diff options
Diffstat (limited to 'lib/Kiki.hs')
| -rw-r--r-- | lib/Kiki.hs | 29 |
1 files changed, 27 insertions, 2 deletions
diff --git a/lib/Kiki.hs b/lib/Kiki.hs index 70d5ed6..d5b3457 100644 --- a/lib/Kiki.hs +++ b/lib/Kiki.hs | |||
| @@ -199,7 +199,6 @@ importAndRefresh root cmn cipher = do | |||
| 199 | return $ PassphraseSpec Nothing Nothing pfd | 199 | return $ PassphraseSpec Nothing Nothing pfd |
| 200 | passwordop = KeyRingOperation | 200 | passwordop = KeyRingOperation |
| 201 | { opFiles = Map.empty | 201 | { opFiles = Map.empty |
| 202 | -- TODO: ask agent for new passphrase | ||
| 203 | , opPassphrases = main_passwds | 202 | , opPassphrases = main_passwds |
| 204 | , opHome = homespec | 203 | , opHome = homespec |
| 205 | , opTransforms = [] | 204 | , opTransforms = [] |
| @@ -390,7 +389,30 @@ refreshCache rt rootdir = do | |||
| 390 | wkkd = rtKeyDB rt Map.! keykey wk | 389 | wkkd = rtKeyDB rt Map.! keykey wk |
| 391 | getSecret tag = sortOn (Down . timestamp) | 390 | getSecret tag = sortOn (Down . timestamp) |
| 392 | $ getSubkeys Unsigned wk (keySubKeys wkkd) tag | 391 | $ getSubkeys Unsigned wk (keySubKeys wkkd) tag |
| 393 | 392 | exportOp = withOutgoing $ minimalOp (CommonArgsParsed (Just $ takeDirectory $ rtPubring rt) | |
| 393 | Nothing) | ||
| 394 | where | ||
| 395 | withOutgoing op = op | ||
| 396 | { opFiles = opFiles op `Map.union` Map.fromList outgoing_secrets | ||
| 397 | , opPassphrases = [PassphraseMemoizer (rtPassphrases rt)] | ||
| 398 | } | ||
| 399 | outgoing_secrets = | ||
| 400 | [ send "ipsec" (mkpath "ipsec.d/private/" ++ Char8.unpack oname++".pem") "missing ipsec key?" | ||
| 401 | , send "ssh-client" (mkpath "root/.ssh/id_rsa") "missing ssh-client key?" | ||
| 402 | , send "ssh-server" (mkpath "ssh_host_rsa_key") "missing ssh host key?" | ||
| 403 | , send "tor" (mkpath "tor/private_key") "missing tor key?" | ||
| 404 | ] | ||
| 405 | send usage path warning = | ||
| 406 | ( ArgFile path, StreamInfo { typ = PEMFile | ||
| 407 | , fill = KF_Match usage | ||
| 408 | , spill = KF_None | ||
| 409 | , access = Sec | ||
| 410 | , initializer = WarnMissing warning | ||
| 411 | , transforms = [] | ||
| 412 | }) | ||
| 413 | KikiResult rt' report <- runKeyRing exportOp | ||
| 414 | |||
| 415 | {- | ||
| 394 | let writeSecret tag path warning = do | 416 | let writeSecret tag path warning = do |
| 395 | let my_ks :: [Packet] | 417 | let my_ks :: [Packet] |
| 396 | my_ks = getSecret tag | 418 | my_ks = getSecret tag |
| @@ -425,6 +447,7 @@ refreshCache rt rootdir = do | |||
| 425 | writeSecret "tor" | 447 | writeSecret "tor" |
| 426 | (mkpath "tor/private_key") | 448 | (mkpath "tor/private_key") |
| 427 | "missing tor key?" | 449 | "missing tor key?" |
| 450 | -} | ||
| 428 | 451 | ||
| 429 | -- Finally, export public keys if they do not exist. | 452 | -- Finally, export public keys if they do not exist. |
| 430 | either warn (write $ mkpath "root/.ssh/id_rsa.pub") | 453 | either warn (write $ mkpath "root/.ssh/id_rsa.pub") |
| @@ -561,6 +584,7 @@ sshblobFromPacket k = blob | |||
| 561 | bs = SSH.keyblob (n,e) | 584 | bs = SSH.keyblob (n,e) |
| 562 | blob = Char8.unpack bs | 585 | blob = Char8.unpack bs |
| 563 | 586 | ||
| 587 | {- | ||
| 564 | replaceSshServerKeys root cmn = do | 588 | replaceSshServerKeys root cmn = do |
| 565 | let homepass' = cmn { cap_homespec = fmap root (cap_homespec cmn) } | 589 | let homepass' = cmn { cap_homespec = fmap root (cap_homespec cmn) } |
| 566 | replaceSSH op = op { opFiles = files } | 590 | replaceSSH op = op { opFiles = files } |
| @@ -578,6 +602,7 @@ replaceSshServerKeys root cmn = do | |||
| 578 | "" -> Nothing | 602 | "" -> Nothing |
| 579 | pth -> Just pth | 603 | pth -> Just pth |
| 580 | err -> hPutStrLn stderr $ errorString err | 604 | err -> hPutStrLn stderr $ errorString err |
| 605 | -} | ||
| 581 | 606 | ||
| 582 | slash :: String -> String -> String | 607 | slash :: String -> String -> String |
| 583 | slash "/" ('/':xs) = '/':xs | 608 | slash "/" ('/':xs) = '/':xs |