('sig-file', '${base-dir}${sig-base}'),
('repos-file', '${base-dir}${repos-base}'),
('conf-file', '${base-dir}tripe-keys.conf'),
+ ('upload-hook', ': run upload hook'),
('kx', 'dh'),
('kx-param', lambda: {'dh': '-LS -b2048 -B256',
'ec': '-Cnist-p256'}[conf['kx']]),
('kx-expire', 'now + 1 year'),
('cipher', 'blowfish-cbc'),
('hash', 'sha256'),
+ ('master-keygen-flags', '-l'),
('mgf', '${hash}-mgf'),
('mac', lambda: '%s-hmac/%d' %
(conf['hash'],
Options supported:
--h, --help Show this help message.
--v, --version Show the version number.
--u, --usage Show pointlessly short usage string.
+-h, --help Show this help message.
+-v, --version Show the version number.
+-u, --usage Show pointlessly short usage string.
Subcommands available:
"""
def master_keys():
if not OS.path.exists('master'):
return
- for k in C.KeyFile('master'):
+ for k in C.KeyFile('master').itervalues():
if (k.type != 'tripe-keys-master' or
k.expiredp or
not k.tag.startswith('master-')):
seq = max_master_sequence() + 1
run('''key -kmaster add
-a${sig-genalg} !${sig-param}
- -e${sig-expire} -l -tmaster-%d tripe-keys-master
+ -e${sig-expire} !${master-keygen-flags} -tmaster-%d tripe-keys-master
sig=${sig} hash=${sig-hash}''' % seq)
run('key -kmaster extract -f-secret repos/master.pub')
OS.rename(new, base)
finally:
OS.chdir(cwd)
- rmtree('tmp')
+ rmtree('tmp')
+ run('sh -c ${upload-hook}')
def cmd_update(args):
cwd = OS.getcwd()
### Main driver
class UsageError (Exception): pass
-
+
commands = {'help': (cmd_help, 0, 1, ''),
'newmaster': (cmd_newmaster, 0, 0, ''),
'setup': (cmd_setup, 0, 0, ''),
~mdw / tripe / blobdiff