-
Notifications
You must be signed in to change notification settings - Fork 4.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
RFC: Add --sign-only
flag to solana program deploy
#23975
Comments
I'd like to work on that, I'm relatively new to the project so I might need some guidance but I'm up for the challenge! |
Hello, this is Jayden. I would like to work on that too. I am pretty new to the project so I would need some guidance on the task. @qpwo I guess the starting point will be here to add the flag |
Hope you can get it but i think it's going to very tricky because when i deploy rn it takes like four minutes and seems to go back and forth with the computer a few times (maybe multiple sigs?) but i can't really tell |
Hi @joncinque, I'd like to implement this feature (if it's still desirable), I've noticed there is also cc @pgarg66 JFYI Update: |
Hi there, it's definitely still desirable! To answer your questions:
I'd say start with
That's exactly it |
Hi @joncinque I've got a mostly working PR (for creating/upgrading program, while signing offline) - #33860 - things that are left to do are:
PR is in Draft because of it, but is ready for initial review otherwise. |
Problem
The update authority for a contract is one of the most important secret values in any solana project. To deploy or update a contract, the authority key currently has to be stored on an internet-connected computer during deployment.
If a malicious actor ever gets access to a contract's update authority then they can update the contract to e.g. transfer all assets out to the hacker's wallet.
Proposed Solution
Add a
--sign-only
and a--signers
argument tosolana program deploy
so that contract authorities can be kept on offline cold laptops. (Similar to e.g.spl-token mint
.)See also
The text was updated successfully, but these errors were encountered: