feat(private-stdin): add PRIVATE_STDIN artifact type (#220)

Author: bergkvist

crates/network/artifacts/src/lib.rs

@@ -381,8 +381,9 @@ impl Artifact {
     }
 }
 
-/// Given a S3 URL (e.g. <s3://prover-network-staging/artifacts/artifact_01j92x39ngfnrra5br9n8zr07x>),
-/// extract the artifact name from the URL (e.g. `artifact_01j92x39ngfnrra5br9n8zr07x`).
+/// Given a S3 URL (e.g.
+/// <s3://prover-network-staging/artifacts/artifact_01j92x39ngfnrra5br9n8zr07x>), extract the
+/// artifact name from the URL (e.g. `artifact_01j92x39ngfnrra5br9n8zr07x`).
 ///
 /// This is used because the cluster assumes a specific bucket and path already, and just operates
 /// on the artifact name.
@@ -402,6 +403,7 @@ pub fn get_s3_prefix(artifact_type: ArtifactType) -> &'static str {
         ArtifactType::Stdin => "stdins",
         ArtifactType::Proof => "proofs",
         ArtifactType::Transaction => "transactions",
+        ArtifactType::PrivateStdin => "private-stdins",
     }
 }
 
@@ -744,3 +746,14 @@ async fn upload_file(
 
     Ok(())
 }
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+    use spn_artifact_types::ArtifactType;
+
+    #[test]
+    fn private_stdin_has_its_own_prefix() {
+        assert_eq!(get_s3_prefix(ArtifactType::PrivateStdin), "private-stdins");
+    }
+}

crates/types/artifact/src/artifact.rs

@@ -32,6 +32,9 @@ pub enum ArtifactType {
     Proof = 3,
     /// A transaction artifact.
     Transaction = 4,
+    /// A private stdin artifact stored under the private-stdins/ prefix.
+    /// Only fetched via the authenticated GetStdinUri RPC.
+    PrivateStdin = 7,
 }
 impl ArtifactType {
     /// String value of the enum field names used in the ProtoBuf definition.
@@ -45,6 +48,7 @@ impl ArtifactType {
             Self::Stdin => "STDIN",
             Self::Proof => "PROOF",
             Self::Transaction => "TRANSACTION",
+            Self::PrivateStdin => "PRIVATE_STDIN",
         }
     }
     /// Creates an enum from field names used in the ProtoBuf definition.
@@ -55,6 +59,7 @@ impl ArtifactType {
             "STDIN" => Some(Self::Stdin),
             "PROOF" => Some(Self::Proof),
             "TRANSACTION" => Some(Self::Transaction),
+            "PRIVATE_STDIN" => Some(Self::PrivateStdin),
             _ => None,
         }
     }

crates/types/network/src/network.rs

@@ -248,6 +248,32 @@ pub mod prover_network_client {
                 );
             self.inner.unary(req, path, codec).await
         }
+        /// Get a short-lived presigned URL to download a private request's stdin.
+        /// Only callable by the requester, executor, or (post-settlement) fulfiller.
+        pub async fn get_stdin_uri(
+            &mut self,
+            request: impl tonic::IntoRequest<super::super::types::GetStdinUriRequest>,
+        ) -> std::result::Result<
+            tonic::Response<super::super::types::GetStdinUriResponse>,
+            tonic::Status,
+        > {
+            self.inner
+                .ready()
+                .await
+                .map_err(|e| {
+                    tonic::Status::unknown(
+                        format!("Service was not ready: {}", e.into()),
+                    )
+                })?;
+            let codec = tonic::codec::ProstCodec::default();
+            let path = http::uri::PathAndQuery::from_static(
+                "/network.ProverNetwork/GetStdinUri",
+            );
+            let mut req = request.into_request();
+            req.extensions_mut()
+                .insert(GrpcMethod::new("network.ProverNetwork", "GetStdinUri"));
+            self.inner.unary(req, path, codec).await
+        }
         /// Get the proof requests that meet the filter criteria.
         pub async fn get_filtered_proof_requests(
             &mut self,
@@ -1715,6 +1741,15 @@ pub mod prover_network_server {
             tonic::Response<super::super::types::GetProofRequestDetailsResponse>,
             tonic::Status,
         >;
+        /// Get a short-lived presigned URL to download a private request's stdin.
+        /// Only callable by the requester, executor, or (post-settlement) fulfiller.
+        async fn get_stdin_uri(
+            &self,
+            request: tonic::Request<super::super::types::GetStdinUriRequest>,
+        ) -> std::result::Result<
+            tonic::Response<super::super::types::GetStdinUriResponse>,
+            tonic::Status,
+        >;
         /// Get the proof requests that meet the filter criteria.
         async fn get_filtered_proof_requests(
             &self,
@@ -2524,6 +2559,54 @@ pub mod prover_network_server {
                     };
                     Box::pin(fut)
                 }
+                "/network.ProverNetwork/GetStdinUri" => {
+                    #[allow(non_camel_case_types)]
+                    struct GetStdinUriSvc<T: ProverNetwork>(pub Arc<T>);
+                    impl<
+                        T: ProverNetwork,
+                    > tonic::server::UnaryService<
+                        super::super::types::GetStdinUriRequest,
+                    > for GetStdinUriSvc<T> {
+                        type Response = super::super::types::GetStdinUriResponse;
+                        type Future = BoxFuture<
+                            tonic::Response<Self::Response>,
+                            tonic::Status,
+                        >;
+                        fn call(
+                            &mut self,
+                            request: tonic::Request<
+                                super::super::types::GetStdinUriRequest,
+                            >,
+                        ) -> Self::Future {
+                            let inner = Arc::clone(&self.0);
+                            let fut = async move {
+                                <T as ProverNetwork>::get_stdin_uri(&inner, request).await
+                            };
+                            Box::pin(fut)
+                        }
+                    }
+                    let accept_compression_encodings = self.accept_compression_encodings;
+                    let send_compression_encodings = self.send_compression_encodings;
+                    let max_decoding_message_size = self.max_decoding_message_size;
+                    let max_encoding_message_size = self.max_encoding_message_size;
+                    let inner = self.inner.clone();
+                    let fut = async move {
+                        let method = GetStdinUriSvc(inner);
+                        let codec = tonic::codec::ProstCodec::default();
+                        let mut grpc = tonic::server::Grpc::new(codec)
+                            .apply_compression_config(
+                                accept_compression_encodings,
+                                send_compression_encodings,
+                            )
+                            .apply_max_message_size_config(
+                                max_decoding_message_size,
+                                max_encoding_message_size,
+                            );
+                        let res = grpc.unary(method, req).await;
+                        Ok(res)
+                    };
+                    Box::pin(fut)
+                }
                 "/network.ProverNetwork/GetFilteredProofRequests" => {
                     #[allow(non_camel_case_types)]
                     struct GetFilteredProofRequestsSvc<T: ProverNetwork>(pub Arc<T>);

crates/types/network/src/types.rs

@@ -164,6 +164,10 @@ pub struct RequestProofRequestBody {
     /// The treasury address.
     #[prost(bytes = "vec", tag = "20")]
     pub treasury: ::prost::alloc::vec::Vec<u8>,
+    /// Whether the stdin is private. When true, stdin_uri must be under
+    /// the private-stdins/ prefix and is only fetchable via GetStdinUri.
+    #[prost(bool, tag = "21")]
+    pub stdin_private: bool,
 }
 #[derive(serde::Serialize, serde::Deserialize)]
 #[derive(Clone, PartialEq, ::prost::Message)]
@@ -457,6 +461,10 @@ pub struct ProofRequest {
     /// The proof request error, if any.
     #[prost(enumeration = "ProofRequestError", tag = "36")]
     pub error: i32,
+    /// Whether this request's stdin is private. When true, stdin_public_uri is
+    /// empty and stdin is only fetchable via GetStdinUri by an authorized caller.
+    #[prost(bool, tag = "38")]
+    pub stdin_private: bool,
 }
 #[derive(serde::Serialize, serde::Deserialize)]
 #[derive(Clone, PartialEq, ::prost::Message)]
@@ -514,6 +522,42 @@ pub struct GetProofRequestDetailsResponse {
 }
 #[derive(serde::Serialize, serde::Deserialize)]
 #[derive(Clone, PartialEq, ::prost::Message)]
+pub struct GetStdinUriRequest {
+    /// The message format of the body.
+    #[prost(enumeration = "MessageFormat", tag = "1")]
+    pub format: i32,
+    /// The signature of the sender.
+    #[prost(bytes = "vec", tag = "2")]
+    pub signature: ::prost::alloc::vec::Vec<u8>,
+    /// The body of the request.
+    #[prost(message, optional, tag = "3")]
+    pub body: ::core::option::Option<GetStdinUriRequestBody>,
+}
+#[derive(serde::Serialize, serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct GetStdinUriRequestBody {
+    /// The account nonce of the sender.
+    #[prost(uint64, tag = "1")]
+    pub nonce: u64,
+    /// The identifier for the request.
+    #[prost(bytes = "vec", tag = "2")]
+    pub request_id: ::prost::alloc::vec::Vec<u8>,
+    /// The domain separator bytes for the request.
+    #[prost(bytes = "vec", tag = "3")]
+    pub domain: ::prost::alloc::vec::Vec<u8>,
+}
+#[derive(serde::Serialize, serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct GetStdinUriResponse {
+    /// Presigned HTTPS URL for downloading the stdin artifact.
+    #[prost(string, tag = "1")]
+    pub stdin_uri: ::prost::alloc::string::String,
+    /// Unix seconds at which the URL expires.
+    #[prost(uint64, tag = "2")]
+    pub expires_at: u64,
+}
+#[derive(serde::Serialize, serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
 pub struct GetFilteredProofRequestsRequest {
     /// The optional version of the requests to filter for.
     #[prost(string, optional, tag = "1")]

crates/vapp/tests/common/mod.rs

@@ -591,6 +591,7 @@ pub fn create_clear_tx_with_options(
         max_price_per_pgu: max_price_per_pgu.unwrap_or("100000").to_string(),
         variant: TransactionVariant::RequestVariant as i32,
         treasury: signer("treasury").address().to_vec(),
+        stdin_private: false,
     };
 
     // Compute the request ID from the request body and signer.
@@ -902,6 +903,7 @@ pub fn create_clear_tx_with_public_values_hash(
         max_price_per_pgu: "100000".to_string(),
         variant: TransactionVariant::RequestVariant as i32,
         treasury: signer("treasury").address().to_vec(),
+        stdin_private: false,
     };
 
     // Compute the request ID from the request body and signer.
@@ -1108,6 +1110,7 @@ pub fn create_clear_tx_with_version(
         max_price_per_pgu: "100000".to_string(),
         variant: TransactionVariant::RequestVariant as i32,
         treasury: signer("treasury").address().to_vec(),
+        stdin_private: false,
     };
 
     // Compute the request ID from the request body and signer.

proto/artifact.proto

@@ -31,4 +31,7 @@ enum ArtifactType {
     PROOF = 3;
     // A transaction artifact.
     TRANSACTION = 4;
+    // A private stdin artifact stored under the private-stdins/ prefix.
+    // Only fetched via the authenticated GetStdinUri RPC.
+    PRIVATE_STDIN = 7;
 }

proto/network.proto

@@ -27,6 +27,9 @@ service ProverNetwork {
   // Get the details of a proof request.
   rpc GetProofRequestDetails(types.GetProofRequestDetailsRequest)
       returns (types.GetProofRequestDetailsResponse) {}
+  // Get a short-lived presigned URL to download a private request's stdin.
+  // Only callable by the requester, executor, or (post-settlement) fulfiller.
+  rpc GetStdinUri(types.GetStdinUriRequest) returns (types.GetStdinUriResponse) {}
   // Get the proof requests that meet the filter criteria.
   rpc GetFilteredProofRequests(types.GetFilteredProofRequestsRequest)
       returns (types.GetFilteredProofRequestsResponse) {}

proto/types.proto

@@ -147,6 +147,9 @@ message RequestProofRequestBody {
   TransactionVariant variant = 19;
   // The treasury address.
   bytes treasury = 20;
+  // Whether the stdin is private. When true, stdin_uri must be under
+  // the private-stdins/ prefix and is only fetchable via GetStdinUri.
+  bool stdin_private = 21;
 }
 
 message RequestProofResponse {
@@ -350,6 +353,9 @@ message ProofRequest {
   optional string max_price_per_pgu = 35;
   // The proof request error, if any.
   ProofRequestError error = 36;
+  // Whether this request's stdin is private. When true, stdin_public_uri is
+  // empty and stdin is only fetchable via GetStdinUri by an authorized caller.
+  bool stdin_private = 38;
 }
 
 message GetProofRequestStatusRequest {
@@ -391,6 +397,31 @@ message GetProofRequestDetailsResponse {
   ProofRequest request = 1;
 }
 
+message GetStdinUriRequest {
+  // The message format of the body.
+  MessageFormat format = 1;
+  // The signature of the sender.
+  bytes signature = 2;
+  // The body of the request.
+  GetStdinUriRequestBody body = 3;
+}
+
+message GetStdinUriRequestBody {
+  // The account nonce of the sender.
+  uint64 nonce = 1;
+  // The identifier for the request.
+  bytes request_id = 2;
+  // The domain separator bytes for the request.
+  bytes domain = 3;
+}
+
+message GetStdinUriResponse {
+  // Presigned HTTPS URL for downloading the stdin artifact.
+  string stdin_uri = 1;
+  // Unix seconds at which the URL expires.
+  uint64 expires_at = 2;
+}
+
 message GetFilteredProofRequestsRequest {
   // The optional version of the requests to filter for.
   optional string version = 1;