Make it possible to abort signing if keys cannot be loaded, improve cli error handling #346
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…anually insert key - Print only error message instead of the full stack trace if a TAFError is raised Any unexpected errors will still result in whole stack trace being shown, which I believe is good for now (we don't want to make it difficult to debug) - If keystore file is not found (or not correct) and the user does not want to use a yubikey, ask them if they want to manually enter the key. At the moment, we often have to manually terminate the command at that point
|
I don't really see a situation in production where someone would manually type the key in. Instead of a prompt to not enter key, could we add a flag to prompt for keys? Something like --prompt-for-keys? Then if that flag isn't present and key isn't in keystore it immediately fails? |
Added prompt_for_keys flag to all functions that load signing keys. If set to True, we'll ask the user if they want to manually enter the key if not using yubikeys and it cannot be loaded from keystore files. If set to False, the execution of the program will stop if not using Yubikeys and the key is not found inside the provided keystore directory
- Expand paths that start with ~ - Fixed loading delegations from keys-description json files
renatav
force-pushed
the
renatav/signing-error-messages
branch
from
6d076ec
to
d775265
Compare
n-dusan
approved these changes
Aug 29, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description (e.g. "Related to ...", etc.)
When loading signing keys, we check if there is a keystore file, then if we can sign using a yubikey before eventually asking the user to manually enter the key (an option that a user might want to use if they want to store the private key in a different way, neither on their filesystem nor on a YubiKey). The problem with this is that in majority of the cases, a user actually wanted to use a keystore file, but provided an incorrect location and they do not want to copy/paste this key. At that point, we had to manually terminate the application. This PR adds a prompt which gives the user an option to say that they do not want to enter this key, in which case an error is raised. This error is caught and the information that the role's metadata could not be signed is printed.
Also added CLI error handling in order to only print error messages and not full stack traces. Only
TAFErrorexceptions are caught. In other cases, stack trace will still be printed (meaning that an unexpected error occurred). I think that showing just error messages in case of unexpected errors makes it really difficult to debug.Add
prompt_for_keysflag to all functions that load signing keys. If set to True, we'll ask the user if they want to manually enter the key if not using yubikeys and it cannot be loaded from keystore files. If set to False, the execution of the program will stop if not using Yubikeys and the key is not found inside the provided keystore directory.Closes #242
Closes #334
(This was already fixed to some extended in other PRs, but I think that we can fully close it now)
Code review checklist (for code reviewer to complete)