← Back to branch summary

~bzr-pqm/bzr/bzr.dev

« back to all changes in this revision

Viewing changes to bzrlib/sign_my_commits.py

  • Committer: Andrew Bennetts
  • Date: 2010-10-13 00:26:41 UTC
  • mto: This revision was merged to the branch mainline in revision 5498.
  • Revision ID: andrew.bennetts@canonical.com-20101013002641-9tlh9k89mlj1666m
Keep docs-plain working.

Show diffs side-by-side

added added

removed removed

Lines of Context:
bzrlib/sign_my_commits.py
1
 
# Copyright (C) 2006, 2007, 2009, 2010, 2011 Canonical Ltd
 
1
# Copyright (C) 2006, 2007, 2009, 2010 Canonical Ltd
2
2
#
3
3
# This program is free software; you can redistribute it and/or modify
4
4
# it under the terms of the GNU General Public License as published by
17
17
"""Command which looks for unsigned commits by the current user, and signs them.
18
18
"""
19
19
 
20
 
from __future__ import absolute_import
21
 
 
22
20
from bzrlib.lazy_import import lazy_import
23
21
lazy_import(globals(), """
24
22
from bzrlib import (
25
 
    controldir,
26
 
    errors,
 
23
    config,
27
24
    gpg,
28
 
    revision as _mod_revision,
29
25
    )
 
26
from bzrlib.bzrdir import BzrDir
30
27
""")
31
28
from bzrlib.commands import Command
32
29
from bzrlib.option import Option
33
 
from bzrlib.i18n import gettext, ngettext
 
30
 
34
31
 
35
32
class cmd_sign_my_commits(Command):
36
33
    __doc__ = """Sign all commits by a given committer.
53
50
 
54
51
    def run(self, location=None, committer=None, dry_run=False):
55
52
        if location is None:
56
 
            bzrdir = controldir.ControlDir.open_containing('.')[0]
 
53
            bzrdir = BzrDir.open_containing('.')[0]
57
54
        else:
58
55
            # Passed in locations should be exact
59
 
            bzrdir = controldir.ControlDir.open(location)
 
56
            bzrdir = BzrDir.open(location)
60
57
        branch = bzrdir.open_branch()
61
58
        repo = branch.repository
62
59
        branch_config = branch.get_config()
63
60
 
64
61
        if committer is None:
65
62
            committer = branch_config.username()
66
 
        gpg_strategy = gpg.GPGStrategy(branch.get_config_stack())
 
63
        gpg_strategy = gpg.GPGStrategy(branch_config)
67
64
 
68
65
        count = 0
69
66
        repo.lock_write()
70
67
        try:
71
 
            graph = repo.get_graph()
72
68
            repo.start_write_group()
73
69
            try:
74
 
                for rev_id, parents in graph.iter_ancestry(
75
 
                        [branch.last_revision()]):
76
 
                    if _mod_revision.is_null(rev_id):
77
 
                        continue
78
 
                    if parents is None:
79
 
                        # Ignore ghosts
80
 
                        continue
 
70
                for rev_id in repo.get_ancestry(branch.last_revision())[1:]:
81
71
                    if repo.has_signature_for_revision_id(rev_id):
82
72
                        continue
83
73
                    rev = repo.get_revision(rev_id)
99
89
        print 'Signed %d revisions' % (count,)
100
90
 
101
91
 
102
 
class cmd_verify_signatures(Command):
103
 
    __doc__ = """Verify all commit signatures.
104
 
 
105
 
    Verifies that all commits in the branch are signed by known GnuPG keys.
106
 
    """
107
 
 
108
 
    takes_options = [
109
 
            Option('acceptable-keys',
110
 
                   help='Comma separated list of GPG key patterns which are'
111
 
                        ' acceptable for verification.',
112
 
                   short_name='k',
113
 
                   type=str,),
114
 
            'revision', 
115
 
            'verbose',
116
 
          ]
117
 
    takes_args = ['location?']
118
 
 
119
 
    def run(self, acceptable_keys=None, revision=None, verbose=None,
120
 
                                                            location=u'.'):
121
 
        bzrdir = controldir.ControlDir.open_containing(location)[0]
122
 
        branch = bzrdir.open_branch()
123
 
        repo = branch.repository
124
 
        branch_config = branch.get_config_stack()
125
 
        gpg_strategy = gpg.GPGStrategy(branch_config)
126
 
 
127
 
        gpg_strategy.set_acceptable_keys(acceptable_keys)
128
 
 
129
 
        def write(string):
130
 
            self.outf.write(string + "\n")
131
 
        def write_verbose(string):
132
 
            self.outf.write("  " + string + "\n")
133
 
 
134
 
        #get our list of revisions
135
 
        revisions = []
136
 
        if revision is not None:
137
 
            if len(revision) == 1:
138
 
                revno, rev_id = revision[0].in_history(branch)
139
 
                revisions.append(rev_id)
140
 
            elif len(revision) == 2:
141
 
                from_revno, from_revid = revision[0].in_history(branch)
142
 
                to_revno, to_revid = revision[1].in_history(branch)
143
 
                if to_revid is None:
144
 
                    to_revno = branch.revno()
145
 
                if from_revno is None or to_revno is None:
146
 
                    raise errors.BzrCommandError(gettext(
147
 
                    'Cannot verify a range of non-revision-history revisions'))
148
 
                for revno in range(from_revno, to_revno + 1):
149
 
                    revisions.append(branch.get_rev_id(revno))
150
 
        else:
151
 
            #all revisions by default including merges
152
 
            graph = repo.get_graph()
153
 
            revisions = []
154
 
            repo.lock_read()
155
 
            for rev_id, parents in graph.iter_ancestry(
156
 
                    [branch.last_revision()]):
157
 
                if _mod_revision.is_null(rev_id):
158
 
                    continue
159
 
                if parents is None:
160
 
                    # Ignore ghosts
161
 
                    continue
162
 
                revisions.append(rev_id)
163
 
            repo.unlock()
164
 
        count, result, all_verifiable =\
165
 
                                gpg_strategy.do_verifications(revisions, repo)
166
 
        if all_verifiable:
167
 
               write(gettext(
168
 
                            "All commits signed with verifiable keys"))
169
 
               if verbose:
170
 
                   write(gpg_strategy.verbose_valid_message(result))
171
 
               return 0
172
 
        else:
173
 
            write(gpg_strategy.valid_commits_message(count))
174
 
            if verbose:
175
 
               for message in gpg_strategy.verbose_valid_message(result):
176
 
                   write_verbose(message)
177
 
            write(gpg_strategy.expired_commit_message(count))
178
 
            if verbose:
179
 
               for message in gpg_strategy.verbose_expired_key_message(result,
180
 
                                                                          repo):
181
 
                   write_verbose(message)
182
 
            write(gpg_strategy.unknown_key_message(count))
183
 
            if verbose:
184
 
                for message in gpg_strategy.verbose_missing_key_message(result):
185
 
                    write_verbose(message)
186
 
            write(gpg_strategy.commit_not_valid_message(count))
187
 
            if verbose:
188
 
                for message in gpg_strategy.verbose_not_valid_message(result,
189
 
                                                                        repo):
190
 
                   write_verbose(message)
191
 
            write(gpg_strategy.commit_not_signed_message(count))
192
 
            if verbose:
193
 
                for message in gpg_strategy.verbose_not_signed_message(result,
194
 
                                                                          repo):
195
 
                    write_verbose(message)
196
 
            return 1