sett 0.4.0

Rust port of sett (data compression, encryption and transfer tool).
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152

//! Interface to an OpenPGP keyserver.

use super::{cert::Cert, certstore::QueryTerm};

#[derive(serde::Serialize, Debug)]
struct UploadRequest<S> {
    keytext: S,
}

#[derive(serde::Serialize, Debug)]
struct VerifyRequest<'a> {
    token: &'a str,
    addresses: Vec<&'a str>,
}

#[derive(serde::Deserialize, Debug)]
/// Standard response from an OpenPGP keyserver.
pub struct KeyserverResponse {
    /// Status of the email verification process for this key.
    pub status: std::collections::BTreeMap<String, KeyserverEmailStatus>,
    /// Opaque token, to be used to initiate the verification process after
    /// uploading the key.
    pub token: String,
}

#[derive(serde::Deserialize, Clone, Debug)]
#[serde(rename_all = "lowercase")]
/// Email verification process statuses.
pub enum KeyserverEmailStatus {
    /// No verification process has been triggered for this email.
    Unpublished,
    /// The key associated to this email has been already verified.
    Published,
    /// The key associated to this email has been revoked and cannot be used.
    Revoked,
    /// The verification process has been triggered but is still pending.
    Pending,
}

/// A client for interacting with the Keyserver API.
#[derive(Debug)]
pub struct Keyserver {
    client: reqwest::Client,
}

impl Keyserver {
    /// Return a new Keyserver client.
    pub fn new() -> Result<Self, reqwest::Error> {
        Ok(Self {
            client: reqwest::Client::builder().use_rustls_tls().build()?,
        })
    }

    /// Request key verification (email ownership verification) from keyserver.
    ///
    /// Send a request to keyserver to initiate the key verification process
    /// for the certificate associated with the given `token` and `email`.
    pub async fn verify_cert(
        &self,
        token: &str,
        email: &str,
    ) -> Result<KeyserverResponse, reqwest::Error> {
        const VERIFY_URL: &str = "https://keys.openpgp.org/vks/v1/request-verify";
        let response = self
            .client
            .post(VERIFY_URL)
            .json(&VerifyRequest {
                token,
                addresses: vec![email],
            })
            .send()
            .await?;
        response.json().await
    }

    /// Upload a certificate to this keyserver.
    pub async fn upload_cert(&self, cert: &Cert) -> Result<KeyserverResponse, reqwest::Error> {
        const UPLOAD_URL: &str = "https://keys.openpgp.org/vks/v1/upload";
        let response = self
            .client
            .post(UPLOAD_URL)
            .json(&UploadRequest {
                keytext: cert.public(),
            })
            .send()
            .await?;
        response.json().await
    }

    /// Get a certificate from this keyserver.
    ///
    /// Only exact matches are supported.
    pub async fn get_cert(&self, query: &QueryTerm<'_>) -> Result<Cert, GetCertError> {
        let url = match query {
            QueryTerm::Fingerprint(fingerprint) => {
                format!("https://keys.openpgp.org/vks/v1/by-fingerprint/{fingerprint}")
            }
            QueryTerm::Email(email) => {
                format!("https://keys.openpgp.org/vks/v1/by-email/{email}")
            }
        };
        let response = self.client.get(url).send().await?;
        if let reqwest::StatusCode::NOT_FOUND = response.status() {
            return Err(GetCertError::NotFound);
        }
        Ok(Cert::from_bytes(
            response.error_for_status()?.bytes().await?,
        )?)
    }
}

/// Error occurring when trying to download from a keyserver
#[derive(Debug)]
pub enum GetCertError {
    /// Certificate not found
    NotFound,
    /// Problem with the connection to the server
    Request(reqwest::Error),
    /// Problem with pgp
    Pgp(super::error::PgpError),
}

impl std::fmt::Display for GetCertError {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        write!(
            f,
            "Error while trying to get a certificate from the keyserver"
        )
    }
}

impl core::error::Error for GetCertError {
    fn source(&self) -> Option<&(dyn std::error::Error + 'static)> {
        match self {
            Self::NotFound => None,
            Self::Request(source) => Some(source),
            Self::Pgp(source) => Some(source),
        }
    }
}

impl From<reqwest::Error> for GetCertError {
    fn from(value: reqwest::Error) -> Self {
        Self::Request(value)
    }
}

impl From<super::error::PgpError> for GetCertError {
    fn from(value: super::error::PgpError) -> Self {
        Self::Pgp(value)
    }
}