[#9749] Support importing private key and seed

[flexsurfer]

fixes #9749

QA: keycard is not supported #10101

[ghost]

Pull Request Checklist

• Docs: Updated the documentation, if affected
• Docs: Added or updated inline comments explaining intention of the code
• Tests: Ensured that all new UI elements have been assigned accessibility IDs
• Tests: Signaled need for E2E tests with label, if applicable
• Tests: Briefly described what was tested and what platforms were used
• UI: In case of UI changes, ensured that UI matches Figma
• UI: In case of UI changes, requested review from a Core UI designer
• UI: In case of UI changes, included screenshots of implementation

[status-im-auto]

Jenkins Builds

Click to see older builds (15)

❔	Commit	#️⃣	Finished (UTC)	Duration	Platform	Result
✔️	d64fc99	#1	2020-02-28 11:51:02	~10 min	ios	📦ipa 📲
✔️	d64fc99	#1	2020-02-28 11:54:14	~13 min	android-e2e	📦apk 📲
✔️	d64fc99	#1	2020-02-28 12:00:02	~19 min	android	📦apk 📲
✔️	18d2221	#2	2020-02-28 12:55:40	~10 min	ios	📦ipa 📲
✔️	18d2221	#2	2020-02-28 12:56:54	~11 min	android-e2e	📦apk 📲
✔️	18d2221	#2	2020-02-28 13:06:44	~21 min	android	📦apk 📲
✔️	34b4372	#3	2020-02-28 15:42:14	~10 min	ios	📦ipa 📲
✔️	34b4372	#3	2020-02-28 15:45:52	~13 min	android-e2e	📦apk 📲
✔️	34b4372	#3	2020-02-28 15:45:52	~13 min	android	📦apk 📲
✔️	6575b94	#4	2020-03-02 11:08:14	~11 min	ios	📦ipa 📲
✔️	6575b94	#4	2020-03-02 11:11:04	~14 min	android-e2e	📦apk 📲
✔️	6575b94	#4	2020-03-02 11:11:04	~14 min	android	📦apk 📲
✔️	134a675	#5	2020-03-02 11:22:49	~10 min	ios	📦ipa 📲
✔️	134a675	#5	2020-03-02 11:25:34	~12 min	android	📦apk 📲
✔️	134a675	#5	2020-03-02 11:25:34	~13 min	android-e2e	📦apk 📲

❔	Commit	#️⃣	Finished (UTC)	Duration	Platform	Result
✔️	f706a61	#7	2020-03-02 11:48:34	~10 min	ios	📦ipa 📲
✔️	f706a61	#7	2020-03-02 11:50:51	~12 min	android-e2e	📦apk 📲
✔️	f706a61	#7	2020-03-02 11:52:13	~13 min	android	📦apk 📲
✔️	9515f03	#8	2020-03-02 16:20:04	~11 min	ios	📦ipa 📲
✔️	9515f03	#8	2020-03-02 16:22:49	~14 min	android-e2e	📦apk 📲
✔️	9515f03	#8	2020-03-02 16:22:49	~14 min	android	📦apk 📲

[yenda]

why remove the namespace?

[flexsurfer]

fixed

[yenda]

keep the namespaced keywords and import via alias, if there is a circular dep it just means that the effect is not in the right place from a code organization pov

[flexsurfer]

fixed

[churik]

ISSUE 1: field seed phrase is case-sensitive and contains autosuggestion

Steps:

• open status
• go to wallet > Add account > Enter seed phrase (try with capital letters)

Expected result:
Seed phrase input have the same validation rules as in flow for recovery account

Actual result:

Also, keyboard has turned on autosuggestion when focusing in field (referred to the issue #9034)

[churik]

ISSUE 2: Can add account with invalid password

Steps:

• open status
• go to wallet > Add account > Enter seed phrase
• type invalid password
• fill other fields

Expected result:
Validation error

Actual result:

but account is added

[flexsurfer]

issue1 : fixed

[flexsurfer]

@churik can't reproduce issue 2, btw for importing seed and private key there is no wrong password, because you can use any password you want, yeah i know its confusing

[flexsurfer]

summon @hesterbruikman , so when you import accounts with seed or private key, you can use any new password to import them , that might be confusing for sure

[hesterbruikman]

summon @hesterbruikman , so when you import accounts with seed or private key, you can use any new password to import them , that might be confusing for sure

If I recall correctly this should be your existing password. Also as it says, Enter your password. cc @guylouis to verify

If it is indeed the existing password, validation is missing

[flexsurfer]

@hesterbruikman we just store new account on the device we can use any password, it's not related anyhow to multiaccount, so its up to us how we want to implement it, if we want new password we should ask it twice , if multiaccount, we need to verify it somehow @gravityblast ?

[hesterbruikman]

I'm pretty sure the idea was to simply ask for the same password as to not let people juggle different passwords to sign within the same multiaccount in Status. That's why there's no confirm password and we only say Enter your password. Exception is the case where keys are encrypted with a password set up elsewhere.

[guylouis]

100%

In my mind, from our past discussions, a new account imported from a private key should be protected the same way an account on the BIP44 tree is, and we should not create a new password to avoid any added complexity.

If the private key is encrypted in a json file (but I don't think this issue is about this case) of course, that's something else and at the time of importing, this encryption password is being asked.

[flexsurfer]

@churik issue 2 fixed, also now we check if password is the same as for multiaccount

[churik]

ISSUE 3: Keychain suggests to save password

Steps:

• open status
• go to wallet > Add account > Enter seed phrase
• fill all fields
• proceed

Expected result:
Account is added, no suggestions about storing password

Actual result:

[churik]

ISSUE 4: Can add 2 accounts with same seed

Steps:

1. open status
2. go to wallet > Add account > Enter seed phrase
3. fill all fields
4. proceed
5. repeat steps 2-5 with same seed phrase

Expected result:
can't add same account twice

Actual result:

It will be deleted if you relogin.
Actually you can create new account with same seed phrase via recovery flow as well - not sure what is expected result here.

[flexsurfer]

ISSUE 3 - hm is this solved somehow for other password fields ? i remember we had this but not sure how we solved it

[churik]

@flexsurfer
#8837 - seems it's gone after redesign, but it appeared again here

[churik]

ISSUE 5: Can't export private key

Steps:

1. open status
2. go to wallet > Add account > Enter private key
3. fill all fields
4. proceed

Expected result:
account is exported

Actual result:

status_logs_1.zip

[status-im-auto]

98% of end-end tests have passed

Total executed tests: 94
Failed tests: 2
Passed tests: 92

Failed tests (2)

Click to expand

1. test_add_account_to_multiaccount_instance

Device 1: SignInPhraseText is pupa ball hood Device 1: Tap on AddAccountButton Device 1: 'AddAnAccountButton' is not found on the screen Device sessions Device 1: Steps, video, logs Failure screenshot

2. test_add_and_delete_watch_only_account_to_multiaccount_instance

Device 1: Tap on AddAWatchOnlyAddressButton Device 1: Type 'f184747445c3B85CEb147DfB136067CB93d95F1D' to EnterAddressInput Device 1: 'NextButton' is not found on the screen Device sessions Device 1: Steps, video, logs Failure screenshot

Passed tests (92)

Click to expand

1. test_delete_public_chat_via_delete_button

Device sessions Device 1: Steps, video, logs

2. test_request_public_key_status_test_daap

Device sessions Device 1: Steps, video, logs

3. test_decline_invitation_to_group_chat

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

4. test_ens_username_recipient

Device sessions Device 1: Steps, video, logs

5. test_delete_one_to_one_chat_via_delete_button

Device sessions Device 1: Steps, video, logs

6. test_offline_status

Device sessions Device 1: Steps, video, logs

7. test_open_transaction_on_etherscan

Device sessions Device 1: Steps, video, logs

8. test_open_chat_by_pasting_public_key

Device sessions Device 1: Steps, video, logs

9. test_back_forward_buttons_browsing_website

Device sessions Device 1: Steps, video, logs

10. test_password_in_logcat_creating_account

Device sessions Device 1: Steps, video, logs

11. test_can_use_purchased_stickers_on_recovered_account

Device sessions Device 1: Steps, video, logs

12. test_modify_transaction_fee_values

Device sessions Device 1: Steps, video, logs

13. test_insufficient_funds_wallet_positive_balance

Device sessions Device 1: Steps, video, logs

14. test_mobile_data_usage_settings

Device sessions Device 1: Steps, video, logs

15. test_delete_group_chat_via_delete_button

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

16. test_open_google_com_via_open_dapp

Device sessions Device 1: Steps, video, logs

17. test_logcat_backup_recovery_phrase

Device sessions Device 1: Steps, video, logs

18. test_unread_messages_counter_public_chat

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

19. test_send_two_transactions_one_after_another_in_dapp

Device sessions Device 1: Steps, video, logs

20. test_message_marked_as_sent_in_1_1_chat

Device sessions Device 1: Steps, video, logs

21. test_user_can_switch_network

Device sessions Device 1: Steps, video, logs

22. test_public_chat_clear_history

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

23. test_wallet_set_up

Device sessions Device 1: Steps, video, logs

24. test_timestamp_in_chats

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

25. test_group_chat_system_messages

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

26. test_fetch_more_history_in_empty_chat

Device sessions Device 1: Steps, video, logs

27. test_mobile_data_usage_popup_continue_syncing

Device sessions Device 1: Steps, video, logs

28. test_add_to_contacts

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

29. test_dapps_permissions

Device sessions Device 1: Steps, video, logs

30. test_long_press_delete_clear_all_dapps

Device sessions Device 1: Steps, video, logs

31. test_need_help_section

Device sessions Device 1: Steps, video, logs

32. test_transaction_wrong_password_wallet

Device sessions Device 1: Steps, video, logs

33. test_offline_messaging_1_1_chat

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

34. test_token_with_more_than_allowed_decimals

Device sessions Device 1: Steps, video, logs

35. test_text_message_1_1_chat

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

36. test_install_pack_and_send_sticker

Device sessions Device 1: Steps, video, logs

37. test_make_admin_member_of_group_chat

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

38. test_send_emoji

Device sessions Device 1: Steps, video, logs

39. test_copy_and_paste_messages

Device sessions Device 1: Steps, video, logs

40. test_clear_history_of_group_chat_via_group_view

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

41. test_send_eth_from_wallet_to_address

Device sessions Device 1: Steps, video, logs

42. test_messaging_in_different_networks

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

43. test_start_chat_with_ens

Device sessions Device 1: Steps, video, logs

44. test_logcat_recovering_account

Device sessions Device 1: Steps, video, logs

45. test_user_can_complete_tx_to_dapp_when_onboarding_via_dapp_completed

Device sessions Device 1: Steps, video, logs

46. test_connection_is_secure

Device sessions Device 1: Steps, video, logs

47. test_user_can_see_all_own_assets_after_account_recovering

Device sessions Device 1: Steps, video, logs

48. test_add_new_group_chat_member

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

49. test_pair_devices_sync_one_to_one_contacts

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

50. test_add_and_remove_contact_from_public_chat

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

51. test_send_transaction_from_daap

Device sessions Device 1: Steps, video, logs

52. test_onboarding_screen_when_requesting_tokens_for_recovered_account

Device sessions Device 1: Steps, video, logs

53. test_long_press_to_delete_1_1_chat

Device sessions Device 1: Steps, video, logs

54. test_open_blocked_site

Device sessions Device 1: Steps, video, logs

55. test_refresh_button_browsing_app_webview

Device sessions Device 1: Steps, video, logs

56. test_public_chat_messaging

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

57. test_pass_phrase_validation

Device sessions Device 1: Steps, video, logs

58. test_send_token_with_7_decimals

Device sessions Device 1: Steps, video, logs

59. test_sign_message_from_daap

Device sessions Device 1: Steps, video, logs

60. test_send_message_in_group_chat

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

61. test_deploy_contract_from_daap

Device sessions Device 1: Steps, video, logs

62. test_recover_account_from_new_user_seedphrase

Device sessions Device 1: Steps, video, logs

63. test_add_custom_token

Device sessions Device 1: Steps, video, logs

64. test_send_and_open_links

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

65. test_manage_assets

Device sessions Device 1: Steps, video, logs

66. test_share_contact_code_and_wallet_address

Device sessions Device 1: Steps, video, logs

67. test_redirect_to_public_chat_tapping_tag_message

Device sessions Device 1: Steps, video, logs

68. test_block_user_from_public_chat

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

69. test_ens_in_public_and_1_1_chats

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

70. test_sign_typed_message

Device sessions Device 1: Steps, video, logs

71. test_create_new_group_chat

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

72. test_password_in_logcat_sign_in

Device sessions Device 1: Steps, video, logs

73. test_account_recovery_with_uppercase_recovery_phrase

Device sessions Device 1: Steps, video, logs

74. test_send_message_to_newly_added_contact

Device sessions Device 1: Steps, video, logs Device 2: Steps, video, logs

75. test_logcat_sign_message_from_daap

Device sessions Device 1: Steps, video, logs

76. test_mobile_data_usage_popup_stop_syncing

Device sessions Device 1: Steps, video, logs

77. test_collectible_from_wallet_opens_in_browser_view

Device sessions Device 1: Steps, video, logs

78. test_logcat_send_transaction_from_daap

Device sessions Device 1: Steps, video, logs

79. test_contact_profile_view

Device sessions Device 1: Steps, video, logs

80. test_switch_users_and_add_new_account

Device sessions Device 1: Steps, video, logs

81. test_logcat_send_transaction_from_wallet

Device sessions Device 1: Steps, video, logs

82. test_send_two_transactions_in_batch_in_dapp

Device sessions Device 1: Steps, video, logs

83. test_filters_from_daap

Device sessions Device 1: Steps, video, logs

84. test_send_stt_from_wallet

Device sessions Device 1: Steps, video, logs

85. test_login_with_new_account

Device sessions Device 1: Steps, video, logs

86. test_home_view

Device sessions Device 1: Steps, video, logs

87. test_log_level_and_fleet

Device sessions Device 1: Steps, video, logs

88. test_can_add_existing_ens

Device sessions Device 1: Steps, video, logs

89. test_copy_contact_code_and_wallet_address

Device sessions Device 1: Steps, video, logs

90. test_long_press_to_delete_public_chat

Device sessions Device 1: Steps, video, logs

91. test_fetching_balance_after_offline

Device sessions Device 1: Steps, video, logs

92. test_can_see_all_transactions_in_history

Device sessions Device 1: Steps, video, logs

[churik]

ISSUE 6: Seed phrase field is overlapped on Android

Device: Xiaomi Mi Note 9 Pro, 1080 x 2280

[churik]

ISSUE 7: With whitspaces between, after or before seed phrase restores different account

See #9670

Steps:

1. open status
2. go to wallet > Add account > Enter seed phrase
3. on seed phrase put spaces in the end of phrase
4. fill all fields
5. proceed

Expected result:
account is restored according to trimmed seed phrase

Actual result:
with whitespaces in different places different accounts are recovered

[churik]

@flexsurfer here fix for several cases will be required (and ideally 2 new cases).
So please wait for my commit.
Also would be awesome if you can add accessibility-ids to all fields in new screens - it makes e2e easier to support.
Thanks!

[rasom]

can we extract this path derivation part to a separate fn?

[rasom]

Is that returned form status-go side? We probably need to start using error codes or something, because comparing messages might not be the best idea and definitely isn't a very reliable way.

[rasom]

   (status/verify 
    address hashed-password
    #(re-frame/dispatch
      [:wallet.accounts/add-new-account-password-verifyied % hashed-password]))))

not a big deal, but that lonely percent sign looks weird to me

[flexsurfer]

@churik thanks all issue fixed
ISSUE 3 - can't be fixed

[churik]

@corpetty
is it OK to release this feature with #10100 (comment) ?
Seems there is no way to fix it shortly.

[status-im-auto]

100% of end-end tests have passed

Total executed tests: 4
Failed tests: 0
Passed tests: 4

Passed tests (4)

Click to expand

1. test_add_account_to_multiaccount_instance_seed_phrase

Device sessions Device 1: Steps, video, logs

2. test_add_account_to_multiaccount_instance_private_key

Device sessions Device 1: Steps, video, logs

3. test_add_account_to_multiaccount_instance_generate_new

Device sessions Device 1: Steps, video, logs

4. test_mobile_data_usage_popup_stop_syncing

Device sessions Device 1: Steps, video, logs

[churik]

Tested:

• fields validation on new screens
• using new types of accounts in DApps + collectibles
• changing settings on new accounts
• using new accounts in commands
• using ENS from main account
• adding account via seed phrase in wallet and restoring it in user flow
• changing networks
• attempt to add the same account twice (seed phrase + public key)
• search for sensitive info in logs

Apart from #9895 and #8837 don't see other issues.
Amazing work!

[hesterbruikman]

👋@flexsurfer what's the behavior for Keycard in this current implementation? @rasom mentioned we're missing designs for Add account > Generate keys in case of Keycard. Assuming the same is true here.

[flexsurfer]

the behavior is that Keycard is not supported in this PR , here is the issue #10101