feat(zetaclient): Revamp TSS package #3170

swift1337 · 2024-11-15T16:40:18Z

Context

This PR rewrites zetaclient/tss almost from scratch, drastically simplifying and streamlining logic, improving logging, and increasing code readability.

PR changes

There are three main parts:

cmd/zetaclientd/start.go: start() command now less code because tss part was moved to its own package file
zetaclient/tss/setup.go: contains the consecutive flow of TSS server, TSS service, keygen ceremony, and other parts
zetaclient/tss/*: TSS service and its utilities

The rest is mostly about adapting the new interface and fixing test cases.

Tasks

Old Interface

type TSSSigner interface {
	Pubkey() []byte
	Sign(
		ctx context.Context,
		data []byte,
		height uint64,
		nonce uint64,
		chainID int64,
		optionalPubkey string,
	) ([65]byte, error)

	SignBatch(ctx context.Context, digests [][]byte, height uint64, nonce uint64, chainID int64) ([][65]byte, error)

	EVMAddress() ethcommon.Address
	EVMAddressList() []ethcommon.Address
	BTCAddress(chainID int64) (*btcutil.AddressWitnessPubKeyHash, error)
	PubKeyCompressedBytes() []byte
}

New interface

type TSS interface {
    PubKey() tss.PubKey
    Sign(ctx context.Context, digest []byte, height, nonce uint64, chainID int64) ([65]byte, error)
    SignBatch(ctx context.Context, digests [][]byte, height, nonce uint64, chainID int64) ([][65]byte, error)
}

Closes #3119
Closes #2085

Summary by CodeRabbit

Release Notes

New Features
- Whitelist functionality for SPL tokens on Solana.
- Integration of SPL deposits and withdrawals.
- Performance profiling enabled via a pprof server.
Bug Fixes
- Resolved issues with message registrations and connection configurations.
Refactor
- Improved the zetaclient CLI and TSS package.
- Removed deprecated methods and streamlined address retrieval for TSS.
Tests
- Added end-to-end tests for SPL deposits and withdrawals.
- Enhanced test coverage for TSS functionalities.
Documentation
- Updated changelog to reflect enhancements and fixes.

coderabbitai · 2024-11-15T16:40:26Z

Important

Review skipped

Auto incremental reviews are disabled on this repository.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

📝 Walkthrough

Walkthrough

The changes in this pull request encompass a comprehensive revamp of the zetaclient/tss package, introducing new functionalities, refactoring existing code, and updating test suites. Key enhancements include the removal of unused parameters, such as optionalPubkey, from method signatures, the introduction of a mock TSS implementation for testing, and improvements to address handling. Additionally, the changes enhance the logging and error handling mechanisms throughout the package, ensuring better maintainability and clarity in the codebase.

Changes

File Path	Change Summary
`changelog.md`	Updated to reflect enhancements, fixes, and refactoring across multiple versions, including new features.
`cmd/zetaclientd/initconfig.go`	Added import for `zetatss`, modified peer validation logic.
`cmd/zetaclientd/start.go`	Removed unnecessary imports, streamlined startup logic, added pprof server setup, and refactored TSS setup.
`cmd/zetaclientd/utils.go`	Removed `validatePeer`, added `isEnvFlagEnabled` and `btcChainIDsFromContext` functions.
`contrib/localnet/docker-compose.yml`	Added environment variable `PPROF_ADDR` and port mapping for profiling.
`zetaclient/chains/base/observer.go`	Updated TSS address retrieval methods and mutex handling.
`zetaclient/chains/base/observer_test.go`	Updated TSS mock instantiation and expected outputs in tests.
`zetaclient/chains/base/signer_test.go`	Updated `createSigner` function signature to accept testing context.
`zetaclient/chains/bitcoin/observer/observer.go`	Changed method for retrieving TSS address in `FetchUTXOs`.
`zetaclient/chains/bitcoin/signer/signer.go`	Updated methods to retrieve TSS address and removed unnecessary getter/setter functions.
`zetaclient/chains/evm/observer/inbound.go`	Updated TSS address retrieval method.
`zetaclient/tss/config.go`	Added functions for handling TSS parameters and public keys.
`zetaclient/tss/service.go`	Introduced a TSS service for signing messages, including metrics integration.
`zetaclient/tss/healthcheck.go`	Added health check mechanism for TSS server and peers.
`zetaclient/tss/keygen.go`	Introduced key generation ceremony functionality.
`zetaclient/tss/crypto.go`	Added public key handling and signature verification functions.
`zetaclient/testutils/mocks/tss.go`	Introduced a mock implementation of TSS for testing purposes.
`zetaclient/testutils/mocks/tss_signer.go`	Removed obsolete TSS signer mock implementation.
`zetaclient/testutils/constant.go`	Updated constants related to TSS addresses and public keys.

Sequence Diagram(s)

sequenceDiagram
    participant Client
    participant TSS
    participant Logger
    Client->>TSS: Sign request
    TSS->>Logger: Log request details
    TSS->>TSS: Validate input
    TSS->>Client: Return signature

Assessment against linked issues

Objective	Addressed	Explanation
Revamp `zetaclient/tss` package (3119)	✅
Determine necessity of `optionalPubkey` in TSSSigner (2085)	✅	Removed from method signatures as unnecessary.

Possibly related PRs

fix(zetaclient): add zetaclient evm outbound tx index by nonce to supplement outtx tracker #2735: Addresses issues with the outbound transaction tracker in the zetaclient.
fix(zetaclient): use on-chain chain struct #2834: Modifies the NewObserver function for improved observer initialization.
fix: add pubkey to tss vote #2844: Adds a public key to TSS voting, relevant to TSS functionalities.
feat: derive Bitcoin TSS address by chain ID; added more Signet static info in 'chains' package #2907: Introduces functionality for deriving Bitcoin TSS addresses by chain ID.
fix: skip depositor fee calculation on irrelevant transactions #3162: Focuses on skipping depositor fee calculations for irrelevant transactions.
fix: support tracker processing for v2 inbounds #3179: Introduces support for tracker processing for v2 inbounds.
feat(zetaclient): enable pprof http server #3182: Enables a pprof HTTP server for performance monitoring.

Suggested labels

V2_TESTS

Suggested reviewers

kingpinXD
fbac
ws4charlie
brewmaster012
skosito
lumtis

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

Review comments: Directly reply to a review comment made by CodeRabbit. Example:
- I pushed a fix in commit <commit_id>, please review it.
- Generate unit testing code for this file.
- Open a follow-up GitHub issue for this discussion.
Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
- @coderabbitai generate unit testing code for this file.
- @coderabbitai modularize this function.
PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
- @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
- @coderabbitai read src/utils.ts and generate unit testing code.
- @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
- @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

@coderabbitai pause to pause the reviews on a PR.
@coderabbitai resume to resume the paused reviews.
@coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
@coderabbitai full review to do a full review from scratch and review all the files again.
@coderabbitai summary to regenerate the summary of the PR.
@coderabbitai resolve resolve all the CodeRabbit review comments.
@coderabbitai configuration to show the current CodeRabbit configuration for the repository.
@coderabbitai help to get help.

Other keywords and placeholders

Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
Add @coderabbitai anywhere in the PR title to generate the title automatically.

Documentation and Community

Visit our Documentation for detailed information on how to use CodeRabbit.
Join our Discord Community to get help, request features, and share feedback.
Follow us on X/Twitter for updates and announcements.

codecov · 2024-11-15T16:47:08Z

Codecov Report

Attention: Patch coverage is 21.69077% with 704 lines in your changes missing coverage. Please review.

Project coverage is 62.43%. Comparing base (cda3398) to head (2c02cc2).
Report is 1 commits behind head on develop.

Files with missing lines	Patch %	Lines
zetaclient/tss/setup.go	0.00%	219 Missing ⚠️
zetaclient/tss/keygen.go	0.00%	217 Missing ⚠️
zetaclient/tss/service.go	42.23%	88 Missing and 5 partials ⚠️
zetaclient/tss/healthcheck.go	0.00%	69 Missing ⚠️
zetaclient/tss/crypto.go	55.46%	45 Missing and 12 partials ⚠️
zetaclient/tss/config.go	57.57%	22 Missing and 6 partials ⚠️
zetaclient/chains/evm/observer/outbound.go	15.38%	11 Missing ⚠️
zetaclient/chains/ton/observer/outbound.go	0.00%	2 Missing ⚠️
zetaclient/chains/bitcoin/observer/observer.go	0.00%	1 Missing ⚠️
zetaclient/chains/bitcoin/observer/outbound.go	0.00%	1 Missing ⚠️
... and 6 more

Additional details and impacted files

@@             Coverage Diff             @@
##           develop    #3170      +/-   ##
===========================================
- Coverage    62.74%   62.43%   -0.32%     
===========================================
  Files          425      428       +3     
  Lines        30231    30404     +173     
===========================================
+ Hits         18969    18982      +13     
- Misses       10425    10576     +151     
- Partials       837      846       +9

Files with missing lines	Coverage Δ
zetaclient/chains/base/observer.go	`85.10% <100.00%> (ø)`
zetaclient/chains/evm/observer/inbound.go	`34.38% <100.00%> (ø)`
zetaclient/chains/evm/signer/sign.go	`62.82% <100.00%> (ø)`
zetaclient/chains/evm/signer/signer.go	`46.11% <100.00%> (ø)`
zetaclient/chains/solana/observer/outbound.go	`26.82% <100.00%> (+0.29%)`	⬆️
zetaclient/chains/ton/signer/signer.go	`45.12% <100.00%> (ø)`
zetaclient/context/app.go	`71.42% <100.00%> (-3.42%)`	⬇️
zetaclient/metrics/metrics.go	`75.00% <ø> (ø)`
zetaclient/chains/bitcoin/observer/observer.go	`27.81% <0.00%> (ø)`
zetaclient/chains/bitcoin/observer/outbound.go	`32.67% <0.00%> (ø)`
... and 14 more

---- 🚨 Try these New Features:

Flaky Tests Detection - Detect and resolve failed and flaky tests

github-actions · 2024-11-19T14:53:42Z

!!!WARNING!!!
nosec detected in the following files: zetaclient/tss/healthcheck.go, zetaclient/tss/service.go, cmd/zetaclientd/start.go

Be very careful about using #nosec in code. It can be a quick way to suppress security warnings and move forward with development, it should be employed with caution. Suppressing warnings with #nosec can hide potentially serious vulnerabilities. Only use #nosec when you're absolutely certain that the security issue is either a false positive or has been mitigated in another way.

Only suppress a single rule (or a specific set of rules) within a section of code, while continuing to scan for other problems. To do this, you can list the rule(s) to be suppressed within the #nosec annotation, e.g: /* #nosec G401 */ or //#nosec G201 G202 G203
Broad #nosec annotations should be avoided, as they can hide other vulnerabilities. The CI will block you from merging this PR until you remove #nosec annotations that do not target specific rules.

Pay extra attention to the way #nosec is being used in the files listed above.

lumtis

Looking good right now

zetaclient/tss/config.go

gitguardian · 2024-11-20T18:04:07Z

⚠️ GitGuardian has uncovered 3 secrets following the scan of your pull request.

Please consider investigating the findings and remediating the incidents. Failure to do so may lead to compromising the associated services or software components.

🔎 Detected hardcoded secrets in your pull request

GitGuardian id	GitGuardian status	Secret	Commit	Filename
14567965	Triggered	Generic Password	`c5b10c6`	cmd/zetaclientd/start.go	View secret
14567965	Triggered	Generic Password	`ade21aa`	cmd/zetaclientd/start.go	View secret
14567965	Triggered	Generic Password	`c5b10c6`	cmd/zetaclientd/start.go	View secret

🛠 Guidelines to remediate hardcoded secrets

Understand the implications of revoking this secret by investigating where it is used in your code.
Replace and store your secret safely. Learn here the best practices.
Revoke and rotate this secret.
If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.

To avoid such incidents in the future consider

following these best practices for managing and storing secrets including API keys and other credentials
install secret detection on pre-commit to catch secret before it leaves your machine and ease remediation.

^{🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.}

coderabbitai

Actionable comments posted: 33

🧹 Outside diff range and nitpick comments (72)

zetaclient/chains/bitcoin/observer/rpc_status.go (1)

Line range hint 32-45: Add test coverage for the modified TSS address retrieval.

The static analysis indicates that the modified TSS address retrieval logic lacks test coverage. This is critical infrastructure code that should be thoroughly tested.

Would you like me to help generate comprehensive test cases for this modified functionality? The test should cover:

Successful TSS BTC address retrieval

Error handling for TSS PubKey failures

Error handling for AddressBTC failures

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 32-32: zetaclient/chains/bitcoin/observer/rpc_status.go#L32
Added line #L32 was not covered by tests
zetaclient/tss/crypto_test.go (2)
13-15: Add function documentation and consider test isolation

The test function should include documentation describing its purpose and test cases. Also, consider isolating the cosmos configuration setup.

Apply this diff to improve the test structure:
+// TestPubKey verifies the functionality of public key operations including:
+// - Bech32 string parsing
+// - Address derivation for EVM and BTC chains
+// - ECDSA public key conversion
 func TestPubKey(t *testing.T) {
+    t.Parallel() // Allow parallel execution
     cmd.SetupCosmosConfig()
21-44: Document test vectors and enhance error handling coverage

The test case is well-structured with the AAA pattern, but could benefit from:

Documentation of test vectors

Error case handling for BTC address generation

Validation of the ECDSA public key components

Apply this diff to enhance the test:
     t.Run("Valid", func(t *testing.T) {
         // ARRANGE
+        // Test vector representing a known valid public key and its derived addresses
+        const (
+            samplePubKey = `zetapub1addwnpepqtadxdyt037h86z60nl98t6zk56mw5zpnm79tsmvspln3hgt5phdc79kvfc`
+            expectedEVM  = "0x70e967acfcc17c3941e87562161406d41676fd83"
+            expectedBTC  = "bc1qm24wp577nk8aacckv8np465z3dvmu7ry45el6y"
+        )
-        const sample = `zetapub1addwnpepqtadxdyt037h86z60nl98t6zk56mw5zpnm79tsmvspln3hgt5phdc79kvfc`

         // ACT
-        pk, err := NewPubKeyFromBech32(sample)
+        pk, err := NewPubKeyFromBech32(samplePubKey)

         // ASSERT
         require.NoError(t, err)
         assert.NotEmpty(t, pk)

         addrEVM := pk.AddressEVM()
+        // Test BTC address generation for both mainnet and testnet
         addrBTC, err := pk.AddressBTC(chains.BitcoinMainnet.ChainId)
         require.NoError(t, err)
+        
+        // Verify invalid chain ID handling
+        _, err = pk.AddressBTC(999999)
+        require.Error(t, err)

-        assert.Equal(t, sample, pk.Bech32String())
-        assert.Equal(t, "0x70e967acfcc17c3941e87562161406d41676fd83", strings.ToLower(addrEVM.Hex()))
-        assert.Equal(t, "bc1qm24wp577nk8aacckv8np465z3dvmu7ry45el6y", addrBTC.String())
+        assert.Equal(t, samplePubKey, pk.Bech32String())
+        assert.Equal(t, expectedEVM, strings.ToLower(addrEVM.Hex()))
+        assert.Equal(t, expectedBTC, addrBTC.String())

         // Check that NewPubKeyFromECDSA works
         pk2, err := NewPubKeyFromECDSA(*pk.ecdsaPubKey)
         require.NoError(t, err)
         require.Equal(t, pk.Bech32String(), pk2.Bech32String())
+        
+        // Verify ECDSA public key components
+        require.True(t, pk.ecdsaPubKey.Curve.IsOnCurve(pk.ecdsaPubKey.X, pk.ecdsaPubKey.Y))
     })
zetaclient/tss/config_test.go (1)
16-23: Consider adding more edge cases to the test suite.

The current test cases cover basic scenarios well. Consider adding the following cases to improve test coverage:

Large number of files (e.g., 100) to verify performance with scale

Invalid directory path to verify error handling

Directory with mixed valid and invalid files to verify robustness
 	}{
 		{name: "2 keyshare files", n: 2},
 		{name: "10 keyshare files", n: 10},
 		{name: "No keyshare files", n: 0},
+		{name: "Large number of files", n: 100},
 	}
cmd/zetaclientd/utils.go (1)
110-120: Add documentation and error handling while preserving the efficient implementation.

The current implementation efficiently uses pre-allocation and functional filtering. However, it could benefit from better documentation and error handling.
+// btcChainIDsFromContext returns a slice of chain IDs for all Bitcoin chains in the AppContext.
+// Returns an empty slice if no Bitcoin chains are found or if the context is nil.
 func btcChainIDsFromContext(app *zctx.AppContext) []int64 {
+    if app == nil {
+        return []int64{}
+    }
     var (
         btcChains   = app.FilterChains(zctx.Chain.IsBitcoin)
         btcChainIDs = make([]int64, len(btcChains))
     )

     for i, chain := range btcChains {
+        if chain == nil {
+            continue
+        }
         btcChainIDs[i] = chain.ID()
     }

     return btcChainIDs
 }
zetaclient/testutils/mocks/tss.go (4)
17-17: Consider using a more descriptive type alias name.

The type alias test could be more descriptive. Consider using TestingT or TestContext to better convey its purpose.
-type test = require.TestingT
+type TestingT = require.TestingT
48-80: Improve error handling and control flow in FakePubKey method.

The method has several opportunities for improvement:

The return nil after FailNow() is unreachable

The nested if statements could be flattened for better readability

Consider this refactoring:
 func (tss *TSS) FakePubKey(pk any) *TSS {
 	if pk == nil {
 		tss.fakePubKey = nil
 		return tss
 	}

 	if zpk, ok := pk.(zetatss.PubKey); ok {
 		tss.fakePubKey = &zpk
 		return tss
 	}

 	raw, ok := pk.(string)
 	if !ok {
+		require.FailNowf(tss.t, "invalid type", "invalid type for fake pub key (%v)", pk)
+	}
-	require.True(tss.t, ok, "invalid type for fake pub key (%v)", pk)

 	if strings.HasPrefix(raw, "zetapub") {
 		zpk, err := zetatss.NewPubKeyFromBech32(raw)
 		require.NoError(tss.t, err)
 		tss.fakePubKey = &zpk
 		return tss
 	}

 	if strings.HasPrefix(raw, "0x") {
 		zpk, err := zetatss.NewPubKeyFromECDSAHexString(raw)
 		require.NoError(tss.t, err)
 		tss.fakePubKey = &zpk
 		return tss
 	}

-	tss.t.Errorf("invalid fake pub key format: %s", raw)
-	tss.t.FailNow()
-
-	return nil
+	require.FailNowf(tss.t, "invalid format", "invalid fake pub key format: %s", raw)
+	return tss // unreachable but keeps compiler happy
 }
82-89: Document ignored parameters in Sign method.

The method ignores several parameters which should be documented for clarity.
-func (tss *TSS) Sign(_ context.Context, digest []byte, _, _ uint64, _ int64) ([65]byte, error) {
+func (tss *TSS) Sign(
+    _ context.Context, // unused in mock
+    digest []byte,
+    _ uint64, // chainID unused in mock
+    _ uint64, // blockHeight unused in mock
+    _ int64,  // timestamp unused in mock
+) ([65]byte, error) {
91-111: Clarify backwards compatibility comment and document ignored parameters.

The comment about backwards compatibility needs more context, and ignored parameters should be documented.
-// just for backwards compatibility (ideally we should remove this)
+// The paused state check is maintained for backwards compatibility with existing tests.
+// TODO: Consider removing this check in a future cleanup.
 func (tss *TSS) SignBatch(
-    _ context.Context,
+    _ context.Context, // unused in mock
     digests [][]byte,
-    _, _ uint64,
-    _ int64,
+    _ uint64, // chainID unused in mock
+    _ uint64, // blockHeight unused in mock
+    _ int64,  // timestamp unused in mock
 ) ([][65]byte, error) {
zetaclient/tss/config.go (2)
16-20: Add documentation for exported constants

As these constants are part of the public API, they should be documented with clear descriptions of their purpose and any constraints.

Apply this diff:
 const (
+	// Port defines the default TSS server port
 	Port    = 6668
+	// Version represents the TSS protocol version following semantic versioning
 	Version = "0.14.0"
+	// Algo specifies the signature algorithm used for TSS operations
 	Algo    = tsscommon.ECDSA
 )
1-116: Consider architectural improvements

The file demonstrates good separation of concerns and error handling. However, consider these architectural improvements:

Move constants to a dedicated constants.go file as they might grow over time

Consider introducing a configuration struct to encapsulate TSS-related settings

Add interfaces for better testability and mock generation

Example configuration struct:
type TSSConfig struct {
    Port    int
    Version string
    Algo    string
    PreParamsPath string
    KeysPath string
}

func NewTSSConfig() *TSSConfig {
    return &TSSConfig{
        Port:    Port,
        Version: Version,
        Algo:    Algo,
    }
}
🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 23-26: zetaclient/tss/config.go#L23-L26
Added lines #L23 - L26 were not covered by tests

[warning] 28-31: zetaclient/tss/config.go#L28-L31
Added lines #L28 - L31 were not covered by tests

[warning] 33-33: zetaclient/tss/config.go#L33
Added line #L33 was not covered by tests

[warning] 39-42: zetaclient/tss/config.go#L39-L42
Added lines #L39 - L42 were not covered by tests

[warning] 44-49: zetaclient/tss/config.go#L44-L49
Added lines #L44 - L49 were not covered by tests

[warning] 51-54: zetaclient/tss/config.go#L51-L54
Added lines #L51 - L54 were not covered by tests

[warning] 56-56: zetaclient/tss/config.go#L56
Added line #L56 was not covered by tests

[warning] 68-69: zetaclient/tss/config.go#L68-L69
Added lines #L68 - L69 were not covered by tests

[warning] 90-91: zetaclient/tss/config.go#L90-L91
Added lines #L90 - L91 were not covered by tests

[warning] 95-96: zetaclient/tss/config.go#L95-L96
Added lines #L95 - L96 were not covered by tests

[warning] 103-104: zetaclient/tss/config.go#L103-L104
Added lines #L103 - L104 were not covered by tests

[warning] 111-113: zetaclient/tss/config.go#L111-L113
Added lines #L111 - L113 were not covered by tests
zetaclient/testutils/constant.go (1)
Line range hint 13-24: Enhance constant organization and documentation

While the constants are functionally grouped, there are opportunities to improve organization and documentation:

The TSS-related constants could be grouped under a clear section header

Consider maintaining consistent alignment for related constants

Each group should have a clear section comment explaining its purpose

Consider restructuring as follows:
+// TSS Constants
+// These constants define the TSS addresses and public keys used across different networks
+
 // TSSAddressEVMMainnet is the Ethereum TSS address for mainnet operations
-TSSAddressEVMMainnet = "0x70e967acFcC17c3941E87562161406d41676FD83"
-TSSAddressBTCMainnet = "bc1qm24wp577nk8aacckv8np465z3dvmu7ry45el6y"
-TSSPubKeyMainnet     = "zetapub1addwnpepqtadxdyt037h86z60nl98t6zk56mw5zpnm79tsmvspln3hgt5phdc79kvfc"
+TSSAddressEVMMainnet  = "0x70e967acFcC17c3941E87562161406d41676FD83"
+TSSAddressBTCMainnet  = "bc1qm24wp577nk8aacckv8np465z3dvmu7ry45el6y"
+TSSPubKeyMainnet      = "zetapub1addwnpepqtadxdyt037h86z60nl98t6zk56mw5zpnm79tsmvspln3hgt5phdc79kvfc"
🧰 Tools

🪛 Gitleaks (8.21.1)

16-16: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

19-19: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)
zetaclient/chains/solana/signer/withdraw.go (1)

Line range hint 93-97: Consider implementing dynamic compute budget optimization.

The current implementation uses a fixed fee of 5K lamports. Consider implementing dynamic compute budget and priority fees based on network conditions for optimal transaction processing.

Key considerations for implementation:

Monitor network congestion

Adjust compute unit limit based on instruction complexity

Implement priority fee calculation based on urgency

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 46-46: zetaclient/chains/solana/signer/withdraw.go#L46
Added line #L46 was not covered by tests
zetaclient/chains/bitcoin/signer/signer_keysign_test.go (3)
38-40: Enhance test setup with additional assertions

While the changes improve the initialization pattern, consider adding assertions to validate the TSS signer's state:
 suite.testSigner = mocks.NewTSSFromPrivateKey(suite.T(), privateKey.ToECDSA())

 addr, err := suite.testSigner.PubKey().AddressBTC(chains.BitcoinTestnet.ChainId)
 suite.Require().NoError(err)
+suite.Require().NotEmpty(addr)
+suite.Require().True(len(addr) > 0)
+
+// Verify the signer is properly initialized
+pubKey := suite.testSigner.PubKey()
+suite.Require().NotNil(pubKey)
 suite.T().Logf("segwit addr: %s", addr)
Line range hint 150-160: Improve error handling and remove magic numbers

The signature generation and validation could be enhanced:

Add granular error handling for signature component extraction

Replace magic numbers in the Sign method with named constants

Add signature validation before using it
+const (
+    SignAttempts = 10
+    SignTimeout  = 10
+)
+
-sig65B, err := tss.Sign(ctx, witnessHash, 10, 10, 0)
+sig65B, err := tss.Sign(ctx, witnessHash, SignAttempts, SignTimeout, 0)
+if err != nil {
+    return "", fmt.Errorf("failed to sign witness hash: %w", err)
+}
+
 R := &btcec.ModNScalar{}
-R.SetBytes((*[32]byte)(sig65B[:32]))
+if overflow := R.SetBytes((*[32]byte)(sig65B[:32])); overflow {
+    return "", fmt.Errorf("R component overflow")
+}
+
 S := &btcec.ModNScalar{}
-S.SetBytes((*[32]byte)(sig65B[32:64]))
+if overflow := S.SetBytes((*[32]byte)(sig65B[32:64])); overflow {
+    return "", fmt.Errorf("S component overflow")
+}
+
 sig := btcecdsa.NewSignature(R, S)
+
+// Validate signature before using it
+if !sig.Verify(witnessHash, tss.PubKey()) {
+    return "", fmt.Errorf("invalid signature")
+}
161-163: Consider adding public key validation

The witness construction could benefit from additional validation:
-pkCompressed := tss.PubKey().Bytes(true)
+pubKey := tss.PubKey()
+if pubKey == nil {
+    return "", fmt.Errorf("nil public key")
+}
+pkCompressed := pubKey.Bytes(true)
+if len(pkCompressed) == 0 {
+    return "", fmt.Errorf("invalid compressed public key")
+}
 txWitness := wire.TxWitness{append(sig.Serialize(), byte(hashType)), pkCompressed}
zetaclient/chains/solana/signer/withdraw_spl.go (1)

Line range hint 134-137: Consider implementing the compute budget optimization.

The TODO comment references issue #2599 regarding compute budget optimization. This could impact transaction efficiency and costs.

Consider implementing the compute budget optimization by:

Determining optimal compute unit limits based on transaction complexity

Implementing dynamic compute unit pricing based on network conditions

Adding configuration options for these parameters

Would you like assistance in implementing these optimizations?

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 60-60: zetaclient/chains/solana/signer/withdraw_spl.go#L60
Added line #L60 was not covered by tests
zetaclient/chains/evm/signer/sign.go (3)
Line range hint 109-122: Consider adding transaction metadata comments.

The SignCancel method performs a critical operation (nonce increment) by sending a self-transaction. Consider adding a comment in the transaction data to indicate this is an intentional cancellation transaction.
 func (signer *Signer) SignCancel(ctx context.Context, txData *OutboundData) (*ethtypes.Transaction, error) {
 	txData.gas.Limit = evm.EthTransferGasLimit
 	tx, _, _, err := signer.Sign(
 		ctx,
-		nil,
+		[]byte("nonce-increment-cancellation"),
 		signer.TSS().PubKey().AddressEVM(),
 		zeroValue, // zero out the amount to cancel the tx
 		txData.gas,
 		txData.nonce,
 		txData.height,
 	)
Line range hint 1-236: Standardize error handling patterns.

The file uses two different error wrapping patterns:

errors.Wrap(err, "message")

fmt.Errorf("message: %w", err)

Consider standardizing on one approach throughout the file for consistency. The errors.Wrap pattern is more concise and provides the same functionality.

Line range hint 109-122: Review gas limit settings.

Both SignCancel and SignGasWithdraw use the same EthTransferGasLimit. While this works, consider:

SignCancel could potentially use a lower gas limit as it's a simpler operation.

Other methods might benefit from explicit gas limits based on their complexity.

Consider defining operation-specific gas limits in a configuration file or constants, taking into account the complexity of each operation.

Also applies to: 124-141
zetaclient/tss/service_test.go (3)
32-115: Consider enhancing test coverage with additional scenarios.

While the current test coverage is good, consider adding:

Negative test cases for Sign and SignBatch (e.g., invalid block height, context cancellation)

Concurrent signing tests to verify thread safety

Documentation for each test scenario using Go's test documentation format

Example test documentation format:
t.Run("Sign/InvalidBlockHeight", func(t *testing.T) {
    // Given a TSS service and an invalid block height
    // When attempting to sign a message
    // Then it should return an appropriate error
})
239-241: Enhance key generation robustness in keySignerMock.

The current key generation method might produce collisions if messages contain the string representation of the delimiter.

Consider using a more robust serialization:
 func (m *keySignerMock) key(req keysign.Request) string {
-    return fmt.Sprintf("%s-%d:[%+v]", req.PoolPubKey, req.BlockHeight, req.Messages)
+    return fmt.Sprintf("%s:%d:%x", req.PoolPubKey, req.BlockHeight, 
+        crypto.Keccak256([]byte(strings.Join(req.Messages, ","))))
 }
202-229: Add signature validation in mock sign method.

The mock sign method should validate the generated signatures to ensure they match the input messages.

Add validation after signature generation:
 func (m *keySignerMock) sign(req keysign.Request) keysign.Response {
     // ... existing code ...
+    // Validate signatures
+    for _, sig := range signatures {
+        digest, _ := base64DecodeString(sig.Msg)
+        sigBytes := make([]byte, 65)
+        r, _ := base64DecodeString(sig.R)
+        s, _ := base64DecodeString(sig.S)
+        v, _ := base64DecodeString(sig.RecoveryID)
+        copy(sigBytes[0:32], r)
+        copy(sigBytes[32:64], s)
+        copy(sigBytes[64:], v)
+        
+        pubkey, err := crypto.Ecrecover(digest, sigBytes)
+        require.NoError(m.t, err)
+        require.Equal(m.t, crypto.FromECDSAPub(&m.privateKey.PublicKey), pubkey)
+    }
     return keysign.Response{
         Signatures: signatures,
         Status:     tsscommon.Success,
     }
 }
zetaclient/chains/evm/signer/sign_test.go (1)
18-19: LGTM! Consider extracting the TSS mock setup.

The simplified TSS mock instantiation is consistently applied across all test functions. However, since this setup is repeated in multiple test functions, consider extracting it into a helper function to reduce duplication.
+func setupTSSAndSigner(t *testing.T) (*mocks.TSS, *EvmSigner, error) {
+    tss := mocks.NewTSS(t)
+    evmSigner, err := getNewEvmSigner(t, tss)
+    return tss, evmSigner, err
+}
Also applies to: 102-103, 140-141, 178-179, 215-216
zetaclient/chains/evm/signer/signer_test.go (3)
39-44: Document the testing.T parameter and mock behavior

The function signature change to include *testing.T is good, but the function could benefit from improved documentation.

Add documentation explaining the testing context usage:
// getNewEvmSigner creates a new EVM chain signer for testing
+//
+// Parameters:
+//   - t: testing context for proper test failure reporting and mock setup
+//   - tss: optional TSS signer interface, if nil a new mock TSS will be created
70-70: Consider explicit mock behavior setup

The mock TSS creation could be more explicit about its behavior expectations.

Consider setting up explicit mock behavior:
-		tss = mocks.NewTSS(t)
+		mockTSS := mocks.NewTSS(t)
+		// Set up expected behavior for common operations
+		mockTSS.On("GetZetaConnectorAddress").Return(ConnectorAddress)
+		tss = mockTSS
Line range hint 1-270: Consider future improvements to test infrastructure

While not directly related to the current changes, consider these future improvements:

Add error handling in test utility functions

Move test data setup to fixtures

Add table-driven tests for better test coverage
zetaclient/chains/ton/signer/signer.go (2)
Line range hint 177-196: Add documentation for signature format and error cases

The SignMessage method would benefit from additional documentation:

Document the expected format of the 65-byte signature (R, S, V components)

Document potential error cases from TSS signing

Add the following documentation:
 // SignMessage signs TON external message using TSS
+// The resulting signature is a 65-byte array containing:
+// - R: first 32 bytes
+// - S: next 32 bytes
+// - V: recovery ID in the last byte
+// Returns error if:
+// - message hashing fails
+// - TSS signing fails
 func (s *Signer) SignMessage(ctx context.Context, msg Signable, zetaHeight, nonce uint64) error {
Line range hint 208-219: Enhance signature caching implementation

Consider the following improvements to the signature caching mechanism:

Make the cache size configurable

Add metrics for cache hits/misses

Add debug logging for cache operations

Example implementation:
 // because signed msg might fail due to high nonce,
 // we need to make sure that signature is cached to avoid redundant TSS calls
 func (s *Signer) getSignature(hash [32]byte) ([65]byte, bool) {
     sig, ok := s.signaturesCache.Get(hash)
+    if s.Logger().IsDebug() {
+        s.Logger().Debug().
+            Str("operation", "cache_get").
+            Bool("hit", ok).
+            Bytes("hash", hash[:]).
+            Msg("Signature cache lookup")
+    }
     if !ok {
         return [65]byte{}, false
     }
zetaclient/chains/evm/signer/signer_admin_test.go (1)
40-40: Consider extracting the EVM address retrieval into a helper function

While the change from tss.EVMAddress() to tss.PubKey().AddressEVM() is good and more explicit, the pattern is repeated across multiple test cases. Consider extracting this into a test helper function to reduce duplication.
+// getEvmAddress returns the EVM address from the TSS public key
+func getEvmAddress(tss *mocks.TSS) common.Address {
+    return tss.PubKey().AddressEVM()
+}

 func verifyTxSender(t *testing.T, tx *types.Transaction, expectedSender common.Address, signer types.Signer) {
-    verifyTxSender(t, tx, tss.PubKey().AddressEVM(), evmSigner.EvmSigner())
+    verifyTxSender(t, tx, getEvmAddress(tss), evmSigner.EvmSigner())
 }
Also applies to: 60-60, 75-75, 89-89, 121-121, 177-177, 236-236, 252-252, 309-309
zetaclient/chains/bitcoin/observer/observer_test.go (1)
Line range hint 126-156: Consider adding TSS-specific test cases

Given the TSS package revamp, consider adding test cases to verify:

TSS initialization with different configurations

Error handling when TSS operations fail

Edge cases specific to the new TSS implementation

Example test case structure:
{
    name:        "should handle TSS initialization failure",
    chain:       chain,
    btcClient:   btcClient,
    chainParams: params,
    coreClient:  nil,
    tss:         mocks.NewTSSWithError(t, "initialization error"),
    errorMessage: "TSS initialization failed",
},
contrib/localnet/docker-compose.yml (2)
115-116: Ensure consistent profiling configuration across zetaclients

The profiling configuration is only applied to zetaclient0. For consistency in development and testing, consider applying similar configuration to other zetaclients (1,2,3) with different ports.

Example configuration for other clients:
 zetaclient1:
   environment:
+    - PPROF_ADDR=0.0.0.0:6062
   ports:
+    - "6062:6062" # pprof

 zetaclient2:
   environment:
+    - PPROF_ADDR=0.0.0.0:6063
   ports:
+    - "6063:6063" # pprof

 zetaclient3:
   environment:
+    - PPROF_ADDR=0.0.0.0:6064
   ports:
+    - "6064:6064" # pprof
Line range hint 1-7: Enhance documentation for profiling capabilities

The file header comments should be updated to include information about the newly added profiling capabilities.
 # This docker-compose file configures the localnet environment
 # it contains the following services:
 # - ZetaChain with 2 nodes (zetacore0, zetacore1). When profile set to stress, 4 nodes will be created.
-# - A observer set with 2 clients (zetaclient0, zetaclient1). When profile set to stress, 4 clients will be created.
+# - A observer set with 2 clients (zetaclient0 [pprof:6061], zetaclient1). When profile set to stress, 4 clients will be created.
 # - An Ethereum node (eth)
 # - A secondary optional Ethereum node (eth2) enabled when profile is set to eth2
 # - A Bitcoin node (bitcoin)
zetaclient/chains/bitcoin/signer/signer_test.go (2)
47-48: Consider using test fixtures for private keys

While the current implementation works, using hardcoded private keys in tests can make maintenance difficult. Consider moving this to a test fixtures file or using a deterministic key generation function for tests.
-	tss := mocks.NewTSSFromPrivateKey(c, privateKey)
+	tss := mocks.NewTSSFromPrivateKey(c, testutils.GetTestPrivateKey())
Line range hint 256-357: Enhance test coverage with edge cases

The test suite is comprehensive but could benefit from additional test cases:

Maximum transaction value handling

Dust amount handling (amounts below minimum required)

Fee estimation edge cases

Consider adding these test cases:
{
    name:   "should fail on dust amount",
    tx:     wire.NewMsgTx(wire.TxVersion),
    to:     to,
    total:  0.00000100, // 100 satoshis
    amount: 0.00000090,
    nonce:  10000,
    fees:   big.NewInt(2000),
    fail:   true,
    message: "amount too small",
},
{
    name:   "should fail on maximum bitcoin value",
    tx:     wire.NewMsgTx(wire.TxVersion),
    to:     to,
    total:  21000000.0, // Maximum bitcoin supply
    amount: 21000001.0, // Exceeds maximum
    nonce:  10000,
    fees:   big.NewInt(2000),
    fail:   true,
    message: "amount exceeds maximum",
},
zetaclient/orchestrator/bootstap_test.go (1)
Line range hint 1-500: Consider enhancing test coverage with additional scenarios

While the current test coverage is comprehensive, consider adding these scenarios:

Error cases for chain initialization

Race conditions in dynamic chain updates

Edge cases for unsupported chains

Example test case structure:
t.Run("Should handle chain initialization errors", func(t *testing.T) {
    // ARRANGE
    invalidChain := chains.Chain{ChainId: -1} // Invalid chain
    mustUpdateAppContextChainParams(t, app, []chains.Chain{invalidChain})
    
    // ACT
    _, err := CreateSignerMap(ctx, tss, baseLogger, ts)
    
    // ASSERT
    assert.Error(t, err)
    assert.Contains(t, err.Error(), "invalid chain")
})
zetaclient/chains/evm/observer/observer_test.go (2)
120-120: Consider adding error handling for FakePubKey.

The change to use NewTSS(t) with FakePubKey is good, but consider handling potential errors from the FakePubKey call to maintain test robustness.
-		tss = mocks.NewTSS(t).FakePubKey(testutils.TSSPubKeyMainnet)
+		var err error
+		tss = mocks.NewTSS(t)
+		tss, err = tss.FakePubKey(testutils.TSSPubKeyMainnet)
+		require.NoError(t, err)
Line range hint 184-229: Consider adding TSS-specific test cases.

Given that this PR revamps the TSS package, consider adding test cases that specifically verify the observer's interaction with the TSS signer. This could include:

Testing TSS initialization failures

Verifying TSS signing behavior

Testing TSS pubkey validation

Example test case structure:
{
    name: "should handle TSS initialization failure",
    evmCfg: config.EVMConfig{
        Endpoint: "http://localhost:8545",
    },
    chainParams: params,
    evmClient:   evmClient,
    evmJSONRPC:  mocks.NewMockJSONRPCClient(),
    tss: func() interfaces.TSSSigner {
        mockTSS := mocks.NewTSS(t)
        mockTSS.On("Initialize").Return(fmt.Errorf("initialization error"))
        return mockTSS
    }(),
    fail:    true,
    message: "initialization error",
},
zetaclient/chains/bitcoin/signer/signer.go (1)
Line range hint 341-517: Consider refactoring large functions for better maintainability

The TryProcessOutbound function is complex and handles multiple responsibilities. Consider breaking it down into smaller, focused functions:

Input validation and preparation

Transaction building

Broadcasting and tracking

Error handling

This would improve:

Code maintainability

Testing capabilities

Error handling clarity

Example structure:
func (s *Signer) TryProcessOutbound(...) {
+    if err := s.validateOutboundInput(ctx, cctx, params); err != nil {
+        logger.Error().Err(err).Msg("invalid input")
+        return
+    }
+
+    tx, err := s.buildOutboundTransaction(ctx, params, btcObserver, height)
+    if err != nil {
+        logger.Error().Err(err).Msg("failed to build transaction")
+        return
+    }
+
+    if err := s.broadcastAndTrack(ctx, tx, params, zetacoreClient); err != nil {
+        logger.Error().Err(err).Msg("failed to broadcast")
+        return
+    }
}
zetaclient/chains/bitcoin/observer/observer.go (2)
Line range hint 341-394: Consider refactoring FetchUTXOs for better maintainability.

The FetchUTXOs method handles multiple responsibilities:

TSS address retrieval

UTXO fetching and filtering

State management

Telemetry updates

Consider breaking this down into smaller, focused functions for better maintainability and testability.
func (ob *Observer) FetchUTXOs(ctx context.Context) error {
    defer ob.handlePanic()
    
    if err := ob.refreshPendingNonce(ctx); err != nil {
        return fmt.Errorf("failed to refresh pending nonce: %w", err)
    }
    
-   bh, err := ob.btcClient.GetBlockCount()
-   if err != nil {
-       return fmt.Errorf("btc: error getting block height : %v", err)
-   }
-   maxConfirmations := int(bh)
+   maxConfirmations, err := ob.getMaxConfirmations()
+   if err != nil {
+       return err
+   }

-   tssAddr, err := ob.TSS().PubKey().AddressBTC(ob.Chain().ChainId)
-   if err != nil {
-       return fmt.Errorf("error getting bitcoin tss address")
-   }
+   tssAddr, err := ob.getTSSAddress()
+   if err != nil {
+       return err
+   }

    utxos, err := ob.btcClient.ListUnspentMinMaxAddresses(0, maxConfirmations, []btcutil.Address{tssAddr})
    if err != nil {
        return err
    }

-   sort.SliceStable(utxos, func(i, j int) bool {
-       if utxos[i].Amount == utxos[j].Amount {
-           if utxos[i].TxID == utxos[j].TxID {
-               return utxos[i].Vout < utxos[j].Vout
-           }
-           return utxos[i].TxID < utxos[j].TxID
-       }
-       return utxos[i].Amount < utxos[j].Amount
-   })
+   ob.sortUTXOs(utxos)

-   utxosFiltered := make([]btcjson.ListUnspentResult, 0)
-   for _, utxo := range utxos {
-       if utxo.Amount < bitcoin.DefaultDepositorFee {
-           continue
-       }
-       if utxo.Confirmations == 0 {
-           if !ob.isTssTransaction(utxo.TxID) {
-               continue
-           }
-       }
-       utxosFiltered = append(utxosFiltered, utxo)
-   }
+   utxosFiltered := ob.filterSpendableUTXOs(utxos)

    ob.updateUTXOState(utxosFiltered)
    return nil
}

func (ob *Observer) handlePanic() {
    if err := recover(); err != nil {
        ob.logger.UTXOs.Error().Msgf("BTC FetchUTXOs: caught panic error: %v", err)
    }
}

func (ob *Observer) getMaxConfirmations() (int, error) {
    bh, err := ob.btcClient.GetBlockCount()
    if err != nil {
        return 0, fmt.Errorf("btc: error getting block height : %v", err)
    }
    return int(bh), nil
}

func (ob *Observer) getTSSAddress() (btcutil.Address, error) {
    addr, err := ob.TSS().PubKey().AddressBTC(ob.Chain().ChainId)
    if err != nil {
        return nil, fmt.Errorf("error getting bitcoin tss address")
    }
    return addr, nil
}
🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 356-356: zetaclient/chains/bitcoin/observer/observer.go#L356
Added line #L356 was not covered by tests

Line range hint 341-341: Consider adding context timeout for FetchUTXOs.

The FetchUTXOs method accepts a context but doesn't utilize it for timeout or cancellation. Consider adding context checks to ensure the operation can be gracefully cancelled.
func (ob *Observer) FetchUTXOs(ctx context.Context) error {
+   if err := ctx.Err(); err != nil {
+       return fmt.Errorf("context error: %w", err)
+   }
    defer func() {
        if err := recover(); err != nil {
            ob.logger.UTXOs.Error().Msgf("BTC FetchUTXOs: caught panic error: %v", err)
        }
    }()
🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 356-356: zetaclient/chains/bitcoin/observer/observer.go#L356
Added line #L356 was not covered by tests
zetaclient/chains/solana/observer/outbound_test.go (1)
88-88: Maintain consistency in TSS mock initialization

Line 88 uses FakePubKey(tssPubKeyTest) while line 162 doesn't. Consider using consistent mock initialization patterns across test cases.

Apply this change:
-		tssOther := mocks.NewTSS(t)
+		tssOther := mocks.NewTSS(t).FakePubKey("0x0different_pub_key_for_test")
Also applies to: 162-162
zetaclient/chains/bitcoin/observer/outbound_test.go (3)
38-40: Consider using a test logger with configurable output level

The current logger implementation uses default settings. For better test debugging capabilities, consider configuring the log level explicitly.
-logger := zerolog.New(zerolog.NewTestWriter(t))
+logger := zerolog.New(zerolog.NewTestWriter(t)).Level(zerolog.DebugLevel).With().Timestamp().Logger()
Line range hint 252-400: Enhance test coverage for edge cases in UTXO selection

The UTXO selection tests cover basic scenarios but could benefit from additional edge cases:

Maximum number of inputs (considering Bitcoin's input limit)

Dust amount handling

Fee calculation edge cases

Would you like me to generate additional test cases for these scenarios?

Line range hint 402-518: Consider parameterizing UTXO consolidation tests

The consolidation tests use multiple similar test cases with different parameters. Consider using table-driven tests for better maintainability and coverage.
func TestUTXOConsolidation(t *testing.T) {
    testCases := []struct {
        name           string
        utxoCap        int
        amount         float64
        nonce          uint64
        rank           uint16
        expectedUtxos  int
        expectedAmount float64
    }{
        {
            name:           "should not consolidate",
            utxoCap:        10,
            amount:         0.01,
            nonce:          1,
            rank:          10,
            expectedUtxos:  2,
            expectedAmount: 0.01002,
        },
        // Add more test cases...
    }
    
    for _, tc := range testCases {
        t.Run(tc.name, func(t *testing.T) {
            // Test implementation
        })
    }
}
zetaclient/chains/evm/signer/signer.go (3)
Line range hint 391-486: Consider refactoring complex conditional logic

The SignOutboundFromCCTX method contains complex nested if-else conditions that handle different coin types and protocol versions. This complexity makes the code harder to maintain and test.

Consider refactoring using a strategy pattern:
+type SigningStrategy interface {
+    Sign(ctx context.Context, cctx *crosschaintypes.CrossChainTx, outboundData *OutboundData) (*ethtypes.Transaction, error)
+}
+
+type ComplianceStrategy struct{}
+type AdminCommandStrategy struct{}
+type V2ProtocolStrategy struct{}
+// ... other strategies
+
+func getSigningStrategy(cctx *crosschaintypes.CrossChainTx) SigningStrategy {
+    if compliance.IsCctxRestricted(cctx) {
+        return &ComplianceStrategy{}
+    }
+    if cctx.InboundParams.CoinType == coin.CoinType_Cmd {
+        return &AdminCommandStrategy{}
+    }
+    // ... other strategy selections
+}
This refactoring would:

Improve testability by isolating each signing strategy

Make the code more maintainable by removing nested conditions

Make it easier to add new signing strategies in the future

Line range hint 487-553: Enhance error handling in BroadcastOutbound

While the exponential backoff implementation is good, the error handling could be improved:

Consider these improvements:

Extract backoff logic to a reusable utility:
func withExponentialBackoff(ctx context.Context, maxRetries int, initialBackoff time.Duration, op func() error) error {
    backoff := initialBackoff
    for i := 0; i < maxRetries; i++ {
        if err := op(); err == nil {
            return nil
        }
        time.Sleep(backoff)
        backoff *= 2
    }
    return fmt.Errorf("operation failed after %d retries", maxRetries)
}
Add context timeout for the entire broadcast operation:
ctx, cancel := context.WithTimeout(ctx, 32*time.Second) // Sum of all backoff periods
defer cancel()
Line range hint 1-24: Enhance package documentation

The package documentation could be more comprehensive to help developers understand the complex signing flows.

Consider adding detailed package documentation:
-// Package signer implements the ChainSigner interface for EVM chains
+// Package signer implements the ChainSigner interface for EVM chains.
+//
+// The package provides functionality for:
+// - Transaction signing using TSS (Threshold Signature Scheme)
+// - Outbound transaction processing and broadcasting
+// - Support for multiple coin types (Gas, ERC20, Zeta)
+// - Protocol version compatibility (V1, V2)
+//
+// Key types:
+// - Signer: Main implementation of ChainSigner for EVM chains
+// - OutboundData: Contains transaction data for outbound processing
zetaclient/chains/base/observer_test.go (1)
315-324: Consider extracting address prefixes as constants

The switch statement improves readability, but the address prefixes ("bc" for Bitcoin and "0x" for Ethereum) could be extracted as constants to improve maintainability and reusability.
+const (
+    btcAddressPrefix = "bc"
+    ethAddressPrefix = "0x"
+)
 
 switch tt.addrExpected {
 case "":
     require.Equal(t, "", addr)
 case "btc":
-    require.True(t, strings.HasPrefix(addr, "bc"))
+    require.True(t, strings.HasPrefix(addr, btcAddressPrefix))
 case "eth":
-    require.True(t, strings.HasPrefix(addr, "0x"))
+    require.True(t, strings.HasPrefix(addr, ethAddressPrefix))
 default:
     t.Fail()
 }
zetaclient/chains/bitcoin/observer/outbound.go (1)
Line range hint 563-571: Enhance input validation in checkTSSVin.

The TSS input verification is critical for security. Consider adding the following validations:

Check if the witness script format is correct (P2WPKH)

Validate signature length in witness[0]
 pubKeyTss := hex.EncodeToString(ob.TSS().PubKey().Bytes(true))
 for i, vin := range vins {
     // The length of the Witness should be always 2 for SegWit inputs.
     if len(vin.Witness) != 2 {
         return fmt.Errorf("checkTSSVin: expected 2 witness items, got %d", len(vin.Witness))
     }
+    // Validate signature length
+    if len(vin.Witness[0]) < 70 || len(vin.Witness[0]) > 74 {
+        return fmt.Errorf("checkTSSVin: invalid signature length %d", len(vin.Witness[0]))
+    }
     if vin.Witness[1] != pubKeyTss {
         return fmt.Errorf("checkTSSVin: witness pubkey %s not match TSS pubkey %s", vin.Witness[1], pubKeyTss)
     }
🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 563-563: zetaclient/chains/bitcoin/observer/outbound.go#L563
Added line #L563 was not covered by tests
zetaclient/testutils/mocks/zetacore_client.go (1)
866-892: Consider adding method documentation.

While this is a generated file, it would be helpful to add documentation for the PostVoteTSS method describing its purpose and parameters, especially since it's part of the TSS (Threshold Signature Scheme) functionality which is being revamped.

Add documentation above the method:
+// PostVoteTSS mocks the method for voting on TSS-related operations.
+// Parameters:
+//   - ctx: The context for the operation
+//   - tssPubKey: The TSS public key
+//   - keyGenZetaHeight: The block height at which key generation occurred
+//   - status: The status of the TSS operation
+// Returns a transaction hash and any error encountered.
 func (_m *ZetacoreClient) PostVoteTSS(ctx context.Context, tssPubKey string, keyGenZetaHeight int64, status chains.ReceiveStatus) (string, error) {
zetaclient/chains/evm/observer/outbound_test.go (2)
445-446: Consider extracting TSS mock initialization to a helper function.

The TSS mock initialization with a fake public key is a common setup pattern that could be reused across test cases.
+func newTSSMockWithKey(t *testing.T, pubKey string) *mocks.TSS {
+    return mocks.NewTSS(t).FakePubKey(pubKey)
+}
+
 // In test function
-tss := mocks.NewTSS(t).FakePubKey(testutils.TSSPubKeyMainnet)
+tss := newTSSMockWithKey(t, testutils.TSSPubKeyMainnet)
479-479: Maintain consistency in TSS mock initialization.

For better test clarity, consider explicitly indicating that this is a TSS mock without a public key, making the test's intention more apparent.
-tss := mocks.NewTSS(t)
+// Using the helper function suggested above
+tss := newTSSMockWithKey(t, "") // explicitly indicate no pubkey for negative test
zetaclient/chains/evm/observer/inbound.go (2)
617-618: Enhance error message and optimize address comparison

The error message could be more descriptive, and the address comparison could be optimized by storing the TSS address in a variable to avoid multiple conversions.
+       tssAddr := ob.TSS().PubKey().AddressEVM()
-       if ethcommon.HexToAddress(tx.To) != ob.TSS().PubKey().AddressEVM() {
-               return "", fmt.Errorf("tx.To %s is not TSS address", tx.To)
+       if ethcommon.HexToAddress(tx.To) != tssAddr {
+               return "", fmt.Errorf("invalid recipient address: expected TSS address %s, got %s", tssAddr.Hex(), tx.To)
Line range hint 456-458: Address TODO for inbound observation control

The current method of disabling inbound observation through code comments is not ideal. A more robust configuration-based approach should be implemented.

Would you like me to help implement a configuration-based solution for controlling inbound observation? This could include:

Adding a configuration flag in the chain parameters

Implementing a dynamic control mechanism through the admin API

Adding proper logging and metrics for the disabled state
changelog.md (1)
27-27: Enhance changelog entry for TSS package revamp.

The changelog entry should provide more context about the TSS package changes and maintain consistency with other entries by ending with a period.

Apply this diff to improve the entry:
-* [3170](https://github.com/zeta-chain/node/pull/3170) - revamp TSS package in zetaclient
+* [3170](https://github.com/zeta-chain/node/pull/3170) - revamp TSS package in zetaclient to improve maintainability and simplify logic.
zetaclient/tss/healthcheck.go (1)
63-70: Enhance panic handling with detailed context

While the deferred function recovers from panics, adding more context to the error logging can aid in debugging.

Consider including the stack trace or additional identifiers:
 defer func() {
 	if r := recover(); r != nil {
 		logger.Error().
 			Str("peer_id", peerID.String()).
+			Bytes("stack", debug.Stack()).
 			Interface("panic", r).
 			Msg("panic during ping")
 	}
 }()
This provides more information about the panic, facilitating easier troubleshooting.
zetaclient/tss/crypto.go (6)
61-68: Pass Pointers for Efficiency and Consistency

In the NewPubKeyFromECDSA function, the ecdsa.PublicKey is passed by value and then its address is taken within the function. Passing large structs by value can be inefficient and may lead to unintended copies.

Modify the function to accept a pointer to ecdsa.PublicKey:
-func NewPubKeyFromECDSA(pk ecdsa.PublicKey) (PubKey, error) {
+func NewPubKeyFromECDSA(pk *ecdsa.PublicKey) (PubKey, error) {
     compressed := elliptic.MarshalCompressed(pk.Curve, pk.X, pk.Y)
     return PubKey{
         cosmosPubKey: &secp256k1.PubKey{Key: compressed},
-        ecdsaPubKey:  &pk,
+        ecdsaPubKey:  pk,
     }, nil
 }
This change avoids unnecessary copying and aligns with Go conventions for handling mutable data structures.

86-86: Handle Errors Explicitly When Calling Functions

The NewPubKeyFromECDSAHexString function calls NewPubKeyFromECDSA(*pk) but does not handle any potential errors that might arise if NewPubKeyFromECDSA changed to return an error in the future.

To future-proof the code, consider capturing the returned error:
-    return NewPubKeyFromECDSA(*pk)
+    pubKey, err := NewPubKeyFromECDSA(pk)
+    if err != nil {
+        return PubKey{}, errors.Wrap(err, "unable to create PubKey from ECDSA")
+    }
+    return pubKey, nil
This ensures that any errors are properly handled and propagated.

Would you like assistance in updating the related code to handle errors appropriately?

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 86-86: zetaclient/tss/crypto.go#L86
Added line #L86 was not covered by tests

31-35: Avoid Aliasing Standard Library Functions

Assigning standard library functions to local variables like base64Decode and base64DecodeString can reduce code clarity and make the codebase harder to maintain.

Consider using the standard library functions directly for improved readability:
-var (
-    base64Decode       = base64.StdEncoding.Decode
-    base64DecodeString = base64.StdEncoding.DecodeString
-    base64EncodeString = base64.StdEncoding.EncodeToString
-)
This makes the code more explicit and easier for other developers to understand without needing to trace variable assignments.

215-220: Optimize Digest Combination for Better Performance

The combineDigests function concatenates all digest strings into a single string before hashing. This approach can be inefficient, especially with large datasets.

Consider using a hash function that can process each digest incrementally:
func combineDigests(digestList []string) []byte {
    h := chainhash.DoubleHashB(nil)
    for _, digest := range digestList {
        h = chainhash.DoubleHashB(append(h, []byte(digest)...))
    }
    return h
}
This method avoids creating large intermediate strings and can improve performance.

I can help refactor this function if you would like to implement this optimization.

51-52: Increase Test Coverage for Error Scenarios

Lines 51-52 involve error handling when decompressing a public key. Currently, these lines are not covered by tests.

Include unit tests that provide invalid or malformed public keys to trigger this error path. This will ensure that the function behaves correctly under failure conditions.

Would you like assistance in creating unit tests to cover these cases?

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 51-52: zetaclient/tss/crypto.go#L51-L52
Added lines #L51 - L52 were not covered by tests

76-84: Add Unit Tests for Hex String Parsing Errors

The error handling in NewPubKeyFromECDSAHexString (lines 76-79 and 81-84) is not covered by tests. Testing these paths will enhance code reliability.

Develop unit tests that pass invalid hex strings or corrupted public keys to verify that the function handles errors gracefully.

I'm available to help write these tests if needed.

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 76-79: zetaclient/tss/crypto.go#L76-L79
Added lines #L76 - L79 were not covered by tests

[warning] 81-84: zetaclient/tss/crypto.go#L81-L84
Added lines #L81 - L84 were not covered by tests
zetaclient/tss/service.go (2)
91-110: Avoid failing service initialization due to metrics setup

In the WithMetrics function, an error returned from zetacore.GetKeyGen(ctx) causes the entire service initialization to fail. This means that if there's an issue retrieving the keygen information, the TSS service won't start, which may not be desirable. Consider handling this error more gracefully, such as by logging a warning and proceeding without metrics, to ensure the service remains operational even if metrics setup encounters issues.

291-295: Ensure digests slice is not empty before accessing

When selecting a digest for indexing blame data, the code accesses digests[0] without checking its length in the else branch. Although the length of digests is validated earlier, adding an explicit check here improves code safety and readability.

Apply this diff to add an explicit check:
 } else {
-    digest = digests[0]
+    if len(digests) > 0 {
+        digest = digests[0]
+    } else {
+        return errors.New("no digests available for blame indexing")
+    }
 }
cmd/zetaclientd/start.go (1)

33-37: Document the newly introduced environment variables

The addition of envFlagPostBlame and envPprofAddr introduces important configuration options. Ensure these environment variables are thoroughly documented in the application's configuration guide to assist users in proper setup and utilization.
zetaclient/tss/setup.go (1)
275-275: Simplify the isEmptyPeerID function for clarity

The function isEmptyPeerID checks for multiple representations of an empty Peer ID. Streamlining this check enhances readability and reduces potential errors.

Apply this diff to simplify the function:
- func isEmptyPeerID(id string) bool {
-     return id == "" || id == "0" || id == "000000000000000000000000000000" || id == peer.ID("").String()
- }
+ func isEmptyPeerID(id string) bool {
+     return id == "" || id == peer.ID("").String()
+ }
zetaclient/tss/keygen.go (5)
89-89: Ensure consistent access to the zetacore instance

In the KeygenCeremony function, the code uses the variable zc directly to call GetTSS(ctx). For consistency and clarity, consider using the zetacore instance from the keygenCeremony struct throughout the method.

Proposed change:
-return zc.GetTSS(ctx)
+return ceremony.zetacore.GetTSS(ctx)
129-129: Use Msg instead of Msgf when no formatting is required

The logging statements use Msgf without any formatting directives. Replace Msgf with Msg to improve clarity and reduce unnecessary overhead.

Proposed fixes:

At line 129:
-	Msgf("Waiting for keygen block to arrive or new keygen block to be set")
+	Msg("Waiting for keygen block to arrive or new keygen block to be set")
At line 134:
-	Msgf("Waiting for keygen finalization")
+	Msg("Waiting for keygen finalization")
Also applies to: 134-134

259-261: Handle context cancellation in loops to enhance responsiveness

In the waitForBlock function, the loop includes a time.Sleep without checking for context cancellation. To allow for graceful shutdowns and to avoid unnecessary delays when the context is canceled, consider monitoring the context within the loop.

Suggested change:

Replace the time.Sleep with a select statement to handle context cancellation:
-for {
-	time.Sleep(time.Second)
+for {
+	select {
+	case <-ctx.Done():
+		return ctx.Err()
+	case <-time.After(time.Second):
+		// continue the loop
+	}
280-280: Unexported function TestKeySign may not need to be exported

The function TestKeySign is exported but may not need to be accessed outside the package. If it is intended for internal use, consider making it unexported to reduce the package's API surface and potential misuse.

Suggested change:
-func TestKeySign(keySigner KeySigner, tssPubKeyBec32 string, logger zerolog.Logger) error {
+func testKeySign(keySigner KeySigner, tssPubKeyBec32 string, logger zerolog.Logger) error {
271-271: Check for potential errors when writing to hash functions

While the hasher.Write method currently does not return an error, future changes to the standard library may introduce error returns. To make the code resilient to such changes, consider checking the return value.

Suggested change:
-hasher.Write(bytes)
+if _, err := hasher.Write(bytes); err != nil {
+	return "", errors.Wrap(err, "failed to write bytes to hasher")
+}

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 495235e and b5c367a.

📒 Files selected for processing (58)

changelog.md (1 hunks)
cmd/zetaclientd/initconfig.go (2 hunks)
cmd/zetaclientd/start.go (4 hunks)
cmd/zetaclientd/utils.go (3 hunks)
contrib/localnet/docker-compose.yml (1 hunks)
zetaclient/chains/base/observer.go (1 hunks)
zetaclient/chains/base/observer_test.go (7 hunks)
zetaclient/chains/base/signer_test.go (2 hunks)
zetaclient/chains/bitcoin/observer/observer.go (1 hunks)
zetaclient/chains/bitcoin/observer/observer_test.go (2 hunks)
zetaclient/chains/bitcoin/observer/outbound.go (1 hunks)
zetaclient/chains/bitcoin/observer/outbound_test.go (6 hunks)
zetaclient/chains/bitcoin/observer/rpc_status.go (1 hunks)
zetaclient/chains/bitcoin/signer/signer.go (2 hunks)
zetaclient/chains/bitcoin/signer/signer_keysign_test.go (3 hunks)
zetaclient/chains/bitcoin/signer/signer_test.go (4 hunks)
zetaclient/chains/evm/observer/inbound.go (2 hunks)
zetaclient/chains/evm/observer/inbound_test.go (1 hunks)
zetaclient/chains/evm/observer/observer_test.go (4 hunks)
zetaclient/chains/evm/observer/outbound.go (2 hunks)
zetaclient/chains/evm/observer/outbound_test.go (2 hunks)
zetaclient/chains/evm/signer/sign.go (1 hunks)
zetaclient/chains/evm/signer/sign_test.go (12 hunks)
zetaclient/chains/evm/signer/signer.go (2 hunks)
zetaclient/chains/evm/signer/signer_admin_test.go (14 hunks)
zetaclient/chains/evm/signer/signer_test.go (6 hunks)
zetaclient/chains/interfaces/interfaces.go (3 hunks)
zetaclient/chains/solana/observer/observer_test.go (1 hunks)
zetaclient/chains/solana/observer/outbound.go (1 hunks)
zetaclient/chains/solana/observer/outbound_test.go (5 hunks)
zetaclient/chains/solana/signer/whitelist.go (1 hunks)
zetaclient/chains/solana/signer/withdraw.go (1 hunks)
zetaclient/chains/solana/signer/withdraw_spl.go (1 hunks)
zetaclient/chains/ton/observer/inbound_test.go (1 hunks)
zetaclient/chains/ton/observer/observer_test.go (2 hunks)
zetaclient/chains/ton/observer/outbound.go (2 hunks)
zetaclient/chains/ton/signer/signer.go (1 hunks)
zetaclient/chains/ton/signer/signer_test.go (2 hunks)
zetaclient/orchestrator/bootstap_test.go (2 hunks)
zetaclient/testutils/constant.go (1 hunks)
zetaclient/testutils/mocks/tss.go (1 hunks)
zetaclient/testutils/mocks/tss_signer.go (0 hunks)
zetaclient/testutils/mocks/zetacore_client.go (1 hunks)
zetaclient/tss/concurrent_keysigns_tracker.go (0 hunks)
zetaclient/tss/concurrent_keysigns_tracker_test.go (0 hunks)
zetaclient/tss/config.go (1 hunks)
zetaclient/tss/config_test.go (1 hunks)
zetaclient/tss/crypto.go (1 hunks)
zetaclient/tss/crypto_test.go (1 hunks)
zetaclient/tss/generate.go (0 hunks)
zetaclient/tss/healthcheck.go (1 hunks)
zetaclient/tss/keygen.go (1 hunks)
zetaclient/tss/readme.md (1 hunks)
zetaclient/tss/service.go (1 hunks)
zetaclient/tss/service_test.go (1 hunks)
zetaclient/tss/setup.go (1 hunks)
zetaclient/tss/tss_signer.go (0 hunks)
zetaclient/tss/tss_signer_test.go (0 hunks)

💤 Files with no reviewable changes (6)

zetaclient/testutils/mocks/tss_signer.go
zetaclient/tss/concurrent_keysigns_tracker.go
zetaclient/tss/concurrent_keysigns_tracker_test.go
zetaclient/tss/generate.go
zetaclient/tss/tss_signer.go
zetaclient/tss/tss_signer_test.go

🧰 Additional context used

📓 Path-based instructions (49)

cmd/zetaclientd/initconfig.go (1)