constellation/util/keypusher/main.go

61 lines
1.4 KiB
Go
Raw Normal View History

package main
import (
"context"
"encoding/base64"
"flag"
"log"
"net"
"os"
"time"
"github.com/edgelesssys/constellation/coordinator/atls"
"github.com/edgelesssys/constellation/state/keyservice/keyproto"
"google.golang.org/grpc"
"google.golang.org/grpc/credentials"
)
var (
ip = flag.String("ip", "", "IP of the node to push the key to (required)")
port = flag.String("port", "9000", "Port of the node to push the key to (required)")
key = flag.String("key", "QUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUE=", "base64 encoded state disk key")
)
func main() {
flag.Parse()
if *ip == "" || *port == "" || *key == "" {
flag.Usage()
os.Exit(1)
}
decryptionKey, err := base64.StdEncoding.DecodeString(*key)
if err != nil {
log.Fatal(err)
}
addr := net.JoinHostPort(*ip, *port)
log.Printf("Pushing key %v to node at %s", decryptionKey, addr)
clientCfg, err := atls.CreateUnverifiedClientTLSConfig()
if err != nil {
log.Fatal(err)
}
conn, err := grpc.Dial(addr, grpc.WithTransportCredentials(credentials.NewTLS(clientCfg)))
if err != nil {
log.Fatal(err)
}
defer conn.Close()
client := keyproto.NewAPIClient(conn)
ctx, cancel := context.WithTimeout(context.Background(), 20*time.Second)
defer cancel()
if _, err := client.PushStateDiskKey(ctx, &keyproto.PushStateDiskKeyRequest{
StateDiskKey: decryptionKey,
}); err != nil {
log.Fatal(err)
}
log.Println("Successfully pushed key to node")
}