2020-07-15 04:05:21 +00:00
|
|
|
package v2
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
|
|
|
|
"fmt"
|
2020-07-16 05:08:16 +00:00
|
|
|
"strings"
|
2020-07-15 04:05:21 +00:00
|
|
|
|
|
|
|
|
"github.com/manifoldco/promptui"
|
|
|
|
|
"github.com/pkg/errors"
|
2020-07-16 05:08:16 +00:00
|
|
|
"github.com/prysmaticlabs/prysm/validator/flags"
|
2020-07-15 04:05:21 +00:00
|
|
|
v2keymanager "github.com/prysmaticlabs/prysm/validator/keymanager/v2"
|
2020-07-21 02:05:23 +00:00
|
|
|
"github.com/prysmaticlabs/prysm/validator/keymanager/v2/derived"
|
2020-07-15 04:05:21 +00:00
|
|
|
"github.com/prysmaticlabs/prysm/validator/keymanager/v2/direct"
|
|
|
|
|
"github.com/prysmaticlabs/prysm/validator/keymanager/v2/remote"
|
|
|
|
|
"github.com/urfave/cli/v2"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// CreateWallet from user input with a desired keymanager. If a
|
|
|
|
|
// wallet already exists in the path, it suggests the user alternatives
|
|
|
|
|
// such as how to edit their existing wallet configuration.
|
|
|
|
|
func CreateWallet(cliCtx *cli.Context) error {
|
|
|
|
|
// Read a wallet's directory from user input.
|
|
|
|
|
walletDir, err := inputWalletDir(cliCtx)
|
2020-07-17 08:21:16 +00:00
|
|
|
if err != nil && !errors.Is(err, ErrNoWalletFound) {
|
2020-07-22 02:04:08 +00:00
|
|
|
return errors.Wrap(err, "could not parse wallet directory")
|
2020-07-15 04:05:21 +00:00
|
|
|
}
|
|
|
|
|
// Check if the user has a wallet at the specified path.
|
|
|
|
|
// If a user does not have a wallet, we instantiate one
|
|
|
|
|
// based on specified options.
|
|
|
|
|
walletExists, err := hasDir(walletDir)
|
|
|
|
|
if err != nil {
|
2020-07-22 02:04:08 +00:00
|
|
|
return errors.Wrap(err, "could not check if wallet directory exists")
|
2020-07-15 04:05:21 +00:00
|
|
|
}
|
|
|
|
|
if walletExists {
|
2020-07-22 02:04:08 +00:00
|
|
|
return errors.New(
|
2020-07-15 04:05:21 +00:00
|
|
|
"You already have a wallet at the specified path. You can " +
|
|
|
|
|
"edit your wallet configuration by running ./prysm.sh validator wallet-v2 edit",
|
|
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
// Determine the desired keymanager kind for the wallet from user input.
|
|
|
|
|
keymanagerKind, err := inputKeymanagerKind(cliCtx)
|
|
|
|
|
if err != nil {
|
2020-07-22 02:04:08 +00:00
|
|
|
return errors.Wrap(err, "could not select keymanager kind")
|
2020-07-15 04:05:21 +00:00
|
|
|
}
|
|
|
|
|
switch keymanagerKind {
|
|
|
|
|
case v2keymanager.Direct:
|
2020-07-21 02:05:23 +00:00
|
|
|
if err = createDirectWallet(cliCtx, walletDir); err != nil {
|
2020-07-22 02:04:08 +00:00
|
|
|
return errors.Wrap(err, "could not initialize wallet with direct keymanager")
|
2020-07-15 04:05:21 +00:00
|
|
|
}
|
2020-07-17 08:21:16 +00:00
|
|
|
log.WithField("wallet-path", walletDir).Infof(
|
2020-07-15 04:05:21 +00:00
|
|
|
"Successfully created wallet with on-disk keymanager configuration. " +
|
|
|
|
|
"Make a new validator account with ./prysm.sh validator accounts-2 new",
|
|
|
|
|
)
|
|
|
|
|
case v2keymanager.Derived:
|
2020-07-21 02:05:23 +00:00
|
|
|
if err = createDerivedWallet(cliCtx, walletDir); err != nil {
|
2020-07-22 02:04:08 +00:00
|
|
|
return errors.Wrap(err, "could not initialize wallet with derived keymanager")
|
2020-07-21 02:05:23 +00:00
|
|
|
}
|
|
|
|
|
log.WithField("wallet-path", walletDir).Infof(
|
|
|
|
|
"Successfully created HD wallet and saved configuration to disk. " +
|
|
|
|
|
"Make a new validator account with ./prysm.sh validator accounts-2 new",
|
|
|
|
|
)
|
2020-07-15 04:05:21 +00:00
|
|
|
case v2keymanager.Remote:
|
2020-07-21 02:05:23 +00:00
|
|
|
if err = createRemoteWallet(cliCtx, walletDir); err != nil {
|
2020-07-22 02:04:08 +00:00
|
|
|
return errors.Wrap(err, "could not initialize wallet with remote keymanager")
|
2020-07-15 04:05:21 +00:00
|
|
|
}
|
2020-07-17 08:21:16 +00:00
|
|
|
log.WithField("wallet-path", walletDir).Infof(
|
2020-07-15 04:05:21 +00:00
|
|
|
"Successfully created wallet with remote keymanager configuration",
|
|
|
|
|
)
|
|
|
|
|
default:
|
2020-07-22 02:04:08 +00:00
|
|
|
return errors.Wrap(err, "keymanager type %s is not supported")
|
2020-07-15 04:05:21 +00:00
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2020-07-21 02:05:23 +00:00
|
|
|
func createDirectWallet(cliCtx *cli.Context, walletDir string) error {
|
|
|
|
|
passwordsDirPath := inputPasswordsDirectory(cliCtx)
|
2020-07-15 04:05:21 +00:00
|
|
|
walletConfig := &WalletConfig{
|
|
|
|
|
WalletDir: walletDir,
|
2020-07-21 02:05:23 +00:00
|
|
|
PasswordsDir: passwordsDirPath,
|
2020-07-15 04:05:21 +00:00
|
|
|
KeymanagerKind: v2keymanager.Direct,
|
|
|
|
|
CanUnlockAccounts: true,
|
|
|
|
|
}
|
|
|
|
|
ctx := context.Background()
|
|
|
|
|
wallet, err := NewWallet(ctx, walletConfig)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not create new wallet")
|
|
|
|
|
}
|
|
|
|
|
keymanagerConfig, err := direct.MarshalConfigFile(ctx, direct.DefaultConfig())
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not marshal keymanager config file")
|
|
|
|
|
}
|
|
|
|
|
if err := wallet.WriteKeymanagerConfigToDisk(ctx, keymanagerConfig); err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not write keymanager config to disk")
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2020-07-21 02:05:23 +00:00
|
|
|
func createDerivedWallet(cliCtx *cli.Context, walletDir string) error {
|
|
|
|
|
passwordsDirPath := inputPasswordsDirectory(cliCtx)
|
|
|
|
|
walletConfig := &WalletConfig{
|
|
|
|
|
PasswordsDir: passwordsDirPath,
|
|
|
|
|
WalletDir: walletDir,
|
|
|
|
|
KeymanagerKind: v2keymanager.Derived,
|
|
|
|
|
CanUnlockAccounts: true,
|
|
|
|
|
}
|
|
|
|
|
ctx := context.Background()
|
2020-07-22 02:41:39 +00:00
|
|
|
walletPassword, err := inputNewWalletPassword(cliCtx)
|
2020-07-21 02:05:23 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not input new wallet password")
|
|
|
|
|
}
|
|
|
|
|
skipMnemonicConfirm := cliCtx.Bool(flags.SkipMnemonicConfirmFlag.Name)
|
|
|
|
|
seedConfig, err := derived.InitializeWalletSeedFile(ctx, walletPassword, skipMnemonicConfirm)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not initialize new wallet seed file")
|
|
|
|
|
}
|
|
|
|
|
seedConfigFile, err := derived.MarshalEncryptedSeedFile(ctx, seedConfig)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not marshal encrypted wallet seed file")
|
|
|
|
|
}
|
|
|
|
|
wallet, err := NewWallet(ctx, walletConfig)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not create new wallet")
|
|
|
|
|
}
|
|
|
|
|
keymanagerConfig, err := derived.MarshalConfigFile(ctx, derived.DefaultConfig())
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not marshal keymanager config file")
|
|
|
|
|
}
|
|
|
|
|
if err := wallet.WriteKeymanagerConfigToDisk(ctx, keymanagerConfig); err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not write keymanager config to disk")
|
|
|
|
|
}
|
|
|
|
|
if err := wallet.WriteEncryptedSeedToDisk(ctx, seedConfigFile); err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not write encrypted wallet seed config to disk")
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func createRemoteWallet(cliCtx *cli.Context, walletDir string) error {
|
2020-07-15 04:05:21 +00:00
|
|
|
conf, err := inputRemoteKeymanagerConfig(cliCtx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not input remote keymanager config")
|
|
|
|
|
}
|
|
|
|
|
ctx := context.Background()
|
|
|
|
|
keymanagerConfig, err := remote.MarshalConfigFile(ctx, conf)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not marshal config file")
|
|
|
|
|
}
|
|
|
|
|
walletConfig := &WalletConfig{
|
|
|
|
|
WalletDir: walletDir,
|
|
|
|
|
KeymanagerKind: v2keymanager.Remote,
|
|
|
|
|
}
|
|
|
|
|
wallet, err := NewWallet(ctx, walletConfig)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not create new wallet")
|
|
|
|
|
}
|
|
|
|
|
if err := wallet.WriteKeymanagerConfigToDisk(ctx, keymanagerConfig); err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not write keymanager config to disk")
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func inputRemoteKeymanagerConfig(cliCtx *cli.Context) (*remote.Config, error) {
|
2020-07-16 05:08:16 +00:00
|
|
|
addr := cliCtx.String(flags.GrpcRemoteAddressFlag.Name)
|
|
|
|
|
crt := cliCtx.String(flags.RemoteSignerCertPathFlag.Name)
|
|
|
|
|
key := cliCtx.String(flags.RemoteSignerKeyPathFlag.Name)
|
|
|
|
|
ca := cliCtx.String(flags.RemoteSignerCACertPathFlag.Name)
|
|
|
|
|
if addr != "" && crt != "" && key != "" && ca != "" {
|
|
|
|
|
newCfg := &remote.Config{
|
|
|
|
|
RemoteCertificate: &remote.CertificateConfig{
|
|
|
|
|
ClientCertPath: strings.TrimRight(crt, "\r\n"),
|
|
|
|
|
ClientKeyPath: strings.TrimRight(key, "\r\n"),
|
|
|
|
|
CACertPath: strings.TrimRight(ca, "\r\n"),
|
|
|
|
|
},
|
|
|
|
|
RemoteAddr: strings.TrimRight(addr, "\r\n"),
|
|
|
|
|
}
|
|
|
|
|
log.Infof("New configuration")
|
|
|
|
|
fmt.Printf("%s\n", newCfg)
|
|
|
|
|
return newCfg, nil
|
|
|
|
|
}
|
|
|
|
|
log.Infof("Input desired configuration")
|
2020-07-15 04:05:21 +00:00
|
|
|
prompt := promptui.Prompt{
|
|
|
|
|
Label: "Remote gRPC address (such as host.example.com:4000)",
|
|
|
|
|
Validate: func(input string) error {
|
|
|
|
|
if input == "" {
|
|
|
|
|
return errors.New("remote host address cannot be empty")
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
remoteAddr, err := prompt.Run()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
prompt = promptui.Prompt{
|
|
|
|
|
Label: "Path to TLS crt (such as /path/to/client.crt)",
|
|
|
|
|
Validate: validateCertPath,
|
|
|
|
|
}
|
|
|
|
|
clientCrtPath, err := prompt.Run()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
prompt = promptui.Prompt{
|
|
|
|
|
Label: "Path to TLS key (such as /path/to/client.key)",
|
|
|
|
|
Validate: validateCertPath,
|
|
|
|
|
}
|
|
|
|
|
clientKeyPath, err := prompt.Run()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
prompt = promptui.Prompt{
|
|
|
|
|
Label: "(Optional) Path to certificate authority (CA) crt (such as /path/to/ca.crt)",
|
|
|
|
|
Validate: validateCertPath,
|
|
|
|
|
}
|
|
|
|
|
caCrtPath, err := prompt.Run()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
2020-07-16 05:08:16 +00:00
|
|
|
newCfg := &remote.Config{
|
2020-07-15 04:05:21 +00:00
|
|
|
RemoteCertificate: &remote.CertificateConfig{
|
2020-07-16 05:08:16 +00:00
|
|
|
ClientCertPath: strings.TrimRight(clientCrtPath, "\r\n"),
|
|
|
|
|
ClientKeyPath: strings.TrimRight(clientKeyPath, "\r\n"),
|
|
|
|
|
CACertPath: strings.TrimRight(caCrtPath, "\r\n"),
|
2020-07-15 04:05:21 +00:00
|
|
|
},
|
2020-07-16 05:08:16 +00:00
|
|
|
RemoteAddr: strings.TrimRight(remoteAddr, "\r\n"),
|
|
|
|
|
}
|
|
|
|
|
fmt.Printf("%s\n", newCfg)
|
|
|
|
|
return newCfg, nil
|
2020-07-15 04:05:21 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func validateCertPath(input string) error {
|
|
|
|
|
if input == "" {
|
|
|
|
|
return errors.New("crt path cannot be empty")
|
|
|
|
|
}
|
|
|
|
|
if !fileExists(input) {
|
|
|
|
|
return fmt.Errorf("no crt found at path: %s", input)
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
