Merged in pat-key-utility-command-line-tool (pull request #390)

New gradle task for packaging certificate singing request utility jar.
2025-02-21 01:42:24 +00:00 · 2016-10-04 17:15:13 +01:00 · 2016-10-04 17:15:13 +01:00 · 415de1ce1f
commit 415de1ce1f
parent 383814f235 c57229a944
10 changed files with 31 additions and 28 deletions
--- a/build.gradle
+++ b/build.gradle
@ -198,7 +198,7 @@ applicationDistribution.into("bin") {
    fileMode = 0755
 }

-task buildCordaJAR(type: FatCapsule, dependsOn: 'quasarScan') {
+task buildCordaJAR(type: FatCapsule, dependsOn: ['quasarScan', 'buildCertSigningRequestUtilityJAR']) {
    applicationClass 'com.r3corda.node.MainKt'
    archiveName 'corda.jar'
    applicationSource = files(project.tasks.findByName('jar'), 'build/classes/main/CordaCaplet.class')
@ -212,6 +212,15 @@ task buildCordaJAR(type: FatCapsule, dependsOn: 'quasarScan') {
    }
 }

+task buildCertSigningRequestUtilityJAR(type: FatCapsule, dependsOn: project.jar) {
+    applicationClass 'com.r3corda.node.utilities.certsigning.CertificateSignerKt'
+    archiveName 'certSigningRequestUtility.jar'
+    capsuleManifest {
+        systemProperties['log4j.configuration'] = 'log4j2.xml'
+        minJavaVersion = '1.8.0'
+    }
+}
+
 task installTemplateNodes(dependsOn: 'buildCordaJAR') << {
    copy {
        from buildCordaJAR.outputs.getFiles()
--- a/node/src/main/kotlin/com/r3corda/node/services/config/NodeConfiguration.kt
+++ b/node/src/main/kotlin/com/r3corda/node/services/config/NodeConfiguration.kt
@ -15,6 +15,7 @@ import com.typesafe.config.ConfigFactory
 import com.typesafe.config.ConfigParseOptions
 import com.typesafe.config.ConfigRenderOptions
 import org.slf4j.LoggerFactory
+import java.net.URL
 import java.nio.file.Files
 import java.nio.file.Path
 import java.nio.file.Paths
@ -60,7 +61,6 @@ interface NodeConfiguration : NodeSSLConfiguration {
    val exportJMXto: String
    val dataSourceProperties: Properties get() = Properties()
    val devMode: Boolean
-    val certificateSigningService: HostAndPort

    companion object {
        val log = LoggerFactory.getLogger("NodeConfiguration")
@ -96,6 +96,7 @@ operator fun <T> Config.getValue(receiver: Any, metadata: KProperty<*>): T {
        Instant::class.java -> Instant.parse(getString(metadata.name)) as T
        HostAndPort::class.java -> HostAndPort.fromString(getString(metadata.name)) as T
        Path::class.java -> Paths.get(getString(metadata.name)) as T
+        URL::class.java -> URL(getString(metadata.name)) as T
        Properties::class.java -> getProperties(metadata.name) as T
        else -> throw IllegalArgumentException("Unsupported type ${metadata.returnType}")
    }
@ -133,7 +134,6 @@ class NodeConfigurationFromConfig(val config: Config = ConfigFactory.load()) : N
    override val trustStorePassword: String by config
    override val dataSourceProperties: Properties by config
    override val devMode: Boolean by config.getOrElse { false }
-    override val certificateSigningService: HostAndPort by config
 }

 class FullNodeConfiguration(conf: Config) : NodeConfiguration {
@ -146,7 +146,6 @@ class FullNodeConfiguration(conf: Config) : NodeConfiguration {
    override val trustStorePassword: String by conf
    override val dataSourceProperties: Properties by conf
    override val devMode: Boolean by conf.getOrElse { false }
-    override val certificateSigningService: HostAndPort by conf
    val useHTTPS: Boolean by conf
    val artemisAddress: HostAndPort by conf
    val webAddress: HostAndPort by conf
--- a/node/src/main/kotlin/com/r3corda/node/utilities/certsigning/CertificateSigner.kt
+++ b/node/src/main/kotlin/com/r3corda/node/utilities/certsigning/CertificateSigner.kt
@ -9,9 +9,11 @@ import com.r3corda.core.crypto.X509Utilities.addOrReplaceKey
 import com.r3corda.core.div
 import com.r3corda.core.minutes
 import com.r3corda.core.utilities.loggerFor
-import com.r3corda.node.services.config.FullNodeConfiguration
 import com.r3corda.node.services.config.NodeConfiguration
+import com.r3corda.node.services.config.NodeConfigurationFromConfig
+import com.r3corda.node.services.config.getValue
 import joptsimple.OptionParser
+import java.net.URL
 import java.nio.file.Files
 import java.nio.file.Paths
 import java.security.KeyPair
@ -113,8 +115,8 @@ class CertificateSigner(val config: NodeConfiguration, val certService: Certific

 object ParamsSpec {
    val parser = OptionParser()
-    val baseDirectoryArg = parser.accepts("base-dir", "The directory to put all key stores under").withRequiredArg()
-    val configFileArg = parser.accepts("config-file", "The path to the config file").withRequiredArg()
+    val baseDirectoryArg = parser.accepts("base-dir", "Working directory of Corda Node.").withRequiredArg().defaultsTo(".")
+    val configFileArg = parser.accepts("config-file", "The path to the config file.").withRequiredArg()
 }

 fun main(args: Array<String>) {
@ -122,12 +124,19 @@ fun main(args: Array<String>) {
        ParamsSpec.parser.parse(*args)
    } catch (ex: Exception) {
        CertificateSigner.log.error("Unable to parse args", ex)
+        ParamsSpec.parser.printHelpOn(System.out)
        exitProcess(1)
    }
-    val baseDirectoryPath = Paths.get(cmdlineOptions.valueOf(ParamsSpec.baseDirectoryArg) ?: throw IllegalArgumentException("Please provide Corda node base directory path"))
+    val baseDirectoryPath = Paths.get(cmdlineOptions.valueOf(ParamsSpec.baseDirectoryArg))
    val configFile = if (cmdlineOptions.has(ParamsSpec.configFileArg)) Paths.get(cmdlineOptions.valueOf(ParamsSpec.configFileArg)) else null
-    val conf = FullNodeConfiguration(NodeConfiguration.loadConfig(baseDirectoryPath, configFile, allowMissingConfig = true))
+
+    val config = NodeConfiguration.loadConfig(baseDirectoryPath, configFile, allowMissingConfig = true).let { config ->
+        object : NodeConfiguration by NodeConfigurationFromConfig(config) {
+            val certificateSigningService: URL by config
+        }
+    }
+
    // TODO: Use HTTPS instead
-    CertificateSigner(conf, HTTPCertificateSigningService(conf.certificateSigningService)).buildKeyStore()
+    CertificateSigner(config, HTTPCertificateSigningService(config.certificateSigningService)).buildKeyStore()
 }

--- a/node/src/main/kotlin/com/r3corda/node/utilities/certsigning/HTTPCertificateSigningService.kt
+++ b/node/src/main/kotlin/com/r3corda/node/utilities/certsigning/HTTPCertificateSigningService.kt
@ -1,6 +1,5 @@
 package com.r3corda.node.utilities.certsigning

-import com.google.common.net.HostAndPort
 import org.apache.commons.io.IOUtils
 import org.bouncycastle.pkcs.PKCS10CertificationRequest
 import java.io.IOException
@ -11,7 +10,7 @@ import java.security.cert.CertificateFactory
 import java.util.*
 import java.util.zip.ZipInputStream

-class HTTPCertificateSigningService(val server: HostAndPort) : CertificateSigningService {
+class HTTPCertificateSigningService(val server: URL) : CertificateSigningService {
    companion object {
        // TODO: Propagate version information from gradle
        val clientVersion = "1.0"
@ -19,7 +18,7 @@ class HTTPCertificateSigningService(val server: HostAndPort) : CertificateSignin

    override fun retrieveCertificates(requestId: String): Array<Certificate>? {
        // Poll server to download the signed certificate once request has been approved.
-        val url = URL("http://$server/api/certificate/$requestId")
+        val url = URL("$server/api/certificate/$requestId")

        val conn = url.openConnection() as HttpURLConnection
        conn.requestMethod = "GET"
@ -42,7 +41,7 @@ class HTTPCertificateSigningService(val server: HostAndPort) : CertificateSignin

    override fun submitRequest(request: PKCS10CertificationRequest): String {
        // Post request to certificate signing server via http.
-        val conn = URL("http://$server/api/certificate").openConnection() as HttpURLConnection
+        val conn = URL("$server/api/certificate").openConnection() as HttpURLConnection
        conn.doOutput = true
        conn.requestMethod = "POST"
        conn.setRequestProperty("Content-Type", "application/octet-stream")
--- a/node/src/main/resources/reference.conf
+++ b/node/src/main/resources/reference.conf
@ -11,5 +11,5 @@ dataSourceProperties = {
    "dataSource.password" = ""
 }
 devMode = true
-certificateSigningService = "localhost:0"
+certificateSigningService = "https://cordaci-netperm.corda.r3cev.com"
 useHTTPS = false
--- a/node/src/test/kotlin/com/r3corda/node/services/ArtemisMessagingTests.kt
+++ b/node/src/test/kotlin/com/r3corda/node/services/ArtemisMessagingTests.kt
@ -51,8 +51,6 @@ class ArtemisMessagingTests {
            override val exportJMXto: String = ""
            override val keyStorePassword: String = "testpass"
            override val trustStorePassword: String = "trustpass"
-            override val certificateSigningService: HostAndPort = HostAndPort.fromParts("localhost", 0)
-
        }
    }

--- a/node/src/test/kotlin/com/r3corda/node/utilities/certsigning/CertificateSignerTest.kt
+++ b/node/src/test/kotlin/com/r3corda/node/utilities/certsigning/CertificateSignerTest.kt
@ -1,6 +1,5 @@
 package com.r3corda.node.utilities.certsigning

-import com.google.common.net.HostAndPort
 import com.nhaarman.mockito_kotlin.any
 import com.nhaarman.mockito_kotlin.eq
 import com.nhaarman.mockito_kotlin.mock
@ -46,7 +45,6 @@ class CertificateSignerTest {
            override val exportJMXto: String = ""
            override val keyStorePassword: String = "testpass"
            override val trustStorePassword: String = "trustpass"
-            override val certificateSigningService: HostAndPort = HostAndPort.fromParts("localhost", 0)
        }

        assertFalse(Files.exists(config.keyStorePath))
--- a/src/main/kotlin/com/r3corda/demos/RateFixDemo.kt
+++ b/src/main/kotlin/com/r3corda/demos/RateFixDemo.kt
@ -71,7 +71,6 @@ fun main(args: Array<String>) {
        override val keyStorePassword: String = "cordacadevpass"
        override val trustStorePassword: String = "trustpass"
        override val dataSourceProperties: Properties = makeTestDataSourceProperties()
-        override val certificateSigningService: HostAndPort = HostAndPort.fromParts("localhost", 0)

    }

--- a/src/main/kotlin/com/r3corda/simulation/Simulation.kt
+++ b/src/main/kotlin/com/r3corda/simulation/Simulation.kt
@ -1,6 +1,5 @@
 package com.r3corda.simulation

-import com.google.common.net.HostAndPort
 import com.google.common.util.concurrent.Futures
 import com.google.common.util.concurrent.ListenableFuture
 import com.r3corda.core.crypto.generateKeyPair
@ -70,7 +69,6 @@ abstract class Simulation(val networkSendManuallyPumped: Boolean,
                override val exportJMXto: String = ""
                override val keyStorePassword: String = "dummy"
                override val trustStorePassword: String = "trustpass"
-                override val certificateSigningService: HostAndPort = HostAndPort.fromParts("localhost", 0)
                override val dataSourceProperties = makeTestDataSourceProperties()
            }
            return SimulatedNode(cfg, network, networkMapAddr, advertisedServices, id, keyPair)
@ -100,7 +98,6 @@ abstract class Simulation(val networkSendManuallyPumped: Boolean,
                override val exportJMXto: String = ""
                override val keyStorePassword: String = "dummy"
                override val trustStorePassword: String = "trustpass"
-                override val certificateSigningService: HostAndPort = HostAndPort.fromParts("localhost", 0)
                override val dataSourceProperties = makeTestDataSourceProperties()
            }

@ -123,7 +120,6 @@ abstract class Simulation(val networkSendManuallyPumped: Boolean,
                override val exportJMXto: String = ""
                override val keyStorePassword: String = "dummy"
                override val trustStorePassword: String = "trustpass"
-                override val certificateSigningService: HostAndPort = HostAndPort.fromParts("localhost", 0)
                override val dataSourceProperties = makeTestDataSourceProperties()
            }
            return SimulatedNode(cfg, network, networkMapAddr, advertisedServices, id, keyPair)
@ -145,7 +141,6 @@ abstract class Simulation(val networkSendManuallyPumped: Boolean,
                override val exportJMXto: String = ""
                override val keyStorePassword: String = "dummy"
                override val trustStorePassword: String = "trustpass"
-                override val certificateSigningService: HostAndPort = HostAndPort.fromParts("localhost", 0)
                override val dataSourceProperties = makeTestDataSourceProperties()
            }

@ -173,7 +168,6 @@ abstract class Simulation(val networkSendManuallyPumped: Boolean,
                override val exportJMXto: String = ""
                override val keyStorePassword: String = "dummy"
                override val trustStorePassword: String = "trustpass"
-                override val certificateSigningService: HostAndPort = HostAndPort.fromParts("localhost", 0)
                override val dataSourceProperties = makeTestDataSourceProperties()
            }

--- a/test-utils/src/main/kotlin/com/r3corda/testing/node/MockNode.kt
+++ b/test-utils/src/main/kotlin/com/r3corda/testing/node/MockNode.kt
@ -1,7 +1,6 @@
 package com.r3corda.testing.node

 import com.google.common.jimfs.Jimfs
-import com.google.common.net.HostAndPort
 import com.google.common.util.concurrent.Futures
 import com.google.common.util.concurrent.ListenableFuture
 import com.r3corda.core.crypto.Party
@ -194,7 +193,6 @@ class MockNetwork(private val networkSendManuallyPumped: Boolean = false,
            override val keyStorePassword: String = "dummy"
            override val trustStorePassword: String = "trustpass"
            override val dataSourceProperties: Properties get() = makeTestDataSourceProperties("node_${id}_net_$networkId")
-            override val certificateSigningService: HostAndPort = HostAndPort.fromParts("localhost", 0)
        }
        val node = nodeFactory.create(config, this, networkMapAddress, advertisedServices.toSet(), id, keyPair)
        if (start) {