Merge pull request #324 from originalworks/introduce-owen-wallet

Introduce OWEN wallet module

Author: cezary-stroczynski

owen/src/contracts.rs

@@ -1,8 +1,8 @@
 use crate::blob::BlobTransactionData;
+use crate::wallet::OwenWallet;
 use crate::{is_local, Config};
-use alloy::primitives::{Address, FixedBytes};
+use alloy::primitives::FixedBytes;
 use alloy::providers::{Provider, ProviderBuilder};
-use alloy::signers::local::PrivateKeySigner;
 use alloy::sol_types::private::Bytes;
 use alloy::{
     network::EthereumWallet,
@@ -15,10 +15,7 @@ use alloy::{
     },
     sol,
 };
-use alloy_signer_aws::AwsSigner;
-use anyhow::Context;
-use aws_config::meta::region::RegionProviderChain;
-use aws_config::BehaviorVersion;
+
 use log_macros::{format_error, log_info, log_warn};
 use serde_json::json;
 use DdexEmitter::getSupportedBlobImageIdsReturn;
@@ -55,8 +52,8 @@ pub struct ContractsManager {
 }
 
 impl ContractsManager {
-    pub async fn build(config: &Config) -> anyhow::Result<Self> {
-        let wallet = Self::build_wallet(config).await?;
+    pub async fn build(config: &Config, owen_wallet: &OwenWallet) -> anyhow::Result<Self> {
+        let wallet = owen_wallet.wallet.clone();
 
         let provider = ProviderBuilder::new()
             .wallet(wallet)
@@ -76,42 +73,6 @@ impl ContractsManager {
         })
     }
 
-    async fn build_wallet(config: &Config) -> anyhow::Result<EthereumWallet> {
-        let wallet: EthereumWallet;
-        if config.use_kms {
-            let rpc_provider = ProviderBuilder::new().connect_http(config.rpc_url.parse()?);
-            let chain_id = rpc_provider.get_chain_id().await?;
-
-            let region_provider = RegionProviderChain::default_provider().or_else("us-east-1");
-            let aws_main_config = aws_config::defaults(BehaviorVersion::latest())
-                .region(region_provider)
-                .load()
-                .await;
-
-            let client = aws_sdk_kms::Client::new(&aws_main_config);
-
-            let key_id = config
-                .signer_kms_id
-                .clone()
-                .expect("'use_kms' is set to true but 'signer_kms_id' is missing");
-
-            let chain_id = Some(chain_id);
-            let signer = AwsSigner::new(client, key_id, chain_id).await.unwrap();
-
-            let pubkey = signer.get_pubkey().await?;
-            let address = Address::from_public_key(&pubkey);
-            log_info!("Using KMS with address: {}", address);
-            wallet = EthereumWallet::from(signer);
-        } else {
-            let private_key_signer: PrivateKeySigner = config
-                .private_key
-                .parse()
-                .with_context(|| "Failed to parse PRIVATE_KEY")?;
-            wallet = EthereumWallet::from(private_key_signer);
-        }
-        Ok(wallet)
-    }
-
     pub async fn check_image_compatibility(&self) -> anyhow::Result<()> {
         let getSupportedBlobImageIdsReturn {
             _0: current_image_id,

owen/src/ipfs.rs

@@ -1,15 +1,10 @@
 use crate::{
     constants::{self, IPFS_API_ADD_FILE, REQWEST_CLIENT},
+    wallet::OwenWallet,
     Config,
 };
-use alloy::{
-    hex,
-    providers::{Provider, ProviderBuilder},
-    signers::{local::PrivateKeySigner, Signer},
-};
-use alloy_signer_aws::AwsSigner;
+use alloy::hex;
 use anyhow::Context;
-use aws_config::{meta::region::RegionProviderChain, BehaviorVersion};
 use log_macros::{format_error, log_info};
 use reqwest::{multipart, Body};
 use serde::{Deserialize, Serialize};
@@ -27,56 +22,20 @@ struct StorachaBridgeResponse {
     url: String,
 }
 
-pub struct IpfsManager {
+pub struct IpfsManager<'a> {
     local_ipfs: bool,
     ipfs_api_base_url: String,
     storacha_bridge_url: String,
-    private_key_signer: Option<PrivateKeySigner>,
-    use_kms: bool,
-    kms_signer: Option<AwsSigner>,
+    owen_wallet: &'a OwenWallet,
 }
 
-impl IpfsManager {
-    pub async fn build(config: &Config) -> anyhow::Result<Self> {
-        let rpc_provider = ProviderBuilder::new().connect_http(config.rpc_url.parse()?);
-        let chain_id = rpc_provider.get_chain_id().await?;
-        let mut kms_signer: Option<AwsSigner> = None;
-        let mut private_key_signer: Option<PrivateKeySigner> = None;
-
-        if config.use_kms {
-            let region_provider = RegionProviderChain::default_provider().or_else("us-east-1");
-            let aws_main_config = aws_config::defaults(BehaviorVersion::latest())
-                .region(region_provider)
-                .load()
-                .await;
-
-            let client = aws_sdk_kms::Client::new(&aws_main_config);
-
-            let key_id = config
-                .signer_kms_id
-                .clone()
-                .expect("'use_kms' is set to true but 'signer_kms_id' is missing");
-
-            kms_signer = Some(
-                AwsSigner::new(client, key_id, Some(chain_id))
-                    .await
-                    .unwrap(),
-            );
-        } else {
-            let private_key_signer_parsed: PrivateKeySigner = config
-                .private_key
-                .parse()
-                .with_context(|| "Failed to parse PRIVATE_KEY")?;
-            private_key_signer = Some(private_key_signer_parsed);
-        }
-
+impl<'a> IpfsManager<'a> {
+    pub async fn build(config: &Config, owen_wallet: &'a OwenWallet) -> anyhow::Result<Self> {
         Ok(Self {
             local_ipfs: config.local_ipfs.clone(),
             ipfs_api_base_url: config.ipfs_api_base_url.clone(),
             storacha_bridge_url: config.storacha_bridge_url.clone(),
-            use_kms: config.use_kms,
-            kms_signer,
-            private_key_signer,
+            owen_wallet,
         })
     }
 
@@ -121,20 +80,8 @@ impl IpfsManager {
     }
 
     async fn sign_authorization_header(&self) -> anyhow::Result<String> {
-        let signature;
-        if self.use_kms {
-            let kms_signer = self
-                .kms_signer
-                .clone()
-                .expect("IpfsManager: Failed to get kms_signer");
-            signature = kms_signer.sign_message(constants::CLIENT).await?;
-        } else {
-            let private_key_signer = self
-                .private_key_signer
-                .clone()
-                .expect("IpfsManager: Failed to get private_key_signer");
-            signature = private_key_signer.sign_message(constants::CLIENT).await?;
-        }
+        let signature = self.owen_wallet.sign_message(constants::CLIENT).await?;
+
         let authorization = format!("{}::0x{}", "OWEN", hex::encode(signature.as_bytes()));
         Ok(authorization)
     }

owen/src/lib.rs

@@ -8,18 +8,21 @@ mod image_processor;
 mod ipfs;
 pub mod logger;
 pub mod output_generator;
+mod wallet;
 use alloy::primitives::Address;
 use blob::BlobTransactionData;
 use contracts::ContractsManager;
 use ddex_parser::ParserError;
 pub use log;
-use log_macros::log_error;
+use log_macros::{format_error, log_error};
 use output_generator::MessageDirProcessingContext;
 use sentry::User;
 use serde_json::json;
 use std::env;
 use std::str::FromStr;
 
+use crate::wallet::OwenWallet;
+
 #[cfg(any(feature = "aws-integration", feature = "local-s3"))]
 pub mod s3_message_storage;
 
@@ -41,7 +44,7 @@ pub enum IpfsInterface {
 #[derive(Debug, serde::Serialize, Clone)]
 pub struct Config {
     pub rpc_url: String,
-    pub private_key: String,
+    pub private_key: Option<String>,
     pub folder_path: String,
     pub local_ipfs: bool,
     pub output_files_dir: String,
@@ -77,7 +80,6 @@ impl Config {
             .unwrap_or_else(|| Config::get_env_var("INPUT_FILES_DIR").to_string());
 
         let rpc_url = Config::get_env_var("RPC_URL");
-        let private_key = Config::get_env_var("PRIVATE_KEY");
         let local_ipfs = matches!(
             std::env::var("LOCAL_IPFS")
                 .unwrap_or_else(|_| "false".to_string())
@@ -110,26 +112,28 @@ impl Config {
         let ipfs_api_base_url = env::var("IPFS_API_BASE_URL")
             .unwrap_or_else(|_| constants::IPFS_API_BASE_URL.to_string());
 
+        let mut signer_kms_id = None;
+        let mut private_key = None;
         let use_kms = matches!(
             std::env::var("USE_KMS")
                 .unwrap_or_else(|_| "false".to_string())
                 .as_str(),
             "1" | "true"
         );
 
+        if use_kms {
+            signer_kms_id = Some(Config::get_env_var("SIGNER_KMS_ID"));
+        } else {
+            private_key = Some(Config::get_env_var("PRIVATE_KEY"));
+        }
+
         let use_batch_sender = matches!(
             std::env::var("USE_BATCH_SENDER")
                 .unwrap_or_else(|_| "false".to_string())
                 .as_str(),
             "1" | "true"
         );
 
-        let mut signer_kms_id: Option<String> = None;
-
-        if use_kms {
-            signer_kms_id = Some(Config::get_env_var("SIGNER_KMS_ID"));
-        }
-
         let config = Config {
             rpc_url,
             private_key,
@@ -149,13 +153,39 @@ impl Config {
 
         config
     }
+
+    fn try_private_key(&self) -> anyhow::Result<&String> {
+        if self.use_kms == false {
+            self.private_key
+                .as_ref()
+                .ok_or_else(|| format_error!("Missing private_key"))
+        } else {
+            return Err(format_error!(
+                "private_key not available with USE_KMS=true flag"
+            ));
+        }
+    }
+
+    fn try_signer_kms_id(&self) -> anyhow::Result<&String> {
+        if self.use_kms == true {
+            self.signer_kms_id
+                .as_ref()
+                .ok_or_else(|| format_error!("Missing signer_kms_id"))
+        } else {
+            return Err(format_error!(
+                "signer_kms_id not available without USE_KMS=true flag"
+            ));
+        }
+    }
 }
 
 pub async fn run(config: &Config) -> anyhow::Result<Vec<MessageDirProcessingContext>> {
-    let contracts_manager = ContractsManager::build(&config).await?;
+    let owen_wallet = OwenWallet::build(&config).await?;
+    let contracts_manager = ContractsManager::build(&config, &owen_wallet).await?;
     contracts_manager.check_image_compatibility().await?;
 
-    let message_dir_processing_log = output_generator::create_output_files(&config).await?;
+    let message_dir_processing_log =
+        output_generator::create_output_files(&config, &owen_wallet).await?;
 
     let blob_transaction_data = BlobTransactionData::build(&config.output_files_dir)?;
 
@@ -185,10 +215,6 @@ pub async fn run_with_sentry(config: &Config) -> anyhow::Result<Vec<MessageDirPr
             username: Some(config.username.to_owned()),
             ..Default::default()
         }));
-
-        let mut cloned_config = config.clone();
-        cloned_config.private_key = "***".to_string();
-        scope.set_extra("config", json!(cloned_config));
     });
 
     let message_dir_processing_context = run(&config).await.map_err(|e| {

owen/src/output_generator.rs

@@ -1,6 +1,7 @@
 use crate::image_processor::optimize_image;
 use crate::ipfs::IpfsManager;
 use crate::logger::report_validation_error;
+use crate::wallet::OwenWallet;
 use crate::Config;
 use anyhow::Context;
 use blob_codec::BlobEstimator;
@@ -25,7 +26,7 @@ pub struct MessageDirProcessingContext {
 async fn pin_and_write_cid(
     message_dir_processing_context: &mut MessageDirProcessingContext,
     new_release_message: &mut NewReleaseMessage,
-    ipfs_manager: &IpfsManager,
+    ipfs_manager: &IpfsManager<'_>,
 ) -> anyhow::Result<()> {
     for image_resource in &mut new_release_message.resource_list.images {
         if let Some(technical_details) = image_resource.technical_details.get_mut(0) {
@@ -57,7 +58,7 @@ fn is_xml_file_empty(file_path: &Path) -> anyhow::Result<bool> {
 
 async fn process_message_folder(
     message_folder_path: PathBuf,
-    ipfs_manager: &IpfsManager,
+    ipfs_manager: &IpfsManager<'_>,
     config: &Config,
 ) -> anyhow::Result<MessageDirProcessingContext> {
     let mut message_dir_processing_context = MessageDirProcessingContext {
@@ -197,6 +198,7 @@ async fn process_message_folder(
 
 pub async fn create_output_files(
     config: &Config,
+    owen_wallet: &OwenWallet,
 ) -> anyhow::Result<Vec<MessageDirProcessingContext>> {
     log_info!("Creating output files");
     let mut result: Vec<MessageDirProcessingContext> = Vec::new();
@@ -225,7 +227,7 @@ pub async fn create_output_files(
             )
         })?;
 
-        let ipfs_manager = IpfsManager::build(config).await?;
+        let ipfs_manager = IpfsManager::build(config, owen_wallet).await?;
 
         for message_folder in message_folders {
             empty_root_folder = false;
@@ -308,7 +310,7 @@ mod tests {
     async fn create_output_files_with_cids() -> anyhow::Result<()> {
         let config = Config {
             rpc_url: String::new(),
-            private_key: String::new(),
+            private_key: None,
             folder_path: String::from_str("./tests").unwrap(),
             local_ipfs: true,
             output_files_dir: "./output_files".to_string(),
@@ -322,7 +324,8 @@ mod tests {
             signer_kms_id: None,
             use_batch_sender: false,
         };
-        let processing_context_vec = create_output_files(&config).await?;
+        let owen_wallet = OwenWallet::build(&config).await?;
+        let processing_context_vec = create_output_files(&config, &owen_wallet).await?;
 
         let processed_count = processing_context_vec.len();
 
@@ -344,7 +347,7 @@ mod tests {
     async fn error_when_empty_directory() {
         let config = Config {
             rpc_url: String::new(),
-            private_key: String::new(),
+            private_key: None,
             folder_path: String::from_str("./tests/empty_dir").unwrap(),
             local_ipfs: true,
             output_files_dir: "./output_files".to_string(),
@@ -359,8 +362,8 @@ mod tests {
             use_batch_sender: false,
         };
         fs::create_dir_all(&config.folder_path).unwrap();
-
-        create_output_files(&config).await.unwrap();
+        let owen_wallet = OwenWallet::build(&config).await.unwrap();
+        create_output_files(&config, &owen_wallet).await.unwrap();
         fs::remove_dir_all(&config.folder_path).unwrap();
         ()
     }