Skip to content

Update import.go #866

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
+38 −6
Open

Update import.go #866

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
44 changes: 38 additions & 6 deletions client/import.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,10 +2,12 @@ package client

import (
"bufio"
"fmt"

"github.com/ethereum/go-ethereum/common"
"github.com/spf13/cobra"

// Using EVM-specific crypto implementations for Ethereum-style keys
"github.com/cosmos/evm/crypto/ethsecp256k1"
"github.com/cosmos/evm/crypto/hd"

Expand All @@ -14,35 +16,65 @@ import (
"github.com/cosmos/cosmos-sdk/crypto"
)

// UnsafeImportKeyCommand imports private keys from a keyfile.
func UnsafeImportKeyCommand() *cobra.Command {
// EthPrivateKeyLength is the expected byte length of an Ethereum private key.
const EthPrivateKeyLength = 32

// NewUnsafeImportKeyCommand defines the CLI command to import Ethereum private keys.
// This command is explicitly marked as unsafe because it handles raw private keys via CLI args.
func NewUnsafeImportKeyCommand() *cobra.Command {
return &cobra.Command{
Use: "unsafe-import-eth-key <name> <pk>",
Short: "**UNSAFE** Import Ethereum private keys into the local keybase",
Long: "**UNSAFE** Import a hex-encoded Ethereum private key into the local keybase.",
Long: "**UNSAFE** Import a hex-encoded Ethereum private key into the local keybase. The private key must be a 32-byte hex string (e.g., 64 characters, excluding 0x prefix).",
Args: cobra.ExactArgs(2),
RunE: runImportCmd,
}
}

func runImportCmd(cmd *cobra.Command, args []string) error {
// Configure client context to use the Ethereum key type option.
clientCtx := client.GetClientContextFromCmd(cmd).WithKeyringOptions(hd.EthSecp256k1Option())
clientCtx, err := client.ReadPersistentCommandFlags(clientCtx, cmd.Flags())
if err != nil {
return err
}

keyName := args[0]
pkHex := args[1]

// 1. Decode the hex-encoded private key string.
keyBytes := common.FromHex(pkHex)

// 2. Critical: Validate the key length to prevent invalid key generation or crashes.
if len(keyBytes) != EthPrivateKeyLength {
return fmt.Errorf(
"invalid private key length; expected %d bytes (64 hex characters), got %d bytes",
EthPrivateKeyLength,
len(keyBytes),
)
}

// 3. Prompt for passphrase to encrypt the key in the local store.
inBuf := bufio.NewReader(cmd.InOrStdin())
passphrase, err := input.GetPassword("Enter passphrase to encrypt your key:", inBuf)
if err != nil {
return err
}

// 4. Construct the private key object.
privKey := &ethsecp256k1.PrivKey{
Key: common.FromHex(args[1]),
Key: keyBytes,
}

armor := crypto.EncryptArmorPrivKey(privKey, passphrase, "eth_secp256k1")
// 5. Encrypt the private key with the passphrase using the specified type.
keyType := "eth_secp256k1"
armor := crypto.EncryptArmorPrivKey(privKey, passphrase, keyType)

// 6. Import the encrypted key (armor) into the keyring.
if err := clientCtx.Keyring.ImportPrivKey(keyName, armor, passphrase); err != nil {
return fmt.Errorf("failed to import private key: %w", err)
}

return clientCtx.Keyring.ImportPrivKey(args[0], armor, passphrase)
cmd.Printf("Successfully imported key '%s'\n", keyName)
return nil
}