Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Direct invocation demo code #1676

Merged
merged 25 commits into from
May 11, 2023
Merged

Direct invocation demo code #1676

merged 25 commits into from
May 11, 2023

Conversation

Kailai-Wang
Copy link
Collaborator

@Kailai-Wang Kailai-Wang commented May 10, 2023
edited
Loading

This PR has addressed most of #1658

It shows how to construct a direct trusted call and send it, currently supported trusted call:

  • set_user_shielding_key_direct
  • create_identity_direct

It also demonstrates the public query to e.g. retrieve TEE's shielding key.

It includes a basic RPC response handling as well.
The subscription to parachain header and the subsequent handling are not written as we have the code already I believe.

Please bear with my crude ts code.

See ts-tests/examples/direct-invocation/README.md for more information.

cc @jonalvarezz

Kailai-Wang and others added 24 commits May 6, 2023 00:07
@Kailai-Wang
add balance_transfer prototype
99213f7
@Kailai-Wang
Merge branch 'dev' into 1658-di-demo
93298c3
@Kailai-Wang
balance transfer works
c254123
@Kailai-Wang
small cleanup
ec4d216
@Kailai-Wang
small refactor
a7498d8
@Kailai-Wang
some more ex
62991ab
@Kailai-Wang
Merge remote-tracking branch 'origin/dev' into 1658-di-demo
e724260
@Kailai-Wang
balance_transfer works with new types
17e5dfe
@Kailai-Wang
send_user_shielding_key_direct not working
3ebb422
@Kailai-Wang
set_user_shielding_key works
80f68de
@Kailai-Wang
small udpate
aa5d47e
@Kailai-Wang
generate new sidechain metadata
aa7e6d8
@Kailai-Wang
small rename
4b5be2d
@Kailai-Wang
add print-sgx-metadata-raw
4cbfec0
@Kailai-Wang
update sgx-metadata command
4402367
@Kailai-Wang
regenerate the type
8502f7a
@Kailai-Wang
fix mock compilation
2cfcca0
@Kailai-Wang
Merge branch '1672-sidechain-metadata' into 1658-di-demo
332a415
@Kailai-Wang
adjut top definitions
2fce191
@Kailai-Wang
type-gen
baa6b74
@Kailai-Wang
Merge remote-tracking branch 'origin/dev' into 1658-di-demo
dc80d34
@Kailai-Wang
add promise for ws
505d6df
@Kailai-Wang
add create_identity direct call
b7dd515
@Kailai-Wang
Update README.md
b53031c
@Kailai-Wang Kailai-Wang requested a review from a team May 10, 2023 23:31
@Kailai-Wang Kailai-Wang self-assigned this May 10, 2023
@Kailai-Wang Kailai-Wang linked an issue May 10, 2023 that may be closed by this pull request
Provide direct invocation e2e sample code #1658
Closed
4 tasks
@Kailai-Wang Kailai-Wang merged commit d5ad604 into dev May 11, 2023
@Kailai-Wang Kailai-Wang deleted the 1658-di-demo branch May 11, 2023 19:43
This was referenced May 11, 2023
Closed
Closed
jonalvarezz
jonalvarezz reviewed May 15, 2023
View reviewed changes
Copy link
Contributor

@jonalvarezz jonalvarezz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the examples, If that's all what it takes, it doesn't look complex 🙌

tee-worker/ts-tests/examples/direct-invocation/index.ts
const keyring = new Keyring({ type: 'sr25519' });

const PARACHAIN_WS_ENDPINT = 'ws://localhost:9944';
const WORKER_TRUSTED_WS_ENDPOINT = 'wss://localhost:2000';
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If I understood correctly from Nitesh some time ago, this endpoint is not publicly available for security reasons. Is it still the case?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

See #1010
We don't see security issues - only server load (similar to any other rpc service provider)

tee-worker/ts-tests/examples/direct-invocation/util.ts
...call.toU8a(),
...nonce.toU8a(),
...hexToU8a(mrenclave),
...hexToU8a(mrenclave), // should be shard, but it's the same as MRENCLAVE in our case
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

"in our case" here means our Parachain regardless of the network, right? How likely it is to change in the future?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes it's network unrelated.

How likely it is to change in the future?

Highly improbable, even if it's going to change, that's not in near future

jonalvarezz
jonalvarezz reviewed May 26, 2023
View reviewed changes
tee-worker/ts-tests/examples/direct-invocation/util.ts
top: Uint8Array
) => {
let cyphertext = compactAddLength(bufferToU8a(encryptWithTeeShieldingKey(teeShieldingKey, top)));
return parachain_api.createType('Request', { shard: hexToU8a(mrenclave), cyphertext }).toU8a();
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@Kailai-Wang, cyphertext -> ciphertext – Is it a typo?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No - In rust the struct field is cyphertext and it's from upstream - so we didn't change it.

And according to Bing, cipher and cypher should be alternative forms:
image

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

IDHub uses ciphertext 😭😭😭

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jonalvarezz jonalvarezz jonalvarezz left review comments

@grumpygreenguy grumpygreenguy grumpygreenguy approved these changes

@BillyWooo BillyWooo BillyWooo approved these changes

Assignees

@Kailai-Wang Kailai-Wang

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Provide direct invocation e2e sample code
4 participants
@Kailai-Wang @jonalvarezz @BillyWooo @grumpygreenguy