GpgSigner.java

  1. /*
  2.  * Copyright (C) 2018, 2022 Salesforce and others
  3.  *
  4.  * This program and the accompanying materials are made available under the
  5.  * terms of the Eclipse Distribution License v. 1.0 which is available at
  6.  * https://www.eclipse.org/org/documents/edl-v10.php.
  7.  *
  8.  * SPDX-License-Identifier: BSD-3-Clause
  9.  */
  10. package org.eclipse.jgit.lib;

  12. import java.util.Iterator;
  13. import java.util.ServiceConfigurationError;
  14. import java.util.ServiceLoader;

  16. import org.eclipse.jgit.annotations.NonNull;
  17. import org.eclipse.jgit.annotations.Nullable;
  18. import org.eclipse.jgit.api.errors.CanceledException;
  19. import org.eclipse.jgit.transport.CredentialsProvider;
  20. import org.slf4j.Logger;
  21. import org.slf4j.LoggerFactory;

  23. /**
  24.  * Creates GPG signatures for Git objects.
  25.  *
  26.  * @since 5.3
  27.  */
  28. public abstract class GpgSigner {

  30.     private static final Logger LOG = LoggerFactory.getLogger(GpgSigner.class);

  32.     private static class DefaultSigner {

  34.         private static volatile GpgSigner defaultSigner = loadGpgSigner();

  36.         private static GpgSigner loadGpgSigner() {
  37.             try {
  38.                 ServiceLoader<GpgSigner> loader = ServiceLoader
  39.                         .load(GpgSigner.class);
  40.                 Iterator<GpgSigner> iter = loader.iterator();
  41.                 if (iter.hasNext()) {
  42.                     return iter.next();
  43.                 }
  44.             } catch (ServiceConfigurationError e) {
  45.                 LOG.error(e.getMessage(), e);
  46.             }
  47.             return null;
  48.         }

  50.         private DefaultSigner() {
  51.             // No instantiation
  52.         }

  54.         public static GpgSigner getDefault() {
  55.             return defaultSigner;
  56.         }

  58.         public static void setDefault(GpgSigner signer) {
  59.             defaultSigner = signer;
  60.         }
  61.     }

  63.     /**
  64.      * Get the default signer, or <code>null</code>.
  65.      *
  66.      * @return the default signer, or <code>null</code>.
  67.      */
  68.     public static GpgSigner getDefault() {
  69.         return DefaultSigner.getDefault();
  70.     }

  72.     /**
  73.      * Set the default signer.
  74.      *
  75.      * @param signer
  76.      *            the new default signer, may be <code>null</code> to select no
  77.      *            default.
  78.      */
  79.     public static void setDefault(GpgSigner signer) {
  80.         DefaultSigner.setDefault(signer);
  81.     }

  83.     /**
  84.      * Signs the specified commit.
  85.      *
  86.      * <p>
  87.      * Implementors should obtain the payload for signing from the specified
  88.      * commit via {@link CommitBuilder#build()} and create a proper
  89.      * {@link GpgSignature}. The generated signature must be set on the
  90.      * specified {@code commit} (see
  91.      * {@link CommitBuilder#setGpgSignature(GpgSignature)}).
  92.      * </p>
  93.      * <p>
  94.      * Any existing signature on the commit must be discarded prior obtaining
  95.      * the payload via {@link CommitBuilder#build()}.
  96.      * </p>
  97.      *
  98.      * @param commit
  99.      *            the commit to sign (must not be <code>null</code> and must be
  100.      *            complete to allow proper calculation of payload)
  101.      * @param gpgSigningKey
  102.      *            the signing key to locate (passed as is to the GPG signing
  103.      *            tool as is; eg., value of <code>user.signingkey</code>)
  104.      * @param committer
  105.      *            the signing identity (to help with key lookup in case signing
  106.      *            key is not specified)
  107.      * @param credentialsProvider
  108.      *            provider to use when querying for signing key credentials (eg.
  109.      *            passphrase)
  110.      * @throws CanceledException
  111.      *             when signing was canceled (eg., user aborted when entering
  112.      *             passphrase)
  113.      */
  114.     public abstract void sign(@NonNull CommitBuilder commit,
  115.             @Nullable String gpgSigningKey, @NonNull PersonIdent committer,
  116.             CredentialsProvider credentialsProvider) throws CanceledException;

  118.     /**
  119.      * Indicates if a signing key is available for the specified committer
  120.      * and/or signing key.
  121.      *
  122.      * @param gpgSigningKey
  123.      *            the signing key to locate (passed as is to the GPG signing
  124.      *            tool as is; eg., value of <code>user.signingkey</code>)
  125.      * @param committer
  126.      *            the signing identity (to help with key lookup in case signing
  127.      *            key is not specified)
  128.      * @param credentialsProvider
  129.      *            provider to use when querying for signing key credentials (eg.
  130.      *            passphrase)
  131.      * @return <code>true</code> if a signing key is available,
  132.      *         <code>false</code> otherwise
  133.      * @throws CanceledException
  134.      *             when signing was canceled (eg., user aborted when entering
  135.      *             passphrase)
  136.      */
  137.     public abstract boolean canLocateSigningKey(@Nullable String gpgSigningKey,
  138.             @NonNull PersonIdent committer,
  139.             CredentialsProvider credentialsProvider) throws CanceledException;

  141. }
Created with JaCoCo 0.8.7.202105040129