Hotfix/7.2.1

Hotfix/7.2.1

Author: james-toussaint

CHANGELOG.md

@@ -2,16 +2,20 @@
 
 All notable changes to this project will be documented in this file.
 
-## [[7.2.0]](https://github.com/iExecBlockchainComputing/iexec-core/releases/tag/v7.2.0) 2022-11-29
+## [[7.2.1]](https://github.com/iExecBlockchainComputing/iexec-core/releases/tag/v7.2.1) 2022-12-13
+
+* Replace `sessionId` implementation with a hash of the public configuration. From a consumer point of view, a constant hash received from the `POST /ping` response indicates that the scheduler configuration has not changed. With such constant hash, either the scheduler has restarted or not, the consumer does not need to reboot.
+
+## [[7.2.0]](https://github.com/iExecBlockchainComputing/iexec-core/releases/tag/v7.2.0) 2022-12-09
 
 * Increments of jenkins-library up to version 2.2.3. Enable SonarCloud analyses on branches and Pull Requests.
 * Update `iexec-common` version to [6.1.0](https://github.com/iExecBlockchainComputing/iexec-common/releases/tag/v6.1.0).
 
-## [[7.1.3]](https://github.com/iExecBlockchainComputing/iexec-core/releases/tag/v7.1.3) 2022-11-29
+## [[7.1.3]](https://github.com/iExecBlockchainComputing/iexec-core/releases/tag/v7.1.3) 2022-12-07
 
 * Bump version to 7.1.3.
 
-## [[7.1.2]](https://github.com/iExecBlockchainComputing/iexec-core/releases/tag/v7.1.2) 2022-11-29
+## [[7.1.2]](https://github.com/iExecBlockchainComputing/iexec-core/releases/tag/v7.1.2) 2022-12-07
 
 * Update README and add CHANGELOG.
 

gradle.properties

@@ -1,4 +1,4 @@
-version=7.2.0
+version=7.2.1
 iexecCommonVersion=6.1.0
 iexecBlockchainAdapterVersion=7.1.1
 iexecResultVersion=7.1.0

src/main/java/com/iexec/core/configuration/PublicConfigurationService.java

@@ -0,0 +1,103 @@
+/*
+ * Copyright 2022 IEXEC BLOCKCHAIN TECH
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package com.iexec.core.configuration;
+
+import com.iexec.common.config.PublicConfiguration;
+import com.iexec.core.chain.ChainConfig;
+import com.iexec.core.chain.CredentialsService;
+import com.iexec.core.chain.adapter.BlockchainAdapterClientConfig;
+import org.springframework.stereotype.Service;
+import org.web3j.crypto.Hash;
+
+import javax.annotation.PostConstruct;
+
+/**
+ * This simple service will generate a random session id when the scheduler is started, it will be send to workers when
+ * they ping the scheduler. If they see that the session id has changed, it means that the scheduler has restarted.
+ */
+@Service
+public class PublicConfigurationService {
+    private final ChainConfig chainConfig;
+    private final CredentialsService credentialsService;
+    private final WorkerConfiguration workerConfiguration;
+    private final ResultRepositoryConfiguration resultRepoConfig;
+    private final SmsConfiguration smsConfiguration;
+    private final BlockchainAdapterClientConfig blockchainAdapterClientConfig;
+
+    private PublicConfiguration publicConfiguration = null;
+    /**
+     * {@literal publicConfigurationHash} is a Base64-encoded hash
+     * of all {@link PublicConfiguration} fields,
+     * concatenated with {@literal \n}.
+     */
+    private String publicConfigurationHash = null;
+
+    public PublicConfigurationService(ChainConfig chainConfig,
+                                      CredentialsService credentialsService,
+                                      WorkerConfiguration workerConfiguration,
+                                      ResultRepositoryConfiguration resultRepoConfig,
+                                      SmsConfiguration smsConfiguration,
+                                      BlockchainAdapterClientConfig blockchainAdapterClientConfig) {
+        this.chainConfig = chainConfig;
+        this.credentialsService = credentialsService;
+        this.workerConfiguration = workerConfiguration;
+        this.resultRepoConfig = resultRepoConfig;
+        this.smsConfiguration = smsConfiguration;
+        this.blockchainAdapterClientConfig = blockchainAdapterClientConfig;
+    }
+
+    @PostConstruct
+    void buildPublicConfiguration() {
+        this.publicConfiguration = PublicConfiguration.builder()
+                .workerPoolAddress(chainConfig.getPoolAddress())
+                .blockchainAdapterUrl(blockchainAdapterClientConfig.getUrl())
+                .schedulerPublicAddress(credentialsService.getCredentials().getAddress())
+                .resultRepositoryURL(resultRepoConfig.getResultRepositoryURL())
+                .smsURL(smsConfiguration.getSmsURL())
+                .askForReplicatePeriod(workerConfiguration.getAskForReplicatePeriod())
+                .requiredWorkerVersion(workerConfiguration.getRequiredWorkerVersion())
+                .build();
+
+        // TODO: would be great to put this in Common
+        // (a simple `@ToString` would be sufficient)
+        final String publicConfigurationAsString = String.join("\n",
+                publicConfiguration.getWorkerPoolAddress(),
+                publicConfiguration.getBlockchainAdapterUrl(),
+                publicConfiguration.getSchedulerPublicAddress(),
+                publicConfiguration.getResultRepositoryURL(),
+                publicConfiguration.getSmsURL(),
+                publicConfiguration.getAskForReplicatePeriod() + "",
+                publicConfiguration.getRequiredWorkerVersion()
+        );
+
+        this.publicConfigurationHash = Hash.sha3String(publicConfigurationAsString);
+    }
+
+    public String getPublicConfigurationHash() {
+        if (publicConfigurationHash == null) {
+            throw new IllegalArgumentException("Public configuration hash accessed before initialization.");
+        }
+        return publicConfigurationHash;
+    }
+
+    public PublicConfiguration getPublicConfiguration() {
+        if (publicConfiguration == null) {
+            throw new IllegalArgumentException("Public configuration accessed before initialization.");
+        }
+        return publicConfiguration;
+    }
+}

src/main/java/com/iexec/core/configuration/SessionService.java

@@ -21,13 +21,7 @@
 import com.iexec.common.security.Signature;
 import com.iexec.common.utils.BytesUtils;
 import com.iexec.common.utils.SignatureUtils;
-import com.iexec.core.chain.ChainConfig;
-import com.iexec.core.chain.CredentialsService;
-import com.iexec.core.chain.adapter.BlockchainAdapterClientConfig;
-import com.iexec.core.configuration.ResultRepositoryConfiguration;
-import com.iexec.core.configuration.SessionService;
-import com.iexec.core.configuration.SmsConfiguration;
-import com.iexec.core.configuration.WorkerConfiguration;
+import com.iexec.core.configuration.PublicConfigurationService;
 import com.iexec.core.security.ChallengeService;
 import com.iexec.core.security.JwtTokenProvider;
 import lombok.extern.slf4j.Slf4j;
@@ -48,33 +42,18 @@
 public class WorkerController {
 
     private final WorkerService workerService;
-    private final ChainConfig chainConfig;
-    private final CredentialsService credentialsService;
     private final JwtTokenProvider jwtTokenProvider;
     private final ChallengeService challengeService;
-    private final WorkerConfiguration workerConfiguration;
-    private final ResultRepositoryConfiguration resultRepoConfig;
-    private final SmsConfiguration smsConfiguration;
-    private final BlockchainAdapterClientConfig blockchainAdapterClientConfig;
+    private final PublicConfigurationService publicConfigurationService;
 
     public WorkerController(WorkerService workerService,
-                            ChainConfig chainConfig,
-                            CredentialsService credentialsService,
                             JwtTokenProvider jwtTokenProvider,
                             ChallengeService challengeService,
-                            WorkerConfiguration workerConfiguration,
-                            ResultRepositoryConfiguration resultRepoConfig,
-                            SmsConfiguration smsConfiguration,
-                            BlockchainAdapterClientConfig blockchainAdapterClientConfig) {
+                            PublicConfigurationService publicConfigurationService) {
         this.workerService = workerService;
-        this.chainConfig = chainConfig;
-        this.credentialsService = credentialsService;
         this.jwtTokenProvider = jwtTokenProvider;
         this.challengeService = challengeService;
-        this.workerConfiguration = workerConfiguration;
-        this.resultRepoConfig = resultRepoConfig;
-        this.smsConfiguration = smsConfiguration;
-        this.blockchainAdapterClientConfig = blockchainAdapterClientConfig;
+        this.publicConfigurationService = publicConfigurationService;
     }
 
     @PostMapping(path = "/workers/ping")
@@ -83,8 +62,9 @@ public ResponseEntity<String> ping(@RequestHeader("Authorization") String bearer
         if (workerWalletAddress.isEmpty()) {
             return ResponseEntity.status(HttpStatus.UNAUTHORIZED).build();
         }
+        final String publicConfigurationHash = publicConfigurationService.getPublicConfigurationHash();
         return workerService.updateLastAlive(workerWalletAddress)
-                .map(worker -> ok(SessionService.getSessionId()))
+                .map(worker -> ok(publicConfigurationHash))
                 .orElseGet(() -> status(HttpStatus.NOT_FOUND).build());
     }
 
@@ -148,16 +128,7 @@ public ResponseEntity<Worker> registerWorker(@RequestHeader("Authorization") Str
 
     @GetMapping(path = "/workers/config")
     public ResponseEntity<PublicConfiguration> getPublicConfiguration() {
-        PublicConfiguration config = PublicConfiguration.builder()
-                .workerPoolAddress(chainConfig.getPoolAddress())
-                .blockchainAdapterUrl(blockchainAdapterClientConfig.getUrl())
-                .schedulerPublicAddress(credentialsService.getCredentials().getAddress())
-                .resultRepositoryURL(resultRepoConfig.getResultRepositoryURL())
-                .smsURL(smsConfiguration.getSmsURL())
-                .askForReplicatePeriod(workerConfiguration.getAskForReplicatePeriod())
-                .requiredWorkerVersion(workerConfiguration.getRequiredWorkerVersion())
-                .build();
-
+        final PublicConfiguration config = publicConfigurationService.getPublicConfiguration();
         return ok(config);
     }
 

src/main/java/com/iexec/core/worker/WorkerController.java

@@ -0,0 +1,88 @@
+/*
+ * Copyright 2022 IEXEC BLOCKCHAIN TECH
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package com.iexec.core.configuration;
+
+import com.iexec.core.chain.ChainConfig;
+import com.iexec.core.chain.CredentialsService;
+import com.iexec.core.chain.adapter.BlockchainAdapterClientConfig;
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.MockitoAnnotations;
+import org.web3j.crypto.Credentials;
+
+import java.security.NoSuchAlgorithmException;
+
+import static org.junit.jupiter.api.Assertions.assertNotNull;
+import static org.junit.jupiter.api.Assertions.assertThrows;
+import static org.mockito.Mockito.mock;
+import static org.mockito.Mockito.when;
+
+class PublicConfigurationServiceTests {
+    @Mock
+    private ChainConfig chainConfig;
+    @Mock
+    private CredentialsService credentialsService;
+    @Mock
+    private WorkerConfiguration workerConfiguration;
+    @Mock
+    private ResultRepositoryConfiguration resultRepoConfig;
+    @Mock
+    private SmsConfiguration smsConfiguration;
+    @Mock
+    private BlockchainAdapterClientConfig blockchainAdapterClientConfig;
+
+    @InjectMocks
+    private PublicConfigurationService publicConfigurationService;
+
+    @BeforeEach
+    void init() {
+        MockitoAnnotations.openMocks(this);
+        when(credentialsService.getCredentials()).thenReturn(mock(Credentials.class));
+    }
+
+    // region getPublicConfiguration
+    @Test
+    void shouldGetPublicConfiguration() throws NoSuchAlgorithmException {
+        // This would be done by Spring in production
+        publicConfigurationService.buildPublicConfiguration();
+
+        assertNotNull(publicConfigurationService.getPublicConfiguration());
+    }
+
+    @Test
+    void shouldNotGetPublicConfigurationWhenNotInitialized() {
+        assertThrows(IllegalArgumentException.class, publicConfigurationService::getPublicConfiguration);
+    }
+    // endregion
+
+    // region getPublicConfiguration
+    @Test
+    void shouldGetPublicConfigurationHash() throws NoSuchAlgorithmException {
+        // This would be done by Spring in production
+        publicConfigurationService.buildPublicConfiguration();
+
+        assertNotNull(publicConfigurationService.getPublicConfigurationHash());
+    }
+
+    @Test
+    void shouldNotGetPublicConfigurationHashWhenNotInitialized() {
+        assertThrows(IllegalArgumentException.class, publicConfigurationService::getPublicConfigurationHash);
+    }
+    // endregion
+}