robert-zaremba
commented
3 years ago I updated the issue to provide more details about tendermint.PubKey interface. In general it's good to compose interfaces if possible. Possible means that we agree with method interface. And it's usually better to have that compatibility.
Here the issue is message serialization.
While updating the description and describing the problem of VerifySignature method interface, I reflected a new idea.
Using concrete types for signature verification
I like the simplicity of the tendermints' interface: VerifySignature(msg []byte, sig []byte) bool. In fact this is how I think about signature verification: here are the bytes, and here is the signature for the bytes. This is exactly what I'm also thinking when signing something: only bytes and a public key.
In the OP, we propose a functional argument, which must be a closure:
type GetSignBytesFunc func(mode signing.SignMode) ([]byte, error)This function doesn't take a message to serialize it. It must have it in it's context. So, the VerifySignature here expects a message / bytes extractor function.
Instead, maybe we can store the signing.SignMode logic in a concrete types, or a wrapper, and use standard the io.Reader interface?
Or maybe we can have a wrapper, and always call it before calling VerifySignature and be compatible with the tendermint interface?
VerifySignature(objWithEmbeddedCodecKnowledge.GetBytes(mode), sig)
amaury1093
clevinson
Summary
The PubKey refactor that has been going on for 0.40 left some follow-up work to be cleaned up.
Problem Definition
https://github.com/cosmos/cosmos-sdk/issues/6886#issuecomment-694111568 was the fastest way to get Any PubKeys working for 0.40. However, there are some clean-ups tasks to be done.
Proposal
This are small bits that we discussed in issues, PRs, offline chats. Putting them here so we're able to track them.
[x] Remove the old
message PublicKeyproto oneof (@blushi) https://github.com/cosmos/cosmos-sdk/pull/7390[x] Decouple the SDK from Tendermint's
PubKeyinterface. Replacetmcrypto.PubKeyby our owncryptotypes.PubKey(@blushi) #7419The scope of this item is to not use
tmcrypto.PubKeythroughout the codebase (except when we interface with TM methods), and use our owncryptotypes.PubKeyeverywhere. Note:cryptotypes.PubKeymay or may not itself extendtmcrypto.PubKey, see next point.[ ] Rethink our own
PubKeyinterface. e.g.VerifySignatureright now doesn't make sense . There is only one place where we don't agree with thetendermint.PubKeyinterface: theVerifySingaturemethod. This is the Tendermint definition:The
msg []bytesis serialized with a specific serialization method. Unfortunately, we don't have a single serialization in Cosmos-SDK. We relay on both legacy amino and the protobuf serialization. Hence we need to know what serialization was used when the signature was created, and only then we can serialize the message to validate the signature.[x] #7447 Remove Bech32 encoding of PubKeys.
[ ] Should MarshalYAML return
[]byteinstead ofstring?[ ] Shoud
PrivKeyLedgerSecp256k1be a proto message? In order to remove theLedgerPrivKeyinterface. https://github.com/cosmos/cosmos-sdk/pull/7419#discussion_r519040559[ ] wrapper.GetPubKeys silently ignore unpacked keys #8129
cc @blushi Feel free to add more items that you can think of.
For Admin Use