UNPKG

@hashgraph/solo

Version:

An opinionated CLI tool to deploy and manage private Hedera Networks.

github.com/hashgraph/solo

hashgraph/solo

147 lines (146 loc) 6.16 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
/** * SPDX-License-Identifier: Apache-2.0 */ import * as x509 from '@peculiar/x509'; import crypto from 'crypto'; import { type SoloLogger } from './logging.js'; import { type NodeAlias, type NodeAliases } from '../types/aliases.js'; import { type NodeKeyObject, type PrivateKeyAndCertificateObject } from '../types/index.js'; import { type ListrTask } from 'listr2'; export declare class KeyManager { private readonly logger?; static SigningKeyAlgo: { name: string; hash: string; publicExponent: Uint8Array<ArrayBuffer>; modulusLength: number; }; static SigningKeyUsage: KeyUsage[]; static TLSKeyAlgo: { name: string; hash: string; publicExponent: Uint8Array<ArrayBuffer>; modulusLength: number; }; static TLSKeyUsage: KeyUsage[]; static TLSCertKeyUsages: number; static TLSCertKeyExtendedUsages: x509.ExtendedKeyUsage[]; static ECKeyAlgo: { name: string; namedCurve: string; hash: string; }; constructor(logger?: SoloLogger); /** Convert CryptoKey into PEM string */ convertPrivateKeyToPem(privateKey: CryptoKey): Promise<string>; /** * Convert PEM private key into CryptoKey * @param pemStr - PEM string * @param algo - key algorithm * @param [keyUsages] */ convertPemToPrivateKey(pemStr: string, algo: any, keyUsages?: KeyUsage[]): Promise<crypto.webcrypto.CryptoKey>; /** * Return file names for node key * @param nodeAlias * @param keysDir - directory where keys and certs are stored */ prepareNodeKeyFilePaths(nodeAlias: NodeAlias, keysDir: string): PrivateKeyAndCertificateObject; /** * Return file names for TLS key * @param nodeAlias * @param keysDir - directory where keys and certs are stored */ prepareTLSKeyFilePaths(nodeAlias: NodeAlias, keysDir: string): PrivateKeyAndCertificateObject; /** * Store node keys and certs as PEM files * @param nodeAlias * @param nodeKey * @param keysDir - directory where keys and certs are stored * @param nodeKeyFiles * @param [keyName] - optional key type name for logging * @returns a Promise that saves the keys and certs as PEM files */ storeNodeKey(nodeAlias: NodeAlias, nodeKey: NodeKeyObject, keysDir: string, nodeKeyFiles: PrivateKeyAndCertificateObject, keyName?: string): Promise<PrivateKeyAndCertificateObject>; /** * Load node keys and certs from PEM files * @param nodeAlias * @param keysDir - directory where keys and certs are stored * @param algo - algorithm used for key * @param nodeKeyFiles an object stores privateKeyFile and certificateFile * @param [keyName] - optional key type name for logging * @returns */ loadNodeKey(nodeAlias: NodeAlias, keysDir: string, algo: any, nodeKeyFiles: PrivateKeyAndCertificateObject, keyName?: string): Promise<NodeKeyObject>; /** Generate signing key and certificate */ generateSigningKey(nodeAlias: NodeAlias): Promise<NodeKeyObject>; /** * Store signing key and certificate * @param nodeAlias * @param nodeKey - an object containing privateKeyPem, certificatePem data * @param keysDir - directory where keys and certs are stored * @returns returns a Promise that saves the keys and certs as PEM files */ storeSigningKey(nodeAlias: NodeAlias, nodeKey: NodeKeyObject, keysDir: string): Promise<PrivateKeyAndCertificateObject>; /** * Load signing key and certificate * @param nodeAlias * @param keysDir - directory path where pem files are stored */ loadSigningKey(nodeAlias: NodeAlias, keysDir: string): Promise<NodeKeyObject>; /** * Generate gRPC TLS key * * It generates TLS keys in PEM format such as below: * hedera-<nodeAlias>.key * hedera-<nodeAlias>.crt * * @param nodeAlias * @param distinguishedName distinguished name as: new x509.Name(`CN=${nodeAlias},ST=${state},L=${locality},O=${org},OU=${orgUnit},C=${country}`) */ generateGrpcTlsKey(nodeAlias: NodeAlias, distinguishedName?: x509.Name): Promise<NodeKeyObject>; /** * Store TLS key and certificate * @param nodeAlias * @param nodeKey * @param keysDir - directory where keys and certs are stored * @returns a Promise that saves the keys and certs as PEM files */ storeTLSKey(nodeAlias: NodeAlias, nodeKey: NodeKeyObject, keysDir: string): Promise<PrivateKeyAndCertificateObject>; /** * Load TLS key and certificate * @param nodeAlias * @param keysDir - directory path where pem files are stored */ loadTLSKey(nodeAlias: NodeAlias, keysDir: string): Promise<NodeKeyObject>; copyNodeKeysToStaging(nodeKey: PrivateKeyAndCertificateObject, destDir: string): void; copyGossipKeysToStaging(keysDir: string, stagingKeysDir: string, nodeAliases: NodeAliases): void; /** * Return a list of subtasks to generate gossip keys * * WARNING: These tasks MUST run in sequence. * * @param nodeAliases * @param keysDir - keys directory * @param curDate - current date * @param [allNodeAliases] - includes the nodeAliases to get new keys as well as existing nodeAliases that will be included in the public.pfx file * @return a list of subtasks */ taskGenerateGossipKeys(nodeAliases: NodeAliases, keysDir: string, curDate?: Date, allNodeAliases?: NodeAliases | null): ListrTask<any, any, any>[]; /** * Return a list of subtasks to generate gRPC TLS keys * * WARNING: These tasks should run in sequence * * @param nodeAliases * @param keysDir keys directory * @param curDate current date * @return return a list of subtasks */ taskGenerateTLSKeys(nodeAliases: NodeAliases, keysDir: string, curDate?: Date): ListrTask<any, any, any>[]; /** * Given the path to the PEM certificate (Base64 ASCII), will return the DER (raw binary) bytes * @param pemCertFullPath */ getDerFromPemCertificate(pemCertFullPath: string): Uint8Array<ArrayBuffer>; }