xmtp
diff --git a/‎Cargo.lock
+3 b/‎Cargo.lock
+3
diff --git a/‎xmtp_id/Cargo.toml
+13-11 b/‎xmtp_id/Cargo.toml
+13-11
diff --git a/‎xmtp_id/src/associations/association_log.rs
+301 b/‎xmtp_id/src/associations/association_log.rs
+301
diff --git a/‎xmtp_id/src/associations/hashes.rs
+12 b/‎xmtp_id/src/associations/hashes.rs
+12
@@ -1,24 +1,26 @@
 [package]
+edition = "2021"
 name = "xmtp_id"
 version = "0.1.0"
-edition = "2021"
 
 # See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html
 
 [dependencies]
+async-trait.workspace = true
+chrono.workspace = true
+futures.workspace = true
+hex.workspace = true
 log.workspace = true
-tracing.workspace = true
-thiserror.workspace = true
-xmtp_cryptography.workspace = true 
-xmtp_mls.workspace = true
-xmtp_proto.workspace = true
-openmls_traits.workspace = true
 openmls.workspace = true
 openmls_basic_credential.workspace = true
 openmls_rust_crypto.workspace = true
+openmls_traits.workspace = true
 prost.workspace = true
-chrono.workspace = true
+rand.workspace = true
 serde.workspace = true
-async-trait.workspace = true
-futures.workspace = true
-
+sha2 = "0.10.8"
+thiserror.workspace = true
+tracing.workspace = true
+xmtp_cryptography.workspace = true
+xmtp_mls.workspace = true
+xmtp_proto.workspace = true
@@ -0,0 +1,301 @@
+use super::hashes::generate_xid;
+use super::member::{Member, MemberIdentifier, MemberKind};
+use super::signature::{Signature, SignatureError, SignatureKind};
+use super::state::AssociationState;
+
+use thiserror::Error;
+
+// const ALLOWED_CREATE_ENTITY_ROLES: [EntityRole; 2] = [EntityRole::LegacyKey, EntityRole::Address];
+
+#[derive(Debug, Error, PartialEq)]
+pub enum AssociationError {
+    #[error("Error creating association {0}")]
+    Generic(String),
+    #[error("Multiple create operations detected")]
+    MultipleCreate,
+    #[error("XID not yet created")]
+    NotCreated,
+    #[error("Signature validation failed {0}")]
+    Signature(#[from] SignatureError),
+    #[error("Missing existing member")]
+    MissingExistingMember,
+    #[error("Legacy key is only allowed to be associated using a legacy signature with nonce 0")]
+    LegacySignatureReuse,
+    #[error("The new member identifier does not match the signer")]
+    NewMemberIdSignatureMismatch,
+    #[error("Signature not allowed for role {0:?} {1:?}")]
+    SignatureNotAllowed(MemberKind, SignatureKind),
+    #[error("Replay detected")]
+    Replay,
+}
+
+pub trait IdentityAction {
+    fn update_state(
+        &self,
+        existing_state: Option<AssociationState>,
+    ) -> Result<AssociationState, AssociationError>;
+    fn signatures(&self) -> Vec<Vec<u8>>;
+    fn replay_check(&self, state: &AssociationState) -> Result<(), AssociationError> {
+        let signatures = self.signatures();
+        for signature in signatures {
+            if state.has_seen(&signature) {
+                return Err(AssociationError::Replay);
+            }
+        }
+
+        Ok(())
+    }
+}
+
+pub struct CreateInbox {
+    pub nonce: u64,
+    pub account_address: String,
+    pub initial_address_signature: Box<dyn Signature>,
+}
+
+impl IdentityAction for CreateInbox {
+    fn update_state(
+        &self,
+        existing_state: Option<AssociationState>,
+    ) -> Result<AssociationState, AssociationError> {
+        if existing_state.is_some() {
+            return Err(AssociationError::MultipleCreate);
+        }
+
+        let account_address = self.account_address.clone();
+        let recovered_signer = self.initial_address_signature.recover_signer()?;
+        if recovered_signer.ne(&MemberIdentifier::Address(account_address.clone())) {
+            return Err(AssociationError::MissingExistingMember);
+        }
+
+        Ok(AssociationState::new(account_address, self.nonce))
+    }
+
+    fn signatures(&self) -> Vec<Vec<u8>> {
+        vec![self.initial_address_signature.bytes()]
+    }
+}
+
+pub struct AddAssociation {
+    pub client_timestamp_ns: u64,
+    pub new_member_signature: Box<dyn Signature>,
+    pub new_member_identifier: MemberIdentifier,
+    pub existing_member_signature: Box<dyn Signature>,
+}
+
+impl IdentityAction for AddAssociation {
+    fn update_state(
+        &self,
+        maybe_existing_state: Option<AssociationState>,
+    ) -> Result<AssociationState, AssociationError> {
+        let existing_state = maybe_existing_state.ok_or(AssociationError::NotCreated)?;
+        self.replay_check(&existing_state)?;
+
+        let new_member_address = self.new_member_signature.recover_signer()?;
+        if new_member_address.ne(&self.new_member_identifier) {
+            return Err(AssociationError::NewMemberIdSignatureMismatch);
+        }
+
+        let existing_member_identifier = self.existing_member_signature.recover_signer()?;
+        let recovery_address = existing_state.recovery_address();
+
+        if new_member_address.ne(&self.new_member_identifier) {
+            return Err(AssociationError::Generic(
+                "new member identifier does not match signature".to_string(),
+            ));
+        }
+
+        // You cannot add yourself
+        if new_member_address == existing_member_identifier {
+            return Err(AssociationError::Generic("tried to add self".to_string()));
+        }
+
+        // Only allow LegacyDelegated signatures on XIDs with a nonce of 0
+        // Otherwise the client should use the regular wallet signature to create
+        if self.new_member_signature.signature_kind() == SignatureKind::LegacyDelegated {
+            if existing_state
+                .xid()
+                .ne(&generate_xid(&existing_member_identifier.to_string(), &0))
+            {
+                return Err(AssociationError::LegacySignatureReuse);
+            }
+        }
+
+        // Make sure that the signature type lines up with the role
+        if !allowed_signature_for_kind(
+            &self.new_member_identifier.kind(),
+            &self.new_member_signature.signature_kind(),
+        ) {
+            return Err(AssociationError::SignatureNotAllowed(
+                self.new_member_identifier.kind(),
+                self.new_member_signature.signature_kind(),
+            ));
+        }
+
+        let existing_member = existing_state.get(&existing_member_identifier);
+
+        let existing_entity_id = match existing_member {
+            // If there is an existing member of the XID, use that member's ID
+            Some(member) => member.identifier,
+            None => {
+                let recovery_identifier = MemberIdentifier::Address(recovery_address.clone());
+                // Check if it is a signature from the recovery address, which is allowed to add members
+                if existing_member_identifier.ne(&recovery_identifier) {
+                    return Err(AssociationError::MissingExistingMember);
+                }
+                // BUT, the recovery address has to be used with a real wallet signature, can't be delegated
+                if self.existing_member_signature.signature_kind() == SignatureKind::LegacyDelegated
+                {
+                    return Err(AssociationError::LegacySignatureReuse);
+                }
+                // If it is a real wallet signature, then it is allowed to add members
+                recovery_identifier
+            }
+        };
+
+        let new_member = Member::new(new_member_address, Some(existing_entity_id));
+
+        println!("Adding new entity to state {:?}", &new_member);
+
+        Ok(existing_state.add(new_member))
+    }
+
+    fn signatures(&self) -> Vec<Vec<u8>> {
+        vec![
+            self.existing_member_signature.bytes(),
+            self.new_member_signature.bytes(),
+        ]
+    }
+}
+
+pub struct RevokeAssociation {
+    pub client_timestamp_ns: u64,
+    pub recovery_address_signature: Box<dyn Signature>,
+    pub revoked_member: MemberIdentifier,
+}
+
+impl IdentityAction for RevokeAssociation {
+    fn update_state(
+        &self,
+        maybe_existing_state: Option<AssociationState>,
+    ) -> Result<AssociationState, AssociationError> {
+        let existing_state = maybe_existing_state.ok_or(AssociationError::NotCreated)?;
+        self.replay_check(&existing_state)?;
+
+        if self.recovery_address_signature.signature_kind() == SignatureKind::LegacyDelegated {
+            return Err(AssociationError::SignatureNotAllowed(
+                MemberKind::Address,
+                SignatureKind::LegacyDelegated,
+            ));
+        }
+        // Don't need to check for replay here since revocation is idempotent
+        let recovery_signer = self.recovery_address_signature.recover_signer()?;
+        // Make sure there is a recovery address set on the state
+        let state_recovery_address = existing_state.recovery_address();
+
+        // Ensure this message is signed by the recovery address
+        if recovery_signer.ne(&MemberIdentifier::Address(state_recovery_address.clone())) {
+            return Err(AssociationError::MissingExistingMember);
+        }
+
+        let installations_to_remove: Vec<Member> = existing_state
+            .members_by_parent(&self.revoked_member)
+            .into_iter()
+            // Only remove children if they are installations
+            .filter(|child| child.kind() == MemberKind::Installation)
+            .collect();
+
+        // Actually apply the revocation to the parent
+        let new_state = existing_state.remove(&self.revoked_member);
+
+        Ok(installations_to_remove
+            .iter()
+            .fold(new_state, |state, installation| {
+                state.remove(&installation.identifier)
+            }))
+    }
+
+    fn signatures(&self) -> Vec<Vec<u8>> {
+        vec![self.recovery_address_signature.bytes()]
+    }
+}
+
+pub enum Action {
+    CreateInbox(CreateInbox),
+    AddAssociation(AddAssociation),
+    RevokeAssociation(RevokeAssociation),
+}
+
+impl IdentityAction for Action {
+    fn update_state(
+        &self,
+        existing_state: Option<AssociationState>,
+    ) -> Result<AssociationState, AssociationError> {
+        match self {
+            Action::CreateInbox(event) => event.update_state(existing_state),
+            Action::AddAssociation(event) => event.update_state(existing_state),
+            Action::RevokeAssociation(event) => event.update_state(existing_state),
+        }
+    }
+
+    fn signatures(&self) -> Vec<Vec<u8>> {
+        match self {
+            Action::CreateInbox(event) => event.signatures(),
+            Action::AddAssociation(event) => event.signatures(),
+            Action::RevokeAssociation(event) => event.signatures(),
+        }
+    }
+}
+
+pub struct IdentityUpdate {
+    pub actions: Vec<Action>,
+}
+
+impl IdentityUpdate {
+    pub fn new(actions: Vec<Action>) -> Self {
+        Self { actions }
+    }
+}
+
+impl IdentityAction for IdentityUpdate {
+    fn update_state(
+        &self,
+        existing_state: Option<AssociationState>,
+    ) -> Result<AssociationState, AssociationError> {
+        let mut state = existing_state.clone();
+        for action in &self.actions {
+            state = Some(action.update_state(state)?);
+        }
+
+        let new_state = state.ok_or(AssociationError::NotCreated)?;
+
+        // After all the updates in the LogEntry have been processed, add the list of signatures to the state
+        // so that the signatures can not be re-used in subsequent updates
+        Ok(new_state.add_seen_signatures(self.signatures()))
+    }
+
+    fn signatures(&self) -> Vec<Vec<u8>> {
+        self.actions
+            .iter()
+            .flat_map(|action| action.signatures())
+            .collect()
+    }
+}
+
+// Ensure that the type of signature matches the new entity's role.
+pub fn allowed_signature_for_kind(role: &MemberKind, signature_kind: &SignatureKind) -> bool {
+    match role {
+        MemberKind::Address => match signature_kind {
+            SignatureKind::Erc191 => true,
+            SignatureKind::Erc1271 => true,
+            SignatureKind::InstallationKey => false,
+            SignatureKind::LegacyDelegated => true,
+        },
+        MemberKind::Installation => match signature_kind {
+            SignatureKind::Erc191 => false,
+            SignatureKind::Erc1271 => false,
+            SignatureKind::InstallationKey => true,
+            SignatureKind::LegacyDelegated => false,
+        },
+    }
+}
@@ -0,0 +1,12 @@
+use sha2::{Digest, Sha256};
+
+pub fn sha256_string(input: String) -> String {
+    let mut hasher = Sha256::new();
+    hasher.update(input.as_bytes());
+    let result = hasher.finalize();
+    format!("{:x}", result)
+}
+
+pub fn generate_xid(account_address: &String, nonce: &u64) -> String {
+    sha256_string(format!("{}{}", account_address, nonce))
+}