-
Notifications
You must be signed in to change notification settings - Fork 747
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Remove VC response signing #5423
Comments
cc @jmcruz1983 @mcdee @barnabasbusa Do any of you use this feature? |
cc @adaszko |
I'm happy for singing to be removed. You've made a good argument that it's unlikely to be valuable to users. Therefore it's not worth its weight and an unlikely candidate for standardisation. |
Thanks for the ping; Vouch does not use this feature. |
in favour - complexity
+ mantainable |
Also in favor. I prefer more standard solutions, and not one offs by each clients. |
We're OK with removing that as well. We do not use that feature. |
We do not use / do not intend to use it. Securing network level seems like a much better place to do it than secp256k1 between the VC API client and the VC. |
Completed in #5529 🎉 |
Description
Currently the validator client signs its responses using a secp256k1 key. Lighthouse is the only client to do this, and there is no cross-client standardisation on signed responses.
The reasons to keep response signing are:
The reasons to remove response signing are:
Version
Lighthouse v5.1.0
Steps to resolve
We'll leave this issue open for comments from users & developers. If no compelling argument is made for keeping response signing, then I think it should be removed.
Additional Info
Related:
The text was updated successfully, but these errors were encountered: