Add exit root of trust server to integration tests

The multi-exit test now has clients performing the exit list
request loop between the exits and the root of trust server.

althea_types/src/exits/server_list_signatures.rs

@@ -63,10 +63,15 @@ impl ExitServerList {
         if sig.is_valid() {
             let hash = get_ethereum_msg_hash(&self.encode_to_eth_abi());
             match sig.recover(&hash) {
-                Ok(addr) => addr == key,
-                Err(_) => false,
+                Ok(addr) => {
+                    println!("Recovered address is {:?}", addr);
+                    addr == key},
+                Err(_) => {
+                    println!("Failed to recover address from signature");
+                    false},
             }
         } else {
+            println!("Signature is invalid");
             false
         }
     }

exit_trust_root/Cargo.toml

@@ -5,8 +5,12 @@ edition = "2021"
 license = "Apache-2.0"
 description = "Server to provide a root of exit trust for Althea routers"
 
-[[bin]]
+[lib]
 name = "exit_trust_root"
+path = "src/lib.rs"
+
+[[bin]]
+name = "exit_trust_root_server"
 path = "src/bin.rs"
 
 [dependencies]

exit_trust_root/src/bin.rs

@@ -1,161 +1,14 @@
-use actix_web::rt::System;
-use actix_web::{get, web, App, HttpResponse, HttpServer, Responder};
-use althea_types::{ExitServerList, SignedExitServerList};
-use clarity::Address;
-use config::{load_config, CONFIG};
 use env_logger::Env;
-use log::info;
-use rita_client_registration::client_db::get_exits_list;
-use rustls::ServerConfig;
-use std::collections::HashMap;
-use std::sync::{Arc, RwLock};
-use std::thread;
-use std::time::Duration;
-use tls::{load_certs, load_rustls_private_key};
-use web30::client::Web3;
-use web30::jsonrpc::error::Web3Error;
-
-pub mod config;
-pub mod tls;
-
-pub const DEVELOPMENT: bool = cfg!(feature = "development");
-const SSL: bool = !DEVELOPMENT;
-pub const DOMAIN: &str = if cfg!(test) || DEVELOPMENT {
-    "localhost"
-} else {
-    "exitroot.althea.net"
-};
-/// The backend RPC port for the info server fucntions implemented in this repo
-const SERVER_PORT: u16 = 9000;
-
-/// This endpoint retrieves and signs the data from any specified exit contract,
-/// allowing this server to serve as a root of trust for several different exit contracts.
-#[get("/{exit_contract}")]
-async fn return_exit_contract_data(
-    exit_contract: web::Path<Address>,
-    cache: web::Data<Arc<RwLock<HashMap<Address, SignedExitServerList>>>>,
-) -> impl Responder {
-    let contract = exit_contract.into_inner();
-    let cached_list = {
-        let cache_read = cache.read().unwrap();
-        cache_read.get(&contract).cloned()
-    };
-
-    match cached_list {
-        Some(list) => {
-            // return a signed exit server list based on the given key
-            HttpResponse::Ok().json(list)
-        }
-        None => match retrieve_exit_server_list(contract, cache.get_ref().clone()).await {
-            Ok(list) => {
-                HttpResponse::Ok().json(list)
-            }
-            Err(e) => {
-                info!("Failed to get exit list from contract {:?}", e);
-                HttpResponse::InternalServerError().json("Failed to get exit list from contract")
-            }
-        },
-    }
-}
-
-async fn retrieve_exit_server_list(
-    exit_contract: Address,
-    cache: Arc<RwLock<HashMap<Address, SignedExitServerList>>>,
-) -> Result<SignedExitServerList, Web3Error> {
-    const WEB3_TIMEOUT: Duration = Duration::from_secs(10);
-    let exits = get_exits_list(
-        &Web3::new("https://dai.althea.net", WEB3_TIMEOUT),
-        CONFIG.clarity_private_key.to_address(),
-        exit_contract,
-    )
-    .await;
-    match exits {
-        Ok(exits) => {
-            info!("Got exit list from contract");
-            let exit_list = ExitServerList {
-                contract: exit_contract,
-                exit_list: exits,
-                created: std::time::SystemTime::now(),
-            };
-            let cache_value = exit_list.sign(CONFIG.clarity_private_key);
-
-            // add this new exit list to the cache
-            cache
-                .write()
-                .unwrap()
-                .insert(exit_contract, cache_value.clone());
-            Ok(cache_value)
-        }
-        Err(e) => {
-            info!("Failed to get exit list from contract {:?}", e);
-            Err(e)
-        }
-    }
-}
-
-// five minutes
-const SIGNATURE_UPDATE_SLEEP: Duration = Duration::from_secs(300);
-
-/// In order to improve scalability this loop grabs and signs an updated list of exits from each exit contract
-/// that has previously been requested from this server every 5 minutes. This allows the server to return instantly
-/// on the next request from the client without having to perform rpc query 1-1 with requests.
-fn signature_update_loop(cache: Arc<RwLock<HashMap<Address, SignedExitServerList>>>) {
-    thread::spawn(move || loop {
-        let runner = System::new();
-        runner.block_on(async {
-            let cache_iter = cache.read().unwrap().clone();
-            for (exit_contract, _value) in cache_iter.iter() {
-                // get the latest exit list from the contract
-                match retrieve_exit_server_list(*exit_contract, cache.clone()).await {
-                    // grab the cache here so we don't lock it while awaiting for every single contract
-                    Ok(cache_value) => {
-                        // update the cache
-                        cache.write().unwrap().insert(*exit_contract, cache_value);
-                    }
-                    Err(e) => {
-                        info!("Failed to get exit list from contract {:?}", e);
-                    }
-                }
-            }
-        });
-        thread::sleep(SIGNATURE_UPDATE_SLEEP);
-    });
-}
+use exit_trust_root::{config::load_config, start_exit_trust_root_server};
 
 #[actix_web::main]
-async fn main() -> std::io::Result<()> {
+async fn main() {
     openssl_probe::init_ssl_cert_env_vars();
     env_logger::Builder::from_env(Env::default().default_filter_or("info")).init();
 
     // ensure that the config file is valid, we discard the result and use
     // lazy static variable after this
     load_config();
 
-    let exit_contract_data_cache: Arc<RwLock<HashMap<Address, SignedExitServerList>>> =
-        Arc::new(RwLock::new(HashMap::new()));
-    signature_update_loop(exit_contract_data_cache.clone());
-    let web_data = web::Data::new(exit_contract_data_cache.clone());
-
-    let server = HttpServer::new(move || {
-        App::new()
-            .service(return_exit_contract_data)
-            .app_data(web_data.clone())
-    });
-    let server = if SSL {
-        let cert_chain = load_certs(&format!("/etc/letsencrypt/live/{}/fullchain.pem", DOMAIN));
-        let keys =
-            load_rustls_private_key(&format!("/etc/letsencrypt/live/{}/privkey.pem", DOMAIN));
-        let config = ServerConfig::builder()
-            .with_safe_defaults()
-            .with_no_client_auth()
-            .with_single_cert(cert_chain, keys)
-            .unwrap();
-
-        info!("Binding to SSL");
-        server.bind_rustls(format!("{}:{}", DOMAIN, SERVER_PORT), config.clone())?
-    } else {
-        server.bind(format!("{}:{}", DOMAIN, SERVER_PORT))?
-    };
-
-    server.run().await
+    start_exit_trust_root_server();
 }

exit_trust_root/src/config.rs

@@ -7,6 +7,7 @@ use serde::{Deserialize, Serialize};
 
 use crate::DEVELOPMENT;
 
+
 ///Struct containing settings for Exit root server
 #[derive(Debug, Serialize, Deserialize, Clone)]
 pub struct ConfigStruct {
@@ -39,7 +40,10 @@ impl ConfigStruct {
 pub fn load_config() -> ConfigStruct {
     // change the config name based on our development status
     let file_name = if DEVELOPMENT || cfg!(test) {
-        "config.toml"
+        return ConfigStruct {
+            clarity_private_key: PrivateKey::from_bytes([1u8; 32]).unwrap(),
+            wg_private_key: WgKey::from([2; 32]),
+        }
     } else {
         "/etc/exit_root_server.toml"
     };