CIP-0005, CIP-0036 | Added clarity to voting key definitions #427
Conversation
rphair
added
the
Update
CIP-0036/README.md
Outdated
| ### Voting key derivation path | ||
| ### Voting key | ||
|
|
||
| The terms voting keys and vote keys should be used interchangeably to indicate the keys described in this specification. The term governance should not be associated with these keys. |
There was a problem hiding this comment.
Is the vote/voting dichotomy worth it? For talking about in natural language it's OK, but for code it's not great if you have two ways of naming the same thing. So in the section "Tooling" I'd propose to only have one thing, or one of them strongly preferred (I'd go for the shorter version if other reasons are absent).
Otherwise, anyone working with two tools that use different names, will have to choose one of the ways, and then his code will be inconsistent with the other tool (and everyone dealing with that code will have to wonder "why are we using vote while the tool uses voting ". And people will needlessly get stupid bugs when integrating tools/libraries and mistakenly use one name instead of the other.
[A mess of this kind was created by reward account / reward address / stake address / staking address for that particular type of Cardano address. Every time someone new comes to the ecosystem, he has to think about whether these different names refer to the same thing or not, and ask around for clarification.]
There was a problem hiding this comment.
Thanks for your suggestion - you raise a good point, I agree. I will change the wording to prefer the term "vote" for tooling.
|
As talked in the Discord-Chat, we should also add So currently we would have the following key types for the json format:
The hardware related key/files via cardano-hw-cli would than be:
|
|
I agree with the thought we want to have types/description to identify these key types so you can use them across multiple tools and don't shoot yourself in the foot, however; I think we should be very specific in the purpose for the keys rather than using a generic "Vote" context. Ideally, keys used by Catalyst would have a Catalyst Prefix and keys used for on-chain would have a separate prefix (e.g. DRep), and the the derivation paths would not be the same for security reasons. It's a bad idea in my opinion to use the same keys for multiple purposes. This is primarily why we created the type system in the first place to prevent people from accidentally using a payment key as a cold key for their stake pool. While it is possible at a cryptographic level, we wanted people to not accidentally do it. |
|
Going with the suggestion of @disassembler, we could do the following than for catalyst voting specific: Catalyst Voting Keys should be derived from path CLI based .vkey/.skey json format:
1: Not sure if we need an extended version here, tools can strip the last bytes of an extended one and the result would be a normal verification key. But maybe just specify it to have a complete set. The hardware related .vkey/.hwsfile via cardano-hw-cli in json format:
|
|
@gitmachtl @disassembler On the other hand, it's possible to make the distinction on the level of cardano-hw-cli, but the cli tool must know what is catalyst and what is not --- so far the key derivation path is the same AFAIK, so it would have to just be told when writing keys obtained from a HW wallet to a file. |
|
we can for now change the case DELEGATION_KEY: {
STATIC_ASSERT(SIZEOF(subctx->stateData.delegation.votingPubKey) == GOVERNANCE_VOTING_PUBLIC_KEY_LENGTH, "wrong voting public key size");
switch (subctx->stateData.votingPurpose) {
case 0:
ui_displayBech32Screen(
"Voting public key",
"cvote_vk",
subctx->stateData.delegation.votingPubKey, GOVERNANCE_VOTING_PUBLIC_KEY_LENGTH,
callback
);
break;
default:
ui_displayBech32Screen(
"Voting public key",
"ed25519_vk",
subctx->stateData.delegation.votingPubKey, GOVERNANCE_VOTING_PUBLIC_KEY_LENGTH,
callback
);
break;
}
break;
}in the cardano-app ? as we have only catalyst for now, i think we can code it for that atm right? |
|
@gitmachtl No. The voting purpose comes in the last APDU, so it is not known at the moment delegations are processed. (This could be changed.) |
|
@disassembler @gitmachtl @janmazak Thanks everyone for your insights on this, I really appreciate the input. I see two options here:
I believe intent of CIP-36's design was to create a generic governance standard which could be used for different projects. For this, a derivation path was chosen for keys so that these keys could be used across projects. So although Catalyst is currently the only user of With this in mind and reading everyone's thoughts I see two options; 1. We name these keys after Catalyst, which does make sense as Catalyst is the only current implementer. This does not stop other projects from using these same keys in the future as per CIP-36's design. 2. We name these keys after the CIP itself, making these keys not tied to Catalyst which may make this standard more attractive to other projects at the risk of making things confusing. |
|
@Ryun1 @disassembler @janmazak ok, so if we go with your type suggestion @Ryun1 but keep the purpose also in the description, we could do it like: CLI based .vkey/.skey json format:
The hardware related .vkey/.hwsfile via cardano-hw-cli in json format:
So that it is clear by the type how the keys are derived (via CIP36 specification), but the usecase for a specific purpose is reflected in the description. And the bech prefix is a generic (cardano) cvote_vk/sk. So if other vote-purposes come alone in the future, we simply add another description. Tools like hw-cli, or the spo scripts, cntools, can write out the files with the right type & description depending on the purpose/path. HW-Wallets would only show the generic cvote_ prefixed bech string for the voting keys. @JaredCorduan what do you think? |
rphair
changed the title
I think what you have proposed sounds great! I appreciate the effort to reduce any confusion that could arise from the voting keys used in Catalyst and those related to CIP-1694. |
|
FYI @JaredCorduan @gitmachtl @Ryun1 @janmazak this is on the CIP Meeting agenda for tomorrow & when @KtorZ is also there we can assess whether there is a consensus about #427 (comment), and if so then we could be ready to approve & merge this (cc @disassembler). |
sounds pretty good to me :-) |
…-foundation#427) * added cip-36 style vote key bech32 prefixes to cip-05 * Clarified CIP-36 style voting keys * Added preference for the term vote keys in implmentations * Aligned with gitmachtl's suggestions
Motivation
Proposed Changes
CIP-05
cvote_skandcvote_vkprefixes to be used when Bech32 encoding CIP-36's voting keys. As per gitmachtl's suggestion.CIP-36
Rationale
With these changes we are trying to avoid confusion of CIP-36's vote keys with current and future protocol governance keys and processes.
CIP-05
gov_skandgov_vkwhich were intended to relate to such keys, are likely to cause confusion, so I have added new prefixes.gov_skandgov_vk- we intend to reserves these prefixes for potential use in the future protocol governance.vote_skandvote_vk- we intend to reserves these prefixes for potential use in the future protocol governance.CIP-36
keyType's was the level of clarity that was requested, I believe.keyTypewith descriptions better satisfied the concerns raised in comments on this PR.keyTypedescriptions we cater for future use of these CIP-36 vote keys. This was suggested by gitmachtl here.Note: Submitted as one PR so the related changes are kept together, but if its preferable to have 2 PR's please advise.