Ethereum address implicit accounts #9969
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
staffik
force-pushed
the
eth-wallet-n-transaction-support
branch
2 times, most recently
from
3981e27 to
3e47bf0
Compare
wacban
reviewed
Oct 20, 2023
staffik
force-pushed
the
eth-wallet-n-transaction-support
branch
from
dd17891 to
36a58be
Compare
staffik
force-pushed
the
eth-wallet-n-transaction-support
branch
3 times, most recently
from
bea1220 to
3b6c95e
Compare
staffik
commented
Oct 26, 2023
| @@ -502,6 +502,7 @@ async fn construction_derive( | |||
| let public_key: near_crypto::PublicKey = (&public_key) | |||
| .try_into() | |||
| .map_err(|_| errors::ErrorKind::InvalidInput("Invalid PublicKey".to_string()))?; | |||
| // TODO Rosetta-RPC: should we handle ETH-implicit accounts here? | |||
There was a problem hiding this comment.
Should we handle ETH-implicit accounts here?
| @@ -127,11 +143,35 @@ impl AccountId { | |||
| /// assert!(!alice_app.is_sub_account_of(&near_tla)); | |||
| /// ``` | |||
| pub fn is_sub_account_of(&self, parent: &AccountId) -> bool { | |||
| // TODO Is it ok that an account could be a sub account of an EthImplicitAccount ? | |||
There was a problem hiding this comment.
Is it ok that an account could be a sub account of an ETH-implicit account?
| ); | ||
| } | ||
|
|
||
| // TODO, does not pass, see `verify_and_charge_transaction(...)` |
There was a problem hiding this comment.
TODO: does not pass because a transaction is replayed.
| ProcessTxResponse::InvalidTx(InvalidTxError::InvalidNonce { .. }) | ||
| ); | ||
| } | ||
|
|
||
| /// Test that duplicate transactions from implicit accounts are not rejected until protocol upgrade. | ||
| // TODO Since we set access key nonce differently when creating ETH-implicit accounts, we cannot repeat the below test for ETH-implicit account ? |
There was a problem hiding this comment.
TODO Verify after we decide on what nonce should be used by user.
| meta_tx_create_implicit_account(near_implicit_test_account()); | ||
| } | ||
|
|
||
| // TODO make the test passes |
| @@ -517,6 +518,7 @@ impl Scope { | |||
| Ok(self.accounts[self.accounts.len() - 1].clone()) | |||
| } | |||
|
|
|||
| // Test-utils/fuzzing: used for runtime tests, make sure everything is ok. | |||
| AccountType::NearImplicitAccount => { | ||
| match key { | ||
| PublicKey::ED25519(k) => SecretKey::ED25519(map_ed25519(k, secret)), | ||
| // TODO Is it true? |
There was a problem hiding this comment.
Does NEAR-implicit account can only have ED25519 access key added?
| AccountType::EthImplicitAccount => { | ||
| match key { | ||
| PublicKey::SECP256K1(_) => map_secp256k1_from_eth_address(account_id, secret), | ||
| // TODO Is it true? |
There was a problem hiding this comment.
Does ETH-implicit account can only have SECP256K1 access key added?
Comment on lines
+120
to
+121
| // TODO Deriving secret keys from ETH addresses reduces potential entropy. | ||
| // However, it is only for the Mirror tool. Are we ok with that? |
There was a problem hiding this comment.
ETH address is 20 bytes length, shorter than public key (32 bytes) from which it is derived.
It reduces potential entropy so it has security impact.
But mirror needs to map ETH address to a new one, and we first need to map the address to a new public key, from which we then derive a new ETH address.
Are we ok with the security impact for the mirror tool?
| let public_key = PublicKey::from_implicit_account(&target_account) | ||
| .expect("must be implicit"); | ||
| nonce_updates.insert((target_account, public_key)); | ||
| // TODO Tools/Mirror: For ETH-implicit account we do not add access key on creation, but make sure it is ok for Mirror. |
staffik
force-pushed
the
eth-wallet-n-transaction-support
branch
from
3b6c95e to
f7b9af7
Compare
|
Moving to #10018, in order to split this PR into several smaller PRs. |
This was referenced Oct 27, 2023
staffik
added a commit
to near/near-account-id-rs
that referenced
this pull request
Nov 3, 2023
Part of near/nearcore#10018. This PR introduces some changes from near/nearcore#9969 laying groundwork for real protocol changes to be done in a separate PR. Summary: - Add `AccountType` enum: `NamedAccount`, `NearImplicitAccount`, or `EthImplicitAccount`. - Parse 40 characters long hexadecimal addresses prefixed with `'0x'` as `EthImplicitAccount`.
github-merge-queue bot
pushed a commit
that referenced
this pull request
Nov 6, 2023
Part of #10018. This PR introduces some changes from #9969 laying groundwork for real protocol changes to be done in a separate PR. Some changes might look redundant (especially `match receiver_id.get_account_type() { ...`) but they will make it easier to read changes done in the next PR. Changes done in [near-account-id 1.0.0-alpha.2](near/near-account-id-rs#14): - Add `AccountType` enum: `NamedAccount`, `NearImplicitAccount`, or `EthImplicitAccount`. - Parse 40 characters long hexadecimal addresses prefixed with `'0x'` as `EthImplicitAccount`. - `AccountType::is_implicit()` returns true for both `NearImplicitAccount` and `EthImplicitAccount`. Summary of this PR: - Bump version of `near-account-id` to `1.0.0-alpha.2`. - Do not use `is_implicit()` for now, as we do not want to treat `EthImplicitAccount` as implicit as for now. - Add `derive_account_id_from_public_key` function that currently only supports `ED25519` key type and returns hex-encoded copy of the key. - Refactor/rename tests a bit.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Part of near/NEPs#498
Approach:
AccountTypeenum:NamedAccount,NearImplicitAccount, orEthImplicitAccount.'0x'asEthImplicitAccount.derive_account_id_from_public_keyfunction that returns'0x' + keccak256(public_key)[12:32].hex()if the public key type isSECP256K1.action_implicit_account_creation_transfer: in case ofEthImplicitAccountcreates an account without an access key. Fees are the same as forNearImplicitAccountminusActionCosts::add_full_access_key.verify_and_charge_transaction: if access key not found fortransaction.public_key, andsigner_idisEthImplicitAccount, andderive_account_id_from_public_key(transaction.public_key) == *signer_id, then add full access key to that account, with nonce equal to the transaction's nonce.tools/mirror:EthImplicitAccountaccount has to be mapped to a new address, for which we know the secret key. Because the new address has to be derived from the secret key, we need to map the existing ETH address to a new secret key first. Because the ETH address length is 20 bytes, and secret key length is 32 bytes, the mapped secret key is less secure.To do:
test_transaction_hash_collision_for_eth_implicit_account_failpasses.meta_tx_create_eth_implicit_accounttest passes.test_trying_to_create_eth_implicit_account_runtimepasses, because it probably shouldn’t.EthImplicitAccountwhen there is no access key added to that account.Nayduck).fuzzingtesting util works correctly (runtime-tester).fork-networktool works correctly.mirrortool works correctly. First discuss the way ETH addresses (and keys) are mapped and whether it is secure enough.