1 files changed, 189 insertions, 10 deletions
diff --git a/keys.hs b/keys.hs
index db17cf4..a32a3dd 100644
--- a/keys.hs
+++ b/keys.hs
@@ -25,6 +25,16 @@ import qualified Crypto.PubKey.RSA as RSA
 import Data.ASN1.Types
 import Data.ASN1.Encoding
 import Data.ASN1.BinaryEncoding
+import System.Console.CmdTheLine as CmdTheLine
+import System.Console.CmdTheLine.GetOpt
+import System.Console.GetOpt
+import Control.Applicative
+import System.Environment
+import System.Directory
+import System.Exit
+import ControlMaybe
+import Data.Char
+import Control.Arrow (second)
 data RSAPublicKey = RSAKey MPI MPI
@@ -44,8 +54,11 @@ rsaKeyFromPacket p@(PublicKeyPacket {}) = do
    n <- lookup 'n' $ key p
    e <- lookup 'e' $ key p
    return $ RSAKey n e
+rsaKeyFromPacket p@(SecretKeyPacket {}) = do
+    n <- lookup 'n' $ key p
+    e <- lookup 'e' $ key p
+    return $ RSAKey n e
 rsaKeyFromPacket _ = Nothing
 derRSA rsa = do
    k <- rsaKeyFromPacket rsa
    return $ encodeASN1 DER (toASN1 k [])
@@ -213,7 +226,7 @@ listKeys pkts = do
        kinds = map (\(_,_,k,h,_)->defaultkind k h) as
        kindwidth = maximum $ map length kinds
        kindcol = min 20 kindwidth
-        code (c,_,_,_,_) = -c
+        code (c,(m,s),_,_,_) = (fingerprint_material m,-c)
        ownerkey (_,(a,_),_,_,_) = a
        sameMaster (ownerkey->a) (ownerkey->b) = fingerprint_material a==fingerprint_material b
        gs = groupBy sameMaster (sortBy (comparing code) as)
@@ -227,15 +240,21 @@ listKeys pkts = do
                        2 -> " <-- "
                        3 -> " <-> "
                formkind = take kindcol $ defaultkind kind hashed ++ repeat ' '
-            " " {- ++grip top -} 
+                -- torhash = maybe "" id $ derToBase32 <$> derRSA sub
-                ++ ar ++ formkind ++" "++ fingerprint sub ++ "\n"
+            concat  [ " "
+                    -- , grip top
+                    , ar
+                    , formkind 
+                    , " "
+                    , fingerprint sub 
+                    -- , " " ++ torhash
+                    , "\n" ]
                -- ++ ppShow hashed
        torkeys = do
            (code,(top,sub), kind, hashed,claimants) <- subs
            guard ("tor" `elem` kind)
            guard (code .&. 0x2 /= 0)
-            der <- maybeToList $ derRSA sub
+            maybeToList $ derToBase32 <$> derRSA sub
-            return $ derToBase32 der
        uid = {- maybe "" id . listToMaybe $ -} do
            (keys,sigs) <- certs
            sig <- sigs
@@ -257,7 +276,7 @@ listKeys pkts = do
                        listToMaybe $ filter match torkeys
            " " ++ ar ++ "@" ++ " " ++ uid_full parsed ++ "\n"
        (_,sigs) = unzip certs
-    "master-key " ++ fingerprint top ++ "\n" ++ uid ++ subkeys ++ "\n"
+    "master-key " ++ fingerprint top ++ "\n" ++ uid ++"  ...\n" ++ subkeys ++ "\n"
    
 data PGPKeyFlags =
@@ -307,7 +326,7 @@ keyflags flgs@(KeyFlagsPacket {}) =
        .|. bit 0x8 encrypt_storage )     :: Maybe PGPKeyFlags
    -- other flags:
    --  split_key
-    --  authentication
+    --  authentication (ssh-client)
    --  group_key
 where
    bit v f = if f flgs then v else 0
@@ -322,7 +341,167 @@ modifyUID (UserIDPacket str) = UserIDPacket str'
    mod x     = x
 modifyUID other              = other
+todo = error "unimplemented"
+-- TODO: switch to System.Environment.lookupEnv
+--       when linking against newer base libraries.
+lookupEnv var = 
+    handleIO_ (return Nothing) $ fmap Just (getEnv var)
+homedir :: Term (IO String)
+homedir = envhomedir <$> opt_homedir
+ where
+    envhomedir opt = do
+        gnupghome <- lookupEnv "GNUPGHOME" >>=
+                  \d -> return $ d >>= guard . (/="") >> d
+        home <- lookupEnv "HOME" >>=
+                  \d -> return $ d >>= guard . (/="") >> d
+        {-
+        home <- flip fmap getHomeDirectory $
+                  \d -> fmap (const d) $ guard (d/="")
+        -}
+        let homegnupg = (++"/.gnupg") <$> home
+        return $ maybe "" id (opt `mplus` gnupghome `mplus` homegnupg)
+opt_homedir = optDescrToTerm $ Option
+                    "" ["homedir"]
+                    (ReqArg id "dir")
+                    (concat
+                        [ "path to pubring.gpg"
+                        , " and secring.gpg"
+                        , " (default = ${GNUPGHOME:-$HOME/.gnupg})" ])
+opt_options =  optDescrToTerm $ Option
+                "" ["options"]
+                (ReqArg id "file")
+                $ concat
+                    [ "Read options from file and do not try to read"
+                    , " them from the default options file in the"
+                    , " homedir (see --homedir). This option is"
+                    , " ignored if used in an options file."
+                    , " The default options file is the first existing"
+                    , " out of keys.conf, gpg.conf-2, and gpg.conf."]
+opt_default_key = optDescrToTerm $ Option
+                "" ["default-key"]
+                (ReqArg id "name")
+                $ concat
+                    [ "Use name as the default key to sign with. If"
+                    , " this option is not used, the default key is"
+                    , " the first key found in the secret keyring."]
+opt_list_secret_keys = optDescrToTerm $ Option
+                "K" ["list-secret-keys"]
+                (NoArg ())
+                $ concat
+                    [ "List all keys from the secret keyrings." ]
+unmaybe def = fmap (maybe def id)
+opt_secret_keyring = expandPath <$> unmaybe "" opt_homedir <*> prim
+ where
+    prim = unmaybe "secring.gpg" . optDescrToTerm $ Option
+                "" ["secret-keyring"]
+                (ReqArg id "file")
+                $ concat
+                    [ "Utilize secret keys in the specified file."
+                    , "(default: secring.gpg)" ]
+expandPath path (c:cs) | c/='/'    = path ++ "/" ++ (c:cs)
+                       | otherwise = c:cs
+expandPath path []                 = []
+secret_packets :: Term (IO Message)
+secret_packets = readPacketsFromFile <$> opt_secret_keyring
+readPacketsFromFile :: FilePath -> IO Message
+readPacketsFromFile fname = do
+    input <- L.readFile fname
+    return $
+      case decodeOrFail input of
+        Right (_,_,msg ) -> msg
+        Left  (_,_,_)    -> Message []
+parseOptionFile fname = do
+    xs <- fmap lines (readFile fname)
+    let ys = filter notComment xs
+        notComment ('#':_) = False
+        notComment cs      = not (all isSpace cs)
+    return ys
+options_from_file :: Term a -> (String,String,Term (Maybe String)) -> ([String],Term (Maybe String)) -> IO [String]
+options_from_file term (homevar,appdir,home) (optfile_alts,options_file) = doit
+ where
+    homedir = envhomedir <$> home
+    envhomedir opt = do
+        gnupghome <- lookupEnv homevar >>=
+                  \d -> return $ d >>= guard . (/="") >> d
+        home <- flip fmap getHomeDirectory $
+                  \d -> fmap (const d) $ guard (d/="")
+        let homegnupg = (++('/':appdir)) <$> home
+        return $ (opt `mplus` gnupghome `mplus` homegnupg)
+    doit = do
+        args <- getArgs
+        let wants_help = 
+                not . null $ filter cryForHelp args
+                        where cryForHelp "--help"    = True
+                              cryForHelp "--version" = True
+                              cryForHelp x = 
+                                and (zipWith (==) x "--help=")
+        (o,h) <- do
+            val <- unwrap args (liftA2 (,) options_file homedir, defTI)
+            case val of
+                _ | wants_help -> return (Nothing,Nothing)
+                {-
+                Left e         -> putStrLn ("Unable to find home directory ")
+                                  >> exitFailure
+                -}
+                Left e -> return (Nothing,Nothing)
+                Right (o,h)    -> fmap (o,) h
+        ofile <- fmap listToMaybe . flip (maybe (return [])) h $ \h -> 
+                let optfiles = map (second ((h++"/")++)) 
+                                   (maybe optfile_alts' (:[]) o')
+                    optfile_alts' = zip (False:repeat True) optfile_alts
+                    o' = fmap (False,) o
+                in filterM (doesFileExist . snd) optfiles
+        args <- flip (maybe $ return args) ofile $ \(forgive,fname) -> do
+            let h' = fromJust h
+            newargs <- (:) <$> pure ("homedir "++h') <*> parseOptionFile fname
+            let toArgs = toHead ("--"++) . words
+                toHead f (x:xs) = f x : xs
+                toHead f []     = []
+                voidTerm = fmap (const ())
+                appendArgs as [] = return as
+                appendArgs as (configline:cs) = do
+                    let xs = toArgs configline
+                    w <-unwrap (xs++as) (voidTerm term,defTI)
+                    case w of
+                        Left  _ -> appendArgs as cs
+                        Right _ -> appendArgs (xs++as) cs
+            -- TODO: check errors if forgive = False
+            appendArgs args newargs
+        return args
+runWithOptionsFile (term,ti) = do
+    as <- options_from_file term
+                            ("GNUPGHOME",".gnupg",opt_homedir)
+                            (["keys.conf","gpg.conf-2","gpg.conf"]
+                            ,opt_options)
+    q <- eval as (term , ti)
+    q
 main = do
-    pkts <- getPackets
+    q <- runWithOptionsFile (listSecretKeys, defTI { termName = "keys", CmdTheLine.version = "0.1" })
-    putStrLn $ listKeys pkts -- (map modifyUID pkts)
    return ()
+ where
+    -- showhome =  flip const <$> opt_options <*> ( (>>= putStrLn) <$> homedir )
+    showhome =  opt_default_key <:> opt_options <:> ( (>>= putStrLn) <$> homedir )
+    a <:> b = flip const <$> a <*> b
+    infixr 2 <:>
+    listSecretKeys = opt_options <:> (>>= list) <$> secret_packets
+    list (Message pkts) = putStrLn $ listKeys pkts

diff --git a/keys.hs b/keys.hs index db17cf4..a32a3dd 100644 --- a/keys.hs +++ b/keys.hs
@@ -25,6 +25,16 @@ import qualified Crypto.PubKey.RSA as RSA
25	import Data.ASN1.Types	25	import Data.ASN1.Types
26	import Data.ASN1.Encoding	26	import Data.ASN1.Encoding
27	import Data.ASN1.BinaryEncoding	27	import Data.ASN1.BinaryEncoding
		28	import System.Console.CmdTheLine as CmdTheLine
		29	import System.Console.CmdTheLine.GetOpt
		30	import System.Console.GetOpt
		31	import Control.Applicative
		32	import System.Environment
		33	import System.Directory
		34	import System.Exit
		35	import ControlMaybe
		36	import Data.Char
		37	import Control.Arrow (second)
28		38
29	data RSAPublicKey = RSAKey MPI MPI	39	data RSAPublicKey = RSAKey MPI MPI
30		40
@@ -44,8 +54,11 @@ rsaKeyFromPacket p@(PublicKeyPacket {}) = do
44	n <- lookup 'n' $ key p	54	n <- lookup 'n' $ key p
45	e <- lookup 'e' $ key p	55	e <- lookup 'e' $ key p
46	return $ RSAKey n e	56	return $ RSAKey n e
		57	rsaKeyFromPacket p@(SecretKeyPacket {}) = do
		58	n <- lookup 'n' $ key p
		59	e <- lookup 'e' $ key p
		60	return $ RSAKey n e
47	rsaKeyFromPacket _ = Nothing	61	rsaKeyFromPacket _ = Nothing
48
49	derRSA rsa = do	62	derRSA rsa = do
50	k <- rsaKeyFromPacket rsa	63	k <- rsaKeyFromPacket rsa
51	return $ encodeASN1 DER (toASN1 k [])	64	return $ encodeASN1 DER (toASN1 k [])
@@ -213,7 +226,7 @@ listKeys pkts = do
213	kinds = map (\(_,_,k,h,_)->defaultkind k h) as	226	kinds = map (\(_,_,k,h,_)->defaultkind k h) as
214	kindwidth = maximum $ map length kinds	227	kindwidth = maximum $ map length kinds
215	kindcol = min 20 kindwidth	228	kindcol = min 20 kindwidth
216	code (c,_,_,_,_) = -c	229	code (c,(m,s),_,_,_) = (fingerprint_material m,-c)
217	ownerkey (_,(a,_),_,_,_) = a	230	ownerkey (_,(a,_),_,_,_) = a
218	sameMaster (ownerkey->a) (ownerkey->b) = fingerprint_material a==fingerprint_material b	231	sameMaster (ownerkey->a) (ownerkey->b) = fingerprint_material a==fingerprint_material b
219	gs = groupBy sameMaster (sortBy (comparing code) as)	232	gs = groupBy sameMaster (sortBy (comparing code) as)
@@ -227,15 +240,21 @@ listKeys pkts = do
227	2 -> " <-- "	240	2 -> " <-- "
228	3 -> " <-> "	241	3 -> " <-> "
229	formkind = take kindcol $ defaultkind kind hashed ++ repeat ' '	242	formkind = take kindcol $ defaultkind kind hashed ++ repeat ' '
230	" " {- ++grip top -}	243	-- torhash = maybe "" id $ derToBase32 <$> derRSA sub
231	++ ar ++ formkind ++" "++ fingerprint sub ++ "\n"	244	concat [ " "
		245	-- , grip top
		246	, ar
		247	, formkind
		248	, " "
		249	, fingerprint sub
		250	-- , " " ++ torhash
		251	, "\n" ]
232	-- ++ ppShow hashed	252	-- ++ ppShow hashed
233	torkeys = do	253	torkeys = do
234	(code,(top,sub), kind, hashed,claimants) <- subs	254	(code,(top,sub), kind, hashed,claimants) <- subs
235	guard ("tor" `elem` kind)	255	guard ("tor" `elem` kind)
236	guard (code .&. 0x2 /= 0)	256	guard (code .&. 0x2 /= 0)
237	der <- maybeToList $ derRSA sub	257	maybeToList $ derToBase32 <$> derRSA sub
238	return $ derToBase32 der
239	uid = {- maybe "" id . listToMaybe $ -} do	258	uid = {- maybe "" id . listToMaybe $ -} do
240	(keys,sigs) <- certs	259	(keys,sigs) <- certs
241	sig <- sigs	260	sig <- sigs
@@ -257,7 +276,7 @@ listKeys pkts = do
257	listToMaybe $ filter match torkeys	276	listToMaybe $ filter match torkeys
258	" " ++ ar ++ "@" ++ " " ++ uid_full parsed ++ "\n"	277	" " ++ ar ++ "@" ++ " " ++ uid_full parsed ++ "\n"
259	(_,sigs) = unzip certs	278	(_,sigs) = unzip certs
260	"master-key " ++ fingerprint top ++ "\n" ++ uid ++ subkeys ++ "\n"	279	"master-key " ++ fingerprint top ++ "\n" ++ uid ++" ...\n" ++ subkeys ++ "\n"
261		280
262		281
263	data PGPKeyFlags =	282	data PGPKeyFlags =
@@ -307,7 +326,7 @@ keyflags flgs@(KeyFlagsPacket {}) =
307	.\|. bit 0x8 encrypt_storage ) :: Maybe PGPKeyFlags	326	.\|. bit 0x8 encrypt_storage ) :: Maybe PGPKeyFlags
308	-- other flags:	327	-- other flags:
309	-- split_key	328	-- split_key
310	-- authentication	329	-- authentication (ssh-client)
311	-- group_key	330	-- group_key
312	where	331	where
313	bit v f = if f flgs then v else 0	332	bit v f = if f flgs then v else 0
@@ -322,7 +341,167 @@ modifyUID (UserIDPacket str) = UserIDPacket str'
322	mod x = x	341	mod x = x
323	modifyUID other = other	342	modifyUID other = other
324		343
		344	todo = error "unimplemented"
		345
		346	-- TODO: switch to System.Environment.lookupEnv
		347	-- when linking against newer base libraries.
		348	lookupEnv var =
		349	handleIO_ (return Nothing) $ fmap Just (getEnv var)
		350
		351	homedir :: Term (IO String)
		352	homedir = envhomedir <$> opt_homedir
		353	where
		354	envhomedir opt = do
		355	gnupghome <- lookupEnv "GNUPGHOME" >>=
		356	\d -> return $ d >>= guard . (/="") >> d
		357	home <- lookupEnv "HOME" >>=
		358	\d -> return $ d >>= guard . (/="") >> d
		359	{-
		360	home <- flip fmap getHomeDirectory $
		361	\d -> fmap (const d) $ guard (d/="")
		362	-}
		363	let homegnupg = (++"/.gnupg") <$> home
		364	return $ maybe "" id (opt `mplus` gnupghome `mplus` homegnupg)
		365
		366	opt_homedir = optDescrToTerm $ Option
		367	"" ["homedir"]
		368	(ReqArg id "dir")
		369	(concat
		370	[ "path to pubring.gpg"
		371	, " and secring.gpg"
		372	, " (default = ${GNUPGHOME:-$HOME/.gnupg})" ])
		373
		374	opt_options = optDescrToTerm $ Option
		375	"" ["options"]
		376	(ReqArg id "file")
		377	$ concat
		378	[ "Read options from file and do not try to read"
		379	, " them from the default options file in the"
		380	, " homedir (see --homedir). This option is"
		381	, " ignored if used in an options file."
		382	, " The default options file is the first existing"
		383	, " out of keys.conf, gpg.conf-2, and gpg.conf."]
		384
		385	opt_default_key = optDescrToTerm $ Option
		386	"" ["default-key"]
		387	(ReqArg id "name")
		388	$ concat
		389	[ "Use name as the default key to sign with. If"
		390	, " this option is not used, the default key is"
		391	, " the first key found in the secret keyring."]
		392
		393	opt_list_secret_keys = optDescrToTerm $ Option
		394	"K" ["list-secret-keys"]
		395	(NoArg ())
		396	$ concat
		397	[ "List all keys from the secret keyrings." ]
		398
		399
		400	unmaybe def = fmap (maybe def id)
		401
		402	opt_secret_keyring = expandPath <$> unmaybe "" opt_homedir <*> prim
		403	where
		404	prim = unmaybe "secring.gpg" . optDescrToTerm $ Option
		405	"" ["secret-keyring"]
		406	(ReqArg id "file")
		407	$ concat
		408	[ "Utilize secret keys in the specified file."
		409	, "(default: secring.gpg)" ]
		410
		411	expandPath path (c:cs) \| c/='/' = path ++ "/" ++ (c:cs)
		412	\| otherwise = c:cs
		413	expandPath path [] = []
		414
		415	secret_packets :: Term (IO Message)
		416	secret_packets = readPacketsFromFile <$> opt_secret_keyring
		417
		418	readPacketsFromFile :: FilePath -> IO Message
		419	readPacketsFromFile fname = do
		420	input <- L.readFile fname
		421	return $
		422	case decodeOrFail input of
		423	Right (_,_,msg ) -> msg
		424	Left (_,_,_) -> Message []
		425
		426
		427	parseOptionFile fname = do
		428	xs <- fmap lines (readFile fname)
		429	let ys = filter notComment xs
		430	notComment ('#':_) = False
		431	notComment cs = not (all isSpace cs)
		432	return ys
		433
		434	options_from_file :: Term a -> (String,String,Term (Maybe String)) -> ([String],Term (Maybe String)) -> IO [String]
		435	options_from_file term (homevar,appdir,home) (optfile_alts,options_file) = doit
		436	where
		437	homedir = envhomedir <$> home
		438	envhomedir opt = do
		439	gnupghome <- lookupEnv homevar >>=
		440	\d -> return $ d >>= guard . (/="") >> d
		441	home <- flip fmap getHomeDirectory $
		442	\d -> fmap (const d) $ guard (d/="")
		443	let homegnupg = (++('/':appdir)) <$> home
		444	return $ (opt `mplus` gnupghome `mplus` homegnupg)
		445
		446	doit = do
		447	args <- getArgs
		448	let wants_help =
		449	not . null $ filter cryForHelp args
		450	where cryForHelp "--help" = True
		451	cryForHelp "--version" = True
		452	cryForHelp x =
		453	and (zipWith (==) x "--help=")
		454	(o,h) <- do
		455	val <- unwrap args (liftA2 (,) options_file homedir, defTI)
		456	case val of
		457	_ \| wants_help -> return (Nothing,Nothing)
		458	{-
		459	Left e -> putStrLn ("Unable to find home directory ")
		460	>> exitFailure
		461	-}
		462	Left e -> return (Nothing,Nothing)
		463	Right (o,h) -> fmap (o,) h
		464	ofile <- fmap listToMaybe . flip (maybe (return [])) h $ \h ->
		465	let optfiles = map (second ((h++"/")++))
		466	(maybe optfile_alts' (:[]) o')
		467	optfile_alts' = zip (False:repeat True) optfile_alts
		468	o' = fmap (False,) o
		469	in filterM (doesFileExist . snd) optfiles
		470	args <- flip (maybe $ return args) ofile $ \(forgive,fname) -> do
		471	let h' = fromJust h
		472	newargs <- (:) <$> pure ("homedir "++h') <*> parseOptionFile fname
		473	let toArgs = toHead ("--"++) . words
		474	toHead f (x:xs) = f x : xs
		475	toHead f [] = []
		476	voidTerm = fmap (const ())
		477	appendArgs as [] = return as
		478	appendArgs as (configline:cs) = do
		479	let xs = toArgs configline
		480	w <-unwrap (xs++as) (voidTerm term,defTI)
		481	case w of
		482	Left _ -> appendArgs as cs
		483	Right _ -> appendArgs (xs++as) cs
		484	-- TODO: check errors if forgive = False
		485	appendArgs args newargs
		486	return args
		487
		488	runWithOptionsFile (term,ti) = do
		489	as <- options_from_file term
		490	("GNUPGHOME",".gnupg",opt_homedir)
		491	(["keys.conf","gpg.conf-2","gpg.conf"]
		492	,opt_options)
		493	q <- eval as (term , ti)
		494	q
		495
325	main = do	496	main = do
326	pkts <- getPackets	497	q <- runWithOptionsFile (listSecretKeys, defTI { termName = "keys", CmdTheLine.version = "0.1" })
327	putStrLn $ listKeys pkts -- (map modifyUID pkts)
328	return ()	498	return ()
		499	where
		500	-- showhome = flip const <$> opt_options <*> ( (>>= putStrLn) <$> homedir )
		501	showhome = opt_default_key <:> opt_options <:> ( (>>= putStrLn) <$> homedir )
		502	a <:> b = flip const <$> a <*> b
		503	infixr 2 <:>
		504
		505	listSecretKeys = opt_options <:> (>>= list) <$> secret_packets
		506
		507	list (Message pkts) = putStrLn $ listKeys pkts