+27

src/main.rs

reviewed

··· 4 4 mod push; 5 5 mod raw; 6 6 mod rev_lookup; 7 7 + mod rm; 7 8 mod shell_completions; 8 9 mod sign; 9 10 mod utils; ··· 29 30 /// Primitive signing and verification commands 30 31 #[command(subcommand)] 31 32 Raw(RawAction), 33 33 + /// Remove git-signify data 34 34 + #[command(subcommand)] 35 35 + Rm(RmAction), 32 36 /// Hash a key and return it 33 37 Fingerprint { 34 38 /// The path to the base64 encoded key to hash ··· 111 115 }, 112 116 } 113 117 118 118 + #[derive(Subcommand)] 119 119 + enum RmAction { 120 120 + /// Remove git-signify signatures 121 121 + Signature { 122 122 + /// The path to the base64 encoded public key of the signer 123 123 + #[arg(short = 'k', long, env = "GIT_KEY_PUB")] 124 124 + public_key: PathBuf, 125 125 + 126 126 + /// The name of the remote repository, in case 127 127 + /// we wish to remove a remote signature 128 128 + #[arg(short = 'R', long)] 129 129 + remote: Option<String>, 130 130 + 131 131 + /// The git revision whose signature we wish to remove 132 132 + git_rev: String, 133 133 + }, 134 134 + } 135 135 + 114 136 fn main() -> Result<()> { 115 137 let args = Args::parse(); 116 138 ··· 124 146 print_signed_oid: recover, 125 147 git_tree: rev, 126 148 }) => raw::verify::command(public_key, recover, rev), 149 149 + Action::Rm(RmAction::Signature { 150 150 + public_key, 151 151 + git_rev, 152 152 + remote, 153 153 + }) => rm::signature::command(public_key, git_rev, remote), 127 154 Action::Fingerprint { key } => fingerprint::command(key), 128 155 Action::Sign { 129 156 secret_key,

+3

src/rm.rs

reviewed

··· 1 1 + //! Remove git-signify data. 2 2 + 3 3 + pub mod signature;

+58

src/rm/signature.rs

reviewed

··· 1 1 + //! Remove git-signify signatures. 2 2 + 3 3 + use std::fs; 4 4 + use std::io; 5 5 + use std::path::PathBuf; 6 6 + use std::process::Command; 7 7 + 8 8 + use anyhow::{anyhow, Context, Result}; 9 9 + 10 10 + use crate::utils; 11 11 + 12 12 + /// Execute the `rm signature` command. 13 13 + pub fn command(public_key: PathBuf, rev: String, remote: Option<String>) -> Result<()> { 14 14 + let repo = utils::open_repository()?; 15 15 + 16 16 + for public_key in utils::get_public_keys(public_key)?.into_values() { 17 17 + let tree_rev = { 18 18 + let object_oid = repo 19 19 + .revparse_single(&rev) 20 20 + .context("Failed to look-up git object")? 21 21 + .id(); 22 22 + let key_fingerprint = public_key.fingerprint()?; 23 23 + utils::craft_signature_reference(key_fingerprint, object_oid) 24 24 + }; 25 25 + 26 26 + if let Some(remote) = remote.as_ref() { 27 27 + let exit_code = Command::new("git") 28 28 + .arg("push") 29 29 + .arg("-d") 30 30 + .arg(remote) 31 31 + .arg(tree_rev) 32 32 + .spawn() 33 33 + .context("Failed to spawn git command to remove remote signature")? 34 34 + .wait() 35 35 + .context("Failed to wait for git command to remove remote signature")?; 36 36 + if !exit_code.success() { 37 37 + return Err(anyhow!("Exit code of git: {exit_code}")); 38 38 + } 39 39 + } else { 40 40 + let mut path = PathBuf::new(); 41 41 + 42 42 + path.push(".git"); 43 43 + path.push(tree_rev); 44 44 + 45 45 + fs::remove_file(path) 46 46 + .or_else(|e| { 47 47 + if e.kind() == io::ErrorKind::NotFound { 48 48 + Ok(()) 49 49 + } else { 50 50 + Err(e) 51 51 + } 52 52 + }) 53 53 + .context("Failed to remove local git reference")?; 54 54 + } 55 55 + } 56 56 + 57 57 + Ok(()) 58 58 + }