feat: custom get signers #16340
feat: custom get signers #16340
Conversation
…6112-custom-signers
…6112-custom-signers
kocubinski
force-pushed
the
kocubinski/16112-custom-signers
branch
from
91a9688 to
d8022de
Compare
github-prbot
requested review from
a team,
alexanderbez and
JeancarloBarrios
and removed request for
a team
x/tx/signing/context.go
Outdated
| // NOTE: if a custom signers function is defined, the message type used to | ||
| // define this function MUST be the concrete type passed to GetSigners, | ||
| // otherwise a runtime type error will occur. | ||
| func DefineCustomGetSigners[T proto.Message](ctx *Context, getSigners func(T) ([][]byte, error)) { |
There was a problem hiding this comment.
I wonder if this should be done when constructing a context by setting options. We shouldn't really allow this after initialization
There was a problem hiding this comment.
I explored how to do this with depinject, with CustomGetSignersFunc as a ManyPerContainerType, but couldn't come up with anything too good. Maybe we can change the API for DefineCustomGetSigners. I think we'd need to drop the Generic and possibly pass the type name in.
There was a problem hiding this comment.
Yeah we can refactor the API. If that sounds like the right direction, let's first figure out how this works with the signing context options struct and then we can figure out depinject
| @@ -113,12 +114,6 @@ func ProvideApp() ( | |||
| return nil, nil, nil, nil, nil, nil, nil, nil, nil, err | |||
| } | |||
|
|
|||
| // validate the signing context to make sure that messages are properly configured | |||
| // with cosmos.msg.v1.signer | |||
| if err := interfaceRegistry.SigningContext().Validate(); err != nil { | |||
There was a problem hiding this comment.
With current app wiring and depinject, I couldn't find anyway to call Validate after an invoker is called. If it's called before the app will error during start up.
There was a problem hiding this comment.
Interesting... can we call validate in an invoker?
There was a problem hiding this comment.
Yes but DefineCustomGetSigners is also called in an invoker and order matters, right?
| // without a custom signer we should get an error | ||
| require.ErrorContains(t, err, "use DefineCustomGetSigners to specify") | ||
|
|
||
| // create a new context with a custom signer |
There was a problem hiding this comment.
Just curious, can you overwrite the proto annotation by defining a custom get signer?
Can we have a test with the expected result? (right now I am not sure what is the expected/wanted behavior)
There was a problem hiding this comment.
That's a good point. I think the annotation would override the custom signer but I'll definitely make a test for it.
| simtestutil "github.com/cosmos/cosmos-sdk/testutil/sims" | ||
| ) | ||
|
|
||
| func ProvideCustomGetSigners() signing.CustomGetSigner { |
There was a problem hiding this comment.
nice, it will be useful if this could be displayed in the docs ref: #16294
| }, | ||
| } | ||
| for _, signer := range customGetSigners { | ||
| signingOptions.DefineCustomGetSigners(signer.MsgType, signer.Fn) |
There was a problem hiding this comment.
This code does nothing I'm pretty sure. The receiver is a struct not a pointer
There was a problem hiding this comment.
This code does something, registers a custom signer fn. If you'd like to prove to this yourself, comment it out and run TestDefineCustomGetSigners in the x/tx integration tests.
There was a problem hiding this comment.
Yea. I'm doing an iteration and copy of customGetSignerFuncs in in construction of signing.Context so that changing options after construction won't alter context.
No it doesn't, only pulsar messages. I'll explore gogo support a bit more.
Right now I think the custom signer will be (silently) ignored in favor of the proto annotation. Do you think we should error though? Or just warn.
Line 182 in 9e7a2bb |
…6112-custom-signers
One approach could be to move the Any unpacking up to the signing context and then allow specifying the message type when registering custom get signers.
I think we should expect an annotation or custom signer but not both |
I'm leaning towards just not supporting gogo here. From what I can tell bera generating pulsar types so this shouldn't be a issue. |
…6112-custom-signers
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| for k := range options.CustomGetSigners { | ||
| customGetSignerFuncs[k] = options.CustomGetSigners[k] | ||
| } |
Check warning
Code scanning / CodeQL
Iteration over map
Great! |
| // ValidatorAddressCodec is the validator address codec to use for the registry. It is required. | ||
| ValidatorAddressCodec address.Codec | ||
| // SigningOptions are the signing options to use for the registry. | ||
| SigningOptions signing.Options |
There was a problem hiding this comment.
Still we just require a signing context to be passed in? Seems like signing options already takes proto files already so there's some redundancy here
There was a problem hiding this comment.
We could but signing.Options permits an nil ProtoFileResolver while interface registry does not. What do you think we ought to do?
There was a problem hiding this comment.
Maybe just enforce the check at the interface registry level, or allow a nil resolver and default to hybrid resolver. But duplicated fields in both options structures might be confusing right?
| }, | ||
| } | ||
| for _, signer := range customGetSigners { | ||
| signingOptions.DefineCustomGetSigners(signer.MsgType, signer.Fn) |
|
@kocubinski could i pick your brain on this feature this week, trying to document it but feels a bit odd in how we do it |
Definitely |
Description
Closes: #16112
Introduces an API function in x/tx/signing
DefineCustomGetSignerswhich can be called to register arbitrary signer fetching logic. Example registration with depinject via an invoker is shown in integration tests.Author Checklist
All items are required. Please add a note to the item if the item is not applicable and
please add links to any relevant follow up issues.
I have...
!to the type prefix if API or client breaking changeCHANGELOG.mdReviewers Checklist
All items are required. Please add a note if the item is not applicable and please add
your handle next to the items reviewed if you only reviewed selected items.
I have...
!in the type prefix if API or client breaking change