taler/wallet-core
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Activity

anastasis: policy discovery CLI

Browse Source
This commit is contained in:
Florian Dold 2023-08-10 15:24:43 +02:00
parent e6c0689806
commit d59a23885e
No known key found for this signature in database
GPG Key ID: D2E4F00F29D02A4B
3 changed files with 68 additions and 39 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

101
packages/anastasis-cli/src/index.ts
View File

@ -1,20 +1,78 @@
import { clk } from "@gnu-taler/taler-util/clk"; import { clk } from "@gnu-taler/taler-util/clk";
import { import {
discoverPolicies,
getBackupStartState, getBackupStartState,
getRecoveryStartState, getRecoveryStartState,
reduceAction, reduceAction,
} from "@gnu-taler/anastasis-core"; } from "@gnu-taler/anastasis-core";
import fs from "fs"; import fs from "fs";
import { j2s } from "@gnu-taler/taler-util";
export const reducerCli = clk export const reducerCli = clk.program("anastasis-cli", {
.program("reducer", { help: "Command line interface for Anastasis.",
help: "Command line interface for Anastasis.", });
reducerCli
.subcommand("reducer", "reduce", {
help: "Run the anastasis reducer",
}) })
.flag("initBackup", ["-b", "--backup"]) .flag("initBackup", ["-b", "--backup"])
.flag("initRecovery", ["-r", "--restore"]) .flag("initRecovery", ["-r", "--restore"])
.maybeOption("argumentsJson", ["-a", "--arguments"], clk.STRING) .maybeOption("argumentsJson", ["-a", "--arguments"], clk.STRING)
.maybeArgument("action", clk.STRING) .maybeArgument("action", clk.STRING)
.maybeArgument("stateFile", clk.STRING); .maybeArgument("stateFile", clk.STRING)
.action(async (x) => {
if (x.reducer.initBackup) {
console.log(JSON.stringify(await getBackupStartState()));
return;
} else if (x.reducer.initRecovery) {
console.log(JSON.stringify(await getRecoveryStartState()));
return;
}
const action = x.reducer.action;
if (!action) {
console.log("action required");
return;
}
let lastState: any;
if (x.reducer.stateFile) {
const s = fs.readFileSync(x.reducer.stateFile, { encoding: "utf-8" });
lastState = JSON.parse(s);
} else {
const s = await read(process.stdin);
lastState = JSON.parse(s);
}
let args: any;
if (x.reducer.argumentsJson) {
args = JSON.parse(x.reducer.argumentsJson);
} else {
args = {};
}
const nextState = await reduceAction(lastState, action, args);
console.log(JSON.stringify(nextState));
});
reducerCli
.subcommand("discover", "discover", {
help: "Run the anastasis reducer",
})
.maybeArgument("stateFile", clk.STRING)
.action(async (args) => {
let lastState: any;
if (args.discover.stateFile) {
const s = fs.readFileSync(args.discover.stateFile, { encoding: "utf-8" });
lastState = JSON.parse(s);
} else {
const s = await read(process.stdin);
lastState = JSON.parse(s);
}
const res = await discoverPolicies(lastState);
console.log(j2s(res));
});
async function read(stream: NodeJS.ReadStream): Promise<string> { async function read(stream: NodeJS.ReadStream): Promise<string> {
const chunks = []; const chunks = [];
@ -24,41 +82,6 @@ async function read(stream: NodeJS.ReadStream): Promise<string> {
return Buffer.concat(chunks).toString("utf8"); return Buffer.concat(chunks).toString("utf8");
} }
reducerCli.action(async (x) => {
if (x.reducer.initBackup) {
console.log(JSON.stringify(await getBackupStartState()));
return;
} else if (x.reducer.initRecovery) {
console.log(JSON.stringify(await getRecoveryStartState()));
return;
}
const action = x.reducer.action;
if (!action) {
console.log("action required");
return;
}
let lastState: any;
if (x.reducer.stateFile) {
const s = fs.readFileSync(x.reducer.stateFile, { encoding: "utf-8" });
lastState = JSON.parse(s);
} else {
const s = await read(process.stdin);
lastState = JSON.parse(s);
}
let args: any;
if (x.reducer.argumentsJson) {
args = JSON.parse(x.reducer.argumentsJson);
} else {
args = {};
}
const nextState = await reduceAction(lastState, action, args);
console.log(JSON.stringify(nextState));
});
export function reducerCliMain() { export function reducerCliMain() {
reducerCli.run(); reducerCli.run();
} }

4
packages/anastasis-core/src/crypto.ts
View File

@ -151,7 +151,11 @@ export async function decryptPolicyMetadata(
userId: UserIdentifier, userId: UserIdentifier,
metadataEnc: OpaqueData, metadataEnc: OpaqueData,
): Promise<PolicyMetadata> { ): Promise<PolicyMetadata> {
// @ts-ignore
console.log("metadataEnc", metadataEnc);
const plain = await anastasisDecrypt(asOpaque(userId), metadataEnc, "rmd"); const plain = await anastasisDecrypt(asOpaque(userId), metadataEnc, "rmd");
// @ts-ignore
console.log("plain:", plain);
const metadataBytes = decodeCrock(plain); const metadataBytes = decodeCrock(plain);
const policyHash = encodeCrock(metadataBytes.slice(0, 64)); const policyHash = encodeCrock(metadataBytes.slice(0, 64));
const secretName = bytesToString(metadataBytes.slice(64)); const secretName = bytesToString(metadataBytes.slice(64));

2
packages/taler-wallet-embedded/src/wallet-qjs.ts
View File

@ -356,3 +356,5 @@ globalThis.testWithLocal = testWithLocal;
globalThis.testArgon2id = testArgon2id; globalThis.testArgon2id = testArgon2id;
// @ts-ignore // @ts-ignore
globalThis.testReduceAction = reduceAction; globalThis.testReduceAction = reduceAction;
// @ts-ignore
globalThis.testDiscoverPolicies = discoverPolicies;