kotovalexarian-likes-gitlab
/
hagrid-keyserver--hagrid
mirror of https://gitlab.com/hagrid-keyserver/hagrid.git
1
0
Fork 0
Code Releases Activity
hagrid-keyserver--hagrid/database/src/fs.rs

851 lines
28 KiB
Rust
Raw Normal View History

Add a database consistency check used when testing. - Closes #72.
2019-03-11 14:49:01 +00:00
use std::convert::{TryInto, TryFrom};
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
use std::fs::{create_dir_all, read_link, remove_file, rename};
use std::io::Write;
Introduce an abstraction for the paths.
2019-02-21 21:05:01 +00:00
use std::path::{Path, PathBuf};
initial commit
2018-08-16 18:35:19 +00:00
use rustfmt to format source
2019-02-07 19:58:31 +00:00
use tempfile;
use uuencode for userids and hex for fprs
2018-10-24 17:45:11 +00:00
use url;
Use relative links. - In order to store the links in the inodes, we need to make sure that they are short. The first step is to use relative links.
2019-02-22 14:45:34 +00:00
use pathdiff::diff_paths;
initial commit
2018-08-16 18:35:19 +00:00
Change Input of dp trait to use String
2019-02-22 21:37:01 +00:00
//use sequoia_openpgp::armor::{Writer, Kind};
Store data ascii armored on file, second try
2019-02-22 15:14:57 +00:00
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
use {Database, Query};
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
use types::{Email, Fingerprint, KeyID};
Use a flock(2)-based Mutex in Filesystem::lock(). - If this proves to be too expensive, we may need to look for a shared-memory based synchronization mechanism. However, no existing one seemed suitable. - Fixes #81.
2019-03-13 12:03:33 +00:00
use sync::{MutexGuard, FlockMutex};
use rustfmt to format source
2019-02-07 19:58:31 +00:00
use Result;
initial commit
2018-08-16 18:35:19 +00:00
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
use tempfile::NamedTempFile;
Add polymorphic database
2018-09-19 20:22:59 +00:00
pub struct Filesystem {
Use a flock(2)-based Mutex in Filesystem::lock(). - If this proves to be too expensive, we may need to look for a shared-memory based synchronization mechanism. However, no existing one seemed suitable. - Fixes #81.
2019-03-13 12:03:33 +00:00
update_lock: FlockMutex,
Lock non-atomic update operations
2019-02-22 21:27:36 +00:00
restructure files
2019-04-26 16:33:26 +00:00
tmp_dir: PathBuf,
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
keys_dir: PathBuf,
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
keys_dir_full: PathBuf,
keys_dir_published: PathBuf,
links_dir_by_fingerprint: PathBuf,
links_dir_by_keyid: PathBuf,
links_dir_by_email: PathBuf,
initial commit
2018-08-16 18:35:19 +00:00
}
Introduce an abstraction for the paths.
2019-02-21 21:05:01 +00:00
/// Returns the given path, ensuring that the parent directory exists.
///
/// Use this on paths returned by .path_to_* before creating the
/// object.
fn ensure_parent(path: &Path) -> Result<&Path> {
let parent = path.parent().unwrap();
Avoid TOCTOU issue when creating subdirectories.
2019-02-22 10:56:31 +00:00
create_dir_all(parent)?;
Introduce an abstraction for the paths.
2019-02-21 21:05:01 +00:00
Ok(path)
}
initial commit
2018-08-16 18:35:19 +00:00
impl Filesystem {
restructure files
2019-04-26 16:33:26 +00:00
pub fn new_from_base(base_dir: impl Into<PathBuf>) -> Result<Self> {
let base_dir: PathBuf = base_dir.into();
let keys_dir = base_dir.join("keys");
let tmp_dir = base_dir.join("tmp");
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
Self::new(keys_dir, tmp_dir)
restructure files
2019-04-26 16:33:26 +00:00
}
pub fn new(
keys_dir: impl Into<PathBuf>,
tmp_dir: impl Into<PathBuf>,
) -> Result<Self> {
initial commit
2018-08-16 18:35:19 +00:00
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
/*
use std::fs;
if fs::create_dir(&state_dir).is_err() {
restructure files
2019-04-26 16:33:26 +00:00
let meta = fs::metadata(&state_dir);
initial commit
2018-08-16 18:35:19 +00:00
match meta {
Ok(meta) => {
if !meta.file_type().is_dir() {
Break your chains and just failure. - Fixes #42.
2019-02-22 20:29:53 +00:00
return Err(failure::format_err!(
use rustfmt to format source
2019-02-07 19:58:31 +00:00
"'{}' exists already and is not a directory",
restructure files
2019-04-26 16:33:26 +00:00
state_dir.display()));
initial commit
2018-08-16 18:35:19 +00:00
}
if meta.permissions().readonly() {
Break your chains and just failure. - Fixes #42.
2019-02-22 20:29:53 +00:00
return Err(failure::format_err!(
use rustfmt to format source
2019-02-07 19:58:31 +00:00
"Cannot write '{}'",
restructure files
2019-04-26 16:33:26 +00:00
state_dir.display()));
initial commit
2018-08-16 18:35:19 +00:00
}
}
Err(e) => {
Break your chains and just failure. - Fixes #42.
2019-02-22 20:29:53 +00:00
return Err(failure::format_err!(
use rustfmt to format source
2019-02-07 19:58:31 +00:00
"Cannot read '{}': {}",
restructure files
2019-04-26 16:33:26 +00:00
state_dir.display(), e));
initial commit
2018-08-16 18:35:19 +00:00
}
}
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
}*/
initial commit
2018-08-16 18:35:19 +00:00
restructure files
2019-04-26 16:33:26 +00:00
let tmp_dir = tmp_dir.into();
create_dir_all(&tmp_dir)?;
let keys_dir: PathBuf = keys_dir.into();
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let keys_dir_full = keys_dir.join("full");
let keys_dir_published = keys_dir.join("published");
create_dir_all(&keys_dir_full)?;
create_dir_all(&keys_dir_published)?;
let links_dir_by_keyid = keys_dir.join("by-keyid");
let links_dir_by_fingerprint = keys_dir.join("by-fpr");
let links_dir_by_email = keys_dir.join("by-email");
create_dir_all(&links_dir_by_keyid)?;
create_dir_all(&links_dir_by_fingerprint)?;
create_dir_all(&links_dir_by_email)?;
initial commit
2018-08-16 18:35:19 +00:00
restructure files
2019-04-26 16:33:26 +00:00
info!("Opened filesystem database.");
info!("keys_dir: '{}'", keys_dir.display());
info!("tmp_dir: '{}'", tmp_dir.display());
Introduce an abstraction for the paths.
2019-02-21 21:05:01 +00:00
Ok(Filesystem {
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
update_lock: FlockMutex::new(&keys_dir)?,
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
keys_dir,
tmp_dir,
keys_dir_full,
keys_dir_published,
links_dir_by_keyid,
links_dir_by_fingerprint,
links_dir_by_email,
Introduce an abstraction for the paths.
2019-02-21 21:05:01 +00:00
})
}
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
/// Returns the path to the given Fingerprint.
fn fingerprint_to_path_full(&self, fingerprint: &Fingerprint) -> PathBuf {
let hex = fingerprint.to_string();
self.keys_dir_full.join(&hex[..2]).join(&hex[2..])
}
/// Returns the path to the given Fingerprint.
fn fingerprint_to_path_published(&self, fingerprint: &Fingerprint) -> PathBuf {
let hex = fingerprint.to_string();
self.keys_dir_published.join(&hex[..2]).join(&hex[2..])
}
Introduce an abstraction for the paths.
2019-02-21 21:05:01 +00:00
/// Returns the path to the given KeyID.
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
fn link_by_keyid(&self, keyid: &KeyID) -> PathBuf {
Use git-style subdirectories for data files. - To address scalability concerns, we put data files into subdirectories by splitting e.g. the fingerprint into a two character prefix and the rest, using the prefix as subdirectory name, and the rest as filename. - We hide this fact from the user using rewrite rules in nginx. - Fixes #38.
2019-02-21 23:29:15 +00:00
let hex = keyid.to_string();
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
self.links_dir_by_keyid.join(&hex[..2]).join(&hex[2..])
Introduce an abstraction for the paths.
2019-02-21 21:05:01 +00:00
}
/// Returns the path to the given Fingerprint.
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
fn link_by_fingerprint(&self, fingerprint: &Fingerprint) -> PathBuf {
Use git-style subdirectories for data files. - To address scalability concerns, we put data files into subdirectories by splitting e.g. the fingerprint into a two character prefix and the rest, using the prefix as subdirectory name, and the rest as filename. - We hide this fact from the user using rewrite rules in nginx. - Fixes #38.
2019-02-21 23:29:15 +00:00
let hex = fingerprint.to_string();
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
self.links_dir_by_fingerprint.join(&hex[..2]).join(&hex[2..])
Introduce an abstraction for the paths.
2019-02-21 21:05:01 +00:00
}
/// Returns the path to the given Email.
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
fn link_by_email(&self, email: &Email) -> PathBuf {
Fix Filesystem::email_to_path.
2019-03-05 12:31:59 +00:00
let email =
url::form_urlencoded::byte_serialize(email.as_str().as_bytes())
.collect::<String>();
Use git-style subdirectories for data files. - To address scalability concerns, we put data files into subdirectories by splitting e.g. the fingerprint into a two character prefix and the rest, using the prefix as subdirectory name, and the rest as filename. - We hide this fact from the user using rewrite rules in nginx. - Fixes #38.
2019-02-21 23:29:15 +00:00
if email.len() > 2 {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
self.links_dir_by_email.join(&email[..2]).join(&email[2..])
Use git-style subdirectories for data files. - To address scalability concerns, we put data files into subdirectories by splitting e.g. the fingerprint into a two character prefix and the rest, using the prefix as subdirectory name, and the rest as filename. - We hide this fact from the user using rewrite rules in nginx. - Fixes #38.
2019-02-21 23:29:15 +00:00
} else {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
self.links_dir_by_email.join(email)
Use git-style subdirectories for data files. - To address scalability concerns, we put data files into subdirectories by splitting e.g. the fingerprint into a two character prefix and the rest, using the prefix as subdirectory name, and the rest as filename. - We hide this fact from the user using rewrite rules in nginx. - Fixes #38.
2019-02-21 23:29:15 +00:00
}
initial commit
2018-08-16 18:35:19 +00:00
}
simplify fs db code
2019-04-16 13:51:00 +00:00
fn read_from_path(&self, path: &Path) -> Option<String> {
use std::fs;
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
if !path.starts_with(&self.keys_dir) {
panic!("Attempted to access file outside keys_dir!");
}
simplify fs db code
2019-04-16 13:51:00 +00:00
if path.exists() {
fs::read_to_string(path).ok()
} else {
None
}
}
Add a database consistency check used when testing. - Closes #72.
2019-03-11 14:49:01 +00:00
/// Returns the KeyID the given path is pointing to.
fn path_to_keyid(&self, path: &Path) -> Option<KeyID> {
use std::str::FromStr;
let rest = path.file_name()?;
let prefix = path.parent()?.file_name()?;
KeyID::from_str(&format!("{}{}", prefix.to_str()?, rest.to_str()?))
.ok()
}
Add Database::lookup_primary_fingerprint(). - Sometimes, we parse the TPK just to compute the fingerprint. But, we can recover the fingerprint without even opening the file by looking at the path.
2019-02-28 17:43:44 +00:00
/// Returns the Fingerprint the given path is pointing to.
fn path_to_fingerprint(&self, path: &Path) -> Option<Fingerprint> {
use std::str::FromStr;
let rest = path.file_name()?;
let prefix = path.parent()?.file_name()?;
Fingerprint::from_str(&format!("{}{}", prefix.to_str()?, rest.to_str()?))
.ok()
}
Handle special case of path_to_fingerprint. - A complication arises if both fingerprints share the same two nibble prefix, because they end up in the same subdirectory. - This led to intermittent (test) failures.
2019-03-13 13:26:57 +00:00
/// Returns the Fingerprint the given path is pointing to.
///
/// This function must be used when converting links connecting
/// subkey fingerprints to the TPK.
///
/// Here, a complication arises if both fingerprints share the
/// same two nibble prefix, because they end up in the same
/// subdirectory.
fn path_to_fingerprint_base(&self, base: &Path, path: &Path)
-> Option<Fingerprint> {
use std::str::FromStr;
let rest = path.file_name()?;
let prefix =
if path.to_str().unwrap().len() == 38 {
base.file_name()?
} else {
path.parent().unwrap().file_name()?
};
Fingerprint::from_str(&format!("{}{}", prefix.to_str()?, rest.to_str()?))
.ok()
}
Add a database consistency check used when testing. - Closes #72.
2019-03-11 14:49:01 +00:00
/// Returns the Email the given path is pointing to.
fn path_to_email(&self, path: &Path) -> Option<Email> {
use std::str::FromStr;
let rest = path.file_name()?;
let prefix = path.parent()?.file_name()?;
let joined = format!("{}{}", prefix.to_str()?, rest.to_str()?);
let decoded = url::form_urlencoded::parse(joined.as_bytes())
.next()?.0;
Email::from_str(&decoded).ok()
}
/// Checks the database for consistency.
///
/// Note that this operation may take a long time, and is
/// generally only useful for testing.
pub fn check_consistency(&self) -> Result<()> {
use std::fs;
use std::collections::HashMap;
use failure::format_err;
// A cache of all TPKs, for quick lookups.
let mut tpks = HashMap::new();
// Check Fingerprints.
rewrite fs database, step 2
2019-04-27 20:08:41 +00:00
for entry in fs::read_dir(&self.keys_dir_published)? {
Add a database consistency check used when testing. - Closes #72.
2019-03-11 14:49:01 +00:00
let prefix = entry?;
let prefix_path = prefix.path();
if ! prefix_path.is_dir() {
return Err(format_err!("{:?} is not a directory", prefix_path));
}
for entry in fs::read_dir(prefix_path)? {
let entry = entry?;
let path = entry.path();
let typ = fs::symlink_metadata(&path)?.file_type();
// The Fingerprint corresponding with this path.
let fp = self.path_to_fingerprint(&path)
.ok_or_else(|| format_err!("Malformed path: {:?}", path))?;
// Compute the corresponding primary fingerprint just
// by looking at the paths.
let primary_fp = match () {
_ if typ.is_file() =>
fp.clone(),
_ => return
rewrite fs database, step 2
2019-04-27 20:08:41 +00:00
Err(format_err!("{:?} is not a file but a {:?}", path, typ)),
Add a database consistency check used when testing. - Closes #72.
2019-03-11 14:49:01 +00:00
};
// Load into cache.
if ! tpks.contains_key(&primary_fp) {
tpks.insert(
primary_fp.clone(),
self.lookup(&Query::ByFingerprint(primary_fp.clone()))
?.ok_or_else(
|| format_err!("No TPK with fingerprint {:?}",
primary_fp))?);
}
let tpk = tpks.get(&primary_fp).unwrap();
rewrite fs database, step 2
2019-04-27 20:08:41 +00:00
let tpk_primary_fp =
tpk.primary().fingerprint().try_into().unwrap();
if fp != tpk_primary_fp {
return Err(format_err!(
"{:?} points to the wrong TPK, expected {} \
but found {}",
path, fp, tpk_primary_fp));
}
}
}
// Check subkeys
for entry in fs::read_dir(&self.links_dir_by_fingerprint)? {
let prefix = entry?;
let prefix_path = prefix.path();
if ! prefix_path.is_dir() {
return Err(format_err!("{:?} is not a directory", prefix_path));
}
for entry in fs::read_dir(prefix_path)? {
let entry = entry?;
let path = entry.path();
let typ = fs::symlink_metadata(&path)?.file_type();
// The KeyID corresponding with this path.
let fp = self.path_to_fingerprint(&path)
.ok_or_else(|| format_err!("Malformed path: {:?}", path))?;
// Compute the corresponding primary fingerprint just
// by looking at the paths.
let primary_fp = match () {
_ if typ.is_symlink() =>
self.path_to_fingerprint(&path.read_link()?)
.ok_or_else(
|| format_err!("Malformed path: {:?}",
path.read_link().unwrap()))?,
_ => return
Err(format_err!("{:?} is not a symlink but a {:?}",
path, typ)),
};
let tpk = tpks.get(&primary_fp)
.ok_or_else(
|| format_err!("Broken symlink {:?}: No such Key {}",
path, primary_fp))?;
let found = tpk.keys_all()
.map(|(_, _, key)| Fingerprint::try_from(key.fingerprint()).unwrap())
.any(|key_fp| key_fp == fp);
if ! found {
return Err(format_err!(
"{:?} points to the wrong TPK, the TPK does not \
contain the subkey {}", path, fp));
Add a database consistency check used when testing. - Closes #72.
2019-03-11 14:49:01 +00:00
}
}
}
// Check KeyIDs.
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
for entry in fs::read_dir(&self.links_dir_by_keyid)? {
Add a database consistency check used when testing. - Closes #72.
2019-03-11 14:49:01 +00:00
let prefix = entry?;
let prefix_path = prefix.path();
if ! prefix_path.is_dir() {
return Err(format_err!("{:?} is not a directory", prefix_path));
}
for entry in fs::read_dir(prefix_path)? {
let entry = entry?;
let path = entry.path();
let typ = fs::symlink_metadata(&path)?.file_type();
// The KeyID corresponding with this path.
let id = self.path_to_keyid(&path)
.ok_or_else(|| format_err!("Malformed path: {:?}", path))?;
// Compute the corresponding primary fingerprint just
// by looking at the paths.
let primary_fp = match () {
_ if typ.is_symlink() =>
self.path_to_fingerprint(&path.read_link()?)
.ok_or_else(
|| format_err!("Malformed path: {:?}",
path.read_link().unwrap()))?,
_ => return
Err(format_err!("{:?} is not a symlink but a {:?}",
path, typ)),
};
let tpk = tpks.get(&primary_fp)
.ok_or_else(
|| format_err!("Broken symlink {:?}: No such Key {}",
path, primary_fp))?;
rewrite fs database, step 2
2019-04-27 20:08:41 +00:00
let found = tpk.keys_all()
.map(|(_, _, key)| KeyID::try_from(key.fingerprint()).unwrap())
.any(|key_fp| key_fp == id);
Add a database consistency check used when testing. - Closes #72.
2019-03-11 14:49:01 +00:00
if ! found {
return Err(format_err!(
"{:?} points to the wrong TPK, the TPK does not \
contain the (sub)key {}", path, id));
}
}
}
// Check Emails.
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
for entry in fs::read_dir(&self.links_dir_by_email)? {
Add a database consistency check used when testing. - Closes #72.
2019-03-11 14:49:01 +00:00
let prefix = entry?;
let prefix_path = prefix.path();
if ! prefix_path.is_dir() {
return Err(format_err!("{:?} is not a directory", prefix_path));
}
for entry in fs::read_dir(prefix_path)? {
let entry = entry?;
let path = entry.path();
let typ = fs::symlink_metadata(&path)?.file_type();
// The Email corresponding with this path.
let email = self.path_to_email(&path)
.ok_or_else(|| format_err!("Malformed path: {:?}", path))?;
// Compute the corresponding primary fingerprint just
// by looking at the paths.
let primary_fp = match () {
_ if typ.is_symlink() =>
self.path_to_fingerprint(&path.read_link()?)
.ok_or_else(
|| format_err!("Malformed path: {:?}",
path.read_link().unwrap()))?,
_ => return
Err(format_err!("{:?} is not a symlink but a {:?}",
path, typ)),
};
let tpk = tpks.get(&primary_fp)
.ok_or_else(
|| format_err!("Broken symlink {:?}: No such Key {}",
path, primary_fp))?;
let mut found = false;
for uidb in tpk.userids() {
if Email::try_from(uidb.userid()).unwrap() == email
{
found = true;
break;
}
}
if ! found {
return Err(format_err!(
"{:?} points to the wrong TPK, the TPK does not \
contain the email {}", path, email));
}
}
}
Ok(())
}
initial commit
2018-08-16 18:35:19 +00:00
}
Create symbolic links atomically. - When creating a symbolic link and the link already exists, do it atomically. This prevents two problems. 1) If we fail between deleting the old link and creating the new link, then we have nothing. 2) If a reader accesses the link between unlinking the old version and creating the new version, it sees nothing.
2019-02-22 19:26:10 +00:00
// Like `symlink`, but instead of failing if `symlink_name` already
// exists, atomically update `symlink_name` to have `symlink_content`.
fn symlink(symlink_content: &Path, symlink_name: &Path) -> Result<()> {
use std::os::unix::fs::{symlink};
let symlink_dir = ensure_parent(symlink_name)?.parent().unwrap();
let tmp_dir = tempfile::Builder::new()
.prefix("link")
.rand_bytes(16)
.tempdir_in(symlink_dir)?;
let symlink_name_tmp = tmp_dir.path().join("link");
symlink(&symlink_content, &symlink_name_tmp)?;
rename(&symlink_name_tmp, &symlink_name)?;
Ok(())
}
initial commit
2018-08-16 18:35:19 +00:00
impl Database for Filesystem {
Lock non-atomic update operations
2019-02-22 21:27:36 +00:00
fn lock(&self) -> MutexGuard<()> {
Abstract over MutexGuards.
2019-03-13 11:32:56 +00:00
self.update_lock.lock().into()
Lock non-atomic update operations
2019-02-22 21:27:36 +00:00
}
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
fn write_to_temp(&self, content: &[u8]) -> Result<NamedTempFile> {
let mut tempfile = tempfile::Builder::new()
.prefix("key")
.rand_bytes(16)
.tempfile_in(&self.tmp_dir)?;
tempfile.write_all(content).unwrap();
// fix permissions to 640
if cfg!(unix) {
use std::fs::{set_permissions, Permissions};
use std::os::unix::fs::PermissionsExt;
let perm = Permissions::from_mode(0o640);
set_permissions(tempfile.path(), perm)?;
}
Ok(tempfile)
}
fn move_tmp_to_full(&self, file: NamedTempFile, fpr: &Fingerprint) -> Result<()> {
let target = self.fingerprint_to_path_full(fpr);
file.persist(ensure_parent(&target)?)?;
Ok(())
}
fn move_tmp_to_published(&self, file: NamedTempFile, fpr: &Fingerprint) -> Result<()> {
let target = self.fingerprint_to_path_published(fpr);
file.persist(ensure_parent(&target)?)?;
Ok(())
}
fn check_link_fpr(&self, fpr: &Fingerprint, fpr_target: &Fingerprint) -> Result<Option<Fingerprint>> {
let link = self.link_by_fingerprint(&fpr);
rewrite fs database, step 2
2019-04-27 20:08:41 +00:00
let target = diff_paths(&self.fingerprint_to_path_published(fpr),
link.parent().unwrap()).unwrap();
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
if link == target {
return Ok(None);
}
Ok(Some(fpr.clone()))
}
Rename Database::compare_and_swap to update. - Database::compare_and_swap is not actually a CAS. Rename to update, which is what it actually does, and update callers.
2019-02-22 11:59:25 +00:00
fn update(
Change Input of dp trait to use String
2019-02-22 21:37:01 +00:00
&self, fpr: &Fingerprint, new: Option<String>,
Rename Database::compare_and_swap to update. - Database::compare_and_swap is not actually a CAS. Rename to update, which is what it actually does, and update callers.
2019-02-22 11:59:25 +00:00
) -> Result<()> {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let target = self.link_by_fingerprint(fpr);
initial commit
2018-08-16 18:35:19 +00:00
match new {
Some(new) => {
let mut tmp = tempfile::Builder::new()
.prefix("key")
.rand_bytes(16)
restructure files
2019-04-26 16:33:26 +00:00
.tempfile_in(&self.tmp_dir)?;
Store data ascii armored on file, second try
2019-02-22 15:14:57 +00:00
Change Input of dp trait to use String
2019-02-22 21:37:01 +00:00
tmp.write_all(new.as_bytes()).unwrap();
Introduce an abstraction for the paths.
2019-02-21 21:05:01 +00:00
let _ = tmp.persist(ensure_parent(&target)?)?;
make keys group readable
2019-01-04 13:20:48 +00:00
// fix permissions to 640
if cfg!(unix) {
use std::fs::{set_permissions, Permissions};
use rustfmt to format source
2019-02-07 19:58:31 +00:00
use std::os::unix::fs::PermissionsExt;
make keys group readable
2019-01-04 13:20:48 +00:00
let perm = Permissions::from_mode(0o640);
set_permissions(target, perm)?;
}
initial commit
2018-08-16 18:35:19 +00:00
}
None => {
remove_file(target)?;
}
}
Rename Database::compare_and_swap to update. - Database::compare_and_swap is not actually a CAS. Rename to update, which is what it actually does, and update callers.
2019-02-22 11:59:25 +00:00
Ok(())
initial commit
2018-08-16 18:35:19 +00:00
}
Add Database::lookup_primary_fingerprint(). - Sometimes, we parse the TPK just to compute the fingerprint. But, we can recover the fingerprint without even opening the file by looking at the path.
2019-02-28 17:43:44 +00:00
fn lookup_primary_fingerprint(&self, term: &Query) -> Option<Fingerprint> {
use super::Query::*;
match term {
ByFingerprint(ref fp) => {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let path = self.link_by_fingerprint(fp);
Add Database::lookup_primary_fingerprint(). - Sometimes, we parse the TPK just to compute the fingerprint. But, we can recover the fingerprint without even opening the file by looking at the path.
2019-02-28 17:43:44 +00:00
let typ = match path.symlink_metadata() {
Ok(meta) => meta.file_type(),
Err(_) => return None,
};
if typ.is_file() {
Some(fp.clone())
} else if typ.is_symlink() {
path.read_link().ok()
Handle special case of path_to_fingerprint. - A complication arises if both fingerprints share the same two nibble prefix, because they end up in the same subdirectory. - This led to intermittent (test) failures.
2019-03-13 13:26:57 +00:00
.and_then(|link_path|
self.path_to_fingerprint_base(
path.parent().unwrap(), &link_path))
Add Database::lookup_primary_fingerprint(). - Sometimes, we parse the TPK just to compute the fingerprint. But, we can recover the fingerprint without even opening the file by looking at the path.
2019-02-28 17:43:44 +00:00
} else {
// Neither file nor symlink. Freak value.
None
}
},
ByKeyID(ref keyid) => {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let path = self.link_by_keyid(keyid);
Add Database::lookup_primary_fingerprint(). - Sometimes, we parse the TPK just to compute the fingerprint. But, we can recover the fingerprint without even opening the file by looking at the path.
2019-02-28 17:43:44 +00:00
path.read_link().ok()
.and_then(|path| self.path_to_fingerprint(&path))
},
ByEmail(ref email) => {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let path = self.link_by_email(email);
Add Database::lookup_primary_fingerprint(). - Sometimes, we parse the TPK just to compute the fingerprint. But, we can recover the fingerprint without even opening the file by looking at the path.
2019-02-28 17:43:44 +00:00
path.read_link().ok()
.and_then(|path| self.path_to_fingerprint(&path))
},
}
}
Add Database::lookup_path() that returns paths. - We can use this to make nginx use sendfile(2) to send the file.
2019-03-01 11:57:00 +00:00
/// Gets the path to the underlying file, if any.
fn lookup_path(&self, term: &Query) -> Option<PathBuf> {
use super::Query::*;
let path = match term {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
ByFingerprint(ref fp) => self.link_by_fingerprint(fp),
ByKeyID(ref keyid) => self.link_by_keyid(keyid),
ByEmail(ref email) => self.link_by_email(email),
Add Database::lookup_path() that returns paths. - We can use this to make nginx use sendfile(2) to send the file.
2019-03-01 11:57:00 +00:00
};
if path.exists() {
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let x = diff_paths(&path, &self.keys_dir).expect("related paths");
Some(x)
Add Database::lookup_path() that returns paths. - We can use this to make nginx use sendfile(2) to send the file.
2019-03-01 11:57:00 +00:00
} else {
None
}
}
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
fn link_email(&self, email: &Email, fpr: &Fingerprint) -> Result<()> {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let link = self.link_by_email(&email);
rewrite fs database, step 2
2019-04-27 20:08:41 +00:00
let target = diff_paths(&self.fingerprint_to_path_published(fpr),
Use relative links. - In order to store the links in the inodes, we need to make sure that they are short. The first step is to use relative links.
2019-02-22 14:45:34 +00:00
link.parent().unwrap()).unwrap();
initial commit
2018-08-16 18:35:19 +00:00
Create symbolic links atomically. - When creating a symbolic link and the link already exists, do it atomically. This prevents two problems. 1) If we fail between deleting the old link and creating the new link, then we have nothing. 2) If a reader accesses the link between unlinking the old version and creating the new version, it sees nothing.
2019-02-22 19:26:10 +00:00
if link == target {
return Ok(());
initial commit
2018-08-16 18:35:19 +00:00
}
Create symbolic links atomically. - When creating a symbolic link and the link already exists, do it atomically. This prevents two problems. 1) If we fail between deleting the old link and creating the new link, then we have nothing. 2) If a reader accesses the link between unlinking the old version and creating the new version, it sees nothing.
2019-02-22 19:26:10 +00:00
symlink(&target, ensure_parent(&link)?)
initial commit
2018-08-16 18:35:19 +00:00
}
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
fn unlink_email(&self, email: &Email, fpr: &Fingerprint) -> Result<()> {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let link = self.link_by_email(&email);
initial commit
2018-08-16 18:35:19 +00:00
Avoid cloning where possible.
2019-03-07 15:00:36 +00:00
match read_link(&link) {
initial commit
2018-08-16 18:35:19 +00:00
Ok(target) => {
rewrite fs database, step 2
2019-04-27 20:08:41 +00:00
let expected = diff_paths(&self.fingerprint_to_path_published(fpr),
Use relative links. - In order to store the links in the inodes, we need to make sure that they are short. The first step is to use relative links.
2019-02-22 14:45:34 +00:00
link.parent().unwrap()).unwrap();
initial commit
2018-08-16 18:35:19 +00:00
if target == expected {
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
remove_file(link)?;
initial commit
2018-08-16 18:35:19 +00:00
}
}
Err(_) => {}
}
Create symbolic links atomically. - When creating a symbolic link and the link already exists, do it atomically. This prevents two problems. 1) If we fail between deleting the old link and creating the new link, then we have nothing. 2) If a reader accesses the link between unlinking the old version and creating the new version, it sees nothing.
2019-02-22 19:26:10 +00:00
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
Ok(())
initial commit
2018-08-16 18:35:19 +00:00
}
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
fn link_kid(&self, kid: &KeyID, fpr: &Fingerprint) -> Result<()> {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let link = self.link_by_keyid(kid);
rewrite fs database, step 2
2019-04-27 20:08:41 +00:00
let target = diff_paths(&self.fingerprint_to_path_published(fpr),
Use relative links. - In order to store the links in the inodes, we need to make sure that they are short. The first step is to use relative links.
2019-02-22 14:45:34 +00:00
link.parent().unwrap()).unwrap();
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
Create symbolic links atomically. - When creating a symbolic link and the link already exists, do it atomically. This prevents two problems. 1) If we fail between deleting the old link and creating the new link, then we have nothing. 2) If a reader accesses the link between unlinking the old version and creating the new version, it sees nothing.
2019-02-22 19:26:10 +00:00
if link == target {
return Ok(());
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
}
Be careful when creating subkey links - When creating the link from a subkey to a primary key, if the subkey is also a primary key, don't create the link. - Consider two primary keys, A and B. A can add B as a subkey. In this case, B shouldn't link to A, but be a normal file containing B.
2019-02-22 19:39:51 +00:00
if link.exists() {
match link.symlink_metadata() {
Ok(ref meta) if meta.file_type().is_file() => {
// If a key is a subkey and a primary key, prefer
// the primary.
return Ok(());
}
_ => {}
}
}
Create symbolic links atomically. - When creating a symbolic link and the link already exists, do it atomically. This prevents two problems. 1) If we fail between deleting the old link and creating the new link, then we have nothing. 2) If a reader accesses the link between unlinking the old version and creating the new version, it sees nothing.
2019-02-22 19:26:10 +00:00
symlink(&target, ensure_parent(&link)?)
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
}
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
fn unlink_kid(&self, kid: &KeyID, fpr: &Fingerprint) -> Result<()> {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let link = self.link_by_keyid(kid);
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
Avoid cloning where possible.
2019-03-07 15:00:36 +00:00
match read_link(&link) {
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
Ok(target) => {
rewrite fs database, step 2
2019-04-27 20:08:41 +00:00
let expected = self.fingerprint_to_path_published(fpr);
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
if target == expected {
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
remove_file(link)?;
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
}
}
Err(_) => {}
}
Create symbolic links atomically. - When creating a symbolic link and the link already exists, do it atomically. This prevents two problems. 1) If we fail between deleting the old link and creating the new link, then we have nothing. 2) If a reader accesses the link between unlinking the old version and creating the new version, it sees nothing.
2019-02-22 19:26:10 +00:00
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
Ok(())
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
}
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
fn link_fpr(&self, from: &Fingerprint, fpr: &Fingerprint) -> Result<()> {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let link = self.link_by_fingerprint(from);
rewrite fs database, step 2
2019-04-27 20:08:41 +00:00
let target = diff_paths(&self.fingerprint_to_path_published(fpr),
Use relative links. - In order to store the links in the inodes, we need to make sure that they are short. The first step is to use relative links.
2019-02-22 14:45:34 +00:00
link.parent().unwrap()).unwrap();
Create symbolic links atomically. - When creating a symbolic link and the link already exists, do it atomically. This prevents two problems. 1) If we fail between deleting the old link and creating the new link, then we have nothing. 2) If a reader accesses the link between unlinking the old version and creating the new version, it sees nothing.
2019-02-22 19:26:10 +00:00
symlink(&target, ensure_parent(&link)?)
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
}
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
fn unlink_fpr(&self, from: &Fingerprint, fpr: &Fingerprint) -> Result<()> {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let link = self.link_by_fingerprint(from);
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
Avoid cloning where possible.
2019-03-07 15:00:36 +00:00
match read_link(&link) {
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
Ok(target) => {
rewrite fs database, step 2
2019-04-27 20:08:41 +00:00
let expected = self.fingerprint_to_path_published(fpr);
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
if target == expected {
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
remove_file(link)?;
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
}
}
Err(_) => {}
}
Improve error handling in the Database trait. - Fixes #40.
2019-02-22 00:13:20 +00:00
Ok(())
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
}
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
// XXX: slow
fn by_fpr_full(&self, fpr: &Fingerprint) -> Option<String> {
let path = self.fingerprint_to_path_full(fpr);
self.read_from_path(&path)
}
initial commit
2018-08-16 18:35:19 +00:00
// XXX: slow
Add Output of Db trait to String
2019-02-22 20:29:51 +00:00
fn by_fpr(&self, fpr: &Fingerprint) -> Option<String> {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let path = self.link_by_fingerprint(fpr);
simplify fs db code
2019-04-16 13:51:00 +00:00
self.read_from_path(&path)
initial commit
2018-08-16 18:35:19 +00:00
}
// XXX: slow
Add Output of Db trait to String
2019-02-22 20:29:51 +00:00
fn by_email(&self, email: &Email) -> Option<String> {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let path = self.link_by_email(&email);
simplify fs db code
2019-04-16 13:51:00 +00:00
self.read_from_path(&path)
initial commit
2018-08-16 18:35:19 +00:00
}
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
// XXX: slow
Add Output of Db trait to String
2019-02-22 20:29:51 +00:00
fn by_kid(&self, kid: &KeyID) -> Option<String> {
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
let path = self.link_by_keyid(kid);
simplify fs db code
2019-04-16 13:51:00 +00:00
self.read_from_path(&path)
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
}
initial commit
2018-08-16 18:35:19 +00:00
}
Add a database consistency check used when testing. - Closes #72.
2019-03-11 14:49:01 +00:00
#[cfg(test)]
impl Drop for Filesystem {
fn drop(&mut self) {
self.check_consistency().expect("inconsistent database");
}
}
initial commit
2018-08-16 18:35:19 +00:00
#[cfg(test)]
mod tests {
use super::*;
Move the database module to a new crate. - This way we can share the code between multiple binaries without running the common tests twice. - Fixes #45.
2019-03-05 16:30:56 +00:00
use test;
use openpgp::tpk::TPKBuilder;
use rustfmt to format source
2019-02-07 19:58:31 +00:00
use tempfile::TempDir;
initial commit
2018-08-16 18:35:19 +00:00
#[test]
fn init() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let _ = Filesystem::new_from_base(tmpdir.path()).unwrap();
initial commit
2018-08-16 18:35:19 +00:00
}
#[test]
fn new() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let db = Filesystem::new_from_base(tmpdir.path()).unwrap();
Use valid mail addresses in tests.
2019-03-07 12:51:18 +00:00
let k1 = TPKBuilder::default().add_userid("a@invalid.example.org")
.generate().unwrap().0;
let k2 = TPKBuilder::default().add_userid("b@invalid.example.org")
.generate().unwrap().0;
let k3 = TPKBuilder::default().add_userid("c@invalid.example.org")
.generate().unwrap().0;
initial commit
2018-08-16 18:35:19 +00:00
Hand references to Database::merge*. - These functions clone what they need anyway.
2019-03-11 15:32:06 +00:00
assert!(db.merge_or_publish(&k1).unwrap().len() > 0);
assert!(db.merge_or_publish(&k2).unwrap().len() > 0);
assert!(!db.merge_or_publish(&k2).unwrap().len() > 0);
assert!(db.merge_or_publish(&k3).unwrap().len() > 0);
assert!(!db.merge_or_publish(&k3).unwrap().len() > 0);
assert!(!db.merge_or_publish(&k3).unwrap().len() > 0);
initial commit
2018-08-16 18:35:19 +00:00
}
#[test]
fn uid_verification() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
initial commit
2018-08-16 18:35:19 +00:00
test::test_uid_verification(&mut db);
}
#[test]
fn uid_deletion() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
initial commit
2018-08-16 18:35:19 +00:00
test::test_uid_deletion(&mut db);
}
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
#[test]
fn subkey_lookup() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
test::test_subkey_lookup(&mut db);
}
#[test]
fn kid_lookup() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
allow lookup by keyid and subkey fpr
2019-01-04 13:07:14 +00:00
test::test_kid_lookup(&mut db);
}
don't allow fetch by revoked UIDs closes #15
2019-01-15 15:59:35 +00:00
Merge revoked TPKs, but don't trigger verifications.
2019-03-11 10:31:21 +00:00
#[test]
fn upload_revoked_tpk() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
Merge revoked TPKs, but don't trigger verifications.
2019-03-11 10:31:21 +00:00
test::test_upload_revoked_tpk(&mut db);
}
don't allow fetch by revoked UIDs closes #15
2019-01-15 15:59:35 +00:00
#[test]
fn uid_revocation() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
don't allow fetch by revoked UIDs closes #15
2019-01-15 15:59:35 +00:00
test::test_uid_revocation(&mut db);
}
carry over verified UIDs on key update
2019-02-07 20:01:59 +00:00
#[test]
fn key_reupload() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
carry over verified UIDs on key update
2019-02-07 20:01:59 +00:00
test::test_reupload(&mut db);
}
#[test]
fn uid_replacement() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
carry over verified UIDs on key update
2019-02-07 20:01:59 +00:00
test::test_uid_replacement(&mut db);
}
test correct UID linking if new keys are uploaded. Closes #26
2019-02-08 14:46:05 +00:00
#[test]
fn uid_stealing() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
test correct UID linking if new keys are uploaded. Closes #26
2019-02-08 14:46:05 +00:00
test::test_steal_uid(&mut db);
}
Add tests for conflicting email addresses. - Make sure things work as expected when there are multiple keys with the same email address. - Make sure things work as expected when a key has multiple user ids with the same email address.
2019-02-22 19:23:24 +00:00
Fix the merge operation. - Previously, the merge operation unconditionally unlinked emails from UIDs that are revoked. This means that anyone could unlink any email address by just generating a TPK with that address, revoking that UID, then uploading the TPK. - Add a test that demonstrates the problem. - Fix two tests that assumed the merge operation would eagerly unlink addresses before the verification token was validated. - Fixes #84.
2019-03-20 10:42:19 +00:00
#[test]
fn uid_unlinking() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
Fix the merge operation. - Previously, the merge operation unconditionally unlinked emails from UIDs that are revoked. This means that anyone could unlink any email address by just generating a TPK with that address, revoking that UID, then uploading the TPK. - Add a test that demonstrates the problem. - Fix two tests that assumed the merge operation would eagerly unlink addresses before the verification token was validated. - Fixes #84.
2019-03-20 10:42:19 +00:00
test::test_unlink_uid(&mut db);
}
Add tests for conflicting email addresses. - Make sure things work as expected when there are multiple keys with the same email address. - Make sure things work as expected when a key has multiple user ids with the same email address.
2019-02-22 19:23:24 +00:00
#[test]
fn same_email_1() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
Add tests for conflicting email addresses. - Make sure things work as expected when there are multiple keys with the same email address. - Make sure things work as expected when a key has multiple user ids with the same email address.
2019-02-22 19:23:24 +00:00
test::test_same_email_1(&mut db);
}
#[test]
fn same_email_2() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let mut db = Filesystem::new_from_base(tmpdir.path()).unwrap();
Add tests for conflicting email addresses. - Make sure things work as expected when there are multiple keys with the same email address. - Make sure things work as expected when a key has multiple user ids with the same email address.
2019-02-22 19:23:24 +00:00
test::test_same_email_2(&mut db);
}
Add Database::lookup_primary_fingerprint(). - Sometimes, we parse the TPK just to compute the fingerprint. But, we can recover the fingerprint without even opening the file by looking at the path.
2019-02-28 17:43:44 +00:00
#[test]
fn reverse_fingerprint_to_path() {
let tmpdir = TempDir::new().unwrap();
extract stateful token functionality from database
2019-04-26 20:14:57 +00:00
let db = Filesystem::new_from_base(tmpdir.path()).unwrap();
Add Database::lookup_primary_fingerprint(). - Sometimes, we parse the TPK just to compute the fingerprint. But, we can recover the fingerprint without even opening the file by looking at the path.
2019-02-28 17:43:44 +00:00
let fp: Fingerprint =
"CBCD8F030588653EEDD7E2659B7DD433F254904A".parse().unwrap();
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
assert_eq!(db.path_to_fingerprint(&db.link_by_fingerprint(&fp)),
Handle special case of path_to_fingerprint. - A complication arises if both fingerprints share the same two nibble prefix, because they end up in the same subdirectory. - This led to intermittent (test) failures.
2019-03-13 13:26:57 +00:00
Some(fp.clone()));
// Special case: Relative symlink to a fingerprint with the
// same two nibble prefix.
assert_eq!(
db.path_to_fingerprint_base(
rewrite fs database, step 1
2019-04-27 16:19:02 +00:00
&db.links_dir_by_fingerprint.join("CB"),
Handle special case of path_to_fingerprint. - A complication arises if both fingerprints share the same two nibble prefix, because they end up in the same subdirectory. - This led to intermittent (test) failures.
2019-03-13 13:26:57 +00:00
&PathBuf::from("CD8F030588653EEDD7E2659B7DD433F254904A")),
Some(fp));
Add Database::lookup_primary_fingerprint(). - Sometimes, we parse the TPK just to compute the fingerprint. But, we can recover the fingerprint without even opening the file by looking at the path.
2019-02-28 17:43:44 +00:00
}
initial commit
2018-08-16 18:35:19 +00:00
}