introduce typed signer deserializer

Signed-off-by: Angelo De Caro <adc@zurich.ibm.com>

Author: adecaro

docs/core/extension/zkatdlog/nogh/v2/driver/base.go

@@ -20,6 +20,7 @@ import (
 	idriver "github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/driver"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/idemix"
 	msp2 "github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/idemix/crypto"
+	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/interop/htlc"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/membership"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/role"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/wallet"
@@ -67,7 +68,7 @@ func (d *base) newWalletService(
 ) (*wallet.Service, error) {
 	pp := publicParams.(*v2.PublicParams)
 	roles := wallet.NewRoles()
-	deserializerManager := deserializer.NewMultiplexDeserializer()
+	deserializerManager := deserializer.NewTypedSignerDeserializerMultiplex()
 	tmsID := tmsConfig.ID()
 	identityDB, err := storageProvider.IdentityStore(tmsID)
 	if err != nil {
@@ -83,6 +84,9 @@ func (d *base) newWalletService(
 		return nil, errors.WithMessagef(err, "failed to create identity config")
 	}
 
+	// interop deserializer
+	deserializerManager.AddTypedSignerDeserializer(htlc.ScriptType, htlc.NewSenderSignerDeserializer(deserializerManager))
+
 	// Prepare roles
 	roleFactory := role.NewFactory(
 		logger,

token/core/common/authrorization.go

@@ -116,7 +116,7 @@ func (o *AuthorizationMultiplexer) Issued(ctx context.Context, issuer token.Iden
 }
 
 // OwnerType returns the type of owner (e.g. 'idemix' or 'htlc') and the identity bytes
-func (o *AuthorizationMultiplexer) OwnerType(raw []byte) (string, []byte, error) {
+func (o *AuthorizationMultiplexer) OwnerType(raw []byte) (driver.IdentityType, []byte, error) {
 	owner, err := identity.UnmarshalTypedIdentity(raw)
 	if err != nil {
 		return "", nil, err

token/core/fabtoken/v1/driver/base.go

@@ -17,6 +17,7 @@ import (
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/config"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/deserializer"
 	driver2 "github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/driver"
+	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/interop/htlc"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/role"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/wallet"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/x509"
@@ -53,7 +54,7 @@ func (d *base) newWalletService(
 ) (*wallet.Service, error) {
 	tmsID := tmsConfig.ID()
 
-	deserializerManager := deserializer.NewMultiplexDeserializer()
+	deserializerManager := deserializer.NewTypedSignerDeserializerMultiplex()
 	identityDB, err := storageProvider.IdentityStore(tmsID)
 	if err != nil {
 		return nil, errors.Wrapf(err, "failed to open identity db for tms [%s]", tmsID)
@@ -68,6 +69,9 @@ func (d *base) newWalletService(
 		return nil, errors.WithMessagef(err, "failed to create identity config")
 	}
 
+	// interop deserializer
+	deserializerManager.AddTypedSignerDeserializer(htlc.ScriptType, htlc.NewSenderSignerDeserializer(deserializerManager))
+
 	// Prepare roles
 	keyStore := x509.NewKeyStore(baseKeyStore)
 	roleFactory := role.NewFactory(

token/core/zkatdlog/nogh/v1/driver/base.go

@@ -20,6 +20,7 @@ import (
 	idriver "github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/driver"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/idemix"
 	msp2 "github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/idemix/crypto"
+	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/interop/htlc"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/membership"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/role"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/wallet"
@@ -67,7 +68,7 @@ func (d *base) newWalletService(
 ) (*wallet.Service, error) {
 	pp := publicParams.(*v1.PublicParams)
 	roles := wallet.NewRoles()
-	deserializerManager := deserializer.NewMultiplexDeserializer()
+	deserializerManager := deserializer.NewTypedSignerDeserializerMultiplex()
 	tmsID := tmsConfig.ID()
 	identityDB, err := storageProvider.IdentityStore(tmsID)
 	if err != nil {
@@ -83,6 +84,9 @@ func (d *base) newWalletService(
 		return nil, errors.WithMessagef(err, "failed to create identity config")
 	}
 
+	// interop deserializer
+	deserializerManager.AddTypedSignerDeserializer(htlc.ScriptType, htlc.NewSenderSignerDeserializer(deserializerManager))
+
 	// Prepare roles
 	roleFactory := role.NewFactory(
 		logger,

token/driver/wallet.go

@@ -133,6 +133,9 @@ type IdentityConfiguration struct {
 // Ultimately, it is the token driver to decide which types are allowed.
 type WalletLookupID = any
 
+// IdentityType identifies the type of identity
+type IdentityType = string
+
 // Authorization defines method to check the relation between a token
 // and wallets (owner, auditor, etc.)
 type Authorization interface {
@@ -148,7 +151,7 @@ type Authorization interface {
 	// Issued returns true if the passed issuer issued the passed token
 	Issued(ctx context.Context, issuer Identity, tok *token.Token) bool
 	// OwnerType returns the type of owner (e.g. 'idemix' or 'htlc') and the identity bytes
-	OwnerType(raw []byte) (string, []byte, error)
+	OwnerType(raw []byte) (IdentityType, []byte, error)
 }
 
 //go:generate counterfeiter -o mock/ws.go -fake-name WalletService . WalletService

token/services/identity/deserializer/audit.go

@@ -0,0 +1,32 @@
+/*
+Copyright IBM Corp. All Rights Reserved.
+
+SPDX-License-Identifier: Apache-2.0
+*/
+
+package deserializer
+
+import (
+	"context"
+
+	"github.com/hyperledger-labs/fabric-smart-client/pkg/utils/errors"
+	"github.com/hyperledger-labs/fabric-token-sdk/token/driver"
+	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity"
+)
+
+type TypedAuditInfoMatcher struct {
+	matcher driver.Matcher
+}
+
+func (t *TypedAuditInfoMatcher) Match(ctx context.Context, id []byte) error {
+	// match identity and audit info
+	recipient, err := identity.UnmarshalTypedIdentity(id)
+	if err != nil {
+		return errors.Wrapf(err, "failed to unmarshal identity [%s]", id)
+	}
+	err = t.matcher.Match(ctx, recipient.Identity)
+	if err != nil {
+		return errors.Wrapf(err, "failed to match identity [%s] to audit infor", id)
+	}
+	return nil
+}

…es/identity/deserializer/deserializer.go …/services/identity/deserializer/eidrh.gotoken/services/identity/deserializer/deserializer.go renamed to token/services/identity/deserializer/eidrh.go token/services/identity/deserializer/deserializer.go renamed to token/services/identity/deserializer/eidrh.go

@@ -0,0 +1,58 @@
+/*
+Copyright IBM Corp. All Rights Reserved.
+
+SPDX-License-Identifier: Apache-2.0
+*/
+
+package deserializer
+
+import (
+	"context"
+	errors2 "errors"
+
+	"github.com/hyperledger-labs/fabric-smart-client/pkg/utils/errors"
+	"github.com/hyperledger-labs/fabric-token-sdk/token/driver"
+	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity"
+	driver2 "github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/driver"
+)
+
+type TypedSignerDeserializer = driver2.TypedSignerDeserializer
+
+type TypedSignerDeserializerMultiplex struct {
+	deserializers map[string][]TypedSignerDeserializer
+}
+
+func NewTypedSignerDeserializerMultiplex() *TypedSignerDeserializerMultiplex {
+	return &TypedSignerDeserializerMultiplex{deserializers: map[string][]TypedSignerDeserializer{}}
+}
+
+func (v *TypedSignerDeserializerMultiplex) AddTypedSignerDeserializer(typ driver2.IdentityType, d driver2.TypedSignerDeserializer) {
+	_, ok := v.deserializers[typ]
+	if !ok {
+		v.deserializers[typ] = []TypedSignerDeserializer{d}
+		return
+	}
+	v.deserializers[typ] = append(v.deserializers[typ], d)
+}
+
+func (v *TypedSignerDeserializerMultiplex) DeserializeSigner(ctx context.Context, id []byte) (driver.Signer, error) {
+	si, err := identity.UnmarshalTypedIdentity(id)
+	if err != nil {
+		return nil, errors.Wrap(err, "failed to unmarshal to TypedIdentity")
+	}
+	dess, ok := v.deserializers[si.Type]
+	if !ok {
+		return nil, errors.Errorf("no deserializer found for [%s]", si.Type)
+	}
+	logger.DebugfContext(ctx, "deserializing [%s] with type [%s]", id, si.Type)
+	var errs []error
+	for _, deserializer := range dess {
+		verifier, err := deserializer.DeserializeSigner(ctx, si.Type, si.Identity)
+		if err != nil {
+			errs = append(errs, err)
+			continue
+		}
+		return verifier, nil
+	}
+	return nil, errors.Wrapf(errors2.Join(errs...), "failed to deserialize verifier for [%s]", si.Type)
+}

token/services/identity/deserializer/multiplexer.go

@@ -27,11 +27,6 @@ type TypedVerifierDeserializer interface {
 	GetAuditInfoMatcher(ctx context.Context, owner driver.Identity, auditInfo []byte) (driver.Matcher, error)
 }
 
-// AuditMatcherDeserializer deserializes raw bytes into a matcher, which allows an auditor to match an identity to an enrollment ID
-type AuditMatcherDeserializer interface {
-	GetAuditInfoMatcher(ctx context.Context, owner driver.Identity, auditInfo []byte) (driver.Matcher, error)
-}
-
 type TypedVerifierDeserializerMultiplex struct {
 	deserializers map[string][]TypedVerifierDeserializer
 }
@@ -196,20 +191,3 @@ func (t *TypedIdentityVerifierDeserializer) GetAuditInfo(ctx context.Context, id
 func (t *TypedIdentityVerifierDeserializer) GetAuditInfoMatcher(ctx context.Context, owner driver.Identity, auditInfo []byte) (driver.Matcher, error) {
 	return t.MatcherDeserializer.GetAuditInfoMatcher(ctx, owner, auditInfo)
 }
-
-type TypedAuditInfoMatcher struct {
-	matcher driver.Matcher
-}
-
-func (t *TypedAuditInfoMatcher) Match(ctx context.Context, id []byte) error {
-	// match identity and audit info
-	recipient, err := identity.UnmarshalTypedIdentity(id)
-	if err != nil {
-		return errors.Wrapf(err, "failed to unmarshal identity [%s]", id)
-	}
-	err = t.matcher.Match(ctx, recipient.Identity)
-	if err != nil {
-		return errors.Wrapf(err, "failed to match identity [%s] to audit infor", id)
-	}
-	return nil
-}