[CAPPL-292] Add update nodes action

smartcontractkit · Nov 15, 2024 · bba90d0 · bba90d0
1 parent 2fcfb81
commit bba90d0
Show file tree

Hide file tree

Showing 5 changed files with 235 additions and 78 deletions.
diff --git a/deployment/keystone/changeset/internal/append_node_capabilities.go b/deployment/keystone/changeset/internal/append_node_capabilities.go
@@ -42,19 +42,19 @@ func AppendNodeCapabilitiesImpl(lggr logger.Logger, req *AppendNodeCapabilitiesR
 	}
 
 	// for each node, merge the new capabilities with the existing ones and update the node
-	capsByPeer := make(map[p2pkey.PeerID][]kcr.CapabilitiesRegistryCapability)
+	updatesByPeer := make(map[p2pkey.PeerID]NodeUpdate)
 	for p2pID, caps := range req.P2pToCapabilities {
 		caps, err := AppendCapabilities(lggr, req.Registry, req.Chain, []p2pkey.PeerID{p2pID}, caps)
 		if err != nil {
 			return nil, fmt.Errorf("failed to append capabilities for p2p %s: %w", p2pID, err)
 		}
-		capsByPeer[p2pID] = caps[p2pID]
+		updatesByPeer[p2pID] = NodeUpdate{Capabilities: caps[p2pID]}
 	}
 
 	updateNodesReq := &UpdateNodesRequest{
-		Chain:             req.Chain,
-		Registry:          req.Registry,
-		P2pToCapabilities: capsByPeer,
+		Chain:        req.Chain,
+		Registry:     req.Registry,
+		P2pToUpdates: updatesByPeer,
 	}
 	resp, err := UpdateNodes(lggr, updateNodesReq)
 	if err != nil {

diff --git a/deployment/keystone/changeset/internal/update_node_capabilities.go b/deployment/keystone/changeset/internal/update_node_capabilities.go
@@ -42,10 +42,15 @@ func UpdateNodeCapabilitiesImpl(lggr logger.Logger, req *UpdateNodeCapabilitiesI
 		return nil, fmt.Errorf("failed to add capabilities: %w", err)
 	}
 
+	p2pToUpdates := map[p2pkey.PeerID]NodeUpdate{}
+	for id, caps := range req.P2pToCapabilities {
+		p2pToUpdates[id] = NodeUpdate{Capabilities: caps}
+	}
+
 	updateNodesReq := &UpdateNodesRequest{
-		Chain:             req.Chain,
-		Registry:          req.Registry,
-		P2pToCapabilities: req.P2pToCapabilities,
+		Chain:        req.Chain,
+		Registry:     req.Registry,
+		P2pToUpdates: p2pToUpdates,
 	}
 	resp, err := UpdateNodes(lggr, updateNodesReq)
 	if err != nil {

diff --git a/deployment/keystone/changeset/internal/update_nodes.go b/deployment/keystone/changeset/internal/update_nodes.go
@@ -2,6 +2,7 @@ package internal
 
 import (
 	"bytes"
+	"encoding/hex"
 	"errors"
 	"fmt"
 	"sort"
@@ -16,15 +17,20 @@ import (
 	kslib "github.com/smartcontractkit/chainlink/deployment/keystone"
 )
 
+type NodeUpdate struct {
+	EncryptionPublicKey string
+	Capabilities        []kcr.CapabilitiesRegistryCapability
+}
+
 type UpdateNodesRequest struct {
 	Chain    deployment.Chain
 	Registry *kcr.CapabilitiesRegistry
 
-	P2pToCapabilities map[p2pkey.PeerID][]kcr.CapabilitiesRegistryCapability
+	P2pToUpdates map[p2pkey.PeerID]NodeUpdate
 }
 
 func (req *UpdateNodesRequest) NodeParams() ([]kcr.CapabilitiesRegistryNodeParams, error) {
-	return makeNodeParams(req.Registry, req.P2pToCapabilities)
+	return makeNodeParams(req.Registry, req.P2pToUpdates)
 }
 
 // P2PSignerEnc represent the key fields in kcr.CapabilitiesRegistryNodeParams
@@ -36,19 +42,30 @@ type P2PSignerEnc struct {
 }
 
 func (req *UpdateNodesRequest) Validate() error {
-	if len(req.P2pToCapabilities) == 0 {
+	if len(req.P2pToUpdates) == 0 {
 		return errors.New("p2pToCapabilities is empty")
 	}
 	// no duplicate capabilities
-	for peer, caps := range req.P2pToCapabilities {
+	for peer, updates := range req.P2pToUpdates {
 		seen := make(map[string]struct{})
-		for _, cap := range caps {
+		for _, cap := range updates.Capabilities {
 			id := kslib.CapabilityID(cap)
 			if _, exists := seen[id]; exists {
 				return fmt.Errorf("duplicate capability %s for %s", id, peer)
 			}
 			seen[id] = struct{}{}
 		}
+
+		if updates.EncryptionPublicKey != "" {
+			pk, err := hex.DecodeString(updates.EncryptionPublicKey)
+			if err != nil {
+				return fmt.Errorf("invalid public key: could not hex decode: %w", err)
+			}
+
+			if len(pk) != 32 {
+				return fmt.Errorf("invalid public key: got len %d, need 32", len(pk))
+			}
+		}
 	}
 
 	if req.Registry == nil {
@@ -136,11 +153,11 @@ func AppendCapabilities(lggr logger.Logger, registry *kcr.CapabilitiesRegistry,
 }
 
 func makeNodeParams(registry *kcr.CapabilitiesRegistry,
-	p2pToCapabilities map[p2pkey.PeerID][]kcr.CapabilitiesRegistryCapability) ([]kcr.CapabilitiesRegistryNodeParams, error) {
+	p2pToUpdates map[p2pkey.PeerID]NodeUpdate) ([]kcr.CapabilitiesRegistryNodeParams, error) {
 
 	var out []kcr.CapabilitiesRegistryNodeParams
 	var p2pIds []p2pkey.PeerID
-	for p2pID := range p2pToCapabilities {
+	for p2pID := range p2pToUpdates {
 		p2pIds = append(p2pIds, p2pID)
 	}
 
@@ -150,19 +167,33 @@ func makeNodeParams(registry *kcr.CapabilitiesRegistry,
 		return nil, fmt.Errorf("failed to get nodes by p2p ids: %w", err)
 	}
 	for _, node := range nodes {
-		caps, ok := p2pToCapabilities[node.P2pId]
+		updates, ok := p2pToUpdates[node.P2pId]
 		if !ok {
 			return nil, fmt.Errorf("capabilities not found for node %s", node.P2pId)
 		}
-		ids, err := capabilityIds(registry, caps)
-		if err != nil {
-			return nil, fmt.Errorf("failed to get capability ids: %w", err)
+		ids := node.HashedCapabilityIds
+		if len(updates.Capabilities) > 0 {
+			is, err := capabilityIds(registry, updates.Capabilities)
+			if err != nil {
+				return nil, fmt.Errorf("failed to get capability ids: %w", err)
+			}
+			ids = is
+		}
+
+		encryptionKey := node.EncryptionPublicKey
+		if updates.EncryptionPublicKey != "" {
+			pk, err := hex.DecodeString(updates.EncryptionPublicKey)
+			if err != nil {
+				return nil, fmt.Errorf("failed to decode encryption public key: %w", err)
+			}
+			encryptionKey = [32]byte(pk)
 		}
+
 		out = append(out, kcr.CapabilitiesRegistryNodeParams{
 			NodeOperatorId:      node.NodeOperatorId,
 			P2pId:               node.P2pId,
 			HashedCapabilityIds: ids,
-			EncryptionPublicKey: node.EncryptionPublicKey,
+			EncryptionPublicKey: encryptionKey,
 			Signer:              node.Signer,
 		})
 	}