feat: sign message v2

[pedrxlz]

Summary by CodeRabbit

• New Features

  • Introduced message signature verification functionality in the TRX module, allowing users to verify if a signature corresponds to a given message digest and address.
  • Enhanced cryptographic capabilities with new functions for signing messages and verifying signatures in the KOSAccount struct.
  • Added functionality to the Wallet for verifying message signatures, ensuring integrity and authenticity.

• Tests

  • Added new test cases to ensure the reliability of signing and verification processes.

[coderabbitai]

Walkthrough

The changes introduce new functions for verifying message signatures within the TRX module of the kos-sdk. Specifically, the verify_digest function checks if a signature matches a given digest and address, while the verify_message function recovers the public key from the signature and digest. Similar functionalities are added to the KOSAccount struct in the mobile package, along with modifications to the Wallet implementation to support signature verification. Additionally, test cases are implemented to ensure the correctness of the signing and verification processes across these components.

Changes

Files	Change Summary
packages/kos-sdk/src/chains/tron/mod.rs	Added pub fn verify_digest(digest: &[u8], signature: &[u8], address: &str) -> Result<bool, Error> and pub fn verify_message(digest: &[u8], signature: &[u8]) -> Result<String, Error>. Three new test cases added for signing and verification.
packages/kos-mobile/src/lib.rs	Added fn sign_message(account: KOSAccount, message: String) -> Result<Vec<u8>, KOSError> and fn verify_message_signature(address: String, chain_id: i32, message: String, signature: Vec<u8>) -> Result<bool, KOSError>. Modified KOSAccount to derive Clone. Two new test cases added.
packages/kos-sdk/src/wallet.rs	Added pub fn verify_message_signature(&self, message: &[u8], signature: &[u8]) -> Result<bool, Error> to enable signature verification in the Wallet implementation.

Possibly related PRs

• Feat/transaction from raw #65: The verify_message_signature function in the main PR is related to the verify_message_signature method added in the packages/kos-mobile/src/lib.rs file of PR Feat/transaction from raw #65, as both functions are involved in the signature verification process.

Suggested reviewers

• brunocampos-ssa
• MCysneiros

Poem

In the land of TRX, where signatures play,
A rabbit hops in, brightening the day.
With verify_digest, we check with delight,
And verify_message makes everything right.
So let’s celebrate this cryptographic cheer,
For secure messages, we hold dear! 🐇✨

---

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 3

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Files that changed from the base of the PR and between 4aa77af and 41e2335.

📒 Files selected for processing (2)

• packages/kos-mobile/src/lib.rs (3 hunks)
• packages/kos-sdk/src/wallet.rs (1 hunks)

🔇 Additional comments (5)

packages/kos-sdk/src/wallet.rs (2)

410-419: New method added: verify_message_signature

The new method verify_message_signature has been added to the Wallet implementation. This method allows for verifying a message signature using the wallet's public address.

A few observations:

1. The method signature is correct and consistent with Rust conventions.
2. It properly uses self.chain to call the underlying verify_message_signature function.
3. The method correctly passes the wallet's public address as a string slice.

The implementation looks good and adds valuable functionality to the Wallet struct. It allows users to verify message signatures, which is crucial for ensuring message integrity and authenticity.

To ensure this method is properly integrated and doesn't conflict with existing code, let's verify its usage:

✅ Verification successful

Verification Successful: verify_message_signature is properly integrated and tested across the codebase.

• The method is utilized in multiple modules, ensuring broad applicability.
• Comprehensive tests exist to validate its functionality.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for any existing uses or tests of the new verify_message_signature method

# Test: Search for any existing uses of verify_message_signature
rg --type rust 'verify_message_signature'

# Test: Check if there are any new tests added for this method
rg --type rust 'fn test.*verify_message_signature'

Length of output: 3035

---

Line range hint 1-419: Overall assessment: Good addition with minor improvements needed

The addition of the verify_message_signature method to the Wallet struct is a valuable feature that enhances the functionality of the wallet. It allows for message signature verification, which is crucial for ensuring the integrity and authenticity of messages in blockchain systems.

Considerations:

1. The change is minimal and focused, which reduces the risk of introducing bugs.
2. The method integrates well with the existing Wallet structure and uses the underlying chain object appropriately.
3. The feature aligns well with the existing sign_message method, providing a complete set of signing and verification capabilities.

Suggestions for improvement:

1. Add comprehensive documentation for the new method.
2. Implement unit tests to ensure the method works as expected and to prevent future regressions.
3. Consider updating any relevant user documentation or README files to mention this new capability.

As this feature adds to the cryptographic capabilities of the wallet, ensure that:

1. The underlying chain.verify_message_signature method is using secure and up-to-date cryptographic libraries.
2. Any errors from the underlying verification process are properly propagated and handled.
3. The feature is consistent with industry standards for message signing and verification in blockchain wallets.

To ensure the change doesn't have unintended consequences:

✅ Verification successful

---

The addition of the verify_message_signature method in the Wallet struct has been thoroughly reviewed and integrates seamlessly with the existing codebase. No conflicts or unintended side effects were identified.

Next Steps:

• Documentation: Ensure that the README.md is updated to include details about the new verify_message_signature method.
• Testing: Implement and verify unit tests for the new method to maintain code reliability and prevent future regressions.

Overall, this enhancement strengthens the wallet's functionality without introducing any adverse impacts.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for any potential impacts on other parts of the codebase

# Test: Check if there are any other files that might need updating due to this new method
rg --type rust 'impl Wallet'

# Test: Verify if there are any existing message verification methods that this might replace or complement
rg --type rust 'verify.*message'

# Test: Check for any documentation files that might need updating
fd README.md

Length of output: 3035

packages/kos-mobile/src/lib.rs (3)

144-151: Function sign_message Approved

The sign_message function correctly signs a message using the account's private key. The implementation follows best practices and handles errors appropriately.

---

401-416: Test should_sign_message Approved

The should_sign_message test correctly verifies that the sign_message function produces a signature of the expected length.

---

417-432: ⚠️ Potential issue

Update Test should_verify_message_signature to Use Public Key

After modifying verify_message_signature to use the public key instead of the private key, this test should be updated accordingly. Ensure that the test provides the public key and verifies the signature without requiring the private key.

Run the following script to check for usages of verify_message_signature that need updating:

#!/bin/bash
# Description: Find all calls to `verify_message_signature` that pass `KOSAccount`.
# Expected Result: List of code locations where `verify_message_signature` is called with `KOSAccount`.

rg --type rust 'verify_message_signature\(\s*account'

[coderabbitai]

Actionable comments posted: 0

🧹 Outside diff range and nitpick comments (1)

packages/kos-mobile/src/lib.rs (1)

400-414: The test case for sign_message is good, but could be improved.

The test correctly verifies the signature length. However, consider adding an additional check to verify the actual content of the signature, perhaps by using the verify_message_signature function to ensure the signature is valid.

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Files that changed from the base of the PR and between 41e2335 and 1249358.

📒 Files selected for processing (1)

• packages/kos-mobile/src/lib.rs (2 hunks)

🔇 Additional comments (4)

packages/kos-mobile/src/lib.rs (4)

144-151: LGTM: The sign_message function is well-implemented.

The function correctly uses the account's private key to sign the message, following good cryptographic practices.

---

153-164: Great improvement: The verify_message_signature function now uses public key cryptography.

This implementation addresses the security concern raised in the previous review. It now correctly uses the public address for signature verification instead of requiring the private key, which is a significant security improvement.

---

416-445: Excellent test case for verify_message_signature.

This test comprehensively covers both the happy path (valid signature) and error path (invalid signature). It ensures that the function correctly verifies valid signatures and rejects invalid ones, with appropriate error handling.

---

Line range hint 1-445: Security concern: KOSAccount still derives Clone

While the new changes significantly improve the security of the message signing and verification process, there's still a potential security risk with the KOSAccount struct deriving the Clone trait. This allows instances containing sensitive data like private_key to be duplicated in memory.

Consider one of the following options:

1. Remove the Clone derivation from KOSAccount.
2. Implement a custom Clone that securely handles sensitive fields.

This change would further enhance the overall security of the codebase.

✅ Verification successful

Security Update: KOSAccount no longer derives Clone

The KOSAccount struct no longer derives the Clone trait, mitigating the previously identified security risk of duplicating sensitive data in memory.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify if KOSAccount still derives Clone
# Expected Result: Confirmation that KOSAccount derives Clone

rg --type rust '#\[derive\(.*Clone.*\)\].*struct\s+KOSAccount'

Length of output: 64