refactor: change how addresses are derived

[meeh0w]

Description

• CP-9730
• Related VM Modules PR: https://github.com/ava-labs/vm-modules/pull/223

Changes

• Includes a schema migration for the secrets:

  • Instead of storing xpub and xpubXP, all primary wallets now store a collection of publicKeys: AddressPublicKey[].
    • Each AddressPublicKey includes the key itself (hex-encoded) and information on the derivation path that was used when it was derived (derivationPath and curve (either secp256k1 or ed25519)).
    • Some AddressPublicKeys can also include a btcWalletPolicyDetails (which did not go through any changes).
  • Some wallet types (i.e. Ledger and Keystone) will also store extendedPublicKeys collection.

• Addresses are now computed using VM modules. To compute the addresses, VM Modules will build the required derivation paths and request public keys to be derived (so they can use them to compute the addresses):

  • Please see the attached diagram for information on what the expected flow of information now is:
    

• Includes the refactoring needed to support the new schema + updated tests.

• In the migrations code, I added a new type of migration - one that requires information from a different storage key.

  • This was needed because for some wallet types (i.e. Seed Phrase / Ledger / Keystone), I needed to know how many public keys need to be derived in order to keep the same amount of accounts after migration completes. Therefore I had to query the accounts storage space as a dependency of the migration.

Rationale

The previous approach was not very generic -- it relied on passing multiple parameters to VM Modules, many of which were ignored by some modules and required by others. For example:

• EvmModule only relied on the extended public key (passed in as xpub)
• BitcoinModule relied on the extended public key (xpub) and network.isTestnet.
• AvalancheModule relied on the X/P extended public key (xpubXP) and multiple properties of the Network (isTestnet and isDevnet, which boiled down to the network's HRP)

Some implementations even relied on WalletType -- an implementation detail of the wallet that the modules should not care about at all.
Others did not care about most of the parameters they received. This made the interface for getAddress() method quite complex/bloated.

Notes

• The existing PubKeyType { evm: string; xp?: string; ed25519?: string } is still alive in the code.
  • It is still used in the onboarding frontend, which I did not want to change at the moment as to not bloat the PR even further
  • It is also used by avalanche_getAccountPubKey, which I wanted to keep backwards-compatible (but we should update the response for that somewhat soon, as with the addition of ed25519 it became a bit confusing).

Testing

• Full regression of the onboarding flow
• Full regression of the Import with <XYZ> flows
• Full regression of the Add new address flows
• Full regression of the Export private key flow
• Tests of the migration itself (I believe storage snapshots used by the QA team will be super helpful with that -- we just need to make sure we have snapshots for each wallet type, possibly even for combinations of those).

For all of the above, we need to make sure the wallet's state remains the same:

• no accounts are missing
• account addresses stay the same (with the exception of HVM addresses - those will change, as it's now using 9000 coin type instead of 60 (same as X/P chains, as opposed to EVM).
• for Ledger, remember to check both BIP44 and Ledger Live derivation paths

Screenshots:

No visual changes

Checklist for the author

• I've covered new/modified business logic with Jest test cases.
• ⏳ I've tested the changes myself before sending it to code review and QA.
  • I'm still testing scenarios that come to my mind.

[meeh0w]

IIRC it's the slip10 package that we use for deriving keys with ed25519 curve that needed this version of node (or newer).

[meeh0w]

These could probably use better names (those are paths for the legacy xpub and xpubXP).

[meeh0w]

Use .publicKeyRaw here -- publicKey is 0-prefixed (33 bytes total), we need the raw 32 bytes.

[meeh0w]

Done in d218327

[csabbee]

Kudos for this, really well done!
I'm not saying I did an all around testing but, I did played around with the dev build and didn't run into anything 🔥

[gergelylovas]

Very nice work. Especially like the documentation and the new clean secret storage model.

[gergelylovas]

Please remove

[gergelylovas]

Is there a particular reason why the module manager not injected like the Network and Secrets service?

[gergelylovas]

Should we use some more specific getter which doesn't assume all of the modules are always loaded?

[gergelylovas]

please remove if not needed

[gergelylovas]

Do we need to define the addressResolver here?
Can it just inject the moduleManager via DI like it does with it's other dependencies

[gergelylovas]

Should we have test scenarios where the optional properties are missing?

[gergelylovas]

How do we ensure version consistency here?
Since the ACCOUNTS_STORAGE_KEY's migrations are running earlier than the wallet migrations (for now) it is possible that a future migration on the account storage will break this V5 migration. We should make sure the key's migration order stays the same.
Maybe we should use the types from the account service? Then at least a change in the types would trigger a TS error in here.