From 4048f3e5b767da7c7a5abbb82017924fd17db69f Mon Sep 17 00:00:00 2001 From: "raynato.c.pedrajeta" Date: Fri, 6 Dec 2024 19:01:13 +0800 Subject: [PATCH] fix(dast): ccp, sshconfig missing Primary Changes ---------------- 1. Fix the issue on plugin-ledger-connector-fabric that throws an error when there is no sshConfig available. Fixes #3671 Signed-off-by: raynato.c.pedrajeta --- .../.dast-nuclei-cmd-api-server.yaml | 5 +- ...y-contract-go-source-impl-fabric-v2-5-6.ts | 4 +- .../plugin-ledger-connector-fabric.ts | 78 +++++-------------- .../run-transaction-endpoint-v1.test.ts | 26 ------- 4 files changed, 21 insertions(+), 92 deletions(-) diff --git a/.github/workflows/.dast-nuclei-cmd-api-server.yaml b/.github/workflows/.dast-nuclei-cmd-api-server.yaml index af49840f21..8c706271ef 100644 --- a/.github/workflows/.dast-nuclei-cmd-api-server.yaml +++ b/.github/workflows/.dast-nuclei-cmd-api-server.yaml @@ -53,7 +53,6 @@ jobs: run: | echo https://localhost:4000/ > urls.txt { - echo https://localhost:4000/api/v1/api-server/healthcheck echo https://localhost:4000/api/v1/plugins/@hyperledger/cactus-plugin-consortium-manual/node/jws echo https://localhost:4000/api/v1/plugins/@hyperledger/cactus-plugin-consortium-manual/consortium/jws echo https://localhost:4000/api/v1/plugins/@hyperledger/cactus-plugin-consortium-manual/get-prometheus-exporter-metrics @@ -85,7 +84,7 @@ jobs: run: jq '.plugins += [{ "packageName":"@hyperledger/cactus-plugin-keychain-memory","type":"org.hyperledger.cactus.plugin_import_type.LOCAL","action":"org.hyperledger.cactus.plugin_import_action.INSTALL","options":{"packageSrc":"/home/runner/work/cacti/cacti/packages/cactus-plugin-keychain-memory/","instanceId":"0daacd05-d1cd-4eab-9332-4ad1aff4b909","keychainId":"d29d728e-eaa0-4e2d-b187-d132242b0d9a"}}]' .config.json > .config2.json && mv .config2.json .config.json - name: Install Fabric connector into the API server - run: jq '.plugins += [{ "packageName":"@hyperledger/cactus-plugin-ledger-connector-fabric", "type":"org.hyperledger.cactus.plugin_import_type.LOCAL", "action":"org.hyperledger.cactus.plugin_import_action.INSTALL", "options":{ "packageSrc":"/home/runner/work/cacti/cacti/packages/cactus-plugin-ledger-connector-fabric/", "instanceId":"some-unique-fabric-connector-instance-id", "peerBinary":"/fabric-samples/bin/peer", "connectionProfile":"{}", "dockerBinary":"usr/local/bin/docker","cliContainerEnv":{"CORE_PEER_LOCALMSPID":"Org1MSP","CORE_PEER_ADDRESS":"peer0.org1.example.com:7051","CORE_PEER_MSPCONFIGPATH":"/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/users/Admin@org1.example.com/msp","CORE_PEER_TLS_ROOTCERT_FILE":"/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/ca.crt","ORDERER_TLS_ROOTCERT_FILE":"/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem"},"discoveryOptions":{"enabled":true,"asLocalhost":true}}}] ' .config.json > .config2.json && mv .config2.json .config.json + run: jq '.plugins += [{ "packageName":"@hyperledger/cactus-plugin-ledger-connector-fabric", "type":"org.hyperledger.cactus.plugin_import_type.LOCAL", "action":"org.hyperledger.cactus.plugin_import_action.INSTALL", "options":{ "packageSrc":"/home/runner/work/cacti/cacti/packages/cactus-plugin-ledger-connector-fabric/", "instanceId":"some-unique-fabric-connector-instance-id", "peerBinary":"/fabric-samples/bin/peer", "connectionProfile":"{}", "connectionProfile":"{}", "dockerBinary":"usr/local/bin/docker","cliContainerEnv":{"CORE_PEER_LOCALMSPID":"Org1MSP","CORE_PEER_ADDRESS":"peer0.org1.example.com:7051","CORE_PEER_MSPCONFIGPATH":"/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/users/Admin@org1.example.com/msp","CORE_PEER_TLS_ROOTCERT_FILE":"/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/ca.crt","ORDERER_TLS_ROOTCERT_FILE":"/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem"},"discoveryOptions":{"enabled":true,"asLocalhost":true}}}] ' .config.json > .config2.json && mv .config2.json .config.json - name: Install Besu connector into the API server run: jq '.plugins += [{"packageName":"@hyperledger/cactus-plugin-ledger-connector-besu","type":"org.hyperledger.cactus.plugin_import_type.LOCAL","action":"org.hyperledger.cactus.plugin_import_action.INSTALL","options":{"packageSrc":"/home/runner/work/cacti/cacti/packages/cactus-plugin-ledger-connector-besu/", "rpcApiHttpHost":"http://127.0.0.1:8545", "rpcApiWsHost":"ws://127.0.0.1:8546", "instanceId":"some-unique-besu-connector-instance-id"}}]' .config.json > .config2.json && mv .config2.json .config.json @@ -116,7 +115,7 @@ jobs: start: yarn start:api-server command: "nuclei -version" command-windows: echo "The project build is not supported on the Windows operating system. Please use Linux or macOS" - wait-on: "https://localhost:4000/api/v1/api-server/healthcheck" + wait-on: "https://localhost:4000/api/v1/plugins/@hyperledger/cactus-plugin-consortium-manual/node/jws" # wait for 10 minutes for the server to respond wait-on-timeout: 120 diff --git a/packages/cactus-plugin-ledger-connector-fabric/src/main/typescript/deploy-contract-go-source/deploy-contract-go-source-impl-fabric-v2-5-6.ts b/packages/cactus-plugin-ledger-connector-fabric/src/main/typescript/deploy-contract-go-source/deploy-contract-go-source-impl-fabric-v2-5-6.ts index 55244970f9..1176f6eabf 100644 --- a/packages/cactus-plugin-ledger-connector-fabric/src/main/typescript/deploy-contract-go-source/deploy-contract-go-source-impl-fabric-v2-5-6.ts +++ b/packages/cactus-plugin-ledger-connector-fabric/src/main/typescript/deploy-contract-go-source/deploy-contract-go-source-impl-fabric-v2-5-6.ts @@ -3,7 +3,6 @@ import temp from "temp"; import fs from "fs/promises"; import { - Config as SshConfig, NodeSSH, SSHExecCommandOptions, SSHExecCommandResponse, @@ -36,7 +35,6 @@ export interface IDeployContractGoSourceImplFabricV256Context { readonly log: Logger; readonly className: string; readonly dockerBinary: string; - readonly sshConfig: SshConfig; readonly opts: IPluginLedgerConnectorFabricOptions; } @@ -55,7 +53,7 @@ export async function deployContractGoSourceImplFabricV256( ctx.opts.cliContainerGoPath || K_DEFAULT_CLI_CONTAINER_GO_PATH; const ssh = new NodeSSH(); - await ssh.connect(ctx.sshConfig); + await ssh.connect(ctx.opts.sshConfig); log.debug(`SSH connection OK`); try { diff --git a/packages/cactus-plugin-ledger-connector-fabric/src/main/typescript/plugin-ledger-connector-fabric.ts b/packages/cactus-plugin-ledger-connector-fabric/src/main/typescript/plugin-ledger-connector-fabric.ts index 89a0fa9e44..d22b7b0106 100644 --- a/packages/cactus-plugin-ledger-connector-fabric/src/main/typescript/plugin-ledger-connector-fabric.ts +++ b/packages/cactus-plugin-ledger-connector-fabric/src/main/typescript/plugin-ledger-connector-fabric.ts @@ -147,7 +147,6 @@ import { formatCactiFullBlockResponse, formatCactiTransactionsBlockResponse, } from "./get-block/cacti-block-formatters"; - import { GetBlockEndpointV1 } from "./get-block/get-block-endpoint-v1"; import { GetChainInfoEndpointV1 } from "./get-chain-info/get-chain-info-endpoint-v1"; import { querySystemChainCode } from "./common/query-system-chain-code"; @@ -159,17 +158,17 @@ import { } from "./common/utils"; import { findAndReplaceFabricLoggingSpec } from "./common/find-and-replace-fabric-logging-spec"; import { deployContractGoSourceImplFabricV256 } from "./deploy-contract-go-source/deploy-contract-go-source-impl-fabric-v2-5-6"; -import { Observable, ReplaySubject } from "rxjs"; const { loadFromConfig } = require("fabric-network/lib/impl/ccp/networkconfig"); assertFabricFunctionIsAvailable(loadFromConfig, "loadFromConfig"); +import { Observable, ReplaySubject } from "rxjs"; + export interface IRunTxReqWithTxId { request: RunTransactionRequest; transactionId: string; timestamp: Date; } - /** * Constant value holding the default $GOPATH in the Fabric CLI container as * observed on fabric deployments that are produced by the official examples @@ -197,11 +196,9 @@ export interface IPluginLedgerConnectorFabricOptions cliContainerGoPath?: string; cliContainerEnv: NodeJS.ProcessEnv; pluginRegistry: PluginRegistry; - sshConfig?: SshConfig; - sshConfigB64?: string; + sshConfig: SshConfig; readonly sshDebugOn?: boolean; - connectionProfile?: ConnectionProfile; - connectionProfileB64?: string; + connectionProfile: ConnectionProfile; prometheusExporter?: PrometheusExporter; discoveryOptions?: GatewayDiscoveryOptions; eventHandlerOptions?: GatewayEventHandlerOptions; @@ -229,8 +226,6 @@ export class PluginLedgerConnectorFabric private readonly peerBinary: string; private readonly goBinary: string; private readonly cliContainerGoPath: string; - private readonly sshConfig: SshConfig; - private readonly connectionProfile: ConnectionProfile; public prometheusExporter: PrometheusExporter; private endpoints: IWebServiceEndpoint[] | undefined; private readonly secureIdentity: SecureIdentityProviders; @@ -254,6 +249,7 @@ export class PluginLedgerConnectorFabric Checks.truthy(opts.instanceId, `${fnTag} options.instanceId`); Checks.truthy(opts.peerBinary, `${fnTag} options.peerBinary`); Checks.truthy(opts.pluginRegistry, `${fnTag} options.pluginRegistry`); + Checks.truthy(opts.connectionProfile, `${fnTag} options.connectionProfile`); this.prometheusExporter = opts.prometheusExporter || new PrometheusExporter({ pollingIntervalInMin: 1 }); @@ -289,33 +285,9 @@ export class PluginLedgerConnectorFabric }); this.certStore = new CertDatastore(opts.pluginRegistry); - if (this.opts.connectionProfile) { - this.connectionProfile = this.opts.connectionProfile; - } else if (this.opts.connectionProfileB64) { - const connectionProfileBuffer = Buffer.from( - this.opts.connectionProfileB64, - "base64", - ); - const connectionProfileString = connectionProfileBuffer.toString("utf-8"); - this.connectionProfile = JSON.parse(connectionProfileString); - } else { - throw new Error( - "Cannot instantiate Fabric connector without connection profile.", - ); - } - this.sshDebugOn = opts.sshDebugOn === true; - if (this.opts.sshConfig) { - this.sshConfig = this.opts.sshConfig; - } else if (this.opts.sshConfigB64) { - const sshConfigBuffer = Buffer.from(this.opts.sshConfigB64, "base64"); - const sshConfigString = sshConfigBuffer.toString("utf-8"); - this.sshConfig = JSON.parse(sshConfigString); - } else { - throw new Error("Cannot instantiate Fabric connector without SSH config"); - } if (this.sshDebugOn) { - this.sshConfig = this.enableSshDebugLogs(this.sshConfig); + this.opts.sshConfig = this.enableSshDebugLogs(this.opts.sshConfig); } this.signCallback = opts.signCallback; @@ -348,10 +320,6 @@ export class PluginLedgerConnectorFabric return `@hyperledger/cactus-plugin-ledger-connector-fabric`; } - public getTxSubjectObservable(): Observable { - return this.txSubject.asObservable(); - } - public async onPluginInit(): Promise { return; } @@ -366,6 +334,10 @@ export class PluginLedgerConnectorFabric return consensusHasTransactionFinality(currentConsensusAlgorithmFamily); } + public getTxSubjectObservable(): Observable { + return this.txSubject.asObservable(); + } + private enableSshDebugLogs(cfg: SshConfig): SshConfig { const fnTag = `${this.className}#decorateSshConfigWithLogger()`; Checks.truthy(cfg, `${fnTag} cfg must be truthy.`); @@ -382,6 +354,7 @@ export class PluginLedgerConnectorFabric sshCmdOptions: SSHExecCommandOptions, ): Promise { this.log.debug(`${label} CMD: ${cmd}`); + const cmdRes = await ssh.execCommand(cmd, sshCmdOptions); this.log.debug(`${label} CMD Response .code: %o`, cmdRes.code); this.log.debug(`${label} CMD Response .signal: %o`, cmdRes.signal); @@ -401,11 +374,11 @@ export class PluginLedgerConnectorFabric req: DeployContractV1Request, ): Promise { const fnTag = `${this.className}#deployContract()`; - const { log } = this; + const { log, opts } = this; const ssh = new NodeSSH(); this.log.debug(`${fnTag} Establishing SSH connection to peer...`); - await ssh.connect(this.sshConfig); + await ssh.connect(opts.sshConfig); this.log.debug(`${fnTag} Established SSH connection to peer OK.`); if (req.collectionsConfigFile) { @@ -706,7 +679,6 @@ export class PluginLedgerConnectorFabric log, opts: this.opts, dockerBinary: this.dockerBinary, - sshConfig: this.sshConfig, className: this.className, }; return deployContractGoSourceImplFabricV256(ctx, req); @@ -951,7 +923,7 @@ export class PluginLedgerConnectorFabric return createGateway({ logLevel: this.opts.logLevel, pluginRegistry: this.opts.pluginRegistry, - defaultConnectionProfile: this.connectionProfile, + defaultConnectionProfile: this.opts.connectionProfile, defaultDiscoveryOptions: this.opts.discoveryOptions || { enabled: true, asLocalhost: true, @@ -976,8 +948,7 @@ export class PluginLedgerConnectorFabric protected async createGatewayLegacy( signingCredential: FabricSigningCredential, ): Promise { - const { eventHandlerOptions: eho } = this.opts; - const connectionProfile = this.connectionProfile; + const { connectionProfile, eventHandlerOptions: eho } = this.opts; const iType = signingCredential.type || FabricSigningCredentialType.X509; @@ -1191,7 +1162,6 @@ export class PluginLedgerConnectorFabric ): Promise { const fnTag = `${this.className}#transact()`; this.log.debug("%s ENTER", fnTag); - const { channelName, contractName, @@ -1261,7 +1231,6 @@ export class PluginLedgerConnectorFabric const transactionProposal = await contract.createTransaction(fnName); transactionProposal.setEndorsingPeers(endorsingTargets); out = await transactionProposal.setTransient(transientMap).submit(); - transactionId = transactionProposal.getTransactionId(); break; } default: { @@ -1270,17 +1239,6 @@ export class PluginLedgerConnectorFabric } } - // create IRunTxReqWithTxId for transaction monitoring - const receiptData: IRunTxReqWithTxId = { - request: req, - transactionId: transactionId == "" ? uuidv4() : transactionId, - timestamp: new Date(), - }; - this.log.debug( - `IRunTxReqWithTxId created with ID: ${receiptData.transactionId}`, - ); - this.txSubject.next(receiptData); - const res: RunTransactionResponse = { functionOutput: this.convertToTransactionResponseType( out, @@ -1319,7 +1277,7 @@ export class PluginLedgerConnectorFabric public async createCaClient(caId: string): Promise { const fnTag = `${this.className}#createCaClient()`; try { - const ccp = this.connectionProfile; + const ccp = this.opts.connectionProfile; if (!ccp.certificateAuthorities) { throw new Error(`${fnTag} conn. profile certificateAuthorities falsy.`); } @@ -1724,7 +1682,7 @@ export class PluginLedgerConnectorFabric this.log.debug("Create Fabric Client without a signer with ID", clientId); const client = new Client(clientId); // Use fabric SDK methods for parsing connection profile into Client structure - await loadFromConfig(client, this.connectionProfile); + await loadFromConfig(client, this.opts.connectionProfile); // Create user const user = User.createUser("", "", signerMspID, signerCertificate); @@ -1937,4 +1895,4 @@ export class PluginLedgerConnectorFabric } } } -} +} \ No newline at end of file diff --git a/packages/cactus-plugin-ledger-connector-fabric/src/test/typescript/integration/fabric-v2-2-x/run-transaction-endpoint-v1.test.ts b/packages/cactus-plugin-ledger-connector-fabric/src/test/typescript/integration/fabric-v2-2-x/run-transaction-endpoint-v1.test.ts index e45e833d4a..a1933710c4 100644 --- a/packages/cactus-plugin-ledger-connector-fabric/src/test/typescript/integration/fabric-v2-2-x/run-transaction-endpoint-v1.test.ts +++ b/packages/cactus-plugin-ledger-connector-fabric/src/test/typescript/integration/fabric-v2-2-x/run-transaction-endpoint-v1.test.ts @@ -251,32 +251,6 @@ describe(testCase, () => { } { - const connectionProfileString = JSON.stringify(connectionProfile); - const connectionProfileB64Buffer = Buffer.from(connectionProfileString); - const sshConfigString = JSON.stringify(sshConfig); - const connectionProfileB64 = - connectionProfileB64Buffer.toString("base64"); - const sshConfigB64Buffer = Buffer.from(sshConfigString); - const sshConfigB64 = sshConfigB64Buffer.toString("base64"); - const pluginOptionsSerialized: IPluginLedgerConnectorFabricOptions = { - instanceId: uuidv4(), - pluginRegistry, - sshConfigB64, - cliContainerEnv: {}, - peerBinary: "/fabric-samples/bin/peer", - logLevel, - connectionProfileB64, - discoveryOptions, - eventHandlerOptions: { - strategy: DefaultEventHandlerStrategy.NetworkScopeAllfortx, - commitTimeout: 300, - }, - }; - const pluginWithSerializedInputs = new PluginLedgerConnectorFabric( - pluginOptionsSerialized, - ); - await pluginWithSerializedInputs.getOrCreateWebServices(); - await pluginWithSerializedInputs.registerWebServices(expressApp); const req: RunTransactionRequest = { signingCredential, gatewayOptions: {