2023-07-18 16:22:53 -07:00
|
|
|
package main
|
|
|
|
|
|
|
|
import (
|
|
|
|
"context"
|
|
|
|
"crypto/x509/pkix"
|
|
|
|
"encoding/asn1"
|
|
|
|
"encoding/pem"
|
|
|
|
"fmt"
|
|
|
|
"os"
|
|
|
|
|
|
|
|
kms "cloud.google.com/go/kms/apiv1"
|
|
|
|
"cloud.google.com/go/kms/apiv1/kmspb"
|
|
|
|
"github.com/ethereum/go-ethereum/common"
|
|
|
|
"github.com/ethereum/go-ethereum/crypto"
|
|
|
|
)
|
|
|
|
|
|
|
|
func main() {
|
|
|
|
println("kmstool - usage: kmstool <key>")
|
|
|
|
|
|
|
|
if len(os.Args) < 2 {
|
|
|
|
panic("missing <key>")
|
|
|
|
}
|
|
|
|
|
|
|
|
keyName := os.Args[1]
|
|
|
|
|
|
|
|
ctx := context.Background()
|
|
|
|
client, err := kms.NewKeyManagementClient(ctx)
|
|
|
|
if err != nil {
|
2024-01-02 07:10:30 +09:00
|
|
|
panic(fmt.Errorf("failed to create kms client: %w", err))
|
2023-07-18 16:22:53 -07:00
|
|
|
}
|
|
|
|
defer client.Close()
|
|
|
|
|
|
|
|
addr, err := resolveAddr(ctx, client, keyName)
|
|
|
|
if err != nil {
|
2024-01-02 07:10:30 +09:00
|
|
|
panic(fmt.Errorf("failed to retrieve the key: %w", err))
|
2023-07-18 16:22:53 -07:00
|
|
|
}
|
|
|
|
fmt.Printf("ethereum addr: %s", addr)
|
|
|
|
println()
|
|
|
|
println()
|
|
|
|
}
|
|
|
|
|
|
|
|
func resolveAddr(ctx context.Context, client *kms.KeyManagementClient, keyName string) (common.Address, error) {
|
|
|
|
resp, err := client.GetPublicKey(ctx, &kmspb.GetPublicKeyRequest{Name: keyName})
|
|
|
|
if err != nil {
|
2023-07-19 12:14:24 -07:00
|
|
|
return common.Address{}, fmt.Errorf("google kms public key %q lookup: %w", keyName, err)
|
2023-07-18 16:22:53 -07:00
|
|
|
}
|
2023-07-31 11:24:19 -07:00
|
|
|
keyPem := resp.Pem
|
2023-07-18 16:22:53 -07:00
|
|
|
|
2023-07-31 11:24:19 -07:00
|
|
|
block, _ := pem.Decode([]byte(keyPem))
|
2023-07-18 16:22:53 -07:00
|
|
|
if block == nil {
|
2023-07-31 11:24:19 -07:00
|
|
|
return common.Address{}, fmt.Errorf("google kms public key %q pem empty: %.130q", keyName, keyPem)
|
2023-07-18 16:22:53 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
var info struct {
|
|
|
|
AlgID pkix.AlgorithmIdentifier
|
|
|
|
Key asn1.BitString
|
|
|
|
}
|
|
|
|
_, err = asn1.Unmarshal(block.Bytes, &info)
|
|
|
|
if err != nil {
|
2024-05-30 13:41:03 -05:00
|
|
|
return common.Address{}, fmt.Errorf("google kms public key %q pem block %q: %w", keyName, block.Type, err)
|
2023-07-18 16:22:53 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
return pubKeyAddr(info.Key.Bytes), nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// PubKeyAddr returns the Ethereum address for the (uncompressed) key bytes.
|
|
|
|
func pubKeyAddr(bytes []byte) common.Address {
|
|
|
|
digest := crypto.Keccak256(bytes[1:])
|
|
|
|
var addr common.Address
|
|
|
|
copy(addr[:], digest[12:])
|
|
|
|
return addr
|
|
|
|
}
|