From 9646d77ae1a38e75898a70b49ac494bab0f69dd1 Mon Sep 17 00:00:00 2001
From: Airat Arifullin <a.arifullin@yadro.com>
Date: Wed, 13 Dec 2023 15:46:31 +0300
Subject: [PATCH] [#851] ape: Initialize and use policy contract interface

* Replace inmemory policy contract mock by initialized
  policy contract interface.

Signed-off-by: Airat Arifullin <a.arifullin@yadro.com>
---
 cmd/frostfs-node/config.go |   8 ++++++--
 cmd/frostfs-node/main.go   |   5 +++--
 cmd/frostfs-node/morph.go  |   1 +
 go.mod                     |   2 ++
 go.sum                     | Bin 45864 -> 45860 bytes
 pkg/morph/client/client.go |   4 ++++
 pkg/morph/client/nns.go    |   2 ++
 7 files changed, 18 insertions(+), 4 deletions(-)

diff --git a/cmd/frostfs-node/config.go b/cmd/frostfs-node/config.go
index 82b01b563..59d04b5f6 100644
--- a/cmd/frostfs-node/config.go
+++ b/cmd/frostfs-node/config.go
@@ -69,7 +69,7 @@ import (
 	objectSDK "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object"
 	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
 	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/version"
-	"git.frostfs.info/TrueCloudLab/policy-engine/pkg/engine/inmemory"
+	policy_client "git.frostfs.info/TrueCloudLab/policy-engine/pkg/morph/policy"
 	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
 	neogoutil "github.com/nspcc-dev/neo-go/pkg/util"
 	"github.com/panjf2000/ants/v2"
@@ -542,6 +542,8 @@ type cfgLocalStorage struct {
 }
 
 type cfgAccessPolicyEngine struct {
+	policyContractHash neogoutil.Uint160
+
 	accessPolicyEngine *accessPolicyEngine
 }
 
@@ -987,7 +989,9 @@ func initAccessPolicyEngine(_ context.Context, c *cfg) {
 		)
 	}
 
-	morphRuleStorage := inmemory.NewInmemoryMorphRuleChainStorage()
+	morphRuleStorage := policy_client.NewContractStorage(
+		c.cfgMorph.client.GetActor(),
+		c.cfgObject.cfgAccessPolicyEngine.policyContractHash)
 
 	ape := newAccessPolicyEngine(morphRuleStorage, localOverrideDB)
 	c.cfgObject.cfgAccessPolicyEngine.accessPolicyEngine = ape
diff --git a/cmd/frostfs-node/main.go b/cmd/frostfs-node/main.go
index d4dfb7e60..2fe3a0a25 100644
--- a/cmd/frostfs-node/main.go
+++ b/cmd/frostfs-node/main.go
@@ -98,14 +98,15 @@ func initApp(ctx context.Context, c *cfg) {
 		fatalOnErr(c.cfgObject.cfgLocalStorage.localStorage.Init(ctx))
 	})
 
+	initAndLog(c, "gRPC", initGRPC)
+	initAndLog(c, "netmap", func(c *cfg) { initNetmapService(ctx, c) })
+
 	initAccessPolicyEngine(ctx, c)
 	initAndLog(c, "access policy engine", func(c *cfg) {
 		fatalOnErr(c.cfgObject.cfgAccessPolicyEngine.accessPolicyEngine.LocalOverrideDatabaseCore().Open(ctx))
 		fatalOnErr(c.cfgObject.cfgAccessPolicyEngine.accessPolicyEngine.LocalOverrideDatabaseCore().Init())
 	})
 
-	initAndLog(c, "gRPC", initGRPC)
-	initAndLog(c, "netmap", func(c *cfg) { initNetmapService(ctx, c) })
 	initAndLog(c, "accounting", func(c *cfg) { initAccountingService(ctx, c) })
 	initAndLog(c, "container", func(c *cfg) { initContainerService(ctx, c) })
 	initAndLog(c, "session", initSessionService)
diff --git a/cmd/frostfs-node/morph.go b/cmd/frostfs-node/morph.go
index f7100d0bf..d26142370 100644
--- a/cmd/frostfs-node/morph.go
+++ b/cmd/frostfs-node/morph.go
@@ -289,6 +289,7 @@ func lookupScriptHashesInNNS(c *cfg) {
 			{&c.cfgAccounting.scriptHash, client.NNSBalanceContractName},
 			{&c.cfgContainer.scriptHash, client.NNSContainerContractName},
 			{&c.cfgMorph.proxyScriptHash, client.NNSProxyContractName},
+			{&c.cfgObject.cfgAccessPolicyEngine.policyContractHash, client.NNSPolicyContractName},
 		}
 	)
 
diff --git a/go.mod b/go.mod
index 3e79f7ff7..7b4aa633d 100644
--- a/go.mod
+++ b/go.mod
@@ -2,6 +2,8 @@ module git.frostfs.info/TrueCloudLab/frostfs-node
 
 go 1.20
 
+replace git.frostfs.info/TrueCloudLab/policy-engine v0.0.0-20231211080303-8c673ee4f4af => git.frostfs.info/aarifullin/policy-engine v0.0.0-20231212185618-def903261503
+
 require (
 	git.frostfs.info/TrueCloudLab/frostfs-api-go/v2 v2.16.1-0.20231031104748-498877e378fd
 	git.frostfs.info/TrueCloudLab/frostfs-contract v0.18.1-0.20231129062201-a1b61d394958
diff --git a/go.sum b/go.sum
index 15ae22422585062b9c83d02a3b832152a1cfb18f..1e56526b14e4e8e0c75643f1a7c4ac31d57a995d 100644
GIT binary patch
delta 198
zcmZ4SjA_X;rVW;Co9)<B87GGEaU~`eWu}$p<YeYewqTQWHZrs@H8Zr(O-W6&G%z+Y
zGc+|YR>&~4GKxs7GOuzr&NoW&j`T6La0&3yHgt}v2#w4S&vZ;TaB(k6$}o5F@wW_|
z7$}Tpsuwm>_0#k9a`RI_hL@QbXXYlC2Isnz2m2MJ2BeyVh6H9<WF@*<xaAgSdixo>
SB`3O8<pxzHZ=T1|wF&^z=RTPL

delta 224
zcmZ4TjA_L)rVW;C@df!gnaP#9sd?#{d8rCz26{lKYh++#Y-nU?XkcMrY+$Twk!)se
zoSJHqW|EkukYQ*Q7@VG(m7MMFoKaL%X<DA>RhVW}mS0lrA8Fua9-Nk8Q4&y?Uu;n1
z9N{=IP$7*}EA-Rz^>Xu5KsIH1`9_!(W?LqDdU%!^hld5Hm=u({nL2wE`(>M^`e$lu
a`zCsMrTHaA_yTR(Y{{0&xOqND>nZ?X+eaAy

diff --git a/pkg/morph/client/client.go b/pkg/morph/client/client.go
index 93a4176f9..49cbef931 100644
--- a/pkg/morph/client/client.go
+++ b/pkg/morph/client/client.go
@@ -539,3 +539,7 @@ func (c *Client) setActor(act *actor.Actor) {
 	c.gasToken = nep17.New(act, gas.Hash)
 	c.rolemgmt = rolemgmt.New(act)
 }
+
+func (c *Client) GetActor() *actor.Actor {
+	return c.rpcActor
+}
diff --git a/pkg/morph/client/nns.go b/pkg/morph/client/nns.go
index 758b220a2..218f7ad8e 100644
--- a/pkg/morph/client/nns.go
+++ b/pkg/morph/client/nns.go
@@ -33,6 +33,8 @@ const (
 	NNSProxyContractName = "proxy.frostfs"
 	// NNSGroupKeyName is a name for the FrostFS group key record in NNS.
 	NNSGroupKeyName = "group.frostfs"
+	// NNSPolicyContractName is a name of the policy contract in NNS.
+	NNSPolicyContractName = "policy.frostfs"
 )
 
 var (