Google KMS - How to obtains GCP public key of a google generate key as JWK [233235372]

Assigned

Bug

Status Update

No update yet.

Description

[Deleted User]

created issue #1

May 20, 2022 12:10PM

Hi Team

For the cryptography operations, we are using the asymmetric decryption key generated by GCP in the KMS(HSM).
GCP provides an option to download the public key of this private key, whose format is as below
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIUzIGyuwsiWIVW4pRfL
..
..
..
dwIDAQAB
-----END PUBLIC KEY-----

Is there an option to download the public key in JWK format?
i.e.

https://tools.ietf.org/id/draft-ietf-jose-json-web-key-00.html

Example:

{"alg":"RSA",
"mod": "0vx7agoebGcQSuuPiLJXZptN9nndrQmbXEps2aiAFbWhM78LhWx
4cbbfAAtVT86zwu1RK7aPFFxuhDR1L6tSoc_BJECPebWKRXjBZCiFV4n3oknjhMs
tn64tZ_2W-5JsGY4Hc5n9yBXArwl93lqt7_RN5w6Cf0h4QyQ5v-65YGjQR0_FDW2
QvzqY368QQMicAtaSqzs8KJZgnYb9c7d0zgdAZHzu6qMQvRL5hajrn1n91CbOpbI
SD08qNLyrdkt-bFTWhAI4vMQFh6WeZu0fM4lFd2NcRwr3XPksINHaQ-G_xBniIqb
w0Ls1jF44-csFCur-kEgU8awapJzKnqDKgw",
"exp":"AQAB",
"kid":"2011-04-29"}

Thanks
Ashish Garg

Comments

ba...@google.com <ba...@google.com> #2May 27, 2022 09:56PM

Assigned to gc...@google.com.

Thanks for the report. I will route this to the appropriate internal team and update this when I hear back from them.

ba...@google.com <ba...@google.com> #3Jun 2, 2022 01:13PM

Marked as fixed.

One more detail, Data Layer event calls from the watch to the phone (running Android 13) do work on if the listener is in an Activity or Fragment.

se...@google.com <se...@google.com> #4Jun 2, 2022 01:22PM

Status: Assigned (reopened)

Also, I'm seeing this message in the Logcat:

"2022-06-12 18:47:15.156 1841-4562/? W/PackageManager: Intent does not match component's intent filter: Intent { act=com.google.android.gms.wearable.BIND_LISTENER"

ma...@google.com <ma...@google.com> Nov 22, 2023 03:28AM

Reassigned to ma...@google.com.

me...@google.com <me...@google.com> #5Nov 22, 2023 04:03AM

Experiencing the same issues, please see my other report for any useful logs:

https://issuetracker.google.com/issues/235673375

ma...@google.com <ma...@google.com> #6Nov 22, 2023 12:02PM

Marked as fixed, reassigned to gc...@google.com.

+1, can confirm it doesn't work on Android 13:=

2022-07-15 11:26:15.023   589-5347  PackageManager          pid-589                              W  Intent does not match component's intent filter: Intent { act=com.google.android.gms.wearable.BIND_LISTENER cmp=xxx/xxx.WatchMessageReceiver }
2022-07-15 11:26:15.023   589-5347  PackageManager          pid-589                              W  Access blocked: ComponentInfo{xxx/xxx.WatchMessageReceiver}
2022-07-15 11:26:15.023   589-5347  ActivityManager         pid-589                              W  Unable to start service Intent { act=com.google.android.gms.wearable.BIND_LISTENER cmp=xxx/xxx.WatchMessageReceiver } U=0: not found

Message last modified on Nov 22, 2023 12:10PM

se...@google.com <se...@google.com> #7Nov 22, 2023 02:43PM

Status: Assigned (reopened)

Note that I've been able to make it work by:

Adding <action android:name="com.google.android.gms.wearable.BIND_LISTENER" /> in the intent filter
Removing <data android:scheme="wear" android:host="*" />

But I feel like this is not something we should do

ba...@google.com <ba...@google.com> #8Nov 22, 2023 03:54PM

I'm really afraid Android 13 might get released as-is, breaking WearOS app communication 😨😨

Message last modified on Nov 22, 2023 04:14PM

se...@google.com <se...@google.com> #9Nov 22, 2023 04:12PM

If you're not targeting API 33 you're not affected by the bug. So it's a big bug, and yes we of course expected more from Google, but you can always target the api level later when it's fixed.

But I agree this is kind of desperating that more than 1.5 month after the first report nothing has changed.

ma...@google.com <ma...@google.com> Dec 20, 2023 06:30AM

Reassigned to gc...@google.com.