plugins: Extend recipient-v1 state machine with add-identities message

This enables plugins to wrap file keys to identities, for example when the plugin is built around a symmetric primitive (since we do not want the recipients encoding to ever contain secrets).
2025-04-03 19:07:42 +03:00 · 2021-02-05 21:43:15 +00:00 · 2021-02-05 21:43:15 +00:00 · cd0d79e14c
commit cd0d79e14c
parent 91804960d9
7 changed files with 151 additions and 39 deletions
--- a/age-core/src/plugin.rs
+++ b/age-core/src/plugin.rs
@ -23,9 +23,10 @@ const RESPONSE_UNSUPPORTED: &str = "unsupported";
 ///   should explicitly handle.
 pub type Result<T, E> = io::Result<std::result::Result<T, E>>;

-type UnidirResult<A, B, E> = io::Result<(
+type UnidirResult<A, B, C, E> = io::Result<(
    std::result::Result<Vec<A>, Vec<E>>,
    std::result::Result<Vec<B>, Vec<E>>,
+    Option<std::result::Result<Vec<C>, Vec<E>>>,
 )>;

 /// A connection to a plugin binary.
@ -161,19 +162,23 @@ impl<R: Read, W: Write> Connection<R, W> {
    ///
    /// # Arguments
    ///
-    /// `command_a` and `command_b` are the known commands that are expected to be
-    /// received. All other received commands (including grease) will be ignored.
-    pub fn unidir_receive<A, B, E, F, G>(
+    /// `command_a`, `command_b`, and (optionally) `command_c` are the known commands that
+    /// are expected to be received. All other received commands (including grease) will
+    /// be ignored.
+    pub fn unidir_receive<A, B, C, E, F, G, H>(
        &mut self,
        command_a: (&str, F),
        command_b: (&str, G),
-    ) -> UnidirResult<A, B, E>
+        command_c: (Option<&str>, H),
+    ) -> UnidirResult<A, B, C, E>
    where
        F: Fn(Stanza) -> std::result::Result<A, E>,
        G: Fn(Stanza) -> std::result::Result<B, E>,
+        H: Fn(Stanza) -> std::result::Result<C, E>,
    {
        let mut res_a = Ok(vec![]);
        let mut res_b = Ok(vec![]);
+        let mut res_c = Ok(vec![]);

        for stanza in iter::repeat_with(|| self.receive()).take_while(|res| match res {
            Ok(stanza) => stanza.tag != COMMAND_DONE,
@ -203,10 +208,14 @@ impl<R: Read, W: Write> Connection<R, W> {
                validate(command_a.1(stanza), &mut res_a)
            } else if stanza.tag.as_str() == command_b.0 {
                validate(command_b.1(stanza), &mut res_b)
+            } else if let Some(tag) = command_c.0 {
+                if stanza.tag.as_str() == tag {
+                    validate(command_c.1(stanza), &mut res_c)
+                }
            }
        }

-        Ok((res_a, res_b))
+        Ok((res_a, res_b, command_c.0.map(|_| res_c)))
    }

    /// Runs a bidirectional phase as the controller.
@ -420,7 +429,11 @@ mod tests {
            .unidir_send(|mut phase| phase.send("test", &["foo"], b"bar"))
            .unwrap();
        let stanza = plugin_conn
-            .unidir_receive::<_, (), _, _, _>(("test", |s| Ok(s)), ("other", |_| Err(())))
+            .unidir_receive::<_, (), (), _, _, _, _>(
+                ("test", |s| Ok(s)),
+                ("other", |_| Err(())),
+                (None, |_| Ok(())),
+            )
            .unwrap();
        assert_eq!(
            stanza,
@ -430,7 +443,8 @@ mod tests {
                    args: vec!["foo".to_owned()],
                    body: b"bar"[..].to_owned()
                }]),
-                Ok(vec![])
+                Ok(vec![]),
+                None
            )
        );
    }