mirrors
/
jgit
espejo de https://github.com/eclipse/jgit.git
Seguir 1
Destacar 0
Fork 0
Código Incidencias 0 Lanzamientos 204 Wiki Actividad
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3868 Commits
49 Ramas
Árbol: 8293c770b5
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde '8293c770b5'
${ noResults }
jgit/org.eclipse.jgit/src/org/eclipse/jgit/transport/PushCertificate.java

PushCertificate.java 6.8KB
Original Blame Histórico

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219 
  1. /*

  2.  * Copyright (C) 2015, Google Inc.

  3.  * and other copyright owners as documented in the project's IP log.

  4.  *

  5.  * This program and the accompanying materials are made available

  6.  * under the terms of the Eclipse Distribution License v1.0 which

  7.  * accompanies this distribution, is reproduced below, and is

  8.  * available at http://www.eclipse.org/org/documents/edl-v10.php

  9.  *

  10.  * All rights reserved.

  11.  *

  12.  * Redistribution and use in source and binary forms, with or

  13.  * without modification, are permitted provided that the following

  14.  * conditions are met:

  15.  *

  16.  * - Redistributions of source code must retain the above copyright

  17.  *   notice, this list of conditions and the following disclaimer.

  18.  *

  19.  * - Redistributions in binary form must reproduce the above

  20.  *   copyright notice, this list of conditions and the following

  21.  *   disclaimer in the documentation and/or other materials provided

  22.  *   with the distribution.

  23.  *

  24.  * - Neither the name of the Eclipse Foundation, Inc. nor the

  25.  *   names of its contributors may be used to endorse or promote

  26.  *   products derived from this software without specific prior

  27.  *   written permission.

  28.  *

  29.  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND

  30.  * CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,

  31.  * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES

  32.  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

  33.  * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR

  34.  * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

  35.  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

  36.  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;

  37.  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER

  38.  * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

  39.  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

  40.  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF

  41.  * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

  42.  */

  43. 

  44. package org.eclipse.jgit.transport;

  45. 

  46. import static org.eclipse.jgit.transport.PushCertificateParser.NONCE;

  47. import static org.eclipse.jgit.transport.PushCertificateParser.PUSHEE;

  48. import static org.eclipse.jgit.transport.PushCertificateParser.PUSHER;

  49. import static org.eclipse.jgit.transport.PushCertificateParser.VERSION;

  50. 

  51. import java.text.MessageFormat;

  52. import java.util.List;

  53. 

  54. import org.eclipse.jgit.internal.JGitText;

  55. 

  56. /**

  57.  * The required information to verify the push.

  58.  * <p>

  59.  * A valid certificate will not return null from any getter methods; callers may

  60.  * assume that any null value indicates a missing or invalid certificate.

  61.  *

  62.  * @since 4.0

  63.  */

  64. public class PushCertificate {

  65. 	/** Verification result of the nonce returned during push. */

  66. 	public enum NonceStatus {

  67. 		/** Nonce was not expected, yet client sent one anyway. */

  68. 		UNSOLICITED,

  69. 		/** Nonce is invalid and did not match server's expectations. */

  70. 		BAD,

  71. 		/** Nonce is required, but was not sent by client. */

  72. 		MISSING,

  73. 		/**

  74. 		 * Received nonce matches sent nonce, or is valid within the accepted slop

  75. 		 * window.

  76. 		 */

  77. 		OK,

  78. 		/** Received nonce is valid, but outside the accepted slop window. */

  79. 		SLOP

  80. 	}

  81. 

  82. 	private final String version;

  83. 	private final PushCertificateIdent pusher;

  84. 	private final String pushee;

  85. 	private final String nonce;

  86. 	private final NonceStatus nonceStatus;

  87. 	private final List<ReceiveCommand> commands;

  88. 	private final String signature;

  89. 

  90. 	PushCertificate(String version, PushCertificateIdent pusher, String pushee,

  91. 			String nonce, NonceStatus nonceStatus, List<ReceiveCommand> commands,

  92. 			String signature) {

  93. 		if (version == null || version.isEmpty()) {

  94. 			throw new IllegalArgumentException(MessageFormat.format(

  95. 					JGitText.get().pushCertificateInvalidField, VERSION));

  96. 		}

  97. 		if (pusher == null) {

  98. 			throw new IllegalArgumentException(MessageFormat.format(

  99. 					JGitText.get().pushCertificateInvalidField, PUSHER));

  100. 		}

  101. 		if (nonce == null || nonce.isEmpty()) {

  102. 			throw new IllegalArgumentException(MessageFormat.format(

  103. 					JGitText.get().pushCertificateInvalidField, NONCE));

  104. 		}

  105. 		if (nonceStatus == null) {

  106. 			throw new IllegalArgumentException(MessageFormat.format(

  107. 					JGitText.get().pushCertificateInvalidField,

  108. 					"nonce status")); //$NON-NLS-1$

  109. 		}

  110. 		if (commands == null || commands.isEmpty()) {

  111. 			throw new IllegalArgumentException(MessageFormat.format(

  112. 					JGitText.get().pushCertificateInvalidField,

  113. 					"command")); //$NON-NLS-1$

  114. 		}

  115. 		if (signature == null || signature.isEmpty()) {

  116. 			throw new IllegalArgumentException(

  117. 					JGitText.get().pushCertificateInvalidSignature);

  118. 		}

  119. 		if (!signature.startsWith(PushCertificateParser.BEGIN_SIGNATURE)

  120. 				|| !signature.endsWith(PushCertificateParser.END_SIGNATURE + '\n')) {

  121. 			throw new IllegalArgumentException(

  122. 					JGitText.get().pushCertificateInvalidSignature);

  123. 		}

  124. 		this.version = version;

  125. 		this.pusher = pusher;

  126. 		this.pushee = pushee;

  127. 		this.nonce = nonce;

  128. 		this.nonceStatus = nonceStatus;

  129. 		this.commands = commands;

  130. 		this.signature = signature;

  131. 	}

  132. 

  133. 	/**

  134. 	 * @return the certificate version string.

  135. 	 * @since 4.1

  136. 	 */

  137. 	public String getVersion() {

  138. 		return version;

  139. 	}

  140. 

  141. 	/**

  142. 	 * @return the raw line that signed the cert, as a string.

  143. 	 * @since 4.0

  144. 	 */

  145. 	public String getPusher() {

  146. 		return pusher.getRaw();

  147. 	}

  148. 

  149. 	/**

  150. 	 * @return identity of the pusher who signed the cert.

  151. 	 * @since 4.1

  152. 	 */

  153. 	public PushCertificateIdent getPusherIdent() {

  154. 		return pusher;

  155. 	}

  156. 

  157. 	/**

  158. 	 * @return URL of the repository the push was originally sent to.

  159. 	 * @since 4.0

  160. 	 */

  161. 	public String getPushee() {

  162. 		return pushee;

  163. 	}

  164. 

  165. 	/**

  166. 	 * @return the raw nonce value that was presented by the pusher.

  167. 	 * @since 4.1

  168. 	 */

  169. 	public String getNonce() {

  170. 		return nonce;

  171. 	}

  172. 

  173. 	/**

  174. 	 * @return verification status of the nonce embedded in the certificate.

  175. 	 * @since 4.0

  176. 	 */

  177. 	public NonceStatus getNonceStatus() {

  178. 		return nonceStatus;

  179. 	}

  180. 

  181. 	/**

  182. 	 * @return the list of commands as one string to be feed into the signature

  183. 	 *         verifier.

  184. 	 * @since 4.1

  185. 	 */

  186. 	public List<ReceiveCommand> getCommands() {

  187. 		return commands;

  188. 	}

  189. 

  190. 	/**

  191. 	 * @return the raw signature, consisting of the lines received between the

  192. 	 *     lines {@code "----BEGIN GPG SIGNATURE-----\n"} and

  193. 	 *     {@code "----END GPG SIGNATURE-----\n}", inclusive.

  194. 	 * @since 4.0

  195. 	 */

  196. 	public String getSignature() {

  197. 		return signature;

  198. 	}

  199. 

  200. 	/**

  201. 	 * @return text payload of the certificate for the signature verifier.

  202. 	 * @since 4.1

  203. 	 */

  204. 	public String toText() {

  205. 		StringBuilder sb = new StringBuilder()

  206. 				.append(VERSION).append(' ').append(version).append('\n')

  207. 				.append(PUSHER).append(' ').append(getPusher())

  208. 				.append('\n')

  209. 				.append(PUSHEE).append(' ').append(pushee).append('\n')

  210. 				.append(NONCE).append(' ').append(nonce).append('\n')

  211. 				.append('\n');

  212. 		for (ReceiveCommand cmd : commands) {

  213. 			sb.append(cmd.getOldId().name())

  214. 				.append(' ').append(cmd.getNewId().name())

  215. 				.append(' ').append(cmd.getRefName()).append('\n');

  216. 		}

  217. 		return sb.toString();

  218. 	}

  219. }