Refine sq pki link {add,authorize}'s user ID designators.

- Change the semantics of `sq pki link add --email` and `sq pki link authorize --email` to use a user ID with just the specified email address, if the email address is part of a self-signed user ID. That is, use the `Exact` semantics instead of the `By` semantics. For example, if a certificate has the self-signed user ID "Alice <alice@example.org>", then `--email alice@example.org` would have selected "Alice <alice@example.org>" to link, but now it selects "<alice@example.org>". - Add `sq pki link add --userid-by-email`, and `sq pki link authorize --userid-by-email`, which use the self-signed user ID with the specified email address. For example, if a certificate has the self-signed user ID "Alice <alice@example.org>", then `--userid-by-email alice@example.org` selects "Alice <alice@example.org>" to link. - Fixes #212.
2024-12-08 21:04:57 +01:00 · 2024-12-08 21:04:57 +01:00 · 18b5cbda4d
commit 18b5cbda4d
parent 4155dcc22d
4 changed files with 68 additions and 14 deletions
--- a/13
+++ b/13
@ -14,6 +14,19 @@
     revoke`.
   - The arguments `--userid-or-add`, and `--email-or-add` have
     respectively been renamed to `--add-userid`, and `--add-email`.
+   - Change `sq pki link add --email` and `sq pki link authorize
+     --email` to use a user ID with just the specified email address,
+     if the email address is part of a self-signed user ID.  That is,
+     if the certificate has the self-signed user ID "Alice
+     <alice@example.org>", then `--email alice@example.org` would have
+     selected "Alice <alice@example.org>" to link, but now it selects
+     "<alice@example.org>".
+   - Add `sq pki link add --userid-by-email`, and `sq pki link
+     authorize --userid-by-email`, which use the self-signed user ID
+     with the specified email address.  That is, if the certificate
+     has the self-signed user ID "Alice <alice@example.org>", then
+     `--userid-by-email alice@example.org` selects "Alice
+     <alice@example.org>" to link.

 * Changes in 0.41.0
 ** New functionality
--- a/src/cli/pki/link.rs
+++ b/src/cli/pki/link.rs
@ -166,7 +166,7 @@ pub struct AddCommand {

    #[command(flatten)]
    pub userids: UserIDDesignators<
-        userid_designator::AllPlainByAndAddArgs>,
+        userid_designator::AllExactByAndAddArgs>,

    #[clap(
        long = "amount",
@ -318,7 +318,7 @@ pub struct AuthorizeCommand {

    #[command(flatten)]
    pub userids: UserIDDesignators<
-        userid_designator::AllPlainByAndAddArgs>,
+        userid_designator::AllExactByAndAddArgs>,

    #[clap(
        long = "amount",
--- a/src/cli/types/userid_designator.rs
+++ b/src/cli/types/userid_designator.rs
@ -67,15 +67,12 @@ pub type PlainByAndAddArgs
 pub type AllPlainByAndAddArgs
    = <AllUserIDsArg as std::ops::BitOr<PlainByAndAddArgs>>::Output;

-#[cfg(test)]
 pub type ExactAndAddArgs
    = <ExactArgs as std::ops::BitOr<AddArgs>>::Output;

-#[cfg(test)]
 pub type ExactByAndAddArgs
    = <ByArgs as std::ops::BitOr<ExactAndAddArgs>>::Output;

-#[cfg(test)]
 pub type AllExactByAndAddArgs
    = <AllUserIDsArg as std::ops::BitOr<ExactByAndAddArgs>>::Output;

--- a/tests/integration/sq_pki_link.rs
+++ b/tests/integration/sq_pki_link.rs
@ -785,11 +785,17 @@ fn no_ambiguous_email() {

    sq.tick(1);

-    // --email links the matching self-signed user ID: Ambiguous is
-    // not allowed.
+    // --email links a user ID with the specified email address, if it
+    // occurs in a self-signed user ID: Ambiguous is allowed.
    assert!(
        sq.pki_link_add_maybe(
            &[], alice.key_handle(), &[UserIDArg::Email("alice@example.org")])
+            .is_ok());
+    // --userid-by-email links the matching self-signed user ID:
+    // Ambiguous is not allowed.
+    assert!(
+        sq.pki_link_add_maybe(
+            &[], alice.key_handle(), &[UserIDArg::ByEmail("alice@example.org")])
            .is_err());
    // --add-email links a user ID with the email address:
    // Ambiguous is allowed.
@ -882,6 +888,11 @@ fn link_userid_designators() {
                .expect("success")
        };

+        let retract = |sq: &mut Sq, kh: KeyHandle| {
+            sq.tick(1);
+            sq.pki_link_retract(&[ "--all" ], kh.clone(), NO_USERIDS);
+        };
+
        // Check that the different user ID designators work.
        let mut sq = Sq::new();

@ -903,6 +914,7 @@ fn link_userid_designators() {
        assert!(sq.pki_authenticate(
            &[], &fpr, UserIDArg::UserID("Alice <alice@an.org>")).is_ok());

+        retract(&mut sq, cert.key_handle());

        // 2. Use --add-userid to link "Alice <alice@some.org>", which
        // is not a self-signed user ID.
@ -919,29 +931,59 @@ fn link_userid_designators() {
            &[], &fpr, UserIDArg::UserID("Alice <alice@some.org>")).is_ok());


-        // 3. Use --email to link "Alice <alice@example.org>", which is
-        // a self-signed user ID.
+        retract(&mut sq, cert.key_handle());
+
+        // 3. Use --email to link "<alice@example.org>", which is part
+        // of a self-signed user ID.
        //
-        // --email => the email address must be part of a self-signed user
-        // ID.
+        // --email => the email address must be part of a self-signed
+        // user ID, but uses a user ID with just email address.
        link(&mut sq, cert.key_handle(),
             UserIDArg::Email("alice@example.org"));

+        assert!(sq.pki_authenticate(
+            &[], &fpr, UserIDArg::UserID("<alice@example.org>")).is_ok());
+        if ! authorize {
+            // If '<alice@example.org>' is a trusted introducer, then
+            // it is used to authenticate the self-signed user ID.
+            assert!(sq.pki_authenticate(
+                &[], &fpr,
+                UserIDArg::UserID("Alice <alice@example.org>")).is_err());
+        }
+
+
+        retract(&mut sq, cert.key_handle());
+
+        // 4. Use --userid-by-email to link "Alice
+        // <alice@example.org>", which is a self signed user ID.
+        //
+        // --userid-by-email => use the matching self signed user ID.
+        link(&mut sq, cert.key_handle(),
+             UserIDArg::ByEmail("alice@example.org"));
+
        assert!(sq.pki_authenticate(
            &[], &fpr, UserIDArg::UserID("<alice@example.org>")).is_err());
        assert!(sq.pki_authenticate(
            &[], &fpr, UserIDArg::UserID("Alice <alice@example.org>")).is_ok());

+        retract(&mut sq, cert.key_handle());

-        // 4. Use --add-email to link "<alice@example.com>", which is
+        // 5. Use --add-email to link "<alice@example.com>", which is
        // not part of a self signed user ID.

-        // This fails with --email, because it expects a self-signed user ID.
+        // This fails with --email, because it expects a self-signed
+        // user ID.
        assert!(link_maybe(
            &mut sq, cert.key_handle(),
            UserIDArg::Email("alice@example.com")).is_err());

-        // But it works with --add-email.
+        // This fails with --userid-by-email, because there is no
+        // self-signed user ID with the email address.
+        assert!(link_maybe(
+            &mut sq, cert.key_handle(),
+            UserIDArg::ByEmail("alice@example.com")).is_err());
+
+        // But it works with --email-or-add.
        link(&mut sq,
             cert.key_handle(), UserIDArg::AddEmail("alice@example.com"));
        assert!(sq.pki_authenticate(
@ -956,6 +998,8 @@ fn link_userid_designators() {
        assert!(sq.pki_authenticate(
            &[], &fpr, UserIDArg::UserID("<alice@third.org>")).is_ok());
        if ! authorize {
+            // If '<alice@example.org>' is a trusted introducer, then
+            // it is used to authenticate the self-signed user ID.
            assert!(sq.pki_authenticate(
                &[], &fpr, UserIDArg::UserID("Alice <alice@third.org>")).is_err());
        }