fix(keychain): fix private key missing error

[kathaypacific]

Description

As the title. I've done a detailed writeup here.

Test plan

As a user who knows their pincode, I should always be able to perform a transaction and see my recovery phrase.

Related issues

• Fixes RET-1067

Backwards compatibility

Y

Network scalability

Y

[codecov]

Codecov Report

Attention: Patch coverage is 87.50000% with 2 lines in your changes are missing coverage. Please review.

Project coverage is 86.00%. Comparing base (e07c16b) to head (0c30441).
Report is 9 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #5277      +/-   ##
==========================================
+ Coverage   85.91%   86.00%   +0.09%     
==========================================
  Files         745      745              
  Lines       30487    30498      +11     
  Branches     5288     5289       +1     
==========================================
+ Hits        26192    26229      +37     
+ Misses       4059     4037      -22     
+ Partials      236      232       -4     

Files	Coverage Δ
src/identity/actions.ts	84.84% <100.00%> (+0.47%)	⬆️
src/identity/selectors.ts	100.00% <100.00%> (ø)
src/pincode/authentication.ts	87.68% <100.00%> (+12.40%)	⬆️
src/redux/migrations.ts	97.01% <100.00%> (+<0.01%)	⬆️
src/redux/store.ts	78.68% <ø> (ø)
src/web3/contracts.ts	38.75% <100.00%> (ø)
test/schemas.ts	90.21% <100.00%> (+0.03%)	⬆️
src/identity/reducer.ts	29.85% <0.00%> (-0.92%)	⬇️

... and 7 files with indirect coverage changes

---

Continue to review full report in Codecov by Sentry.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update e07c16b...0c30441. Read the comment docs.

[kathaypacific]

this is the fix for new users. everything else is fixing the bad leftover state for existing users.

[satish-ravi]

could be in a follow up, but should we change the arg type of getPasswordSaga to an object, so its explicit on what booleans are set?. E.g.,

const password = yield* call(getPasswordSaga, { account: walletAddress, withVerification: true })

[kathaypacific]

yes absolutely (although i'd prefer to refactor that function to remove these arguments / code paths altogether, they should be in separate functions that are called predictably) but wanted to keep this fix isolated here

[jeanregisser]

Great! Thanks so much for digging all the details. 🚀

Like Satish mentionned, I'm sure we all have a few ideas to make this part of the code base more robust given its importance.
Silas was asking if we should maybe do a small post mortem to learn from this and agree on next steps.

[bakoushin]

💫 Amazing job!

I agree that we have to refactor this to make it as dumb as possible, avoiding side effects and obscure params like this withVerification one. I guess part of the problem is not only the form in which it's supplied to the function but the reason for its very existence.