diff options
author | Vsevolod Stakhov <vsevolod@highsecure.ru> | 2018-06-02 21:40:45 +0100 |
---|---|---|
committer | Vsevolod Stakhov <vsevolod@highsecure.ru> | 2018-06-02 21:40:45 +0100 |
commit | 3636465690769b43a7ba8d3ae47a6ea198fb032e (patch) | |
tree | 8717795e371f8f0e2743bfad7d38de6b52723c7a /lualib/rspamadm | |
parent | 32270a9bd1a69e3788e83d1df4d38bc684c6b488 (diff) | |
download | rspamd-3636465690769b43a7ba8d3ae47a6ea198fb032e.tar.gz rspamd-3636465690769b43a7ba8d3ae47a6ea198fb032e.zip |
[Project] Move keypair function to Lua
Diffstat (limited to 'lualib/rspamadm')
-rw-r--r-- | lualib/rspamadm/keypair.lua | 89 |
1 files changed, 89 insertions, 0 deletions
diff --git a/lualib/rspamadm/keypair.lua b/lualib/rspamadm/keypair.lua new file mode 100644 index 000000000..b5155dfaa --- /dev/null +++ b/lualib/rspamadm/keypair.lua @@ -0,0 +1,89 @@ +--[[ +Copyright (c) 2018, Vsevolod Stakhov <vsevolod@highsecure.ru> + +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +]]-- + +local argparse = require "argparse" +local rspamd_keypair = require "rspamd_cryptobox_keypair" +local ucl = require "ucl" + +-- Define command line options +local parser = argparse() + :name "rspamadm keypair" + :description "Manages keypairs for Rspamd" + :help_description_margin(30) + :command_target("command") + :require_command(false) + +local generate = parser:command "generate gen g" + :description "Creates a new keypair" +generate:flag "-s --sign" + :description "Generates a sign keypair instead of the encryption one" +generate:flag "-n --nist" + :description "Uses nist encryption algorithm" +generate:mutex( + generate:flag "-j --json" + :description "Output JSON instead of UCL", + generate:flag "-u --ucl" + :description "Output UCL" + :default(true) +) + +-- Default command is generate, so duplicate options +parser:flag "-s --sign" + :description "Generates a sign keypair instead of the encryption one" +parser:flag "-n --nist" + :description "Uses nist encryption algorithm" +parser:mutex( + parser:flag "-j --json" + :description "Output JSON instead of UCL", + parser:flag "-u --ucl" + :description "Output UCL" + :default(true) +) + +local function handler(args) + local opts = parser:parse(args) + + local command = opts.command or "generate" + + if command == 'generate' then + local mode = 'encryption' + if opts.sign then + mode = 'sign' + end + local alg = 'curve25519' + if opts.nist then + alg = 'nist' + end + -- TODO: probably, do it in a more safe way + local kp = rspamd_keypair.create(mode, alg):totable() + + local format = 'ucl' + + if opts.json then + format = 'json' + end + io.write(ucl.to_format(kp, format)) + else + parser:error('command %s is not yet implemented', command) + end +end + +return { + name = 'keypair', + aliases = {'kp', 'key'}, + handler = handler, + description = parser._description +}
\ No newline at end of file |