Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feat/os keychain followup #1770

Open
wants to merge 14 commits into
base: feat/os_keychain
Choose a base branch
from
Open

Feat/os keychain followup #1770

wants to merge 14 commits into from

Conversation

elizabethengelman
Copy link
Contributor

@elizabethengelman elizabethengelman commented Dec 2, 2024
edited
Loading

What

This PR is based on #1703 and adds some additional compatibility with the secure store like keys rm and keys add.

  • keys rm
  • keys add
  • manual test on Mac OS
    • add the key: cargo run keys add --secure-store --entry-name alice alice
    • make sure we can get the address from the new key: cargo run keys address alice
    • make sure we can sign & send with the new key:
        stello contract deploy --wasm target/test-wasms/hello_world.wasm  --build-only --network testnet --source alice | \
    stello tx simulate --network testnet --source alice | \
    stello tx sign --network testnet --sign-with-key alice | \
    stello tx send --network testnet
    • remove the key: stello keys rm alice
    • make sure it is no longer in the list or the keychain
  • manual test on Linux
    • add the key: cargo run keys add --secure-store --entry-name alice alice
    • make sure we can get the address from the new key: cargo run keys address alice
    • make sure we can sign & send with the new key:
        stello contract deploy --wasm target/test-wasms/hello_world.wasm  --build-only --network testnet --source alice | \
    stello tx simulate --network testnet --source alice | \
    stello tx sign --network testnet --sign-with-key alice | \
    stello tx send --network testnet
    • remove the key: stello keys rm alice
    • make sure it is no longer in the list or the keychain
  • manual test on Windows
    • add the key: cargo run keys add --secure-store --entry-name alice alice
    • make sure we can get the address from the new key: cargo run keys address alice
    • make sure we can sign & send with the new key:
        stello contract deploy --wasm target/test-wasms/hello_world.wasm  --build-only --network testnet --source alice | \
    stello tx simulate --network testnet --source alice | \
    stello tx sign --network testnet --sign-with-key alice | \
    stello tx send --network testnet
    • remove the key: stello keys rm alice
    • make sure it is no longer in the list or the keychain

Why

I wanted to keep #1703 from getting too big so it was easier to review.

Known limitations

[TODO or N/A]

@elizabethengelman elizabethengelman mentioned this pull request Dec 2, 2024
Open
34 tasks
@elizabethengelman elizabethengelman force-pushed the feat/os-keychain-followup branch 2 times, most recently from 244508d to a97ccbb Compare December 2, 2024 20:59
@elizabethengelman elizabethengelman force-pushed the feat/os-keychain-followup branch 3 times, most recently from df3543a to 3311a50 Compare December 3, 2024 17:18
@elizabethengelman elizabethengelman force-pushed the feat/os-keychain-followup branch 4 times, most recently from c39bf60 to fe02078 Compare December 6, 2024 16:19
@elizabethengelman elizabethengelman marked this pull request as ready for review December 6, 2024 16:58
@elizabethengelman elizabethengelman force-pushed the feat/os-keychain-followup branch from c0bfc66 to f4e2913 Compare December 12, 2024 21:02
@elizabethengelman elizabethengelman force-pushed the feat/os-keychain-followup branch from f4e2913 to 3acc3d0 Compare December 13, 2024 14:31
willemneal
willemneal reviewed Dec 19, 2024
View reviewed changes
Copy link
Member

@willemneal willemneal left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I still need to try this out locally, but correct me if I'm wrong, but it's possible to have the name used in keys add differ from what is used in entry-name?

@elizabethengelman
Copy link
Contributor Author

@willemneal

... it's possible to have the name used in keys add differ from what is used in entry-name?

Good call! Yeah, at the moment, this is possible. It still ends up working because we are saving the value of --entry-name in the <NAME>.toml file, like this: entry_name = "secure_store:org.stellar.cli-<NAME>. And then getting that entry_name from the toml file when accessing the public key, or using the private key.

Though, this may be confusing. 🤔

Instead, we could remove the --entry-name flag, and when adding a new key, require that the key name is the same as the entry name in the OS's secure store. So, this command would change to be: cargo run keys add alice.

But, now I'm starting to wonder if we shouldn't allow users to add keys from the keychain at all. If we do, we'd need to make sure that users add the keys to their secure store with:

  1. the key name prepended with secure_store:org.stellar.cli-
  2. the key saved as a base64 encoded ed25519_dalek::SigningKey

And we could probably do that, but I'm not sure how necessary this feature is. 🤔

@elizabethengelman
Copy link
Contributor Author

Since we are now planning to store the seed phrase instead of the signing key in the OS secure storage, I think that a more useful feature would be to allow a user to add a new key with their seed phrase, which is saved in secure storage instead of in the local file. So the command could look like this:

cargo run keys add <NAME> --secure-store

which would then prompt the user to enter their seed phrase or secret key, as is the default behavior of add:

Type a secret key or 12/24 word seed phrase:
...

elizabethengelman
elizabethengelman commented Jan 8, 2025
View reviewed changes
cmd/soroban-cli/src/secure_store.rs
config::{address::KeyName, locator, secret::{self, Secret}}, print::Print, signer::keyring::{self, StellarEntry}
};

pub struct SecureStore {}
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

not sure if this needs its own mod, but wanted to pull the code out where both add and generate could use it

elizabethengelman
elizabethengelman commented Jan 8, 2025
View reviewed changes
cmd/soroban-cli/src/config/secret.rs
let secret_key = read_password()?;

if self.secure_store {
// TODO: if secret_key is a private key, this will return error for now
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Curious to hear what others think - but I think that we'll be able to let user's create new keys that are stored in the OS secure storage, and the values saved can be either private keys or seed phrases. That is not quite supported yet here, but I think its possible. Does that make sense, or is it too confusing?

The only downside i'm seeing right now is that when we add the ability to fetch the seed phrase for a key, we'll need to return an error if the user entered their private key directly.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@willemneal willemneal willemneal left review comments

@leighmcculloch leighmcculloch Awaiting requested review from leighmcculloch

Assignees
No one assigned
Labels
None yet
Projects
DevX
Status: Backlog (Not Ready)
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@elizabethengelman @willemneal