diff options
author | Vsevolod Stakhov <vsevolod@highsecure.ru> | 2015-12-13 22:42:18 +0000 |
---|---|---|
committer | Vsevolod Stakhov <vsevolod@highsecure.ru> | 2015-12-13 23:03:42 +0000 |
commit | 59ec543da1360134df5906e6a9aef170a9100767 (patch) | |
tree | 9801cfecd1f45bba9760986c41a8394a9bd2986c /src/rspamadm/keypair.c | |
parent | 53159e16429a7f41c8cf3980c3d8c4b3552cf100 (diff) | |
download | rspamd-59ec543da1360134df5906e6a9aef170a9100767.tar.gz rspamd-59ec543da1360134df5906e6a9aef170a9100767.zip |
Allow to generate ucl configs for keypairs
Diffstat (limited to 'src/rspamadm/keypair.c')
-rw-r--r-- | src/rspamadm/keypair.c | 39 |
1 files changed, 37 insertions, 2 deletions
diff --git a/src/rspamadm/keypair.c b/src/rspamadm/keypair.c index 4fd9ae8f1..7cb7a771f 100644 --- a/src/rspamadm/keypair.c +++ b/src/rspamadm/keypair.c @@ -27,11 +27,13 @@ #include "cryptobox.h" #include "printf.h" #include "http.h" +#include "ucl.h" #include "keypair_private.h" static gboolean hex_encode = FALSE; static gboolean raw = FALSE; static gboolean openssl = FALSE; +static gboolean ucl = FALSE; static void rspamadm_keypair (gint argc, gchar **argv); static const char *rspamadm_keypair_help (gboolean full_help); @@ -50,6 +52,8 @@ static GOptionEntry entries[] = { "Print just keys, no description", NULL}, {"openssl", 's', 0, G_OPTION_ARG_NONE, &openssl, "Generate openssl nistp256 keypair not curve25519 one", NULL}, + {"ucl", 'u', 0, G_OPTION_ARG_NONE, &ucl, + "Generate ucl config", NULL}, {NULL, 0, 0, G_OPTION_ARG_NONE, NULL, NULL, NULL} }; @@ -65,6 +69,7 @@ rspamadm_keypair_help (gboolean full_help) "-x: encode with hex instead of base32\n" "-r: print raw base32/hex\n" "-s: generate openssl nistp256 keypair\n" + "-u: generate ucl config for keypair\n" "--help: shows available options and commands"; } else { @@ -82,6 +87,8 @@ rspamadm_keypair (gint argc, gchar **argv) gpointer keypair; GString *keypair_out; gint how; + ucl_object_t *ucl_out, *elt; + struct ucl_emitter_functions *ucl_emit_subr; context = g_option_context_new ( "keypair - create encryption keys"); @@ -123,9 +130,37 @@ rspamadm_keypair (gint argc, gchar **argv) how |= RSPAMD_KEYPAIR_HUMAN|RSPAMD_KEYPAIR_ID; } - keypair_out = rspamd_http_connection_print_key (keypair, how); - rspamd_printf ("%v", keypair_out); + if (ucl) { + ucl_out = ucl_object_typed_new (UCL_OBJECT); + elt = ucl_object_typed_new (UCL_OBJECT); + ucl_object_insert_key (ucl_out, elt, "keypair", 0, false); + + /* pubkey part */ + keypair_out = rspamd_http_connection_print_key (keypair, + RSPAMD_KEYPAIR_PUBKEY|RSPAMD_KEYPAIR_BASE32); + ucl_object_insert_key (elt, + ucl_object_fromlstring (keypair_out->str, keypair_out->len), + "pubkey", 0, false); + g_string_free (keypair_out, TRUE); + + /* privkey part */ + keypair_out = rspamd_http_connection_print_key (keypair, + RSPAMD_KEYPAIR_PRIVKEY | RSPAMD_KEYPAIR_BASE32); + ucl_object_insert_key (elt, + ucl_object_fromlstring (keypair_out->str, keypair_out->len), + "privkey", 0, false); + + ucl_emit_subr = ucl_object_emit_file_funcs (stdout); + ucl_object_emit_full (ucl_out, UCL_EMIT_CONFIG, ucl_emit_subr); + ucl_object_emit_funcs_free (ucl_emit_subr); + ucl_object_unref (ucl_out); + } + else { + keypair_out = rspamd_http_connection_print_key (keypair, how); + rspamd_printf ("%v", keypair_out); + } rspamd_http_connection_key_unref (keypair); rspamd_explicit_memzero (keypair_out->str, keypair_out->len); + g_string_free (keypair_out, TRUE); } |