feat: ledger blind sign #6264

brianp · 2024-04-10T10:54:43Z

Description

Add key manager support to create transactions on chain where a ledger device is required to spend outputs

Motivation and Context

Cold storage support

How Has This Been Tested?

Manual localnet testing

Breaking Changes

None
Requires data directory on base node to be deleted
Requires hard fork
Other - Please specify

This PR changes transaction hash mismatches which will invlaidate previous utxo's.

github-actions · 2024-04-10T11:11:16Z

Test Results (CI)

3 files 120 suites 40m 56s ⏱️
1 278 tests 1 278 ✅ 0 💤 0 ❌
3 826 runs 3 826 ✅ 0 💤 0 ❌

Results for commit 147d5b9.

♻️ This comment has been updated with latest results.

github-actions · 2024-04-10T11:42:21Z

Test Results (Integration tests)

2 files + 2 11 suites +11 40m 9s ⏱️ + 40m 9s
33 tests +33 30 ✅ +30 0 💤 ±0 3 ❌ +3
38 runs +38 31 ✅ +31 0 💤 ±0 7 ❌ +7

For more details on these failures, see this check.

Results for commit 147d5b9. ± Comparison against base commit 9920916.

♻️ This comment has been updated with latest results.

SWvheerden

Looking good, small comments, then we can merge this

applications/minotari_ledger_wallet/wallet/Cargo.toml

base_layer/wallet/tests/transaction_service_tests/storage.rs

base_layer/wallet/tests/output_manager_service_tests/service.rs

base_layer/key_manager/src/key_manager_service/service.rs

base_layer/core/tests/tests/node_comms_interface.rs

hansieodendaal

Looks really good, just some pertinent comments to be addressed in this PR or alternatively new issues to be created to address the comments after this PR is merged please.

applications/minotari_ledger_wallet/comms/src/ledger_wallet.rs

applications/minotari_console_wallet/src/init/mod.rs

applications/minotari_ledger_wallet/wallet/src/utils.rs

applications/minotari_ledger_wallet/wallet/src/handlers/get_script_signature.rs

applications/minotari_ledger_wallet/wallet/src/handlers/get_script_offset.rs

applications/minotari_ledger_wallet/wallet/src/handlers/get_metadata_signature.rs

applications/minotari_console_wallet/src/lib.rs

brianp · 2024-05-15T22:27:45Z

All changes made, or suggestions noted. The zeroizing caused me a bit of grief up front but it's all working now.

I've ensured issues are on the board for stuff like ensuring the correct ledger device is selected, checking app version etc. I knew we'd need to do these things but figured it might be best to start implementing in smaller more manageable PRs.

SWvheerden

Missed one private key for zeroing

applications/minotari_ledger_wallet/wallet/src/handlers/get_metadata_signature.rs

hansieodendaal

utACK

hansieodendaal · 2024-05-16T08:00:47Z

applications/minotari_ledger_wallet/wallet/src/handlers/get_metadata_signature.rs

+    let sender_offset_private_key = Zeroizing::new(derive_from_bip32_key(
+        account,
+        sender_offset_key_index,
+        KeyType::SenderOffset,
+    )?);


Lets fix after merge, we do not need the double Zeroizing here

Ahh yeah. That was a mistake. I'll tidy it in the next PR.

ghpbot-tari-project added P-acks_required Process - Requires more ACKs or utACKs P-reviews_required Process - Requires a review from a lead maintainer to be merged labels Apr 10, 2024

brianp force-pushed the ledger-blind-sign branch from 41c1c99 to f86d7e3 Compare April 23, 2024 09:18

ghpbot-tari-project added the CR-too_long Changes Requested - Your PR is too long label Apr 23, 2024

brianp force-pushed the ledger-blind-sign branch 2 times, most recently from accf6a0 to 70c17ab Compare April 29, 2024 09:15

brianp force-pushed the ledger-blind-sign branch from 3960fe4 to f0fcfef Compare May 6, 2024 10:18

brianp force-pushed the ledger-blind-sign branch 4 times, most recently from 94a5f07 to 2c50be5 Compare May 14, 2024 00:48

brianp changed the title ~~WIP: ledger blind sign~~ feat: ledger blind sign May 14, 2024

SWvheerden marked this pull request as ready for review May 14, 2024 04:46

SWvheerden requested a review from a team as a code owner May 14, 2024 04:46

brianp and others added 14 commits May 14, 2024 19:29

Update ledger wallet app scaffold

54cf181

Trim down the ledger app to needed functions

9a9644e

update payload to ledger script key generation

9f831bb

Only use ledger for outputs that have managed keys

1f3ebc4

Moved ledger device app to new folder

36418e5

Add ledger interface library

946e38f

Add public key function to ledger

860a1d2

fetch the script key pair for derivation

2b0b10d

change script key derivation

6608570

Make the software wallet use priv and pub key types

069f963

Code fork for script signing on the ledger

5a77d23

Allow the transport to be reused

9bd7b88

Generate the ComAndPubSig entirely on the ledger

70b1a18

derive script key (#5)

8f6b3ad

SWvheerden and others added 17 commits May 14, 2024 19:29

some change (#6)

50e1180

Enhance public none fetching and fix bugs

197c74d

refactoring

a85ab69

debugging

4e41344

More debugging

caf235e

fix spelling

539635e

pub key derive

9f4b028

Get proper account on script signature

c1d01d6

Validate and correct the domain hashers

a30a182

Fix instructions issue to script offset function

a227d0d

Remove debug lines

f41d5ec

Fix clippy warnings and conditional compilation

6aa5336

machete warnings

8cbfe10

Clean up ledger code debugs

11edae5

Simplify the matching of public key fetching

16648ce

Remove panic for proper error

ee4f071

Minor refactoring for readability and convention

6a814ec

brianp force-pushed the ledger-blind-sign branch from 064329a to 6a814ec Compare May 15, 2024 02:29

SWvheerden reviewed May 15, 2024

View reviewed changes

hansieodendaal requested changes May 15, 2024

View reviewed changes

brianp added 4 commits May 15, 2024 14:52

Upgrade tari-crypto to 0.20.1

aa9cae0

Zeroize all the secret keys

5a04e0a

Add additional custom error type

43a1df5

update tests

147d5b9

brianp force-pushed the ledger-blind-sign branch from 1c43e83 to 147d5b9 Compare May 15, 2024 22:22

SWvheerden reviewed May 16, 2024

View reviewed changes

applications/minotari_ledger_wallet/wallet/src/handlers/get_metadata_signature.rs Show resolved Hide resolved

hansieodendaal approved these changes May 16, 2024

View reviewed changes

SWvheerden approved these changes May 16, 2024

View reviewed changes

SWvheerden merged commit 301ea00 into tari-project:development May 16, 2024
14 of 16 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: ledger blind sign #6264

feat: ledger blind sign #6264

brianp commented Apr 10, 2024 •

edited

Loading

github-actions bot commented Apr 10, 2024 •

edited

Loading

github-actions bot commented Apr 10, 2024 •

edited

Loading

SWvheerden left a comment

hansieodendaal left a comment

brianp commented May 15, 2024

SWvheerden left a comment

hansieodendaal left a comment

hansieodendaal May 16, 2024

brianp May 16, 2024

feat: ledger blind sign #6264

feat: ledger blind sign #6264

Conversation

brianp commented Apr 10, 2024 • edited Loading

Description

Motivation and Context

How Has This Been Tested?

Breaking Changes

github-actions bot commented Apr 10, 2024 • edited Loading

Test Results (CI)

github-actions bot commented Apr 10, 2024 • edited Loading

Test Results (Integration tests)

SWvheerden left a comment

Choose a reason for hiding this comment

hansieodendaal left a comment

Choose a reason for hiding this comment

brianp commented May 15, 2024

SWvheerden left a comment

Choose a reason for hiding this comment

hansieodendaal left a comment

Choose a reason for hiding this comment

hansieodendaal May 16, 2024

Choose a reason for hiding this comment

brianp May 16, 2024

Choose a reason for hiding this comment

brianp commented Apr 10, 2024 •

edited

Loading

github-actions bot commented Apr 10, 2024 •

edited

Loading

github-actions bot commented Apr 10, 2024 •

edited

Loading