Wire secp256k1 eth [2/4]#25
Conversation
Greptile SummaryThis PR wires
Confidence Score: 4/5The core signing path and PKCS11 wiring are correct and backed by a real round-trip test; the only gap is a missing algorithm check in GRPC file-backend config validation. The Keccak256 pre-hash, pubkey wiring, PKCS11 registry entry, and test coverage all look correct. One gap stands out: validateGRPC for BackendFile never checks the algorithm, so an operator who configures algorithm: secp256k1 (or any other unsupported value) with backend: file in the GRPC block passes config validation and gets a startup-time error instead of a clear config error. This is a quality issue rather than a correctness flaw in the happy path. config/validate.go — the validateGRPC BackendFile case should enforce the {ed25519, secp256k1eth} algorithm set, mirroring the guards already present for AWSKMS and PKCS11. Important Files Changed
|
Co-authored-by: dianab-cl <diana@cosmoslabs.io>
Wires the config, privval adapter, and validation for
secp256k1eth