Example 1 with Rsync
use of net.ripe.rpki.commons.rsync.Rsync in project rpki-validator-3 by RIPE-NCC.
the class TrustAnchorValidationService method fetchTrustAnchorCertificate.
private File fetchTrustAnchorCertificate(URI trustAnchorCertificateURI, ValidationResult validationResult) throws IOException {
File targetFile = RsyncUtils.localFileFromRsyncUri(localRsyncStorageDirectory, trustAnchorCertificateURI);
if (targetFile.getParentFile().mkdirs()) {
log.info("created local rsync storage directory {} for trust anchor {}", targetFile.getParentFile(), trustAnchorCertificateURI);
}
Rsync rsync = new Rsync(trustAnchorCertificateURI.toASCIIString(), targetFile.getPath());
rsync.addOptions("--update", "--times", "--copy-links");
int exitStatus = rsync.execute();
if (exitStatus != 0) {
validationResult.error(ErrorCodes.RSYNC_FETCH, String.valueOf(exitStatus), ArrayUtils.toString(rsync.getErrorLines()));
return null;
} else {
log.info("Downloaded certificate {} to {}", trustAnchorCertificateURI, targetFile);
return targetFile;
}
}Example 2 with Rsync
use of net.ripe.rpki.commons.rsync.Rsync in project rpki-validator-3 by RIPE-NCC.
the class RpkiRepositoryValidationService method fetchRsyncRepository.
private void fetchRsyncRepository(RpkiRepository rpkiRepository, File targetDirectory, ValidationResult validationResult) throws IOException {
if (targetDirectory.mkdirs()) {
log.info("created local rsync storage directory {} for repository {}", targetDirectory, rpkiRepository);
}
Rsync rsync = new Rsync(rpkiRepository.getLocationUri(), targetDirectory.getPath());
rsync.addOptions("--update", "--times", "--copy-links", "--recursive", "--delete");
int exitStatus = rsync.execute();
validationResult.rejectIfTrue(exitStatus != 0, ErrorCodes.RSYNC_FETCH, String.valueOf(exitStatus), ArrayUtils.toString(rsync.getErrorLines()));
if (validationResult.hasFailureForCurrentLocation()) {
rpkiRepository.setFailed();
} else {
log.info("Downloaded repository {} to {}", rpkiRepository.getRsyncRepositoryUri(), targetDirectory);
}
}
Also used :
Rsync(net.ripe.rpki.commons.rsync.Rsync)
Example 3 with Rsync
use of net.ripe.rpki.commons.rsync.Rsync in project rpki-validator-3 by RIPE-NCC.
the class RpkiRepositoryValidationService method validateRsyncRepositories.
@Scheduled(initialDelay = 10_000, fixedDelay = 10_000)
public void validateRsyncRepositories() {
entityManager.setFlushMode(FlushModeType.COMMIT);
Instant cutoffTime = Instant.now().minus(rsyncRepositoryDownloadInterval);
log.info("updating all rsync repositories that have not been downloaded since {}", cutoffTime);
Set<TrustAnchor> affectedTrustAnchors = new HashSet<>();
final RsyncRepositoryValidationRun validationRun = new RsyncRepositoryValidationRun();
validationRunRepository.add(validationRun);
Stream<RpkiRepository> repositories = rpkiRepositories.findRsyncRepositories();
Map<String, RpkiObject> objectsBySha256 = new HashMap<>();
Map<URI, RpkiRepository> fetchedLocations = new HashMap<>();
ValidationResult results = repositories.filter((repository) -> {
boolean needsUpdate = repository.isPending() || repository.getLastDownloadedAt() == null || repository.getLastDownloadedAt().isBefore(cutoffTime);
if (!needsUpdate) {
fetchedLocations.put(URI.create(repository.getRsyncRepositoryUri()), repository);
}
return needsUpdate;
}).map((repository) -> processRsyncRepository(affectedTrustAnchors, validationRun, fetchedLocations, objectsBySha256, repository)).collect(() -> ValidationResult.withLocation("placeholder"), ValidationResult::addAll, ValidationResult::addAll);
validationRun.completeWith(results);
affectedTrustAnchors.forEach(validationRunRepository::runCertificateTreeValidation);
}
Also used :
RsyncRepositoryValidationRun(net.ripe.rpki.validator3.domain.RsyncRepositoryValidationRun)
RpkiRepository(net.ripe.rpki.validator3.domain.RpkiRepository)
ValidationRuns(net.ripe.rpki.validator3.domain.ValidationRuns)
CertificateRepositoryObject(net.ripe.rpki.commons.crypto.CertificateRepositoryObject)
RpkiRepositoryValidationRun(net.ripe.rpki.validator3.domain.RpkiRepositoryValidationRun)
RsyncRepositoryValidationRun(net.ripe.rpki.validator3.domain.RsyncRepositoryValidationRun)
Autowired(org.springframework.beans.factory.annotation.Autowired)
ArrayUtils(org.apache.commons.lang3.ArrayUtils)
FlushModeType(javax.persistence.FlushModeType)
HashMap(java.util.HashMap)
Scheduled(org.springframework.scheduling.annotation.Scheduled)
CertificateRepositoryObjectFactory(net.ripe.rpki.commons.crypto.util.CertificateRepositoryObjectFactory)
ErrorCodes(net.ripe.rpki.validator3.domain.ErrorCodes)
Value(org.springframework.beans.factory.annotation.Value)
HashSet(java.util.HashSet)
RpkiRepositories(net.ripe.rpki.validator3.domain.RpkiRepositories)
RpkiObjects(net.ripe.rpki.validator3.domain.RpkiObjects)
Service(org.springframework.stereotype.Service)
Locale(java.util.Locale)
Duration(java.time.Duration)
Map(java.util.Map)
Sha256(net.ripe.rpki.validator3.util.Sha256)
URI(java.net.URI)
Path(java.nio.file.Path)
SimpleFileVisitor(java.nio.file.SimpleFileVisitor)
TrustAnchor(net.ripe.rpki.validator3.domain.TrustAnchor)
Rsync(net.ripe.rpki.commons.rsync.Rsync)
Transactional(javax.transaction.Transactional)
Files(java.nio.file.Files)
RrdpService(net.ripe.rpki.validator3.rrdp.RrdpService)
Hex(net.ripe.rpki.validator3.util.Hex)
RpkiObject(net.ripe.rpki.validator3.domain.RpkiObject)
Set(java.util.Set)
IOException(java.io.IOException)
RrdpRepositoryValidationRun(net.ripe.rpki.validator3.domain.RrdpRepositoryValidationRun)
EntityManager(javax.persistence.EntityManager)
BasicFileAttributes(java.nio.file.attribute.BasicFileAttributes)
Instant(java.time.Instant)
File(java.io.File)
ValidationLocation(net.ripe.rpki.commons.validation.ValidationLocation)
FileVisitResult(java.nio.file.FileVisitResult)
Slf4j(lombok.extern.slf4j.Slf4j)
Stream(java.util.stream.Stream)
ValidationResult(net.ripe.rpki.commons.validation.ValidationResult)
RsyncUtils(net.ripe.rpki.validator3.util.RsyncUtils)
ExceptionUtils(org.apache.commons.lang3.exception.ExceptionUtils)
RpkiRepository(net.ripe.rpki.validator3.domain.RpkiRepository)
HashMap(java.util.HashMap)
Instant(java.time.Instant)
TrustAnchor(net.ripe.rpki.validator3.domain.TrustAnchor)
ValidationResult(net.ripe.rpki.commons.validation.ValidationResult)
URI(java.net.URI)
RpkiObject(net.ripe.rpki.validator3.domain.RpkiObject)
HashSet(java.util.HashSet)
Scheduled(org.springframework.scheduling.annotation.Scheduled)
Aggregations
Rsync (net.ripe.rpki.commons.rsync.Rsync)3
File (java.io.File)2
IOException (java.io.IOException)1
URI (java.net.URI)1
FileVisitResult (java.nio.file.FileVisitResult)1
Files (java.nio.file.Files)1
Path (java.nio.file.Path)1
SimpleFileVisitor (java.nio.file.SimpleFileVisitor)1
BasicFileAttributes (java.nio.file.attribute.BasicFileAttributes)1
Duration (java.time.Duration)1
Instant (java.time.Instant)1
HashMap (java.util.HashMap)1
HashSet (java.util.HashSet)1
Locale (java.util.Locale)1
Map (java.util.Map)1
Set (java.util.Set)1
Stream (java.util.stream.Stream)1
EntityManager (javax.persistence.EntityManager)1
FlushModeType (javax.persistence.FlushModeType)1
Transactional (javax.transaction.Transactional)1
