mirror of
https://github.com/pgpainless/pgpainless.git
synced 2024-12-25 04:17:59 +01:00
More CLI work
This commit is contained in:
parent
cdd5ba15a0
commit
57b2f68c63
1 changed files with 73 additions and 49 deletions
|
@ -7,12 +7,12 @@ package org.pgpainless.wot.cli
|
||||||
import org.pgpainless.PGPainless
|
import org.pgpainless.PGPainless
|
||||||
import org.pgpainless.certificate_store.PGPainlessCertD
|
import org.pgpainless.certificate_store.PGPainlessCertD
|
||||||
import org.pgpainless.util.DateUtil
|
import org.pgpainless.util.DateUtil
|
||||||
import org.pgpainless.util.NotationRegistry
|
import org.pgpainless.wot.KeyRingCertificateStore
|
||||||
import org.pgpainless.wot.WebOfTrust
|
import org.pgpainless.wot.WebOfTrust
|
||||||
|
import org.pgpainless.wot.api.WoTAPI
|
||||||
import org.pgpainless.wot.cli.subcommands.*
|
import org.pgpainless.wot.cli.subcommands.*
|
||||||
import org.pgpainless.wot.dijkstra.sq.Fingerprint
|
import org.pgpainless.wot.dijkstra.sq.Fingerprint
|
||||||
import org.pgpainless.wot.dijkstra.sq.ReferenceTime
|
import org.pgpainless.wot.dijkstra.sq.ReferenceTime
|
||||||
import org.pgpainless.wot.api.WoTAPI
|
|
||||||
import pgp.cert_d.PGPCertificateStoreAdapter
|
import pgp.cert_d.PGPCertificateStoreAdapter
|
||||||
import pgp.cert_d.subkey_lookup.InMemorySubkeyLookupFactory
|
import pgp.cert_d.subkey_lookup.InMemorySubkeyLookupFactory
|
||||||
import pgp.certificate_store.PGPCertificateStore
|
import pgp.certificate_store.PGPCertificateStore
|
||||||
|
@ -40,14 +40,14 @@ import kotlin.system.exitProcess
|
||||||
class WotCLI: Callable<Int> {
|
class WotCLI: Callable<Int> {
|
||||||
|
|
||||||
@Option(names = ["--trust-root", "-r"], required = true)
|
@Option(names = ["--trust-root", "-r"], required = true)
|
||||||
var trustRoot: Array<String> = arrayOf()
|
var mTrustRoot: Array<String> = arrayOf()
|
||||||
|
|
||||||
@ArgGroup(exclusive = true, multiplicity = "1")
|
@ArgGroup(exclusive = true, multiplicity = "1")
|
||||||
lateinit var certificateSource: CertificateSource
|
lateinit var mCertificateSource: CertificateSource
|
||||||
|
|
||||||
class CertificateSource {
|
class CertificateSource {
|
||||||
@Option(names = ["--keyring", "-k"], description = ["Specify a keyring file."], required = true)
|
@Option(names = ["--keyring", "-k"], description = ["Specify a keyring file."], required = true)
|
||||||
var keyring: File? = null
|
var keyring: Array<File>? = null
|
||||||
|
|
||||||
@Option(names = ["--cert-d"], description = ["Specify a pgp-cert-d base directory."], required = true)
|
@Option(names = ["--cert-d"], description = ["Specify a pgp-cert-d base directory."], required = true)
|
||||||
var pgpCertD: File? = null
|
var pgpCertD: File? = null
|
||||||
|
@ -74,7 +74,7 @@ class WotCLI: Callable<Int> {
|
||||||
var gossip = false
|
var gossip = false
|
||||||
|
|
||||||
@ArgGroup(exclusive = true, multiplicity = "1")
|
@ArgGroup(exclusive = true, multiplicity = "1")
|
||||||
lateinit var trustAmount: TrustAmount
|
lateinit var mTrustAmount: TrustAmount
|
||||||
|
|
||||||
class TrustAmount {
|
class TrustAmount {
|
||||||
@Option(names = ["--trust-amount", "-a"], description = ["The required amount of trust."])
|
@Option(names = ["--trust-amount", "-a"], description = ["The required amount of trust."])
|
||||||
|
@ -82,68 +82,78 @@ class WotCLI: Callable<Int> {
|
||||||
|
|
||||||
@Option(names = ["--partial"])
|
@Option(names = ["--partial"])
|
||||||
var partial: Boolean = false
|
var partial: Boolean = false
|
||||||
set(value) {
|
|
||||||
field = value
|
|
||||||
if (field) {
|
|
||||||
amount = 40
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
@Option(names = ["--full"])
|
@Option(names = ["--full"])
|
||||||
var full: Boolean = false
|
var full: Boolean = false
|
||||||
set(value) {
|
|
||||||
field = value
|
|
||||||
if (field) {
|
|
||||||
amount = 120
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
@Option(names = ["--double"])
|
@Option(names = ["--double"])
|
||||||
var double: Boolean = false
|
var double: Boolean = false
|
||||||
set(value) {
|
|
||||||
field = value
|
|
||||||
if (field) {
|
|
||||||
amount = 240
|
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
@Option(names = ["--time"], description = ["Reference time."])
|
@Option(names = ["--time"], description = ["Reference time."])
|
||||||
var time: String? = null
|
var mTime: String? = null
|
||||||
|
|
||||||
@Option(names = ["--known-notation"], description = ["Add a notation to the list of known notations."])
|
@Option(names = ["--known-notation"], description = ["Add a notation to the list of known notations."])
|
||||||
var knownNotations: Array<String> = arrayOf()
|
var knownNotations: Array<String> = arrayOf()
|
||||||
|
|
||||||
private val referenceTime: ReferenceTime
|
private val referenceTime: ReferenceTime
|
||||||
get() {
|
get() {
|
||||||
return time?.let {
|
return mTime?.let {
|
||||||
ReferenceTime.timestamp(DateUtil.parseUTCDate(time!!))
|
ReferenceTime.timestamp(DateUtil.parseUTCDate(mTime!!))
|
||||||
} ?: ReferenceTime.now()
|
} ?: ReferenceTime.now()
|
||||||
}
|
}
|
||||||
|
|
||||||
private val certificateStore: PGPCertificateStore
|
|
||||||
get() {
|
|
||||||
requireNotNull(certificateSource.pgpCertD) {
|
|
||||||
"Currently, only --cert-d is supported."
|
|
||||||
}
|
|
||||||
val certD = PGPainlessCertD.fileBased(
|
|
||||||
certificateSource.pgpCertD,
|
|
||||||
InMemorySubkeyLookupFactory())
|
|
||||||
|
|
||||||
return PGPCertificateStoreAdapter(certD)
|
|
||||||
}
|
|
||||||
|
|
||||||
private val trustRoots: List<Fingerprint>
|
private val trustRoots: List<Fingerprint>
|
||||||
get() {
|
get() {
|
||||||
return trustRoot.map { Fingerprint(it) }
|
if (mCertificateSource.gpg) {
|
||||||
|
return readGpgOwnertrust().plus(mTrustRoot.map { Fingerprint(it) })
|
||||||
|
}
|
||||||
|
|
||||||
|
return mTrustRoot.map { Fingerprint(it) }
|
||||||
}
|
}
|
||||||
|
|
||||||
val amount: Int
|
private val amount: Int
|
||||||
get() =
|
get() = when {
|
||||||
if (trustAmount.amount == null) {
|
mTrustAmount.amount != null -> mTrustAmount.amount!! // --amount=XY
|
||||||
if (certificationNetwork) 1200 else 120
|
mTrustAmount.partial -> 40 // --partial
|
||||||
} else trustAmount.amount!!
|
mTrustAmount.full -> 120 // --full
|
||||||
|
mTrustAmount.double -> 240 // --double
|
||||||
|
else -> if (certificationNetwork) 1200 else 120 // default 120, if --certification-network -> 1200
|
||||||
|
}
|
||||||
|
|
||||||
|
private val certificateStore: PGPCertificateStore
|
||||||
|
get() {
|
||||||
|
if (mCertificateSource.gpg) {
|
||||||
|
return KeyRingCertificateStore(
|
||||||
|
PGPainless.readKeyRing().publicKeyRingCollection(
|
||||||
|
Runtime.getRuntime().exec("/usr/bin/gpg --export").inputStream
|
||||||
|
)
|
||||||
|
)
|
||||||
|
}
|
||||||
|
if (mCertificateSource.keyring != null) {
|
||||||
|
return KeyRingCertificateStore(
|
||||||
|
mCertificateSource.keyring!!.map {
|
||||||
|
PGPainless.readKeyRing().publicKeyRingCollection(it.inputStream())
|
||||||
|
}
|
||||||
|
)
|
||||||
|
}
|
||||||
|
|
||||||
|
val certD = PGPainlessCertD.fileBased(
|
||||||
|
mCertificateSource.pgpCertD,
|
||||||
|
InMemorySubkeyLookupFactory())
|
||||||
|
return PGPCertificateStoreAdapter(certD)
|
||||||
|
}
|
||||||
|
|
||||||
|
fun readGpgOwnertrust(): List<Fingerprint> = Runtime.getRuntime()
|
||||||
|
.exec("/usr/bin/gpg --export-ownertrust")
|
||||||
|
.inputStream
|
||||||
|
.bufferedReader()
|
||||||
|
.readLines()
|
||||||
|
.filterNot { it.startsWith("#") }
|
||||||
|
.filterNot { it.isBlank() }
|
||||||
|
.map { it.substring(0, it.indexOf(':')) }
|
||||||
|
.map { Fingerprint(it) }
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* Execute the command.
|
* Execute the command.
|
||||||
|
@ -151,7 +161,7 @@ class WotCLI: Callable<Int> {
|
||||||
* @return exit code
|
* @return exit code
|
||||||
*/
|
*/
|
||||||
override fun call(): Int {
|
override fun call(): Int {
|
||||||
require(trustRoot.isNotEmpty()) {
|
require(mTrustRoot.isNotEmpty()) {
|
||||||
"Expected at least one trust-root."
|
"Expected at least one trust-root."
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -169,14 +179,28 @@ class WotCLI: Callable<Int> {
|
||||||
return WoTAPI(
|
return WoTAPI(
|
||||||
network = network,
|
network = network,
|
||||||
trustRoots = trustRoots,
|
trustRoots = trustRoots,
|
||||||
gossip = false,
|
gossip = gossip,
|
||||||
certificationNetwork = false,
|
certificationNetwork = certificationNetwork,
|
||||||
trustAmount = amount,
|
trustAmount = amount,
|
||||||
referenceTime = referenceTime)
|
referenceTime = referenceTime)
|
||||||
}
|
}
|
||||||
|
|
||||||
companion object {
|
companion object {
|
||||||
|
|
||||||
@JvmStatic
|
@JvmStatic
|
||||||
fun main(args: Array<String>): Unit = exitProcess(CommandLine(WotCLI()).execute(*args))
|
fun main(args: Array<String>): Unit = exitProcess(
|
||||||
|
CommandLine(WotCLI()).execute(*args)
|
||||||
|
)
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
override fun toString(): String {
|
||||||
|
val source = if (mCertificateSource.gpg) {
|
||||||
|
"gpg"
|
||||||
|
} else {
|
||||||
|
mCertificateSource.pgpCertD ?: mCertificateSource.keyring?.contentToString() ?: "null"
|
||||||
|
}
|
||||||
|
return "trustroot=${trustRoots}, source=$source, gossip=$gossip, amount=$amount," +
|
||||||
|
" referenceTime=${referenceTime.timestamp}, notations=${knownNotations.contentToString()}"
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue