Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Web3signer: persistent public keys #13682

Merged
merged 119 commits into from
Jun 26, 2024
Merged

Web3signer: persistent public keys #13682

merged 119 commits into from
Jun 26, 2024

Conversation

james-prysm
Copy link
Contributor

@james-prysm james-prysm commented Mar 1, 2024
edited
Loading

What type of PR is this?

Feature

What does this PR do? Why is it needed?

currently prysm doesn't provide a way to persist api changes for web3signer keys using things like add or remove remote keys.

This pr provides a new flag --validators-external-signer-key-file=/path/to/keyfile.txt where you can provide a list of your public keys in hex format on each line to be used with your web3signer. note,hex keys will require a 0xprefix. if this flag is provided all keys provided via the validators-external-signer-public-keys can also be saved if there are calls to the api. updating the file directly will also update the keys used without restart of the validator client( but caution as this part is still experimental)

Which issues(s) does this PR fix?

Fixes #9994, #12373

Other notes for review

@james-prysm james-prysm added Web3Signer Web3Signer related tasks API Api related tasks UX cosmetic / user experience related labels Mar 1, 2024
@james-prysm james-prysm mentioned this pull request Mar 4, 2024
Closed
james-prysm and others added 23 commits March 5, 2024 17:10
@james-prysm
Merge branch 'develop' into persistent-web3signer
bba48fc
@james-prysm
Merge branch 'develop' into persistent-web3signer
6cbf248
@james-prysm
Merge branch 'develop' into persistent-web3signer
10d68b6
@james-prysm
wip
7d9dc12
@james-prysm
Merge branch 'develop' into persistent-web3signer
7839c7e
@james-prysm
removing cyclic dependency
8e6e807
@james-prysm
gaz
9a28ce1
@james-prysm
fixes
f593585
@james-prysm
fixing more tests and how files load
41ee265
@james-prysm
Merge branch 'develop' into persistent-web3signer
88dd412
@james-prysm
fixing wallet tests
649b85b
@james-prysm
Merge branch 'develop' into persistent-web3signer
6836cb4
@james-prysm
fixing test
bb0b19f
@james-prysm
updating keymanager tests
79fdecb
@james-prysm
Merge branch 'develop' into persistent-web3signer
195db90
@james-prysm
Merge branch 'develop' into persistent-web3signer
b9fbdc0
@james-prysm
improving how the web3signer keymanager works
164057e
@james-prysm
WIP
aa5e389
@james-prysm
updated keymanager to read from file
34bd671
@james-prysm
gaz
cb8d1a9
@james-prysm
reuse readkeyfile function and add in duplicate keys check
9fe695a
@james-prysm
adding in locks to increase safety
e72c7ee
@james-prysm
Merge branch 'develop' into persistent-web3signer
769c660
rkapka
rkapka reviewed Jun 25, 2024
View reviewed changes
io/file/fileutil_test.go Outdated
Comment on lines 586 to 591
{
name: "overwrite existing file",
lines: []string{"line1", "line2"},
filename: "testfile2.txt",
wantErr: false,
},
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Doesn't this test do exactly the same as the first one?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

need to fix this test

validator/keymanager/remote-web3signer/internal/client.go Outdated Show resolved Hide resolved
validator/keymanager/remote-web3signer/keymanager.go Outdated Show resolved Hide resolved
validator/keymanager/remote-web3signer/keymanager.go Outdated Show resolved Hide resolved
validator/keymanager/remote-web3signer/keymanager.go Outdated Show resolved Hide resolved
validator/keymanager/remote-web3signer/keymanager.go Outdated
return nil
}

func (km *Keymanager) areEmptyPublicKeys() bool {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

arePublicKeysEmpty sounds better in my opinion

validator/keymanager/remote-web3signer/keymanager.go
return len(km.providedPublicKeys) == 0
}

func (km *Keymanager) refreshRemoteKeysFromFileChanges(ctx context.Context) error {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Most of the logic is low-level logic independent of remote signer keys. If we move it to io/file, then we will be able to reuse such file watching in other places.

validator/keymanager/remote-web3signer/keymanager.go Outdated Show resolved Hide resolved
validator/keymanager/remote-web3signer/keymanager.go Outdated Show resolved Hide resolved
validator/keymanager/remote-web3signer/keymanager.go Outdated Show resolved Hide resolved
james-prysm and others added 12 commits June 25, 2024 10:59
@james-prysm @rkapka
Update validator/keymanager/remote-web3signer/internal/client.go
eb99087 
Co-authored-by: Radosław Kapka <rkapka@wp.pl>
@james-prysm @rkapka
Update validator/keymanager/remote-web3signer/keymanager.go
7e188f3 
Co-authored-by: Radosław Kapka <rkapka@wp.pl>
@james-prysm @rkapka
Update validator/keymanager/remote-web3signer/keymanager.go
c506d8c 
Co-authored-by: Radosław Kapka <rkapka@wp.pl>
@james-prysm @rkapka
Update validator/keymanager/remote-web3signer/keymanager.go
d759d88 
Co-authored-by: Radosław Kapka <rkapka@wp.pl>
@james-prysm @rkapka
Update validator/keymanager/remote-web3signer/keymanager.go
9b5b78b 
Co-authored-by: Radosław Kapka <rkapka@wp.pl>
@james-prysm @rkapka
Update validator/keymanager/remote-web3signer/keymanager.go
698889e 
Co-authored-by: Radosław Kapka <rkapka@wp.pl>
@james-prysm @rkapka
Update validator/keymanager/remote-web3signer/keymanager.go
d76793d 
Co-authored-by: Radosław Kapka <rkapka@wp.pl>
@james-prysm @rkapka
Update validator/keymanager/remote-web3signer/keymanager.go
ac4b063 
Co-authored-by: Radosław Kapka <rkapka@wp.pl>
@james-prysm
Merge branch 'develop' into persistent-web3signer
70d279a
@james-prysm
addressing more review feedback and linting
fe90f8f
@james-prysm
fixing tests
1078f47
@james-prysm
Merge branch 'develop' into persistent-web3signer
0470257
rkapka
rkapka reviewed Jun 26, 2024
View reviewed changes
validator/keymanager/remote-web3signer/keymanager.go
}
return errors.Wrap(err, "could not watch for file changes")
case <-ctx.Done():
return nil
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We probably want to log something here

@james-prysm james-prysm added this pull request to the merge queue Jun 26, 2024
Merged via the queue into develop with commit 539b981 Jun 26, 2024
16 of 17 checks passed
@james-prysm james-prysm deleted the persistent-web3signer branch June 26, 2024 15:43
@james-prysm james-prysm mentioned this pull request Sep 5, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@saolyn saolyn saolyn left review comments

@nalepae nalepae nalepae approved these changes

@rkapka rkapka rkapka approved these changes

@terencechain terencechain Awaiting requested review from terencechain terencechain is a code owner automatically assigned from prysmaticlabs/core-team

@prestonvanloon prestonvanloon Awaiting requested review from prestonvanloon

@kasey kasey Awaiting requested review from kasey

Assignees
No one assigned
Labels
API Api related tasks UX cosmetic / user experience related Web3Signer Web3Signer related tasks
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[Tracking] - Web3Signer capabilities for Prysm
6 participants
@james-prysm @nalepae @kasey @prestonvanloon @saolyn @rkapka