hagrid-keyserver--hagrid/src/database/fs.rs

use std::fs::{create_dir, create_dir_all, read_link, remove_file, File};
use std::io::{Read, Write};
use std::os::unix::fs::symlink;
use std::path::{Path, PathBuf};
use std::str;

use serde_json;
use tempfile;
use url;

use database::{Database, Delete, Verify};
use types::{Email, Fingerprint, KeyID};
use Result;

pub struct Filesystem {
    base: PathBuf,
    base_by_keyid: PathBuf,
    base_by_fingerprint: PathBuf,
    base_by_email: PathBuf,
}

/// Returns the given path, ensuring that the parent directory exists.
///
/// Use this on paths returned by .path_to_* before creating the
/// object.
fn ensure_parent(path: &Path) -> Result<&Path> {
    let parent = path.parent().unwrap();
    if ! parent.exists() {
        create_dir(parent)?;
    }
    Ok(path)
}


impl Filesystem {
    pub fn new<P: Into<PathBuf>>(base: P) -> Result<Self> {
        use std::fs;

        let base: PathBuf = base.into();

        if fs::create_dir(&base).is_err() {
            let meta = fs::metadata(&base);

            match meta {
                Ok(meta) => {
                    if !meta.file_type().is_dir() {
                        return Err(format!(
                            "'{}' exists already and is not a directory",
                            base.display()
                        )
                        .into());
                    }

                    if meta.permissions().readonly() {
                        return Err(format!(
                            "Cannot write '{}'",
                            base.display()
                        )
                        .into());
                    }
                }

                Err(e) => {
                    return Err(format!(
                        "Cannot read '{}': {}",
                        base.display(),
                        e
                    )
                    .into());
                }
            }
        }

        // create directories
        create_dir_all(base.join("verification_tokens"))?;
        create_dir_all(base.join("deletion_tokens"))?;
        create_dir_all(base.join("scratch_pad"))?;

        let base_by_keyid = base.join("public").join("by-keyid");
        let base_by_fingerprint = base.join("public").join("by-fingerprint");
        let base_by_email = base.join("public").join("by-email");
        create_dir_all(&base_by_keyid)?;
        create_dir_all(&base_by_fingerprint)?;
        create_dir_all(&base_by_email)?;

        info!("Opened base dir '{}'", base.display());
        Ok(Filesystem {
            base: base,
            base_by_keyid: base_by_keyid,
            base_by_fingerprint: base_by_fingerprint,
            base_by_email: base_by_email,
        })
    }

    /// Returns the path to the given KeyID.
    fn path_to_keyid(&self, keyid: &KeyID) -> PathBuf {
        let hex = keyid.to_string();
        self.base_by_keyid.join(&hex[..2]).join(&hex[2..])
    }

    /// Returns the path to the given Fingerprint.
    fn path_to_fingerprint(&self, fingerprint: &Fingerprint) -> PathBuf {
        let hex = fingerprint.to_string();
        self.base_by_fingerprint.join(&hex[..2]).join(&hex[2..])
    }

    /// Returns the path to the given Email.
    fn path_to_email(&self, email: &str) -> PathBuf {
        if email.len() > 2 {
            self.base_by_email.join(&email[..2]).join(&email[2..])
        } else {
            self.base_by_email.join(email)
        }
    }

    fn new_token<'a>(&self, base: &'a str) -> Result<(File, String)> {
        use rand::distributions::Alphanumeric;
        use rand::{thread_rng, Rng};

        let mut rng = thread_rng();
        // samples from [a-zA-Z0-9]
        // 43 chars ~ 256 bit
        let name: String = rng.sample_iter(&Alphanumeric).take(43).collect();
        let dir = self.base.join(base);
        let fd = File::create(dir.join(name.clone()))?;

        Ok((fd, name))
    }

    fn pop_token<'a>(
        &self, base: &'a str, token: &'a str,
    ) -> Result<Box<[u8]>> {
        let path = self.base.join(base).join(token);
        let buf = {
            let mut fd = File::open(path.clone())?;
            let mut buf = Vec::default();

            fd.read_to_end(&mut buf)?;
            buf.into_boxed_slice()
        };

        remove_file(path)?;
        Ok(buf)
    }
}

impl Database for Filesystem {
    fn new_verify_token(&self, payload: Verify) -> Result<String> {
        let (mut fd, name) = self.new_token("verification_tokens")?;
        fd.write_all(serde_json::to_string(&payload)?.as_bytes())?;

        Ok(name)
    }

    fn new_delete_token(&self, payload: Delete) -> Result<String> {
        let (mut fd, name) = self.new_token("deletion_tokens")?;
        fd.write_all(serde_json::to_string(&payload)?.as_bytes())?;

        Ok(name)
    }

    fn compare_and_swap(
        &self, fpr: &Fingerprint, old: Option<&[u8]>, new: Option<&[u8]>,
    ) -> Result<bool> {
        let target = self.path_to_fingerprint(fpr);
        let dir = self.base.join("scratch_pad");

        match new {
            Some(new) => {
                let mut tmp = tempfile::Builder::new()
                    .prefix("key")
                    .rand_bytes(16)
                    .tempfile_in(dir)?;
                tmp.write_all(new)?;

                if target.is_file() {
                    if old.is_some() {
                        remove_file(target.clone())?;
                    } else {
                        return Err(
                            format!("stray file {}", target.display()).into()
                        );
                    }
                }
                let _ = tmp.persist(ensure_parent(&target)?)?;

                // fix permissions to 640
                if cfg!(unix) {
                    use std::fs::{set_permissions, Permissions};
                    use std::os::unix::fs::PermissionsExt;

                    let perm = Permissions::from_mode(0o640);
                    set_permissions(target, perm)?;
                }

                Ok(true)
            }
            None => {
                remove_file(target)?;
                Ok(true)
            }
        }
    }

    fn link_email(&self, email: &Email, fpr: &Fingerprint) {
        let email =
            url::form_urlencoded::byte_serialize(email.to_string().as_bytes())
                .collect::<String>();
        let target = self.path_to_fingerprint(fpr);
        let link = self.path_to_email(&email);

        if link.exists() {
            let _ = remove_file(link.clone());
        }

        let _ = symlink(target, ensure_parent(&link).unwrap());
    }

    fn unlink_email(&self, email: &Email, fpr: &Fingerprint) {
        let email =
            url::form_urlencoded::byte_serialize(email.to_string().as_bytes())
                .collect::<String>();
        let link = self.path_to_email(&email);

        match read_link(link.clone()) {
            Ok(target) => {
                let expected = self.path_to_fingerprint(fpr);

                if target == expected {
                    let _ = remove_file(link);
                }
            }
            Err(_) => {}
        }
    }

    fn link_kid(&self, kid: &KeyID, fpr: &Fingerprint) {
        let target = self.path_to_fingerprint(fpr);
        let link = self.path_to_keyid(kid);

        if link.exists() {
            let _ = remove_file(link.clone());
        }

        let _ = symlink(target, ensure_parent(&link).unwrap());
    }

    fn unlink_kid(&self, kid: &KeyID, fpr: &Fingerprint) {
        let link = self.path_to_keyid(kid);

        match read_link(link.clone()) {
            Ok(target) => {
                let expected = self.path_to_fingerprint(fpr);

                if target == expected {
                    let _ = remove_file(link);
                }
            }
            Err(_) => {}
        }
    }

    fn link_fpr(&self, from: &Fingerprint, fpr: &Fingerprint) {
        let target = self.path_to_fingerprint(fpr);
        let link = self.path_to_fingerprint(from);

        if link == target {
            return;
        }
        if link.exists() {
            match link.metadata() {
                Ok(ref meta) if meta.file_type().is_symlink() => {
                    let _ = remove_file(link.clone());
                }
                _ => {}
            }
        }

        let _ = symlink(target, ensure_parent(&link).unwrap());
    }

    fn unlink_fpr(&self, from: &Fingerprint, fpr: &Fingerprint) {
        let link = self.path_to_fingerprint(from);

        match read_link(link.clone()) {
            Ok(target) => {
                let expected = self.path_to_fingerprint(fpr);

                if target == expected {
                    let _ = remove_file(link);
                }
            }
            Err(_) => {}
        }
    }

    fn pop_verify_token(&self, token: &str) -> Option<Verify> {
        self.pop_token("verification_tokens", token)
            .ok()
            .and_then(|raw| str::from_utf8(&raw).ok().map(|s| s.to_string()))
            .and_then(|s| {
                let s = serde_json::from_str(&s);
                s.ok()
            })
    }

    fn pop_delete_token(&self, token: &str) -> Option<Delete> {
        self.pop_token("deletion_tokens", token)
            .ok()
            .and_then(|raw| str::from_utf8(&raw).ok().map(|s| s.to_string()))
            .and_then(|s| serde_json::from_str(&s).ok())
    }

    // XXX: slow
    fn by_fpr(&self, fpr: &Fingerprint) -> Option<Box<[u8]>> {
        let target = self.path_to_fingerprint(fpr);

        File::open(target).ok().and_then(|mut fd| {
            let mut buf = Vec::default();
            if fd.read_to_end(&mut buf).is_ok() {
                Some(buf.into_boxed_slice())
            } else {
                None
            }
        })
    }

    // XXX: slow
    fn by_email(&self, email: &Email) -> Option<Box<[u8]>> {
        use std::fs;

        let email =
            url::form_urlencoded::byte_serialize(email.to_string().as_bytes())
                .collect::<String>();
        let path = self.path_to_email(&email);

        fs::canonicalize(path)
            .ok()
            .and_then(
                |p| {
                    if p.starts_with(&self.base) {
                        Some(p)
                    } else {
                        None
                    }
                },
            )
            .and_then(|p| File::open(p).ok())
            .and_then(|mut fd| {
                let mut buf = Vec::default();
                if fd.read_to_end(&mut buf).is_ok() {
                    Some(buf.into_boxed_slice())
                } else {
                    None
                }
            })
    }

    // XXX: slow
    fn by_kid(&self, kid: &KeyID) -> Option<Box<[u8]>> {
        use std::fs;

        let path = self.path_to_keyid(kid);

        fs::canonicalize(path)
            .ok()
            .and_then(
                |p| {
                    if p.starts_with(&self.base) {
                        Some(p)
                    } else {
                        None
                    }
                },
            )
            .and_then(|p| File::open(p).ok())
            .and_then(|mut fd| {
                let mut buf = Vec::default();
                if fd.read_to_end(&mut buf).is_ok() {
                    Some(buf.into_boxed_slice())
                } else {
                    None
                }
            })
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use database::test;
    use sequoia_openpgp::tpk::TPKBuilder;
    use tempfile::TempDir;

    #[test]
    fn init() {
        let tmpdir = TempDir::new().unwrap();
        let _ = Filesystem::new(tmpdir.path()).unwrap();
    }

    #[test]
    fn new() {
        let tmpdir = TempDir::new().unwrap();
        let db = Filesystem::new(tmpdir.path()).unwrap();
        let k1 = TPKBuilder::default().add_userid("a").generate().unwrap().0;
        let k2 = TPKBuilder::default().add_userid("b").generate().unwrap().0;
        let k3 = TPKBuilder::default().add_userid("c").generate().unwrap().0;

        assert!(db.merge_or_publish(k1).unwrap().len() > 0);
        assert!(db.merge_or_publish(k2.clone()).unwrap().len() > 0);
        assert!(!db.merge_or_publish(k2).unwrap().len() > 0);
        assert!(db.merge_or_publish(k3.clone()).unwrap().len() > 0);
        assert!(!db.merge_or_publish(k3.clone()).unwrap().len() > 0);
        assert!(!db.merge_or_publish(k3).unwrap().len() > 0);
    }

    #[test]
    fn uid_verification() {
        let tmpdir = TempDir::new().unwrap();
        let mut db = Filesystem::new(tmpdir.path()).unwrap();

        test::test_uid_verification(&mut db);
    }

    #[test]
    fn uid_deletion() {
        let tmpdir = TempDir::new().unwrap();
        let mut db = Filesystem::new(tmpdir.path()).unwrap();

        test::test_uid_deletion(&mut db);
    }

    #[test]
    fn subkey_lookup() {
        let tmpdir = TempDir::new().unwrap();
        let mut db = Filesystem::new(tmpdir.path()).unwrap();

        test::test_subkey_lookup(&mut db);
    }

    #[test]
    fn kid_lookup() {
        let tmpdir = TempDir::new().unwrap();
        let mut db = Filesystem::new(tmpdir.path()).unwrap();

        test::test_kid_lookup(&mut db);
    }

    #[test]
    fn uid_revocation() {
        let tmpdir = TempDir::new().unwrap();
        let mut db = Filesystem::new(tmpdir.path()).unwrap();

        test::test_uid_revocation(&mut db);
    }

    #[test]
    fn key_reupload() {
        let tmpdir = TempDir::new().unwrap();
        let mut db = Filesystem::new(tmpdir.path()).unwrap();

        test::test_reupload(&mut db);
    }

    #[test]
    fn uid_replacement() {
        let tmpdir = TempDir::new().unwrap();
        let mut db = Filesystem::new(tmpdir.path()).unwrap();

        test::test_uid_replacement(&mut db);
    }

    #[test]
    fn uid_stealing() {
        let tmpdir = TempDir::new().unwrap();
        let mut db = Filesystem::new(tmpdir.path()).unwrap();

        test::test_steal_uid(&mut db);
    }
}
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`use std::fs::{create_dir, create_dir_all, read_link, remove_file, File};`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`use std::io::{Read, Write};`
initial commit 2018-08-16 18:35:19 +00:00			`use std::os::unix::fs::symlink;`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`use std::path::{Path, PathBuf};`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`use std::str;`
initial commit 2018-08-16 18:35:19 +00:00
			`use serde_json;`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`use tempfile;`
use uuencode for userids and hex for fprs 2018-10-24 17:45:11 +00:00			`use url;`
initial commit 2018-08-16 18:35:19 +00:00
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`use database::{Database, Delete, Verify};`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00			`use types::{Email, Fingerprint, KeyID};`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`use Result;`
initial commit 2018-08-16 18:35:19 +00:00
Add polymorphic database 2018-09-19 20:22:59 +00:00			`pub struct Filesystem {`
initial commit 2018-08-16 18:35:19 +00:00			`base: PathBuf,`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`base_by_keyid: PathBuf,`
			`base_by_fingerprint: PathBuf,`
			`base_by_email: PathBuf,`
initial commit 2018-08-16 18:35:19 +00:00			`}`

Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`/// Returns the given path, ensuring that the parent directory exists.`
			`///`
			`/// Use this on paths returned by .path_to_* before creating the`
			`/// object.`
			`fn ensure_parent(path: &Path) -> Result<&Path> {`
			`let parent = path.parent().unwrap();`
			`if ! parent.exists() {`
			`create_dir(parent)?;`
			`}`
			`Ok(path)`
			`}`


initial commit 2018-08-16 18:35:19 +00:00			`impl Filesystem {`
			`pub fn new<P: Into<PathBuf>>(base: P) -> Result<Self> {`
			`use std::fs;`

			`let base: PathBuf = base.into();`

			`if fs::create_dir(&base).is_err() {`
			`let meta = fs::metadata(&base);`

			`match meta {`
			`Ok(meta) => {`
			`if !meta.file_type().is_dir() {`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`return Err(format!(`
			`"'{}' exists already and is not a directory",`
			`base.display()`
			`)`
			`.into());`
initial commit 2018-08-16 18:35:19 +00:00			`}`

			`if meta.permissions().readonly() {`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`return Err(format!(`
			`"Cannot write '{}'",`
			`base.display()`
			`)`
			`.into());`
initial commit 2018-08-16 18:35:19 +00:00			`}`
			`}`

			`Err(e) => {`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`return Err(format!(`
			`"Cannot read '{}': {}",`
			`base.display(),`
			`e`
			`)`
			`.into());`
initial commit 2018-08-16 18:35:19 +00:00			`}`
			`}`
			`}`

			`// create directories`
			`create_dir_all(base.join("verification_tokens"))?;`
			`create_dir_all(base.join("deletion_tokens"))?;`
			`create_dir_all(base.join("scratch_pad"))?;`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00
			`let base_by_keyid = base.join("public").join("by-keyid");`
			`let base_by_fingerprint = base.join("public").join("by-fingerprint");`
			`let base_by_email = base.join("public").join("by-email");`
			`create_dir_all(&base_by_keyid)?;`
			`create_dir_all(&base_by_fingerprint)?;`
			`create_dir_all(&base_by_email)?;`
initial commit 2018-08-16 18:35:19 +00:00
			`info!("Opened base dir '{}'", base.display());`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`Ok(Filesystem {`
			`base: base,`
			`base_by_keyid: base_by_keyid,`
			`base_by_fingerprint: base_by_fingerprint,`
			`base_by_email: base_by_email,`
			`})`
			`}`

			`/// Returns the path to the given KeyID.`
			`fn path_to_keyid(&self, keyid: &KeyID) -> PathBuf {`
Use git-style subdirectories for data files. - To address scalability concerns, we put data files into subdirectories by splitting e.g. the fingerprint into a two character prefix and the rest, using the prefix as subdirectory name, and the rest as filename. - We hide this fact from the user using rewrite rules in nginx. - Fixes #38. 2019-02-21 23:29:15 +00:00			`let hex = keyid.to_string();`
			`self.base_by_keyid.join(&hex[..2]).join(&hex[2..])`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`}`

			`/// Returns the path to the given Fingerprint.`
			`fn path_to_fingerprint(&self, fingerprint: &Fingerprint) -> PathBuf {`
Use git-style subdirectories for data files. - To address scalability concerns, we put data files into subdirectories by splitting e.g. the fingerprint into a two character prefix and the rest, using the prefix as subdirectory name, and the rest as filename. - We hide this fact from the user using rewrite rules in nginx. - Fixes #38. 2019-02-21 23:29:15 +00:00			`let hex = fingerprint.to_string();`
			`self.base_by_fingerprint.join(&hex[..2]).join(&hex[2..])`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`}`

			`/// Returns the path to the given Email.`
			`fn path_to_email(&self, email: &str) -> PathBuf {`
Use git-style subdirectories for data files. - To address scalability concerns, we put data files into subdirectories by splitting e.g. the fingerprint into a two character prefix and the rest, using the prefix as subdirectory name, and the rest as filename. - We hide this fact from the user using rewrite rules in nginx. - Fixes #38. 2019-02-21 23:29:15 +00:00			`if email.len() > 2 {`
			`self.base_by_email.join(&email[..2]).join(&email[2..])`
			`} else {`
			`self.base_by_email.join(email)`
			`}`
initial commit 2018-08-16 18:35:19 +00:00			`}`

			`fn new_token<'a>(&self, base: &'a str) -> Result<(File, String)> {`
			`use rand::distributions::Alphanumeric;`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`use rand::{thread_rng, Rng};`
initial commit 2018-08-16 18:35:19 +00:00
			`let mut rng = thread_rng();`
			`// samples from [a-zA-Z0-9]`
			`// 43 chars ~ 256 bit`
			`let name: String = rng.sample_iter(&Alphanumeric).take(43).collect();`
			`let dir = self.base.join(base);`
			`let fd = File::create(dir.join(name.clone()))?;`

			`Ok((fd, name))`
			`}`

use rustfmt to format source 2019-02-07 19:58:31 +00:00			`fn pop_token<'a>(`
			`&self, base: &'a str, token: &'a str,`
			`) -> Result<Box<[u8]>> {`
initial commit 2018-08-16 18:35:19 +00:00			`let path = self.base.join(base).join(token);`
			`let buf = {`
			`let mut fd = File::open(path.clone())?;`
			`let mut buf = Vec::default();`

			`fd.read_to_end(&mut buf)?;`
			`buf.into_boxed_slice()`
			`};`

			`remove_file(path)?;`
			`Ok(buf)`
			`}`
			`}`

			`impl Database for Filesystem {`
Add polymorphic database 2018-09-19 20:22:59 +00:00			`fn new_verify_token(&self, payload: Verify) -> Result<String> {`
initial commit 2018-08-16 18:35:19 +00:00			`let (mut fd, name) = self.new_token("verification_tokens")?;`
			`fd.write_all(serde_json::to_string(&payload)?.as_bytes())?;`

			`Ok(name)`
			`}`

Add polymorphic database 2018-09-19 20:22:59 +00:00			`fn new_delete_token(&self, payload: Delete) -> Result<String> {`
initial commit 2018-08-16 18:35:19 +00:00			`let (mut fd, name) = self.new_token("deletion_tokens")?;`
			`fd.write_all(serde_json::to_string(&payload)?.as_bytes())?;`

			`Ok(name)`
			`}`

use rustfmt to format source 2019-02-07 19:58:31 +00:00			`fn compare_and_swap(`
			`&self, fpr: &Fingerprint, old: Option<&[u8]>, new: Option<&[u8]>,`
			`) -> Result<bool> {`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let target = self.path_to_fingerprint(fpr);`
initial commit 2018-08-16 18:35:19 +00:00			`let dir = self.base.join("scratch_pad");`

			`match new {`
			`Some(new) => {`
			`let mut tmp = tempfile::Builder::new()`
			`.prefix("key")`
			`.rand_bytes(16)`
			`.tempfile_in(dir)?;`
			`tmp.write_all(new)?;`

			`if target.is_file() {`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`if old.is_some() {`
			`remove_file(target.clone())?;`
			`} else {`
			`return Err(`
			`format!("stray file {}", target.display()).into()`
			`);`
			`}`
initial commit 2018-08-16 18:35:19 +00:00			`}`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let _ = tmp.persist(ensure_parent(&target)?)?;`
make keys group readable 2019-01-04 13:20:48 +00:00
			`// fix permissions to 640`
			`if cfg!(unix) {`
			`use std::fs::{set_permissions, Permissions};`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`use std::os::unix::fs::PermissionsExt;`
make keys group readable 2019-01-04 13:20:48 +00:00
			`let perm = Permissions::from_mode(0o640);`
			`set_permissions(target, perm)?;`
			`}`
initial commit 2018-08-16 18:35:19 +00:00
			`Ok(true)`
			`}`
			`None => {`
			`remove_file(target)?;`
			`Ok(true)`
			`}`
			`}`
			`}`

use uuencode for userids and hex for fprs 2018-10-24 17:45:11 +00:00			`fn link_email(&self, email: &Email, fpr: &Fingerprint) {`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`let email =`
			`url::form_urlencoded::byte_serialize(email.to_string().as_bytes())`
			`.collect::<String>();`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let target = self.path_to_fingerprint(fpr);`
			`let link = self.path_to_email(&email);`
initial commit 2018-08-16 18:35:19 +00:00
			`if link.exists() {`
			`let _ = remove_file(link.clone());`
			`}`

Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let _ = symlink(target, ensure_parent(&link).unwrap());`
initial commit 2018-08-16 18:35:19 +00:00			`}`

use uuencode for userids and hex for fprs 2018-10-24 17:45:11 +00:00			`fn unlink_email(&self, email: &Email, fpr: &Fingerprint) {`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`let email =`
			`url::form_urlencoded::byte_serialize(email.to_string().as_bytes())`
			`.collect::<String>();`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let link = self.path_to_email(&email);`
initial commit 2018-08-16 18:35:19 +00:00
			`match read_link(link.clone()) {`
			`Ok(target) => {`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let expected = self.path_to_fingerprint(fpr);`
initial commit 2018-08-16 18:35:19 +00:00
			`if target == expected {`
			`let _ = remove_file(link);`
			`}`
			`}`
			`Err(_) => {}`
			`}`
			`}`

allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00			`fn link_kid(&self, kid: &KeyID, fpr: &Fingerprint) {`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let target = self.path_to_fingerprint(fpr);`
			`let link = self.path_to_keyid(kid);`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00
			`if link.exists() {`
			`let _ = remove_file(link.clone());`
			`}`

Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let _ = symlink(target, ensure_parent(&link).unwrap());`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00			`}`

			`fn unlink_kid(&self, kid: &KeyID, fpr: &Fingerprint) {`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let link = self.path_to_keyid(kid);`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00
			`match read_link(link.clone()) {`
			`Ok(target) => {`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let expected = self.path_to_fingerprint(fpr);`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00
			`if target == expected {`
			`let _ = remove_file(link);`
			`}`
			`}`
			`Err(_) => {}`
			`}`
			`}`

			`fn link_fpr(&self, from: &Fingerprint, fpr: &Fingerprint) {`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let target = self.path_to_fingerprint(fpr);`
			`let link = self.path_to_fingerprint(from);`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`if link == target {`
			`return;`
			`}`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00			`if link.exists() {`
			`match link.metadata() {`
			`Ok(ref meta) if meta.file_type().is_symlink() => {`
			`let _ = remove_file(link.clone());`
			`}`
			`_ => {}`
			`}`
			`}`

Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let _ = symlink(target, ensure_parent(&link).unwrap());`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00			`}`

			`fn unlink_fpr(&self, from: &Fingerprint, fpr: &Fingerprint) {`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let link = self.path_to_fingerprint(from);`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00
			`match read_link(link.clone()) {`
			`Ok(target) => {`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let expected = self.path_to_fingerprint(fpr);`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00
			`if target == expected {`
			`let _ = remove_file(link);`
			`}`
			`}`
			`Err(_) => {}`
			`}`
			`}`

Add polymorphic database 2018-09-19 20:22:59 +00:00			`fn pop_verify_token(&self, token: &str) -> Option<Verify> {`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`self.pop_token("verification_tokens", token)`
			`.ok()`
			`.and_then(\|raw\| str::from_utf8(&raw).ok().map(\|s\| s.to_string()))`
			`.and_then(\|s\| {`
			`let s = serde_json::from_str(&s);`
			`s.ok()`
			`})`
initial commit 2018-08-16 18:35:19 +00:00			`}`

Add polymorphic database 2018-09-19 20:22:59 +00:00			`fn pop_delete_token(&self, token: &str) -> Option<Delete> {`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`self.pop_token("deletion_tokens", token)`
			`.ok()`
			`.and_then(\|raw\| str::from_utf8(&raw).ok().map(\|s\| s.to_string()))`
			`.and_then(\|s\| serde_json::from_str(&s).ok())`
initial commit 2018-08-16 18:35:19 +00:00			`}`

			`// XXX: slow`
			`fn by_fpr(&self, fpr: &Fingerprint) -> Option<Box<[u8]>> {`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let target = self.path_to_fingerprint(fpr);`
initial commit 2018-08-16 18:35:19 +00:00
			`File::open(target).ok().and_then(\|mut fd\| {`
			`let mut buf = Vec::default();`
			`if fd.read_to_end(&mut buf).is_ok() {`
			`Some(buf.into_boxed_slice())`
			`} else {`
			`None`
			`}`
			`})`
			`}`

			`// XXX: slow`
use uuencode for userids and hex for fprs 2018-10-24 17:45:11 +00:00			`fn by_email(&self, email: &Email) -> Option<Box<[u8]>> {`
fix dir traversal vuln 2018-09-19 20:23:39 +00:00			`use std::fs;`
initial commit 2018-08-16 18:35:19 +00:00
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`let email =`
			`url::form_urlencoded::byte_serialize(email.to_string().as_bytes())`
			`.collect::<String>();`
Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let path = self.path_to_email(&email);`
fix dir traversal vuln 2018-09-19 20:23:39 +00:00
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`fs::canonicalize(path)`
			`.ok()`
			`.and_then(`
			`\|p\| {`
			`if p.starts_with(&self.base) {`
			`Some(p)`
			`} else {`
			`None`
			`}`
			`},`
			`)`
			`.and_then(\|p\| File::open(p).ok())`
			`.and_then(\|mut fd\| {`
fix dir traversal vuln 2018-09-19 20:23:39 +00:00			`let mut buf = Vec::default();`
			`if fd.read_to_end(&mut buf).is_ok() {`
			`Some(buf.into_boxed_slice())`
			`} else {`
			`None`
			`}`
			`})`
initial commit 2018-08-16 18:35:19 +00:00			`}`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00
			`// XXX: slow`
			`fn by_kid(&self, kid: &KeyID) -> Option<Box<[u8]>> {`
			`use std::fs;`

Introduce an abstraction for the paths. 2019-02-21 21:05:01 +00:00			`let path = self.path_to_keyid(kid);`
use rustfmt to format source 2019-02-07 19:58:31 +00:00
			`fs::canonicalize(path)`
			`.ok()`
			`.and_then(`
			`\|p\| {`
			`if p.starts_with(&self.base) {`
			`Some(p)`
			`} else {`
			`None`
			`}`
			`},`
			`)`
			`.and_then(\|p\| File::open(p).ok())`
			`.and_then(\|mut fd\| {`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00			`let mut buf = Vec::default();`
			`if fd.read_to_end(&mut buf).is_ok() {`
			`Some(buf.into_boxed_slice())`
			`} else {`
			`None`
			`}`
			`})`
			`}`
initial commit 2018-08-16 18:35:19 +00:00			`}`

			`#[cfg(test)]`
			`mod tests {`
			`use super::*;`
			`use database::test;`
use rustfmt to format source 2019-02-07 19:58:31 +00:00			`use sequoia_openpgp::tpk::TPKBuilder;`
			`use tempfile::TempDir;`
initial commit 2018-08-16 18:35:19 +00:00
			`#[test]`
			`fn init() {`
			`let tmpdir = TempDir::new().unwrap();`
			`let _ = Filesystem::new(tmpdir.path()).unwrap();`
			`}`

			`#[test]`
			`fn new() {`
			`let tmpdir = TempDir::new().unwrap();`
fix warnings when compiling tests 2018-10-25 15:42:02 +00:00			`let db = Filesystem::new(tmpdir.path()).unwrap();`
rename to hagrid 2018-11-22 15:40:59 +00:00			`let k1 = TPKBuilder::default().add_userid("a").generate().unwrap().0;`
			`let k2 = TPKBuilder::default().add_userid("b").generate().unwrap().0;`
			`let k3 = TPKBuilder::default().add_userid("c").generate().unwrap().0;`
initial commit 2018-08-16 18:35:19 +00:00
			`assert!(db.merge_or_publish(k1).unwrap().len() > 0);`
			`assert!(db.merge_or_publish(k2.clone()).unwrap().len() > 0);`
			`assert!(!db.merge_or_publish(k2).unwrap().len() > 0);`
			`assert!(db.merge_or_publish(k3.clone()).unwrap().len() > 0);`
			`assert!(!db.merge_or_publish(k3.clone()).unwrap().len() > 0);`
			`assert!(!db.merge_or_publish(k3).unwrap().len() > 0);`
			`}`

			`#[test]`
			`fn uid_verification() {`
			`let tmpdir = TempDir::new().unwrap();`
			`let mut db = Filesystem::new(tmpdir.path()).unwrap();`

			`test::test_uid_verification(&mut db);`
			`}`

			`#[test]`
			`fn uid_deletion() {`
			`let tmpdir = TempDir::new().unwrap();`
			`let mut db = Filesystem::new(tmpdir.path()).unwrap();`

			`test::test_uid_deletion(&mut db);`
			`}`
allow lookup by keyid and subkey fpr 2019-01-04 13:07:14 +00:00
			`#[test]`
			`fn subkey_lookup() {`
			`let tmpdir = TempDir::new().unwrap();`
			`let mut db = Filesystem::new(tmpdir.path()).unwrap();`

			`test::test_subkey_lookup(&mut db);`
			`}`

			`#[test]`
			`fn kid_lookup() {`
			`let tmpdir = TempDir::new().unwrap();`
			`let mut db = Filesystem::new(tmpdir.path()).unwrap();`

			`test::test_kid_lookup(&mut db);`
			`}`
don't allow fetch by revoked UIDs closes #15 2019-01-15 15:59:35 +00:00
			`#[test]`
			`fn uid_revocation() {`
			`let tmpdir = TempDir::new().unwrap();`
			`let mut db = Filesystem::new(tmpdir.path()).unwrap();`

			`test::test_uid_revocation(&mut db);`
			`}`
carry over verified UIDs on key update 2019-02-07 20:01:59 +00:00
			`#[test]`
			`fn key_reupload() {`
			`let tmpdir = TempDir::new().unwrap();`
			`let mut db = Filesystem::new(tmpdir.path()).unwrap();`

			`test::test_reupload(&mut db);`
			`}`

			`#[test]`
			`fn uid_replacement() {`
			`let tmpdir = TempDir::new().unwrap();`
			`let mut db = Filesystem::new(tmpdir.path()).unwrap();`

			`test::test_uid_replacement(&mut db);`
			`}`
test correct UID linking if new keys are uploaded. Closes #26 2019-02-08 14:46:05 +00:00
			`#[test]`
			`fn uid_stealing() {`
			`let tmpdir = TempDir::new().unwrap();`
			`let mut db = Filesystem::new(tmpdir.path()).unwrap();`

			`test::test_steal_uid(&mut db);`
			`}`
initial commit 2018-08-16 18:35:19 +00:00			`}`