docs: ADR-066 Keyring plugin system

[bizk]

Description

Closes: #14940

Author Checklist

All items are required. Please add a note to the item if the item is not applicable and
please add links to any relevant follow up issues.

I have...

• included the correct type prefix in the PR title
• added ! to the type prefix if API or client breaking change
• targeted the correct branch (see PR Targeting)
• provided a link to the relevant issue or specification
• followed the guidelines for building modules
• included the necessary unit and integration tests
• added a changelog entry to CHANGELOG.md
• included comments for documenting Go code
• updated the relevant documentation or specification
• reviewed "Files changed" and left comments if necessary
• confirmed all CI checks have passed

Reviewers Checklist

All items are required. Please add a note if the item is not applicable and please add
your handle next to the items reviewed if you only reviewed selected items.

I have...

• confirmed the correct type prefix in the PR title
• confirmed ! in the type prefix if API or client breaking change
• confirmed all author checklist items have been addressed
• reviewed state machine logic
• reviewed API design and naming
• reviewed documentation is accurate
• reviewed tests and test coverage
• manually tested (if applicable)

[JulianToledano]

@tac0turtle @alexanderbez updated with definitions!

[facundomedica]

Hello! I think we need (or I need lol) a bit more of context, what's the main reason for developing this? The ADR only mentions that 99designs/keyring is not maintained, but seems a bit orthogonal to a keyring plugin system. So I think it would be good to include in the context section what you've been talking in other discussions and issues.

That's my only comment, it looks great 💯

[JulianToledano]

Hello! I think we need (or I need lol) a bit more of context, what's the main reason for developing this? The ADR only mentions that 99designs/keyring is not maintained, but seems a bit orthogonal to a keyring plugin system. So I think it would be good to include in the context section what you've been talking in other discussions and issues.

That's my only comment, it looks great 💯

Hi! 👋
This work is part of the keyring refactor epic in #14940

The idea behind this is:

1. Provide teams with the possibility of develop new backends in any language. This open the doors to key types defined in other languages rather than go.
2. Remove 99designs/keyring dependency as it is not really under maintenance.

The plugin system will let anyone develop a keyring by fulfilling the gRPC service with all its perks associated and as mentioned in the ADR this is compatible with the current keyring as the main interface has not been modified.

[tac0turtle]

is there anyway to merge these four functions, it seems a bit odd to have the api be this big

[JulianToledano]

The idea is to create an RPC endpoint for each existing keyring method. Alternatively, we can simplify this by having a single method that accepts a message containing all the necessary information to determine the user's intent. For example, we can define the following protobuf message:

message KeyringRequest {
	bool exportPubKey = 1;
	string uid = 2;
	bytes address = 3;
}

Then, within the implementation, we can check if the uid field is empty. If it is, we can search for the record associated with the given address.

[tac0turtle]

I think we should aim to come up with a simple api. The current api either good or bad is fairly large and increases the maintenance burden. Let's try to reduce it to a simplified api. If we need to create a larger struct that is passed that is okay as well.

[tac0turtle]

can these be deduplicated?

Key and Delete seem enough?

[JulianToledano]

Same as the comment above.

[tac0turtle]

why does backend need to be part of this api?

[JulianToledano]

This method is meant to return the plugins' name and version.

[tac0turtle]

why does the node need to know what backend is being used?

[julienrbrt]

could you markdownlint this file?

[julienrbrt]

What is the overhead compared to the current implementation? In terms of latency.

[JulianToledano]

The methods affected by this are those related to key creation and retrieval. Ultimately, it adds one more call to the codec. I'm not sure about the exact latency impact.

[julienrbrt]

Can you precise what is running the service (client or node) and if it is a node, what can is the increased load on the node?

[JulianToledano]

The service will be instantiated whenever a keyring call is required and terminated afterward. I believe this can be managed either by the client or the node.

I think that the overall load won't be significantly impacted, considering that plugins are lightweight and are terminated when they're no longer needed.

[ainhoa-a]

hey @tac0turtle do you have any other comments for us or can we close this?

[tac0turtle]

should we close this and merge it into the other adr?

[bizk]

We had great discussions over this ADR and implemented everything that was requested. Since this is ready, merging it instead of incorporating it as part of the bigger ADR should keep the complexity and scope reduced and allow the rest of the team to focus on other topics that will require more attention.

In the other hand. It could be part of the Crypto ADR since it is aligned with the plans, but personally I don't see more benefits than having everything at one place.

[tac0turtle]

i think it makes sense to have a call about this ADR, i still think the API should be 70% less. The API proposed is the current API, for native it makes sense, but exposing so much will make it harder for users to integrate. What is the minimal API needed to funciton?

[JulianToledano]

What is the minimal API needed to funciton?

I think this would be the minimal API.

service KeyringService {
  rpc Backend(BackendRequest) returns (BackendResponse);
  rpc List(ListRequest) returns (stream ListResponse);
  rpc SupportedAlgorithms(SupportedAlgorithmsRequest) returns (SupportedAlgorithmsReturns);
  rpc Key(KeyRequest ) returns (KeyReturns);
  rpc Delete(DeleteRequest ) returns (DeleteReturns);
  rpc Rename(RenameRequest) returns (RenameReturns);
  rpc NewAccount(NewAccountRequest) returns (NewAccountReturns);
  rpc SaveLedgerKey(SaveLedgerKeyRequest) returns (SaveLedgerKeyReturns);
  rpc SaveOfflineKey(SaveOfflineKeyRequest)returns (SaveOfflineKeyReturns);
  rpc SaveMultisig(SaveMultisigRequest) returns (SaveMultisigReturns);
  rpc Sign(SignRequest) returns (SignReturns);
  rpc ImportKey(ImportKeyRequest) returns (ImportKeyReturns);
  rpc ExportKeyArmor(ExportKeyArmorRequest) returns (ExportKeyArmorReturns);
}

The messages will hold all the information needed to determine the user's intent. Like retrieving a key from an address or an id.

[tac0turtle]

I'm starting to think this is overkill for cli support. keyring is meant for cli, which cosmos is still one of the few frameworks that have native cli. I believe this is because of a lack of client support for anything else. Id propose we rewrite the current keyring to be better maintainable and easier to integrate with autocli. This way it keeps the design simple and pushes users to use a client based frontend which will have better support for signing.

[JulianToledano]

I agree, I think we can close this. The scope of the upcoming crypto ADR will make this one deprecated, as there will be the possibility of a gRPC keyring in the new one.