From 6812312362369e259713743c916c33efa48568b2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Steven!=20Ragnar=C3=B6k?=
 <nuclearsandwich@users.noreply.github.com>
Date: Tue, 19 Nov 2019 12:26:37 -0500
Subject: [PATCH 1/3] Update tutorials for Eloquent-style ros arguments. (#170)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Steven! Ragnarök <steven@nuclearsandwich.com>
Signed-off-by: Mikael Arguedas <mikael.arguedas@gmail.com>
---
 SROS2_Linux.md   | 4 ++--
 SROS2_MacOS.md   | 4 ++--
 SROS2_Windows.md | 4 ++--
 3 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/SROS2_Linux.md b/SROS2_Linux.md
index f5afc452..7a0ecfbc 100644
--- a/SROS2_Linux.md
+++ b/SROS2_Linux.md
@@ -119,7 +119,7 @@ However, other nodes will not be able to communicate, e.g. the following invocat
 
 ```bash
 # This will fail because the node name does not have valid keys/certificates
-ros2 run demo_nodes_cpp talker __node:=not_talker
+ros2 run demo_nodes_cpp talker --ros-args -r __node:=not_talker
 ```
 
 
@@ -207,5 +207,5 @@ For example, the following attempt for the `listener` node to subscribe to a top
 
 ```bash
 # This will fail because the node is not permitted to subscribe to topics other than chatter.
-ros2 run demo_nodes_py listener chatter:=not_chatter
+ros2 run demo_nodes_py listener --ros-args -r chatter:=not_chatter
 ```
diff --git a/SROS2_MacOS.md b/SROS2_MacOS.md
index 94d2d270..6fb600bb 100644
--- a/SROS2_MacOS.md
+++ b/SROS2_MacOS.md
@@ -129,7 +129,7 @@ However, other nodes will not be able to communicate, e.g. the following invocat
 
 ```bash
 # This will fail because the node name does not have valid keys/certificates
-ros2 run demo_nodes_cpp talker __node:=not_talker
+ros2 run demo_nodes_cpp talker --ros-args -r __node:=not_talker
 ```
 
 
@@ -175,5 +175,5 @@ For example, the following attempt for the `listener` node to subscribe to a top
 
 ```bash
 # This will fail because the node is not permitted to subscribe to topics other than chatter.
-ros2 run demo_nodes_py listener chatter:=not_chatter
+ros2 run demo_nodes_py listener --ros-args -r chatter:=not_chatter
 ```
diff --git a/SROS2_Windows.md b/SROS2_Windows.md
index 26b60882..4da66e6b 100644
--- a/SROS2_Windows.md
+++ b/SROS2_Windows.md
@@ -128,7 +128,7 @@ However, other nodes will not be able to communicate, e.g. the following invocat
 
 ```bat
 REM This will fail because the node name does not have valid keys/certificates
-ros2 run demo_nodes_cpp talker __node:=not_talker
+ros2 run demo_nodes_cpp talker --ros-args -r __node:=not_talker
 ```
 
 ### Access Control
@@ -173,5 +173,5 @@ For example, the following attempt for the `listener` node to subscribe to a top
 
 ```bat
 REM This will fail because the node is not permitted to subscribe to topics other than chatter.
-ros2 run demo_nodes_py listener chatter:=not_chatter
+ros2 run demo_nodes_py listener --ros-args -r chatter:=not_chatter
 ```

From d3d9de1d223e10f70a6a3c230f45f4da0b4a5266 Mon Sep 17 00:00:00 2001
From: Mikael Arguedas <mikael.arguedas@gmail.com>
Date: Thu, 26 Mar 2020 17:02:08 +0100
Subject: [PATCH 2/3] Update maintainer to point to ros-security mailing list +
 fix package.xml (#179)

* update maintainer and fix invalid package.xml

Signed-off-by: Mikael Arguedas <mikael.arguedas@gmail.com>

* use format 3 for consistency and futureproofness

Signed-off-by: Mikael Arguedas <mikael.arguedas@gmail.com>
---
 sros2/package.xml       |  6 +++---
 sros2_cmake/package.xml | 14 ++++++++------
 2 files changed, 11 insertions(+), 9 deletions(-)

diff --git a/sros2/package.xml b/sros2/package.xml
index 2ef57ea1..dfa56193 100644
--- a/sros2/package.xml
+++ b/sros2/package.xml
@@ -1,10 +1,10 @@
 <?xml version="1.0"?>
-<?xml-model href="http://download.ros.org/schema/package_format2.xsd" schematypens="http://www.w3.org/2001/XMLSchema"?>
-<package format="2">
+<?xml-model href="http://download.ros.org/schema/package_format3.xsd" schematypens="http://www.w3.org/2001/XMLSchema"?>
+<package format="3">
   <name>sros2</name>
   <version>0.8.1</version>
   <description>Command line tools for managing SROS2 keys</description>
-  <maintainer email="michael@openrobotics.org">Michael Carroll</maintainer>
+  <maintainer email="ros-security@googlegroups.com">ROS Security Working Group</maintainer>
   <license>Apache License 2.0</license>
 
   <author email="morgan@osrfoundation.org">Morgan Quigley</author>
diff --git a/sros2_cmake/package.xml b/sros2_cmake/package.xml
index 41133d84..0df1391a 100644
--- a/sros2_cmake/package.xml
+++ b/sros2_cmake/package.xml
@@ -1,19 +1,21 @@
 <?xml version="1.0"?>
-    <package format="2">
+<?xml-model href="http://download.ros.org/schema/package_format3.xsd" schematypens="http://www.w3.org/2001/XMLSchema"?>
+
+    <package format="3">
     <name>sros2_cmake</name>
     <version>0.8.1</version>
-    <description>Cmake macros to configure security for nodes</description>
-    <author email="ros-contributions@amazon.com">AWS RoboMaker</author>
-    <maintainer email="ros-contributions@amazon.com">AWS RoboMaker</maintainer>
-    <maintainer email="michael@openrobotics.org">Michael Carroll</maintainer>
+    <description>CMake macros to configure security for nodes</description>
+    <maintainer email="ros-security@googlegroups.com">ROS Security Working Group</maintainer>
     <license>Apache 2.0</license>
 
+    <author>AWS RoboMaker</author>
+
     <buildtool_depend>ament_cmake</buildtool_depend>
 
     <build_depend>ament_cmake_test</build_depend>
 
-    <build_export_depend>sros2</build_export_depend>
     <build_export_depend>ros2cli</build_export_depend>
+    <build_export_depend>sros2</build_export_depend>
 
     <test_depend>ament_lint_auto</test_depend>
     <test_depend>ament_lint_common</test_depend>

From 04482e3cdda891e7cd9a368a556d577553bc6f75 Mon Sep 17 00:00:00 2001
From: Mikael Arguedas <mikael.arguedas@gmail.com>
Date: Fri, 5 Jun 2020 23:23:23 +0200
Subject: [PATCH 3/3] Fix list_keys verb

backport and adaptation of https://github.com/ros2/sros2/pull/219 to eloquent

Signed-off-by: Mikael Arguedas <mikael.arguedas@gmail.com>
---
 sros2/sros2/api/__init__.py                          | 12 +++++++++---
 .../sros2/commands/security/verbs/test_list_keys.py  |  6 ++++--
 2 files changed, 13 insertions(+), 5 deletions(-)

diff --git a/sros2/sros2/api/__init__.py b/sros2/sros2/api/__init__.py
index a3f4d7f1..2f01e74b 100644
--- a/sros2/sros2/api/__init__.py
+++ b/sros2/sros2/api/__init__.py
@@ -14,7 +14,9 @@
 
 from collections import namedtuple
 import datetime
+import errno
 import os
+import pathlib
 import shutil
 import sys
 
@@ -324,9 +326,13 @@ def create_key(keystore_path, identity):
 
 
 def list_keys(keystore_path):
-    for name in os.listdir(keystore_path):
-        if os.path.isdir(os.path.join(keystore_path, name)):
-            print(name)
+    if not os.path.isdir(keystore_path):
+        raise FileNotFoundError(
+            errno.ENOENT, os.strerror(errno.ENOENT), keystore_path)
+    p = pathlib.Path(keystore_path)
+    key_file_paths = sorted(p.glob('**/key.pem'))
+    for key_file_path in key_file_paths:
+        print('/{}'.format(key_file_path.parent.relative_to(keystore_path).as_posix()))
     return True
 
 
diff --git a/sros2/test/sros2/commands/security/verbs/test_list_keys.py b/sros2/test/sros2/commands/security/verbs/test_list_keys.py
index a38f6622..efaff95c 100644
--- a/sros2/test/sros2/commands/security/verbs/test_list_keys.py
+++ b/sros2/test/sros2/commands/security/verbs/test_list_keys.py
@@ -20,17 +20,19 @@
 
 
 def test_list_keys(capsys):
+    key_names = ['/test_node', '/test_namespace/test_node', '/sky/is/the/limit']
     with tempfile.TemporaryDirectory() as keystore_dir:
         with capsys.disabled():
             # First, create the keystore
             assert create_keystore(keystore_dir)
 
             # Now using that keystore, create a keypair
-            assert create_key(keystore_dir, '/test_node')
+            for key in key_names:
+                assert create_key(keystore_dir, key)
 
         # Now verify that the key we just created is included in the list
         assert cli.main(argv=['security', 'list_keys', keystore_dir]) == 0
-        assert capsys.readouterr().out.strip() == 'test_node'
+        assert capsys.readouterr().out.strip() == '\n'.join(sorted(key_names))
 
 
 def test_list_keys_no_keys(capsys):