feat(fc-pallet-pass): handle provisioning of system accounts for session keys #28
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This new extension skips certain checks (like `CheckNonce`) if the caller is a session key. This extension should be deprecated in the future in favour of a couple of `TransactionExtension`s that: 1) issues an origin for the account, and 2) after checks like Nonce, replaces this custom origin with `frame_system::Origin::signed(account_key)`, where `account_key` is the `AccountId` of the account being authorized by `pallet-pass`.
pandres95
force-pushed
the
feat/pass-extension-skip-check-if-pass-account
branch
from
9ad3f1d to
d6b77ae
Compare
…roviders to handle the existence/dust of a session key account.
pandres95
changed the title
SkipCheckIfPassAccount
olanod
requested changes
Nov 21, 2024
There was a problem hiding this comment.
Let's use the scheduler to auto remove sessions based on their expiration block and extend the removal schedule when necessary.
Side note based on our talk, in a different PR let's improve our account generation in account_id_for which currently trusts user provided data when it shouldn't. I propose something like
// we know the length of HashedUserId
let mut input = [0u8; TWICE_THE_LEN_OF_HASHED_USER_ID];
input[..HASHED_USER_ID_LEN] = input.copy_from_slice(&user);
let account = hash_input_and_magically_convert_to_account(&input);
pandres95
commented
Nov 21, 2024
…e deleting session provider to be infallible
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
To reduce the usability friction in
pallet-passwe created the concept ofSessions, which are analogous to pure proxy controllers, for which an arbitrary account, represented by a public key (i.e. the session key), previously attached to a passAccountis allowed to execute calls on behalf of such account.This implies that to correctly pass the transaction validity step before a session key account can dispatch a call on behalf of the Pass
Account, the account needs to exist in the system (a.k.a. be provisioned).This Pull Request resolves this by handling the provider references such account needs in a manner that works both for accounts that already exist in the chain as well as accounts that do not yet exist.
Related to #27: Should we be using signed origins as session keys in the future? Or should we find a way to extend the validity of some pass credentials over time, in such a way we handle these future validations via the pass
Accountonly?