43627d0d1c
* query-lifecycle and started modules-interfaces * query-lifecycle first draft done * module interfaces first draft * rest and intro skeletons * rest and intro done * small edits and links * comments * revisions * cli.md comments * comments * minor edits * better flow for query lifecycle * add transactions into core * hans comments * add transactions into core * checkout master-docs files * deleted some * remove modules readme * cli.md comments * comments * module-interfaces comments * Merge PR #4857: Add Context concept doc * working * working * finish messages and queries * handler * querier * last comments! * punctuation * querier2 * consolidate intro * querier * workiiiing * refactor for new module interface * karoly review * working on baseapp doc * baseapp work * reorg * almost there * finish first draft * remove old files * finish intro * workinnn * initial commit after rebase * query-lifecycle and started modules-interfaces * query-lifecycle first draft done * module interfaces first draft * rest and intro skeletons * rest and intro done * small edits and links * comments * revisions * cli.md comments * comments * minor edits * better flow for query lifecycle * checkout master-docs files * deleted some * remove modules readme * cli.md comments * comments * module-interfaces comments * keeper * genesis * finish * Apply suggestions from code review Co-Authored-By: Hans Schoenburg <hschoenburg@users.noreply.github.com> * hans review * Update docs/core/baseapp.md Co-Authored-By: Hans Schoenburg <hschoenburg@users.noreply.github.com> * working * last comment * workin * Apply suggestions from code review * encoding and node * almost finish store * finish docs * fixes * fede comments + permalinks * hans review * add more permalinks * update docs theme version (#5239) * R4R: Docs Cleanup (#5246) * start * work * work * work * remove table of content * links intro * fix links * remove junk * cleanup * cleanup * work * finish cleanup * addback readmes * remove nft * fix links * remove dup * remove dup * remove dup * remove dup * remove dup * fix links * add subscribe events * refine rest * index page * sidebar * theme version * theme version * testing netlify * theme version * tooltip example * version * testing code embedding * reverting back * theme version * version * version * version * readme and version * cleanup * redo app anatomy * modules readme, theme version * theme version * fix modules list * theme version * new snippets * modules readme * update docs readme * modify synopsis * version * fix yaml * version * version * version * version * version * version * version * version * version * version * add hide banner * version * version * version * small fixes * modules readme, version * remove hotkeys dep, version * version * version * version * version * version * version * version * slight notice * fix links and hide * permalinks * small clean * version * resolve conflicts, add google analytics * fix merge remants * version * changelog 1/2 * Changelog: docs UI * version * remove merge conflicts * Code: Update link for Contributing to the docs to docs_readme * HTML/CSS: Update layout of homepage footer to match new layout in Figma * version * final modifs * modules, version * modules readme * link to module list from homepage * version * building modules link * version * version * fonts * version * version * fix link * fix package.json * links in explore sdk section * core concepts * version * change delimeters for frontmatter * frontmatter in comments * version * temp add tiny-cookie * fixed link issues * fixed styling issues, copy * hide frontmatter * hide frontmatter * layout fixes, padded ascii diagram * fira sans font for code * scrollbar color * move synopsis from frontmatter * move synopsis from frontmatter * code styling in synopsis fix * tutorial link * active headers * 404 fix * homepage links fix * fix link in footer * misc fixes * version * prerequisite links on mobile * version * version * Fix footer links * version * Fix permalink popup * Update version * package-lock.json * Update Questions section in the footer * Config for Algolia Docsearch * Update version * Update to the latest version of the theme * Use docs-staging as a branch for staging website * Update version * Add google analytics * Remove {hide} from Pre-Requisite Readings * Replace Riot with Discord Co-Authored-By: billy rennekamp <billy.rennekamp@gmail.com> * Fix yaml syntax error in docs * Fix formatting in keyring.md Co-authored-by: Gloria Zhao <gzhao408@berkeley.edu> Co-authored-by: gamarin <gautier@tendermint.com> Co-authored-by: Jack Zampolin <jack.zampolin@gmail.com> Co-authored-by: Hans Schoenburg <hschoenburg@users.noreply.github.com> Co-authored-by: Federico Kunze <31522760+fedekunze@users.noreply.github.com> Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com> Co-authored-by: billy rennekamp <billy.rennekamp@gmail.com>
11 KiB
Accounts
This document describes the in-built accounts system of the Cosmos SDK. {synopsis}
Pre-requisite Readings
- Anatomy of an SDK Application {prereq}
Account Definition
In the Cosmos SDK, an account designates a pair of public key PubKey and private key PrivKey. The PubKey can be derived to generate various Addresses, which are used to identify users (among other parties) in the application. Addresses are also associated with messages to identify the sender of the message. The PrivKey is used to generate digital signatures to prove that an Address associated with the PrivKey approved of a given message.
To derive PubKeys and PrivKeys, the Cosmos SDK uses a standard called BIP32. This standard defines how to build an HD wallet, where a wallet is a set of accounts. At the core of every account, there is a seed, which takes the form of a 12 or 24-words mnemonic. From this mnemonic, it is possible to derive any number of PrivKeys using one-way cryptographic function. Then, a PubKey can be derived from the PrivKey. Naturally, the mnemonic is the most sensitive information, as private keys can always be re-generated if the mnemonic is preserved.
Account 0 Account 1 Account 2
+------------------+ +------------------+ +------------------+
| | | | | |
| Address 0 | | Address 1 | | Address 2 |
| ^ | | ^ | | ^ |
| | | | | | | | |
| | | | | | | | |
| | | | | | | | |
| + | | + | | + |
| Public key 0 | | Public key 1 | | Public key 2 |
| ^ | | ^ | | ^ |
| | | | | | | | |
| | | | | | | | |
| | | | | | | | |
| + | | + | | + |
| Private key 0 | | Private key 1 | | Private key 2 |
| ^ | | ^ | | ^ |
+------------------+ +------------------+ +------------------+
| | |
| | |
| | |
+--------------------------------------------------------------------+
|
|
+---------+---------+
| |
| Master PrivKey |
| |
+-------------------+
|
|
+---------+---------+
| |
| Mnemonic (Seed) |
| |
+-------------------+
In the Cosmos SDK, accounts are stored and managed via an object called a Keybase.
Keybase
A Keybase is an object that stores and manages accounts. In the Cosmos SDK, a Keybase implementation follows the Keybase interface:
+++ 7d7821b9af/crypto/keys/types.go (L13-L86)
The default implementation of Keybase of the Cosmos SDK is dbKeybase.
+++ 7d7821b9af/crypto/keys/keybase.go
A few notes on the Keybase methods as implemented in dbKeybase:
Sign(name, passphrase string, msg []byte) ([]byte, crypto.PubKey, error)strictly deals with the signature of themessagebytes. Some preliminary work should be done beforehand to prepare and encode themessageinto a canonical[]byteform. See an example ofmessagepreparation from theauthmodule. Note that signature verification is not implemented in the SDK by default. It is deferred to theanteHandler. +++7d7821b9af/x/auth/types/txbuilder.go (L176-L209)CreateMnemonic(name string, language Language, passwd string, algo SigningAlgo) (info Info, seed string, err error)creates a new mnemonic and prints it in the logs, but it does not persist it on disk.CreateAccount(name, mnemonic, bip39Passwd, encryptPasswd string, account uint32, index uint32) (Info, error)creates a new account based on thebip44 pathand persists it on disk (note that thePrivKeyis encrypted with a passphrase before being persisted, it is never stored unencrypted). In the context of this method, theaccountandaddressparameters refer to the segment of the BIP44 derivation path (e.g.0,1,2, ...) used to derive thePrivKeyandPubKeyfrom the mnemonic (note that given the same mnemonic andaccount, the samePrivKeywill be generated, and given the sameaccountandaddress, the samePubKeyandAddresswill be generated). Finally, note that theCreateAccountmethod derives keys and addresses usingsecp256k1as implemented in the Tendermint library. As a result, it only works for creating account keys and addresses, not consensus keys. SeeAddressesfor more.
The current implementation of dbKeybase is basic and does not offer on-demand locking. If an instance of dbKeybase is created, the underlying db is locked meaning no other process can access it besides the one in which it was instantiated. This is the reason why the default SDK client uses another implementation of the Keybase interface called lazyKeybase:
+++ 7d7821b9af/crypto/keys/lazy_keybase.go
lazyKeybase is simple wrapper around dbKeybase which locks the database only when operations are to be performed and unlocks it immediately after. With the lazyKeybase, it is possible for the command-line interface to create a new account while the rest server is running. It is also possible to pipe multiple CLI commands.
Addresses and PubKeys
Addresses and PubKeys are both public information that identify actors in the application. There are 3 main types of Addresses/PubKeys available by default in the Cosmos SDK:
- Addresses and Keys for accounts, which identify users (e.g. the sender of a
message). They are derived using thesecp256k1curve. - Addresses and Keys for validator operators, which identify the operators of validators. They are derived using the
secp256k1curve. - Addresses and Keys for consensus nodes, which identify the validator nodes participating in consensus. They are derived using the
ed25519curve.
| Address bech32 Prefix | Pubkey bech32 Prefix | Curve | Address byte length | Pubkey byte length | |
|---|---|---|---|---|---|
| Accounts | cosmos | cosmospub | secp256k1 |
20 |
33 |
| Validator Operator | cosmosvaloper | cosmosvaloperpub | secp256k1 |
20 |
33 |
| Consensus Nodes | cosmosvalcons | cosmosvalconspub | ed25519 |
20 |
32 |
PubKeys
PubKeys used in the Cosmos SDK follow the Pubkey interface defined in tendermint's crypto package:
+++ bc572217c0/crypto/crypto.go (L22-L27)
For secp256k1 keys, the actual implementation can be found here. For ed25519 keys, it can be found here.
Note that in the Cosmos SDK, Pubkeys are not manipulated in their raw form. Instead, they are double encoded using Amino and bech32. In the SDK is done by first calling the Bytes() method on the raw Pubkey (which applies amino encoding), and then the ConvertAndEncode method of bech32.
+++ 7d7821b9af/types/address.go (L579-L729)
Addresses
The Cosmos SDK comes by default with 3 types of addresses:
AccAddressfor accounts.ValAddressfor validator operators.ConsAddressfor validator nodes.
Each of these address types are an alias for an hex-encoded []byte array of length 20. Here is the standard way to obtain an address aa from a Pubkey pub:
aa := sdk.AccAddress(pub.Address().Bytes())
These addresses implement the Address interface:
+++ 7d7821b9af/types/address.go (L71-L80)
Of note, the Marhsal() and Bytes() method both return the same raw []byte form of the address, the former being needed for Protobuff compatibility. Also, the String() method is used to return the bech32 encoded form of the address, which should be the only address format with which end-user interract. Next is an example:
+++ 7d7821b9af/types/address.go (L229-L243)
Next {hide}
Learn about gas and fees {hide}