1 files changed, 123 insertions, 3 deletions
diff --git a/KeyRing.hs b/KeyRing.hs
index b738a25..e3d41d8 100644
--- a/KeyRing.hs
+++ b/KeyRing.hs
@@ -14,6 +14,7 @@ import Data.Ord
 import Data.List
 import Data.OpenPGP
 import Data.Functor
+import Data.Monoid
 import Data.Bits              ( (.|.) )
 import Control.Applicative    ( liftA2, (<$>) )
 import System.Directory       ( getHomeDirectory, doesFileExist )
@@ -27,15 +28,16 @@ import ControlMaybe ( handleIO_ )
 import Data.ASN1.Types ( toASN1, ASN1Object, fromASN1
       , ASN1(Start,End,IntVal,OID,BitString), ASN1ConstructionType(Sequence) )
 import Data.ASN1.BitArray ( BitArray(..), toBitArray )
-import Data.ASN1.Encoding ( encodeASN1, encodeASN1', decodeASN1' )
+import Data.ASN1.Encoding ( encodeASN1, encodeASN1', decodeASN1, decodeASN1' )
 import Data.ASN1.BinaryEncoding ( DER(..) )
 import Data.Time.Clock.POSIX ( getPOSIXTime )
 import qualified Data.Map as Map
-import qualified Data.ByteString.Lazy as L ( null, readFile, writeFile, ByteString, toChunks )
+import qualified Data.ByteString.Lazy as L ( pack, null, readFile, writeFile, ByteString, toChunks )
 import qualified Data.ByteString      as S ( unpack, splitAt, concat, cons )
-import qualified Data.ByteString.Lazy.Char8 as Char8 ( span, unpack, break ) 
+import qualified Data.ByteString.Lazy.Char8 as Char8 ( span, unpack, break, concat, lines )
 import qualified Crypto.Types.PubKey.ECC as ECC
 import qualified Codec.Binary.Base32 as Base32
+import qualified Codec.Binary.Base64 as Base64
 import qualified Crypto.Hash.SHA1 as SHA1
 import qualified Data.Text as T ( Text, unpack, pack,
        strip, reverse, drop, break, dropAround )
@@ -168,12 +170,59 @@ data RSAPrivateKey = RSAPrivateKey
    }
 deriving Show
+instance ASN1Object RSAPrivateKey where
+    toASN1 rsa@(RSAPrivateKey {})
+        = \xs -> Start Sequence
+               : IntVal 0
+               : mpiVal rsaN
+               : mpiVal rsaE
+               : mpiVal rsaD
+               : mpiVal rsaP
+               : mpiVal rsaQ
+               : mpiVal rsaDmodP1
+               : mpiVal rsaDmodQminus1
+               : mpiVal rsaCoefficient
+               : End Sequence
+               : xs
+                  where mpiVal f = IntVal x where MPI x = f rsa
+    fromASN1 ( Start Sequence
+             : IntVal _ -- version
+             : IntVal n
+             : IntVal e
+             : IntVal d
+             : IntVal p
+             : IntVal q
+             : IntVal dmodp1
+             : IntVal dmodqminus1
+             : IntVal coefficient
+             : ys) =
+        Right ( privkey, tail $ dropWhile notend ys)
+         where
+            notend (End Sequence) = False
+            notend _              = True
+            privkey = RSAPrivateKey
+                { rsaN = MPI n
+                , rsaE = MPI e
+                , rsaD = MPI d
+                , rsaP = MPI p
+                , rsaQ = MPI q
+                , rsaDmodP1 = MPI dmodp1
+                , rsaDmodQminus1 = MPI dmodqminus1
+                , rsaCoefficient = MPI coefficient
+                }
+    fromASN1 _ =
+        Left "fromASN1: RSAPrivateKey: unexpected format"
 data KikiCondition a = KikiSuccess a
    | FailedToLock [FilePath]
    | BadPassphrase
    | FailedToMakeSignature
    | CantFindHome
+    | AmbiguousKeySpec
+    | CannotImportMasterKey
 deriving ( Functor, Show )
 instance FunctorToMaybe KikiCondition where
@@ -479,6 +528,10 @@ buildKeyDB secring pubring grip0 keyring = do
    db <- foldM importWalletKey (KikiSuccess (db_rings,[])) wallet_keys
    try db $ \(db,report) -> do
+    -- todo: import PEMFiles
+    -- use_db <- foldM (doImport decrypt) use_db0 (map snd imports)
    return $ KikiSuccess ( (db, grip, wk), report )
 torhash key = maybe "" id $ derToBase32 <$> derRSA key
@@ -495,6 +548,73 @@ try x body =
           Left e -> return e
           Right x -> body x
+readKeyFromFile False "PEM" fname = do
+    -- warn $ fname ++ ": reading ..."
+    -- Note: The key's timestamp is included in it's fingerprint.
+    --       Therefore, we should attempt to preserve it.
+    timestamp <- handleIO_ (error $ fname++": modificaiton time?") $ 
+                    modificationTime <$> getFileStatus fname
+    input <- L.readFile fname
+    let dta = extractPEM "RSA PRIVATE KEY" input
+    -- Char8.putStrLn $ "dta = " <> dta
+    let rsa = do
+           e <- decodeASN1 DER . L.pack <$> Base64.decode (Char8.unpack dta)
+           asn1 <- either (const Nothing) Just e
+           k <- either (const Nothing) (Just . fst) (fromASN1 asn1)
+           let _ = k :: RSAPrivateKey
+           return k
+    -- putStrLn $ "rsa = "++ show rsa
+    return . Message $ do
+        rsa <- maybeToList rsa
+        return $ SecretKeyPacket
+            { version = 4
+            , timestamp = toEnum (fromEnum timestamp)
+            , key_algorithm = RSA
+            , key = [ -- public fields...
+                     ('n',rsaN rsa)
+                    ,('e',rsaE rsa)
+                    -- secret fields
+                    ,('d',rsaD rsa)
+                    ,('p',rsaQ rsa) -- Note: p & q swapped
+                    ,('q',rsaP rsa) -- Note: p & q swapped
+                    ,('u',rsaCoefficient rsa)
+                    ]
+            -- , ecc_curve = def
+            , s2k_useage = 0
+            , s2k = S2K 100 ""
+            , symmetric_algorithm = Unencrypted
+            , encrypted_data = ""
+            , is_subkey = True
+            }
+readKeyFromFile is_public fmt filename = error ("unimplemented key type: "++fmt)
+extractPEM typ pem = dta
+ where
+    dta = case ys of
+            _:dta_lines -> Char8.concat dta_lines
+            []          -> ""
+    xs = dropWhile (/="-----BEGIN " <> typ <> "-----") (Char8.lines pem)
+    ys = takeWhile (/="-----END " <> typ <> "-----") xs
+doImport
+  :: Ord k =>
+     (Packet -> IO (KikiCondition Packet))
+     -> Map.Map k KeyData
+     -> ([Char], Maybe [Char], [k], t)
+     -> IO (KikiCondition (Map.Map k KeyData, [(FilePath,KikiReportAction)]))
+doImport doDecrypt db (fname,subspec,ms,_) = do
+    let fetchkey = readKeyFromFile False "PEM" fname
+    flip (maybe $ return CannotImportMasterKey)
+         subspec $ \tag -> do
+    Message parsedkey <- fetchkey
+    flip (maybe $ return $ KikiSuccess (db,[]))
+         (listToMaybe parsedkey) $ \key -> do
+    let (m0,tailms) = splitAt 1 ms
+    if (not (null tailms) || null m0)
+        then return AmbiguousKeySpec
+        else doImportG doDecrypt db m0 tag fname key
 doImportG
  :: Ord k =>
     (Packet -> IO (KikiCondition Packet))

diff --git a/KeyRing.hs b/KeyRing.hs index b738a25..e3d41d8 100644 --- a/KeyRing.hs +++ b/KeyRing.hs
@@ -14,6 +14,7 @@ import Data.Ord
14	import Data.List	14	import Data.List
15	import Data.OpenPGP	15	import Data.OpenPGP
16	import Data.Functor	16	import Data.Functor
		17	import Data.Monoid
17	import Data.Bits ( (.\|.) )	18	import Data.Bits ( (.\|.) )
18	import Control.Applicative ( liftA2, (<$>) )	19	import Control.Applicative ( liftA2, (<$>) )
19	import System.Directory ( getHomeDirectory, doesFileExist )	20	import System.Directory ( getHomeDirectory, doesFileExist )
@@ -27,15 +28,16 @@ import ControlMaybe ( handleIO_ )
27	import Data.ASN1.Types ( toASN1, ASN1Object, fromASN1	28	import Data.ASN1.Types ( toASN1, ASN1Object, fromASN1
28	, ASN1(Start,End,IntVal,OID,BitString), ASN1ConstructionType(Sequence) )	29	, ASN1(Start,End,IntVal,OID,BitString), ASN1ConstructionType(Sequence) )
29	import Data.ASN1.BitArray ( BitArray(..), toBitArray )	30	import Data.ASN1.BitArray ( BitArray(..), toBitArray )
30	import Data.ASN1.Encoding ( encodeASN1, encodeASN1', decodeASN1' )	31	import Data.ASN1.Encoding ( encodeASN1, encodeASN1', decodeASN1, decodeASN1' )
31	import Data.ASN1.BinaryEncoding ( DER(..) )	32	import Data.ASN1.BinaryEncoding ( DER(..) )
32	import Data.Time.Clock.POSIX ( getPOSIXTime )	33	import Data.Time.Clock.POSIX ( getPOSIXTime )
33	import qualified Data.Map as Map	34	import qualified Data.Map as Map
34	import qualified Data.ByteString.Lazy as L ( null, readFile, writeFile, ByteString, toChunks )	35	import qualified Data.ByteString.Lazy as L ( pack, null, readFile, writeFile, ByteString, toChunks )
35	import qualified Data.ByteString as S ( unpack, splitAt, concat, cons )	36	import qualified Data.ByteString as S ( unpack, splitAt, concat, cons )
36	import qualified Data.ByteString.Lazy.Char8 as Char8 ( span, unpack, break )	37	import qualified Data.ByteString.Lazy.Char8 as Char8 ( span, unpack, break, concat, lines )
37	import qualified Crypto.Types.PubKey.ECC as ECC	38	import qualified Crypto.Types.PubKey.ECC as ECC
38	import qualified Codec.Binary.Base32 as Base32	39	import qualified Codec.Binary.Base32 as Base32
		40	import qualified Codec.Binary.Base64 as Base64
39	import qualified Crypto.Hash.SHA1 as SHA1	41	import qualified Crypto.Hash.SHA1 as SHA1
40	import qualified Data.Text as T ( Text, unpack, pack,	42	import qualified Data.Text as T ( Text, unpack, pack,
41	strip, reverse, drop, break, dropAround )	43	strip, reverse, drop, break, dropAround )
@@ -168,12 +170,59 @@ data RSAPrivateKey = RSAPrivateKey
168	}	170	}
169	deriving Show	171	deriving Show
170		172
		173	instance ASN1Object RSAPrivateKey where
		174	toASN1 rsa@(RSAPrivateKey {})
		175	= \xs -> Start Sequence
		176	: IntVal 0
		177	: mpiVal rsaN
		178	: mpiVal rsaE
		179	: mpiVal rsaD
		180	: mpiVal rsaP
		181	: mpiVal rsaQ
		182	: mpiVal rsaDmodP1
		183	: mpiVal rsaDmodQminus1
		184	: mpiVal rsaCoefficient
		185	: End Sequence
		186	: xs
		187	where mpiVal f = IntVal x where MPI x = f rsa
		188
		189	fromASN1 ( Start Sequence
		190	: IntVal _ -- version
		191	: IntVal n
		192	: IntVal e
		193	: IntVal d
		194	: IntVal p
		195	: IntVal q
		196	: IntVal dmodp1
		197	: IntVal dmodqminus1
		198	: IntVal coefficient
		199	: ys) =
		200	Right ( privkey, tail $ dropWhile notend ys)
		201	where
		202	notend (End Sequence) = False
		203	notend _ = True
		204	privkey = RSAPrivateKey
		205	{ rsaN = MPI n
		206	, rsaE = MPI e
		207	, rsaD = MPI d
		208	, rsaP = MPI p
		209	, rsaQ = MPI q
		210	, rsaDmodP1 = MPI dmodp1
		211	, rsaDmodQminus1 = MPI dmodqminus1
		212	, rsaCoefficient = MPI coefficient
		213	}
		214	fromASN1 _ =
		215	Left "fromASN1: RSAPrivateKey: unexpected format"
		216
		217
171		218
172	data KikiCondition a = KikiSuccess a	219	data KikiCondition a = KikiSuccess a
173	\| FailedToLock [FilePath]	220	\| FailedToLock [FilePath]
174	\| BadPassphrase	221	\| BadPassphrase
175	\| FailedToMakeSignature	222	\| FailedToMakeSignature
176	\| CantFindHome	223	\| CantFindHome
		224	\| AmbiguousKeySpec
		225	\| CannotImportMasterKey
177	deriving ( Functor, Show )	226	deriving ( Functor, Show )
178		227
179	instance FunctorToMaybe KikiCondition where	228	instance FunctorToMaybe KikiCondition where
@@ -479,6 +528,10 @@ buildKeyDB secring pubring grip0 keyring = do
479		528
480	db <- foldM importWalletKey (KikiSuccess (db_rings,[])) wallet_keys	529	db <- foldM importWalletKey (KikiSuccess (db_rings,[])) wallet_keys
481	try db $ \(db,report) -> do	530	try db $ \(db,report) -> do
		531
		532	-- todo: import PEMFiles
		533	-- use_db <- foldM (doImport decrypt) use_db0 (map snd imports)
		534
482	return $ KikiSuccess ( (db, grip, wk), report )	535	return $ KikiSuccess ( (db, grip, wk), report )
483		536
484	torhash key = maybe "" id $ derToBase32 <$> derRSA key	537	torhash key = maybe "" id $ derToBase32 <$> derRSA key
@@ -495,6 +548,73 @@ try x body =
495	Left e -> return e	548	Left e -> return e
496	Right x -> body x	549	Right x -> body x
497		550
		551	readKeyFromFile False "PEM" fname = do
		552	-- warn $ fname ++ ": reading ..."
		553	-- Note: The key's timestamp is included in it's fingerprint.
		554	-- Therefore, we should attempt to preserve it.
		555	timestamp <- handleIO_ (error $ fname++": modificaiton time?") $
		556	modificationTime <$> getFileStatus fname
		557	input <- L.readFile fname
		558	let dta = extractPEM "RSA PRIVATE KEY" input
		559	-- Char8.putStrLn $ "dta = " <> dta
		560	let rsa = do
		561	e <- decodeASN1 DER . L.pack <$> Base64.decode (Char8.unpack dta)
		562	asn1 <- either (const Nothing) Just e
		563	k <- either (const Nothing) (Just . fst) (fromASN1 asn1)
		564	let _ = k :: RSAPrivateKey
		565	return k
		566	-- putStrLn $ "rsa = "++ show rsa
		567	return . Message $ do
		568	rsa <- maybeToList rsa
		569	return $ SecretKeyPacket
		570	{ version = 4
		571	, timestamp = toEnum (fromEnum timestamp)
		572	, key_algorithm = RSA
		573	, key = [ -- public fields...
		574	('n',rsaN rsa)
		575	,('e',rsaE rsa)
		576	-- secret fields
		577	,('d',rsaD rsa)
		578	,('p',rsaQ rsa) -- Note: p & q swapped
		579	,('q',rsaP rsa) -- Note: p & q swapped
		580	,('u',rsaCoefficient rsa)
		581	]
		582	-- , ecc_curve = def
		583	, s2k_useage = 0
		584	, s2k = S2K 100 ""
		585	, symmetric_algorithm = Unencrypted
		586	, encrypted_data = ""
		587	, is_subkey = True
		588	}
		589	readKeyFromFile is_public fmt filename = error ("unimplemented key type: "++fmt)
		590
		591	extractPEM typ pem = dta
		592	where
		593	dta = case ys of
		594	_:dta_lines -> Char8.concat dta_lines
		595	[] -> ""
		596	xs = dropWhile (/="-----BEGIN " <> typ <> "-----") (Char8.lines pem)
		597	ys = takeWhile (/="-----END " <> typ <> "-----") xs
		598
		599
		600	doImport
		601	:: Ord k =>
		602	(Packet -> IO (KikiCondition Packet))
		603	-> Map.Map k KeyData
		604	-> ([Char], Maybe [Char], [k], t)
		605	-> IO (KikiCondition (Map.Map k KeyData, [(FilePath,KikiReportAction)]))
		606	doImport doDecrypt db (fname,subspec,ms,_) = do
		607	let fetchkey = readKeyFromFile False "PEM" fname
		608	flip (maybe $ return CannotImportMasterKey)
		609	subspec $ \tag -> do
		610	Message parsedkey <- fetchkey
		611	flip (maybe $ return $ KikiSuccess (db,[]))
		612	(listToMaybe parsedkey) $ \key -> do
		613	let (m0,tailms) = splitAt 1 ms
		614	if (not (null tailms) \|\| null m0)
		615	then return AmbiguousKeySpec
		616	else doImportG doDecrypt db m0 tag fname key
		617
498	doImportG	618	doImportG
499	:: Ord k =>	619	:: Ord k =>
500	(Packet -> IO (KikiCondition Packet))	620	(Packet -> IO (KikiCondition Packet))