PGPainless/pgpainless
PGPainless/pgpainless
1
0
Fork 0
mirror of https://github.com/pgpainless/pgpainless.git synced 2024-11-16 09:22:05 +01:00
Code Issues Releases Wiki Activity

Add documentation to revocation attributes class

Browse source
This commit is contained in:
Paul Schaub 2021-11-27 13:36:49 +01:00
parent c4c6777174
commit 5376a289b3
1 changed files with 87 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

90
pgpainless-core/src/main/java/org/pgpainless/key/util/RevocationAttributes.java
View file

@ -4,16 +4,37 @@
package org.pgpainless.key.util; package org.pgpainless.key.util;
import javax.annotation.Nonnull;
import java.util.Map; import java.util.Map;
import java.util.concurrent.ConcurrentHashMap; import java.util.concurrent.ConcurrentHashMap;
public final class RevocationAttributes { public final class RevocationAttributes {
public enum Reason { public enum Reason {
/**
* The key or certification is being revoked without a reason.
* This is a HARD revocation reason and cannot be undone.
*/
NO_REASON((byte) 0), NO_REASON((byte) 0),
/**
* The key was superseded by another key.
* This is a SOFT revocation reason and can be undone.
*/
KEY_SUPERSEDED((byte) 1), KEY_SUPERSEDED((byte) 1),
/**
* The key has potentially been compromised.
* This is a HARD revocation reason and cannot be undone.
*/
KEY_COMPROMISED((byte) 2), KEY_COMPROMISED((byte) 2),
/**
* The key was retired and shall no longer be used.
* This is a SOFT revocation reason can can be undone.
*/
KEY_RETIRED((byte) 3), KEY_RETIRED((byte) 3),
/**
* The user-id is no longer valid.
* This is a SOFT revocation reason and can be undone.
*/
USER_ID_NO_LONGER_VALID((byte) 32), USER_ID_NO_LONGER_VALID((byte) 32),
; ;
@ -24,6 +45,12 @@ public final class RevocationAttributes {
} }
} }
/**
* Decode a machine-readable reason code.
*
* @param code byte
* @return reason
*/
public static Reason fromCode(byte code) { public static Reason fromCode(byte code) {
Reason reason = MAP.get(code); Reason reason = MAP.get(code);
if (reason == null) { if (reason == null) {
@ -32,11 +59,32 @@ public final class RevocationAttributes {
return reason; return reason;
} }
/**
* Return true if the {@link Reason} the provided code encodes is a hard revocation reason, false
* otherwise.
* Hard revocations cannot be undone, while keys or certifications with soft revocations can be
* re-certified by placing another signature on them.
*
* @param code reason code
* @return is hard
*/
public static boolean isHardRevocation(byte code) { public static boolean isHardRevocation(byte code) {
Reason reason = MAP.get(code); Reason reason = MAP.get(code);
return reason != KEY_SUPERSEDED && reason != KEY_RETIRED && reason != USER_ID_NO_LONGER_VALID; return reason != KEY_SUPERSEDED && reason != KEY_RETIRED && reason != USER_ID_NO_LONGER_VALID;
} }
/**
* Return true if the given {@link Reason} is a hard revocation, false otherwise.
* Hard revocations cannot be undone, while keys or certifications with soft revocations can be
* re-certified by placing another signature on them.
*
* @param reason reason
* @return is hard
*/
public static boolean isHardRevocation(@Nonnull Reason reason) {
return isHardRevocation(reason.reasonCode);
}
private final byte reasonCode; private final byte reasonCode;
Reason(byte reasonCode) { Reason(byte reasonCode) {
@ -66,18 +114,38 @@ public final class RevocationAttributes {
this.description = description; this.description = description;
} }
public Reason getReason() { /**
* Return the machine-readable reason for revocation.
*
* @return reason
*/
public @Nonnull Reason getReason() {
return reason; return reason;
} }
public String getDescription() { /**
* Return the human-readable description for the revocation reason.
* @return description
*/
public @Nonnull String getDescription() {
return description; return description;
} }
/**
* Build a {@link RevocationAttributes} object suitable for key revocations.
* Key revocations are revocations for keys or subkeys.
*
* @return builder
*/
public static WithReason createKeyRevocation() { public static WithReason createKeyRevocation() {
return new WithReason(RevocationType.KEY_REVOCATION); return new WithReason(RevocationType.KEY_REVOCATION);
} }
/**
* Build a {@link RevocationAttributes} object suitable for certification (eg. user-id) revocations.
*
* @return builder
*/
public static WithReason createCertificateRevocation() { public static WithReason createCertificateRevocation() {
return new WithReason(RevocationType.CERT_REVOCATION); return new WithReason(RevocationType.CERT_REVOCATION);
} }
@ -90,6 +158,16 @@ public final class RevocationAttributes {
this.type = type; this.type = type;
} }
/**
* Set the machine-readable reason.
* Note that depending on whether this is a key-revocation or certification-revocation,
* only certain reason codes are valid.
* Invalid input will result in an {@link IllegalArgumentException} to be thrown.
*
* @param reason reason
* @throws IllegalArgumentException in case of an invalid revocation reason
* @return builder
*/
public WithDescription withReason(Reason reason) { public WithDescription withReason(Reason reason) {
throwIfReasonTypeMismatch(reason, type); throwIfReasonTypeMismatch(reason, type);
return new WithDescription(reason); return new WithDescription(reason);
@ -120,7 +198,13 @@ public final class RevocationAttributes {
this.reason = reason; this.reason = reason;
} }
public RevocationAttributes withDescription(String description) { /**
* Set a human-readable description of the revocation reason.
*
* @param description description
* @return revocation attributes
*/
public RevocationAttributes withDescription(@Nonnull String description) {
return new RevocationAttributes(reason, description); return new RevocationAttributes(reason, description);
} }
} }