fixup! Review comments

Signed-off-by: Alexandros Filios <alexandros.filios@ibm.com>

Author: alexandrosfilios

cmd/tokengen/main_test.go

@@ -18,6 +18,7 @@ import (
 	dlog "github.com/hyperledger-labs/fabric-token-sdk/token/core/zkatdlog/nogh/driver"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/driver"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/msp"
+	"github.com/hyperledger-labs/fabric-token-sdk/token/services/utils/slices"
 	. "github.com/onsi/gomega"
 	"github.com/onsi/gomega/gexec"
 )
@@ -256,7 +257,7 @@ func validateOutputEquivalent(gt *WithT, tempOutput, auditorsMSPdir, issuersMSPd
 
 	idemixPK, err := os.ReadFile(idemixMSPdir)
 	gt.Expect(err).NotTo(HaveOccurred())
-	gt.Expect(idemixPK).To(BeEquivalentTo(pp.IdemixIssuerPublicKeys[0].PublicKey))
+	gt.Expect(idemixPK).To(BeEquivalentTo(slices.GetUnique(pp.IdemixIssuerPublicKeys).PublicKey))
 }
 
 func testGenRunWithError(gt *WithT, tokengen string, args []string, errMsg string) {

integration/token/fungible/support.go

@@ -1014,32 +1014,25 @@ func WhoDeletedToken(network *integration.Infrastructure, id *token3.NodeReferen
 }
 
 func GetAuditorIdentity(tms *topology.TMS, id string) []byte {
-	for _, auditor := range tms.Wallets.Auditors {
-		if auditor.ID == id {
-			// Build an MSP Identity
-			provider, _, err := x509.NewKeyManager(auditor.Path, "", msp2.AuditorMSPID, nil, auditor.Opts)
-			Expect(err).NotTo(HaveOccurred())
-			id, _, err := provider.Identity(nil)
-			Expect(err).NotTo(HaveOccurred())
-			return id
-		}
-	}
-	Expect(false).To(BeTrue(), "auditor identity not found in [%s]", id)
-	return nil
+	return getIdentity(tms.Wallets.Auditors, id, msp2.AuditorMSPID)
 }
 
 func GetIssuerIdentity(tms *topology.TMS, id string) []byte {
-	for _, issuer := range tms.Wallets.Issuers {
-		if issuer.ID == id {
+	return getIdentity(tms.Wallets.Issuers, id, msp2.IssuerMSPID)
+}
+
+func getIdentity(identities []topology.Identity, id string, mspID string) []byte {
+	for _, identity := range identities {
+		if identity.ID == id {
 			// Build an MSP Identity
-			provider, _, err := x509.NewKeyManager(issuer.Path, "", msp2.IssuerMSPID, nil, issuer.Opts)
+			provider, _, err := x509.NewKeyManager(identity.Path, "", mspID, nil, identity.Opts)
 			Expect(err).NotTo(HaveOccurred())
 			id, _, err := provider.Identity(nil)
 			Expect(err).NotTo(HaveOccurred())
 			return id
 		}
 	}
-	Expect(false).To(BeTrue(), "issuer identity not found in [%s]", id)
+	Expect(false).To(BeTrue(), "identity not found in [%s]", id)
 	return nil
 }
 

token/core/zkatdlog/crypto/audit/auditor_test.go

@@ -31,6 +31,7 @@ import (
 	msp3 "github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/msp/idemix/msp"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/sig"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/logging"
+	"github.com/hyperledger-labs/fabric-token-sdk/token/services/utils/slices"
 	token3 "github.com/hyperledger-labs/fabric-token-sdk/token/token"
 	msp2 "github.com/hyperledger/fabric/msp"
 	. "github.com/onsi/ginkgo/v2"
@@ -51,7 +52,7 @@ var _ = Describe("Auditor", func() {
 		Expect(err).NotTo(HaveOccurred())
 		pp, err = crypto.Setup(32, ipk, math.FP256BN_AMCL)
 		Expect(err).NotTo(HaveOccurred())
-		des, err := idemix.NewDeserializer(pp.IdemixIssuerPublicKeys[0].PublicKey, math.FP256BN_AMCL)
+		des, err := idemix.NewDeserializer(slices.GetUnique(pp.IdemixIssuerPublicKeys).PublicKey, math.FP256BN_AMCL)
 		Expect(err).NotTo(HaveOccurred())
 		auditor = audit.NewAuditor(logging.MustGetLogger("auditor"), &noop.Tracer{}, des, pp.PedersenGenerators, fakeSigningIdentity, math.Curves[pp.Curve])
 		fakeSigningIdentity.SignReturns([]byte("auditor-signature"), nil)

token/core/zkatdlog/crypto/validator/validator_test.go

@@ -35,6 +35,7 @@ import (
 	msp3 "github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/msp/idemix/msp"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/identity/sig"
 	"github.com/hyperledger-labs/fabric-token-sdk/token/services/logging"
+	"github.com/hyperledger-labs/fabric-token-sdk/token/services/utils/slices"
 	token2 "github.com/hyperledger-labs/fabric-token-sdk/token/token"
 	msp2 "github.com/hyperledger/fabric/msp"
 	. "github.com/onsi/ginkgo/v2"
@@ -73,7 +74,7 @@ var _ = Describe("validator", func() {
 		c := math.Curves[pp.Curve]
 
 		asigner, _ := prepareECDSASigner()
-		des, err := idemix.NewDeserializer(pp.IdemixIssuerPublicKeys[0].PublicKey, math.FP256BN_AMCL)
+		des, err := idemix.NewDeserializer(slices.GetUnique(pp.IdemixIssuerPublicKeys).PublicKey, math.FP256BN_AMCL)
 		Expect(err).NotTo(HaveOccurred())
 		auditor = audit.NewAuditor(logging.MustGetLogger("auditor"), &noop.Tracer{}, des, pp.PedersenGenerators, asigner, c)
 		araw, err := asigner.Serialize()

token/core/zkatdlog/nogh/driver/base.go

@@ -86,8 +86,8 @@ func (d *base) newWalletService(
 	)
 	// owner role
 	// we have one key manager for fabtoken and one for each idemix issuer public key
-	var kmps []common2.KeyManagerProvider
-	for _, key := range pp.IdemixIssuerPublicKeys {
+	kmps := make([]common2.KeyManagerProvider, len(pp.IdemixIssuerPublicKeys)+1)
+	for i, key := range pp.IdemixIssuerPublicKeys {
 		backend, err := storageProvider.NewKeystore()
 		if err != nil {
 			return nil, errors.Wrapf(err, "failed to get new keystore backend")
@@ -96,7 +96,7 @@ func (d *base) newWalletService(
 		if err != nil {
 			return nil, errors.Wrapf(err, "failed to instantiate bccsp key store")
 		}
-		kmp := idemix2.NewKeyManagerProvider(
+		kmps[i] = idemix2.NewKeyManagerProvider(
 			key.PublicKey,
 			key.Curve,
 			msp.RoleToMSPID[driver.OwnerRole],
@@ -106,9 +106,8 @@ func (d *base) newWalletService(
 			identityConfig.DefaultCacheSize(),
 			ignoreRemote,
 		)
-		kmps = append(kmps, kmp)
 	}
-	kmps = append(kmps, x509.NewKeyManagerProvider(identityConfig, msp.RoleToMSPID[driver.OwnerRole], ip, ignoreRemote))
+	kmps[len(kmps)-1] = x509.NewKeyManagerProvider(identityConfig, msp.RoleToMSPID[driver.OwnerRole], ip, ignoreRemote)
 
 	role, err := roleFactory.NewIdemix(
 		driver.OwnerRole,

token/request.go

@@ -171,6 +171,12 @@ type Request struct {
 	TokenService *ManagementService `json:"-"`
 }
 
+func (r *Request) AllApplicationMetadata() map[string][]byte { return r.Metadata.Application }
+func (r *Request) PublicParamsHash() PPHash {
+	return r.TokenService.PublicParametersManager().PublicParamsHash()
+}
+func (r *Request) String() string { return r.Anchor }
+
 // NewRequest creates a new empty request for the given token service and anchor
 func NewRequest(tokenService *ManagementService, anchor string) *Request {
 	return &Request{

token/services/auditdb/db.go

@@ -23,6 +23,13 @@ import (
 	"github.com/pkg/errors"
 )
 
+type tokenRequest interface {
+	AuditRecord() (*token.AuditRecord, error)
+	Bytes() ([]byte, error)
+	AllApplicationMetadata() map[string][]byte
+	PublicParamsHash() token.PPHash
+}
+
 type (
 	Holder  = db.DriverHolder[*DB, driver.AuditTransactionDB, driver.AuditDBDriver]
 	Manager = db.Manager[*DB, driver.AuditTransactionDB, driver.AuditDBDriver]
@@ -149,26 +156,19 @@ func newDB(p driver.AuditTransactionDB) *DB {
 }
 
 // Append appends send and receive movements, and transaction records corresponding to the passed token request
-func (d *DB) Append(req *token.Request, gapFiller func(record *token.AuditRecord) error) error {
-	logger.Debugf("appending new record... [%s]", req.Anchor)
+func (d *DB) Append(req tokenRequest) error {
+	logger.Debugf("appending new record... [%s]", req)
 
 	record, err := req.AuditRecord()
 	if err != nil {
-		return errors.WithMessagef(err, "failed getting audit records for request [%s]", req.Anchor)
-	}
-
-	// fill the gap in the record
-	if gapFiller != nil {
-		if err := gapFiller(record); err != nil {
-			return errors.WithMessagef(err, "failed filling gaps for request [%s]", req.Anchor)
-		}
+		return errors.WithMessagef(err, "failed getting audit records for request [%s]", req)
 	}
 
 	logger.Debugf("parsing new audit record... [%d] in, [%d] out", record.Inputs.Count(), record.Outputs.Count())
 	now := time.Now().UTC()
 	raw, err := req.Bytes()
 	if err != nil {
-		return errors.Wrapf(err, "failed to marshal token request [%s]", req.Anchor)
+		return errors.Wrapf(err, "failed to marshal token request [%s]", req)
 	}
 	mov, err := ttxdb.Movements(record, now)
 	if err != nil {
@@ -187,8 +187,8 @@ func (d *DB) Append(req *token.Request, gapFiller func(record *token.AuditRecord
 	if err := w.AddTokenRequest(
 		record.Anchor,
 		raw,
-		req.Metadata.Application,
-		req.TokenService.PublicParametersManager().PublicParamsHash(),
+		req.AllApplicationMetadata(),
+		req.PublicParamsHash(),
 	); err != nil {
 		w.Rollback()
 		return errors.WithMessagef(err, "append token request for txid [%s] failed", record.Anchor)

token/services/auditor/auditor.go

@@ -97,13 +97,43 @@ func (a *Auditor) Audit(tx Transaction) (*token.InputStream, *token.OutputStream
 	return record.Inputs, record.Outputs, nil
 }
 
+func newRequestWrapper(r *token.Request, tms *token.ManagementService) *requestWrapper {
+	return &requestWrapper{r: r, tms: tms}
+}
+
+type requestWrapper struct {
+	r   *token.Request
+	tms *token.ManagementService
+}
+
+func (r *requestWrapper) Bytes() ([]byte, error) { return r.r.Bytes() }
+func (r *requestWrapper) AllApplicationMetadata() map[string][]byte {
+	return r.r.AllApplicationMetadata()
+}
+func (r *requestWrapper) PublicParamsHash() token.PPHash { return r.r.PublicParamsHash() }
+
+func (r *requestWrapper) AuditRecord() (*token.AuditRecord, error) {
+	record, err := r.r.AuditRecord()
+	if err != nil {
+		return nil, err
+	}
+	if err := r.completeInputsWithEmptyEID(record); err != nil {
+		return nil, errors.WithMessagef(err, "failed filling gaps for request [%s]", r.r.Anchor)
+	}
+	return record, nil
+}
+
 // Append adds the passed transaction to the auditor database.
 // It also releases the locks acquired by Audit.
 func (a *Auditor) Append(tx Transaction) error {
 	defer a.Release(tx)
 
+	tms, err := a.tmsProvider.GetManagementService(token.WithTMSID(a.tmsID))
+	if err != nil {
+		return err
+	}
 	// append request to audit db
-	if err := a.auditDB.Append(tx.Request(), a.completeInputsWithEmptyEID); err != nil {
+	if err := a.auditDB.Append(newRequestWrapper(tx.Request(), tms)); err != nil {
 		return errors.WithMessagef(err, "failed appending request %s", tx.ID())
 	}
 
@@ -148,7 +178,7 @@ func (a *Auditor) Check(context context.Context) ([]string, error) {
 	return a.checkService.Check(context)
 }
 
-func (a *Auditor) completeInputsWithEmptyEID(record *token.AuditRecord) error {
+func (r *requestWrapper) completeInputsWithEmptyEID(record *token.AuditRecord) error {
 	filter := record.Inputs.ByEnrollmentID("")
 	if filter.Count() == 0 {
 		return nil
@@ -157,15 +187,11 @@ func (a *Auditor) completeInputsWithEmptyEID(record *token.AuditRecord) error {
 	targetEID := record.Outputs.EnrollmentIDs()[0]
 
 	// fetch all the tokens
-	tms, err := a.tmsProvider.GetManagementService(token.WithTMSID(a.tmsID))
-	if err != nil {
-		return errors.WithMessagef(err, "failed getting management service for [%s]", a.tmsID)
-	}
-	tokens, err := tms.Vault().NewQueryEngine().ListAuditTokens(filter.IDs()...)
+	tokens, err := r.tms.Vault().NewQueryEngine().ListAuditTokens(filter.IDs()...)
 	if err != nil {
 		return errors.WithMessagef(err, "failed listing tokens for [%s]", filter.IDs())
 	}
-	precision := tms.PublicParametersManager().PublicParameters().Precision()
+	precision := r.tms.PublicParametersManager().PublicParameters().Precision()
 	for i := 0; i < filter.Count(); i++ {
 		item := filter.At(i)
 		item.EnrollmentID = targetEID

token/services/identity/common/identity.go

@@ -26,14 +26,14 @@ type LocalIdentity struct {
 }
 
 func (i *LocalIdentity) String() string {
-	if !i.Anonymous {
-		id, _, err := i.GetIdentity(nil)
-		if err != nil {
-			return err.Error()
-		}
-		return fmt.Sprintf("{%s@%s-%v-%v-%v}[%s]", i.Name, i.EnrollmentID, i.Default, i.Anonymous, i.Remote, id)
+	if i.Anonymous {
+		return fmt.Sprintf("{%s@%s-%v-%v-%v}", i.Name, i.EnrollmentID, i.Default, i.Anonymous, i.Remote)
 	}
-	return fmt.Sprintf("{%s@%s-%v-%v-%v}", i.Name, i.EnrollmentID, i.Default, i.Anonymous, i.Remote)
+	id, _, err := i.GetIdentity(nil)
+	if err != nil {
+		return err.Error()
+	}
+	return fmt.Sprintf("{%s@%s-%v-%v-%v}[%s]", i.Name, i.EnrollmentID, i.Default, i.Anonymous, i.Remote, id)
 }
 
 // IdentityInfo implements the driver.IdentityInfo interface on top LocalIdentity

token/services/utils/slices/slices.go

@@ -0,0 +1,19 @@
+/*
+Copyright IBM Corp. All Rights Reserved.
+
+SPDX-License-Identifier: Apache-2.0
+*/
+
+package slices
+
+func GetUnique[V any](v []V) V {
+	return v[0]
+}
+
+func GetAny[V any](v []V) V {
+	return v[0]
+}
+
+func GetFirst[V any](v []V) V {
+	return v[0]
+}