Skip to content

Cubesigner keychain #4277

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 17 commits into
base: master
Choose a base branch
from
Open

Cubesigner keychain #4277

wants to merge 17 commits into from

Conversation

felipemadero
Copy link
Contributor

@felipemadero felipemadero commented Sep 15, 2025
edited
Loading

Why this should be merged

This PR integrates CubeSigner SDK support into AvalancheGo.

How this works

The implementation introduces several key components:

  • CubeSigner Keychain (utils/crypto/keychain/cubesigner/): A new keychain implementation that communicates with CubeSigner's remote signing service, implementing both the standard Keychain and EthKeychain interfaces.
  • Extended Keychain Interface: The core keychain interface now includes SigningOption parameters to provide essential context (network ID, chain alias) to signers, enabling CubeSigner to perform context-aware signing.
  • Wallet Integration: Updated P-chain and X-chain wallet signers to pass network ID and chain alias context required for proper CubeSigner operation.

How this was tested

  • Unit Tests: coverage for CubeSigner keychain with mock implementations
  • Example test programs on fuji for creating a subnet and exporting P->C and C->P

Need to be documented in RELEASES.md?

@felipemadero
Add CubeSigner keychain integration
03a86c3 
Integrate CubeSigner SDK for remote key signing.

Key changes:
- Add CubeSigner SDK dependency and keychain implementations
- Extend keychain interface with SigningOption so as to provide tx context to cubesigner
- Move EthKeychain interface to the same package of the Keychain interface
- Enable forced hash signing with new wallet option
@felipemadero
Add key type validation to processKey function to ensure only support…
89fa84d 
…ed │

secp256k1 key types are accepted. Fix test cases and remove obsolete                                                                                                  │
ledger keychain files from main package.                                                                                                                              │
                                                                                                                                                                       │
Key changes:                                                                                                                                                          │
- Add validation for SecpAvaAddr, SecpAvaTestAddr, SecpEthAddr key types                                                                                              │
- Fix TestCubesignerKeychain_GetEth to test non-existent address handling                                                                                             │
- Remove duplicate ledger keychain implementation files
@Copilot Copilot AI review requested due to automatic review settings September 15, 2025 16:19
Copilot
Copilot AI reviewed Sep 15, 2025
View reviewed changes
Copy link
Contributor

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR integrates CubeSigner SDK support into AvalancheGo, maintaining full backward compatibility while extending the keychain interface to support additional signing backends. The implementation introduces context-aware signing and refactors ledger-specific functionality.

  • Adds CubeSigner keychain implementation for remote signing service integration
  • Extends keychain interface with signing options to provide transaction context (network ID, chain alias)
  • Refactors ledger functionality to a dedicated package and updates wallet signers to pass network/chain context

Reviewed Changes

Copilot reviewed 28 out of 29 changed files in this pull request and generated 4 comments.

Show a summary per file
File Description
wallet/subnet/primary/wallet.go Updates signer constructors to pass network ID for context-aware signing
wallet/chain/x/signer/visitor.go Implements signing options and force SignHash option for transaction signing
wallet/chain/p/signer/visitor.go Adds network ID context and force SignHash support to P-chain signing
utils/crypto/keychain/cubesigner/ New CubeSigner keychain implementation with client abstraction and tests
utils/crypto/keychain/ledger/ Refactored ledger keychain moved to dedicated package with updated interfaces
utils/crypto/keychain/signing_options.go New signing options framework for chain and network context
Comments suppressed due to low confidence (1)

utils/crypto/keychain/cubesigner/cubesigner_keychain.go:1

  • Remove the extra blank line to maintain consistent formatting.
// Copyright (C) 2019-2024, Ava Labs, Inc. All rights reserved.

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@felipemadero
Update copyright headers to 2019-2025
dde6d27 
Update copyright year range from 2019-2024 to 2019-2025 across all
files modified in the CubeSigner keychain integration.
@felipemadero
Merge branch 'master' into cubesigner-keychain-on-master
2ba5613
@felipemadero felipemadero changed the title Cubesigner keychain on master Cubesigner keychain Sep 15, 2025
@StephenButtolph StephenButtolph requested review from a team, DracoLi and yacovm and removed request for a team and DracoLi September 16, 2025 20:15
yacovm
yacovm reviewed Sep 18, 2025
View reviewed changes
@felipemadero
Merge branch 'master' into cubesigner-keychain-on-master
0f6dd6a
@felipemadero
Address PR comments
8c47233 
- Remove package name stuttering in CubeSigner and ledger packages
- Renamed CubesignerKeychain to Keychain, ledgerKeychain to KeyChain
- godoc comments to exported types and functions
- Extract hardcoded constants (65, 0x04) with descriptive names
- Update both packages to return concrete types (*KeyChain) for consistency
@felipemadero
Add godoc comments and unit tests for ledger Sign method
158faf1 
- Add godoc comments to all public methods in ledger keychain
- Add unit tests for ledger Sign()
@joshua-kim
Copy link
Contributor

Can we break this PR into individual changes? It seems like there are multiple changes being added within the scope of this PR.

@felipemadero
Fix P chain wallet signer integration
2eb5ee3 
- Update P chain wallet to properly use walletsigner.WithOptions
@felipemadero
Remove force sign hash wallet option to reduce PR scope
0bb65bc 
- Remove forceSignHash functionality from wallet signers
- Keep networkID support essential for CubeSigner keychain
- Restore original ledger keychain implementation location
- Use master's hardcoded signHash values instead of options
- Remove P-chain signer with_options wrapper
- Maintain EthKeychain interface in wallet/chain/c package
- All tests and linting pass with reduced scope
@felipemadero
Copy link
Contributor Author

Can we break this PR into individual changes? It seems like there are multiple changes being added within the scope of this PR.

ok the scope of this one has been reduced cc @StephenButtolph

@felipemadero
Copy link
Contributor Author

Can we break this PR into individual changes? It seems like there are multiple changes being added within the scope of this PR.

ok the scope of this one has been reduced cc @StephenButtolph

I made #4337 #4339 #4344 with the parts I removed from this one cc @joshua-kim @yacovm @sukantoraymond @StephenButtolph

@yacovm
Copy link
Contributor

yacovm commented Sep 25, 2025

Can we break this PR into individual changes? It seems like there are multiple changes being added within the scope of this PR.

ok the scope of this one has been reduced cc @StephenButtolph

I made #4337 #4339 #4344 with the parts I removed from this one cc @joshua-kim @yacovm @sukantoraymond @StephenButtolph

I am a bit confused... shouldn't you rebase the PRs one on top of the other and this PR last? Otherwise you'll have conflicts, am I wrong?

@felipemadero
Copy link
Contributor Author

Can we break this PR into individual changes? It seems like there are multiple changes being added within the scope of this PR.

ok the scope of this one has been reduced cc @StephenButtolph

I made #4337 #4339 #4344 with the parts I removed from this one cc @joshua-kim @yacovm @sukantoraymond @StephenButtolph

I am a bit confused... shouldn't you rebase the PRs one on top of the other and this PR last? Otherwise you'll have conflicts, am I wrong?

This time I opted to present independent PRs so they can be separately reviewed and merged into master. Yes, I expect some conflicts when merging later PRs. This approach allows for parallel review and gives reviewers more focused context for each change, rather than having to understand the dependency chain.

@joshua-kim joshua-kim moved this to Ready 🚦 in avalanchego Sep 29, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Copilot left review comments

@yacovm yacovm yacovm approved these changes

@sukantoraymond sukantoraymond sukantoraymond approved these changes

@StephenButtolph StephenButtolph Awaiting requested review from StephenButtolph StephenButtolph is a code owner

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
avalanchego
Status: Ready 🚦
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@felipemadero @joshua-kim @yacovm @sukantoraymond