75f5c2db254c0167a0e396254460de09b775d203trawick# Licensed to the Apache Software Foundation (ASF) under one or more
75f5c2db254c0167a0e396254460de09b775d203trawick# contributor license agreements. See the NOTICE file distributed with
75f5c2db254c0167a0e396254460de09b775d203trawick# this work for additional information regarding copyright ownership.
75f5c2db254c0167a0e396254460de09b775d203trawick# The ASF licenses this file to You under the Apache License, Version 2.0
75f5c2db254c0167a0e396254460de09b775d203trawick# (the "License"); you may not use this file except in compliance with
75f5c2db254c0167a0e396254460de09b775d203trawick# the License. You may obtain a copy of the License at
75f5c2db254c0167a0e396254460de09b775d203trawick# Unless required by applicable law or agreed to in writing, software
75f5c2db254c0167a0e396254460de09b775d203trawick# distributed under the License is distributed on an "AS IS" BASIS,
75f5c2db254c0167a0e396254460de09b775d203trawick# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
75f5c2db254c0167a0e396254460de09b775d203trawick# See the License for the specific language governing permissions and
75f5c2db254c0167a0e396254460de09b775d203trawick# limitations under the License.
75f5c2db254c0167a0e396254460de09b775d203trawick if len(args) < 1 or args[0][0] != '#' or len(args[0]) < 2:
75f5c2db254c0167a0e396254460de09b775d203trawick print >> sys.stderr, 'Record #%s was not found' % record_id
75f5c2db254c0167a0e396254460de09b775d203trawick if len(re.compile(r'[A-Z0-9]').findall(log_id)) != len(log_id):
75f5c2db254c0167a0e396254460de09b775d203trawick print >> sys.stderr, 'The log id is not formatted properly'
75f5c2db254c0167a0e396254460de09b775d203trawick print >> sys.stderr, 'A public key file was not provided'
75f5c2db254c0167a0e396254460de09b775d203trawick print >> sys.stderr, 'Public key file %s could not be read' % pubkey
75f5c2db254c0167a0e396254460de09b775d203trawick if t == '-':
75f5c2db254c0167a0e396254460de09b775d203trawick print >> sys.stderr, 'The timestamp "%s" is invalid' % t
75f5c2db254c0167a0e396254460de09b775d203trawick stmt = 'UPDATE loginfo SET public_key = ? WHERE id = ?'
75f5c2db254c0167a0e396254460de09b775d203trawick # can't specify more than one of record-id and log-id
75f5c2db254c0167a0e396254460de09b775d203trawick stmt = 'INSERT INTO loginfo (log_id, url) VALUES(?, ?)'
75f5c2db254c0167a0e396254460de09b775d203trawick # could take a record id or a log id
75f5c2db254c0167a0e396254460de09b775d203trawick stmt = 'INSERT INTO loginfo (log_id, distrusted) VALUES(?, ?)'
75f5c2db254c0167a0e396254460de09b775d203trawick stmt = 'UPDATE loginfo SET distrusted = ? WHERE id = ?'
75f5c2db254c0167a0e396254460de09b775d203trawick # could take a record id or a log id
75f5c2db254c0167a0e396254460de09b775d203trawick '(log_id, min_valid_timestamp, max_valid_timestamp) ' + \
75f5c2db254c0167a0e396254460de09b775d203trawick 'VALUES(?, ?, ?)'
75f5c2db254c0167a0e396254460de09b775d203trawick cur.execute(stmt, [log_id, min_valid_time, max_valid_time])
75f5c2db254c0167a0e396254460de09b775d203trawick stmt = 'UPDATE loginfo SET min_valid_timestamp = ?, ' + \
75f5c2db254c0167a0e396254460de09b775d203trawick 'max_valid_timestamp = ? WHERE id = ?'
75f5c2db254c0167a0e396254460de09b775d203trawick cur.execute(stmt, [min_valid_time, max_valid_time, record_id])
75f5c2db254c0167a0e396254460de09b775d203trawick str(rec.min_valid_timestamp) if rec.min_valid_timestamp else '-INF'
75f5c2db254c0167a0e396254460de09b775d203trawick str(rec.max_valid_timestamp) if rec.max_valid_timestamp else '+INF'
75f5c2db254c0167a0e396254460de09b775d203trawick print 'Log entry:'
75f5c2db254c0167a0e396254460de09b775d203trawick print ' Log id : ' + (rec.log_id if rec.log_id else not_conf)
75f5c2db254c0167a0e396254460de09b775d203trawick print ' Public key file: ' + \
75f5c2db254c0167a0e396254460de09b775d203trawick print ' URL : ' + (rec.url if rec.url else not_conf)
75f5c2db254c0167a0e396254460de09b775d203trawick help = """Usage: %s /path/to/log-config-db command args
75f5c2db254c0167a0e396254460de09b775d203trawick display config-db contents:
75f5c2db254c0167a0e396254460de09b775d203trawick configure public key:
75f5c2db254c0167a0e396254460de09b775d203trawick configure-public-key [log-id|record-id] /path/log-pub-key.pem
75f5c2db254c0167a0e396254460de09b775d203trawick configure URL:
75f5c2db254c0167a0e396254460de09b775d203trawick configure-url [log-id|record-id] http://www.example.com/path/
75f5c2db254c0167a0e396254460de09b775d203trawick configure min and/or max valid timestamps:
75f5c2db254c0167a0e396254460de09b775d203trawick valid-time-range log-id|record-id min-range max-range
75f5c2db254c0167a0e396254460de09b775d203trawick mark log as trusted (default):
75f5c2db254c0167a0e396254460de09b775d203trawick trust log-id|record-id
75f5c2db254c0167a0e396254460de09b775d203trawick mark log as untrusted:
75f5c2db254c0167a0e396254460de09b775d203trawick distrust log-id|record-id
75f5c2db254c0167a0e396254460de09b775d203trawick remove log config from config-db:
75f5c2db254c0167a0e396254460de09b775d203trawick forget log-id|record-id
75f5c2db254c0167a0e396254460de09b775d203trawicklog-id is a 64-character hex string representation of a log id
75f5c2db254c0167a0e396254460de09b775d203trawickrecord-id references an existing entry and is in the form:
75f5c2db254c0167a0e396254460de09b775d203trawick #<record-number>
75f5c2db254c0167a0e396254460de09b775d203trawick (displayable with the dump command)
75f5c2db254c0167a0e396254460de09b775d203trawick cmds = {'configure-public-key': configure_public_key,
75f5c2db254c0167a0e396254460de09b775d203trawick cmds_requiring_db = ['dump', 'forget'] # db must already exist
75f5c2db254c0167a0e396254460de09b775d203trawick print >> sys.stderr, 'Database "%s" does not exist' % db_name