIdentity.ref(1))
+ val ptx = a.services.signInitialTransaction(onePartyDummyContract)
+ val flow = a.services.startFlow(CollectSignaturesFlow(ptx))
+ mockNet.runNetwork()
+ val result = flow.resultFuture.getOrThrow()
+ result.verifySignatures()
+ println(result.tx)
+ println(result.sigs)
+ }
+
+ @Test
+ fun `fails when not signed by initiator`() {
+ val onePartyDummyContract = DummyContract.generateInitial(1337, notary, a.info.legalIdentity.ref(1))
+ val ptx = onePartyDummyContract.signWith(MINI_CORP_KEY).toSignedTransaction(false)
+ val flow = a.services.startFlow(CollectSignaturesFlow(ptx))
+ mockNet.runNetwork()
+ assertFailsWith("The Initiator of CollectSignaturesFlow must have signed the transaction.") {
+ flow.resultFuture.get()
+ }
+ }
+
+ @Test
+ fun `passes with multiple initial signatures`() {
+ val twoPartyDummyContract = DummyContract.generateInitial(1337, notary,
+ a.info.legalIdentity.ref(1),
+ b.info.legalIdentity.ref(2),
+ b.info.legalIdentity.ref(3))
+ val signedByA = a.services.signInitialTransaction(twoPartyDummyContract)
+ val signedByBoth = b.services.addSignature(signedByA)
+ val flow = a.services.startFlow(CollectSignaturesFlow(signedByBoth))
+ mockNet.runNetwork()
+ val result = flow.resultFuture.getOrThrow()
+ println(result.tx)
+ println(result.sigs)
+ }
+}
+
diff --git a/core/src/test/kotlin/net/corda/core/flows/ContractUpgradeFlowTest.kt b/core/src/test/kotlin/net/corda/core/flows/ContractUpgradeFlowTest.kt
index 738802dbf2..4e71b4d222 100644
--- a/core/src/test/kotlin/net/corda/core/flows/ContractUpgradeFlowTest.kt
+++ b/core/src/test/kotlin/net/corda/core/flows/ContractUpgradeFlowTest.kt
@@ -1,14 +1,17 @@
package net.corda.core.flows
+import co.paralleluniverse.fibers.Suspendable
import net.corda.contracts.asset.Cash
import net.corda.core.contracts.*
import net.corda.core.crypto.SecureHash
import net.corda.core.getOrThrow
+import net.corda.core.identity.AbstractParty
import net.corda.core.identity.Party
import net.corda.core.messaging.CordaRPCOps
import net.corda.core.messaging.startFlow
import net.corda.core.node.services.unconsumedStates
import net.corda.core.serialization.OpaqueBytes
+import net.corda.core.transactions.SignedTransaction
import net.corda.core.utilities.Emoji
import net.corda.flows.CashIssueFlow
import net.corda.flows.ContractUpgradeFlow
@@ -25,9 +28,7 @@ import net.corda.testing.startRpcClient
import org.junit.After
import org.junit.Before
import org.junit.Test
-import java.security.PublicKey
import java.util.*
-import java.util.concurrent.ExecutionException
import kotlin.test.assertEquals
import kotlin.test.assertFailsWith
import kotlin.test.assertTrue
@@ -57,9 +58,8 @@ class ContractUpgradeFlowTest {
fun `2 parties contract upgrade`() {
// Create dummy contract.
val twoPartyDummyContract = DummyContract.generateInitial(0, notary, a.info.legalIdentity.ref(1), b.info.legalIdentity.ref(1))
- val stx = twoPartyDummyContract.signWith(a.services.legalIdentityKey)
- .signWith(b.services.legalIdentityKey)
- .toSignedTransaction()
+ val signedByA = a.services.signInitialTransaction(twoPartyDummyContract)
+ val stx = b.services.addSignature(signedByA)
a.services.startFlow(FinalityFlow(stx, setOf(a.info.legalIdentity, b.info.legalIdentity)))
mockNet.runNetwork()
@@ -69,10 +69,10 @@ class ContractUpgradeFlowTest {
requireNotNull(atx)
requireNotNull(btx)
- // The request is expected to be rejected because party B haven't authorise the upgrade yet.
+ // The request is expected to be rejected because party B hasn't authorised the upgrade yet.
val rejectedFuture = a.services.startFlow(ContractUpgradeFlow(atx!!.tx.outRef(0), DummyContractV2::class.java)).resultFuture
mockNet.runNetwork()
- assertFailsWith(ExecutionException::class) { rejectedFuture.get() }
+ assertFailsWith(FlowSessionException::class) { rejectedFuture.getOrThrow() }
// Party B authorise the contract state upgrade.
b.services.vaultService.authoriseContractUpgrade(btx!!.tx.outRef(0), DummyContractV2::class.java)
@@ -81,7 +81,7 @@ class ContractUpgradeFlowTest {
val resultFuture = a.services.startFlow(ContractUpgradeFlow(atx.tx.outRef(0), DummyContractV2::class.java)).resultFuture
mockNet.runNetwork()
- val result = resultFuture.get()
+ val result = resultFuture.getOrThrow()
fun check(node: MockNetwork.MockNode) {
val nodeStx = node.database.transaction {
@@ -108,7 +108,7 @@ class ContractUpgradeFlowTest {
rpcAddress = startRpcServer(
rpcUser = user,
ops = CordaRPCOpsImpl(node.services, node.smm, node.database)
- ).get().hostAndPort,
+ ).get().broker.hostAndPort!!,
username = user.username,
password = user.password
).get()
@@ -119,17 +119,16 @@ class ContractUpgradeFlowTest {
rpcDriver {
// Create dummy contract.
val twoPartyDummyContract = DummyContract.generateInitial(0, notary, a.info.legalIdentity.ref(1), b.info.legalIdentity.ref(1))
- val stx = twoPartyDummyContract.signWith(a.services.legalIdentityKey)
- .signWith(b.services.legalIdentityKey)
- .toSignedTransaction()
+ val signedByA = a.services.signInitialTransaction(twoPartyDummyContract)
+ val stx = b.services.addSignature(signedByA)
val user = rpcTestUser.copy(permissions = setOf(
- startFlowPermission(),
+ startFlowPermission