Add commitment index to key transparency monitor requests

service/src/main/java/org/whispersystems/textsecuregcm/controllers/KeyTransparencyController.java

@@ -168,19 +168,18 @@ public class KeyTransparencyController {
     try {
       final List<MonitorKey> monitorKeys = new ArrayList<>(List.of(
           createMonitorKey(getFullSearchKeyByteString(ACI_PREFIX, request.aci().value().toCompactByteArray()),
-              request.aci().positions())
+              request.aci().positions(),
+              ByteString.copyFrom(request.aci().commitmentIndex()))
       ));
 
       request.usernameHash().ifPresent(usernameHash ->
           monitorKeys.add(createMonitorKey(getFullSearchKeyByteString(USERNAME_PREFIX, usernameHash.value()),
-              usernameHash.positions()))
-      );
+              usernameHash.positions(), ByteString.copyFrom(usernameHash.commitmentIndex()))));
 
       request.e164().ifPresent(e164 ->
           monitorKeys.add(
               createMonitorKey(getFullSearchKeyByteString(E164_PREFIX, e164.value().getBytes(StandardCharsets.UTF_8)),
-                  e164.positions()))
-      );
+                  e164.positions(), ByteString.copyFrom(e164.commitmentIndex()))));
 
       return new KeyTransparencyMonitorResponse(keyTransparencyServiceClient.monitor(
           monitorKeys,
@@ -252,10 +251,12 @@ public class KeyTransparencyController {
     throw new ServerErrorException(Response.Status.INTERNAL_SERVER_ERROR, unwrapped);
   }
 
-  private static MonitorKey createMonitorKey(final ByteString fullSearchKey, final List<Long> positions) {
+  private static MonitorKey createMonitorKey(final ByteString fullSearchKey, final List<Long> positions,
+      final ByteString commitmentIndex) {
     return MonitorKey.newBuilder()
         .setSearchKey(fullSearchKey)
         .addAllEntries(positions)
+        .setCommitmentIndex(commitmentIndex)
         .build();
   }
 

service/src/main/java/org/whispersystems/textsecuregcm/entities/KeyTransparencyMonitorRequest.java

@@ -17,6 +17,7 @@ import javax.validation.constraints.NotNull;
 import javax.validation.constraints.Positive;
 import org.whispersystems.textsecuregcm.identity.AciServiceIdentifier;
 import org.whispersystems.textsecuregcm.util.ByteArrayBase64UrlAdapter;
+import org.whispersystems.textsecuregcm.util.ExactlySize;
 import org.whispersystems.textsecuregcm.util.ServiceIdentifierAdapter;
 
 public record KeyTransparencyMonitorRequest(
@@ -53,7 +54,14 @@ public record KeyTransparencyMonitorRequest(
       @Valid
       @NotNull
       @NotEmpty
-      List<@Positive Long> positions
+      List<@Positive Long> positions,
+
+      @Schema(description = "The commitment index derived from a previous search request")
+      @JsonSerialize(using = ByteArrayBase64UrlAdapter.Serializing.class)
+      @JsonDeserialize(using = ByteArrayBase64UrlAdapter.Deserializing.class)
+      @NotNull
+      @ExactlySize(32)
+      byte[] commitmentIndex
   ) {}
 
   public record E164Monitor(
@@ -65,7 +73,14 @@ public record KeyTransparencyMonitorRequest(
       @NotNull
       @NotEmpty
       @Valid
-      List<@Positive Long> positions
+      List<@Positive Long> positions,
+
+      @Schema(description = "The commitment index derived from a previous search or monitor request")
+      @JsonSerialize(using = ByteArrayBase64UrlAdapter.Serializing.class)
+      @JsonDeserialize(using = ByteArrayBase64UrlAdapter.Deserializing.class)
+      @NotNull
+      @ExactlySize(32)
+      byte[] commitmentIndex
   ) {}
 
   public record UsernameHashMonitor(
@@ -80,6 +95,13 @@ public record KeyTransparencyMonitorRequest(
       @Schema(description = "A list of log tree positions maintained by the client for the username hash search key.")
       @NotNull
       @NotEmpty
-      @Valid List<@Positive Long> positions
+      @Valid List<@Positive Long> positions,
+
+      @Schema(description = "The commitment index derived from a previous search or monitor request")
+      @JsonSerialize(using = ByteArrayBase64UrlAdapter.Serializing.class)
+      @JsonDeserialize(using = ByteArrayBase64UrlAdapter.Deserializing.class)
+      @NotNull
+      @ExactlySize(32)
+      byte[] commitmentIndex
   ) {}
 }