com.google.gerrit.gpg.PushCertificateChecker.java Source code

Java tutorial

  1. HOME
  2. Java
  3. com.google.gerrit.gpg.PushCertificateChecker.java

Introduction

Here is the source code for com.google.gerrit.gpg.PushCertificateChecker.java

Source

// Copyright (C) 2015 The Android Open Source Project
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

package com.google.gerrit.gpg;

import static com.google.gerrit.gpg.PublicKeyStore.keyIdToString;
import static com.google.gerrit.gpg.PublicKeyStore.keyToString;

import org.bouncycastle.bcpg.ArmoredInputStream;
import org.bouncycastle.openpgp.PGPException;
import org.bouncycastle.openpgp.PGPObjectFactory;
import org.bouncycastle.openpgp.PGPPublicKey;
import org.bouncycastle.openpgp.PGPPublicKeyRingCollection;
import org.bouncycastle.openpgp.PGPSignature;
import org.bouncycastle.openpgp.PGPSignatureList;
import org.bouncycastle.openpgp.bc.BcPGPObjectFactory;
import org.eclipse.jgit.lib.Constants;
import org.eclipse.jgit.lib.Repository;
import org.eclipse.jgit.transport.PushCertificate;
import org.eclipse.jgit.transport.PushCertificate.NonceStatus;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.util.ArrayList;
import java.util.List;

/** Checker for push certificates. */
public abstract class PushCertificateChecker {
    private static final Logger log = LoggerFactory.getLogger(PushCertificateChecker.class);

    private final PublicKeyChecker publicKeyChecker;

    protected PushCertificateChecker(PublicKeyChecker publicKeyChecker) {
        this.publicKeyChecker = publicKeyChecker;
    }

    /**
     * Check a push certificate.
     *
     * @return result of the check.
     */
    public final CheckResult check(PushCertificate cert) {
        if (cert.getNonceStatus() != NonceStatus.OK) {
            return new CheckResult("Invalid nonce");
        }
        List<String> problems = new ArrayList<>();
        try {
            PGPSignature sig = readSignature(cert);
            if (sig != null) {
                @SuppressWarnings("resource")
                Repository repo = getRepository();
                try (PublicKeyStore store = new PublicKeyStore(repo)) {
                    checkSignature(sig, cert, store, problems);
                    checkCustom(repo, problems);
                } finally {
                    if (shouldClose(repo)) {
                        repo.close();
                    }
                }
            } else {
                problems.add("Invalid signature format");
            }
        } catch (PGPException | IOException e) {
            String msg = "Internal error checking push certificate";
            log.error(msg, e);
            problems.add(msg);
        }
        return new CheckResult(problems);
    }

    /**
     * Get the repository that this checker should operate on.
     * <p>
     * This method is called once per call to {@link #check(PushCertificate)}.
     *
     * @return the repository.
     * @throws IOException if an error occurred reading the repository.
     */
    protected abstract Repository getRepository() throws IOException;

    /**
     * @param repo a repository previously returned by {@link #getRepository()}.
     * @return whether this repository should be closed before returning from
     *     {@link #check(PushCertificate)}.
     */
    protected abstract boolean shouldClose(Repository repo);

    /**
     * Perform custom checks.
     * <p>
     * Default implementation does nothing, but may be overridden by subclasses.
     *
     * @param repo a repository previously returned by {@link #getRepository()}.
     * @param problems list to which any problems should be added.
     */
    protected void checkCustom(Repository repo, List<String> problems) {
        // Default implementation does nothing.
    }

    private PGPSignature readSignature(PushCertificate cert) throws IOException {
        ArmoredInputStream in = new ArmoredInputStream(
                new ByteArrayInputStream(Constants.encode(cert.getSignature())));
        PGPObjectFactory factory = new BcPGPObjectFactory(in);
        Object obj;
        while ((obj = factory.nextObject()) != null) {
            if (obj instanceof PGPSignatureList) {
                PGPSignatureList sigs = (PGPSignatureList) obj;
                if (!sigs.isEmpty()) {
                    return sigs.get(0);
                }
            }
        }
        return null;
    }

    private void checkSignature(PGPSignature sig, PushCertificate cert, PublicKeyStore store, List<String> problems)
            throws PGPException, IOException {
        PGPPublicKeyRingCollection keys = store.get(sig.getKeyID());
        if (!keys.getKeyRings().hasNext()) {
            problems.add("No public keys found for key ID " + keyIdToString(sig.getKeyID()));
            return;
        }
        PGPPublicKey signer = PublicKeyStore.getSigner(keys, sig, Constants.encode(cert.toText()));
        if (signer == null) {
            problems.add("Signature by " + keyIdToString(sig.getKeyID()) + " is not valid");
            return;
        }
        CheckResult result = publicKeyChecker.check(signer, store);
        if (!result.isOk()) {
            StringBuilder err = new StringBuilder("Invalid public key ").append(keyToString(signer)).append(":");
            for (String problem : result.getProblems()) {
                err.append("\n  ").append(problem);
            }
            problems.add(err.toString());
        }
    }
}