Llewellyn/Tomb
1
0
Fork 0
mirror of https://github.com/Llewellynvdm/Tomb.git synced 2024-11-22 20:45:13 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add GPG default key support for key encryption

Browse Source 
If the option -r is not set, use the gpg default key to encrypt
a tomb key
This commit is contained in:
Alexandre Pujol 2017-03-03 20:36:50 +00:00
parent 0644ebe951
commit 6352a1d417
No known key found for this signature in database
GPG Key ID: C5469996F0DF68EC
2 changed files with 44 additions and 22 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
extras/test/runtests
View File

@ -59,7 +59,7 @@ typeset -A results
tests=(dig forge lock badpass open close passwd chksum bind setkey recip-dig tests=(dig forge lock badpass open close passwd chksum bind setkey recip-dig
recip-forge recip-lock recip-open recip-close recip-passwd recip-resize recip-forge recip-lock recip-open recip-close recip-passwd recip-resize
recip-setkey shared shared-passwd shared-setkey) recip-setkey shared shared-passwd shared-setkey recip-default)
{ test $RESIZER = 1 } && { tests+=(resize) } { test $RESIZER = 1 } && { tests+=(resize) }
{ test $KDF = 1 } && { tests+=(kdforge kdfpass kdflock kdfopen) } { test $KDF = 1 } && { tests+=(kdforge kdfpass kdflock kdfopen) }
@ -193,6 +193,23 @@ test-tomb-recip() {
tt close recip tt close recip
} }
test-tomb-default() {
notice "wiping all default.tomb* in /tmp"
rm -f /tmp/default.tomb /tmp/default.tomb.key
notice "Testing tomb with the default recipient"
res=0
tt dig -s 20 /tmp/default.tomb
{ test $? = 0 } || { res=1 }
tt forge /tmp/default.tomb.key -g --ignore-swap --unsafe --use-urandom
{ test $? = 0 } || { res=1 }
tt lock /tmp/default.tomb -k /tmp/default.tomb.key \
--ignore-swap --unsafe -g
{ test $? = 0 } || { res=1 }
{ test $res = 0 } && { results+=(recip-default SUCCESS) }
}
test-tomb-shared() { test-tomb-shared() {
notice "wiping all shared.tomb* in /tmp" notice "wiping all shared.tomb* in /tmp"
@ -364,6 +381,7 @@ startloops=(`sudo losetup -a |cut -d: -f1`)
# isolated function (also called with source) # isolated function (also called with source)
test-tomb-create test-tomb-create
test-tomb-recip test-tomb-recip
test-tomb-default
test-tomb-shared test-tomb-shared
notice "Testing open with wrong password" notice "Testing open with wrong password"

12
tomb
View File

@ -1236,10 +1236,9 @@ gen_key() {
tombpasstmp="" tombpasstmp=""
{ option_is_set -g } && { { option_is_set -g } && {
{ option_is_set -r } || { gpgopt=(--encrypt)
_failure "A GPG recipient needs to be specified using -r."
}
{ option_is_set -r } && {
typeset -a recipients typeset -a recipients
recipients=(${(s:,:)$(option_value -r)}) recipients=(${(s:,:)$(option_value -r)})
[ "${#recipients}" -gt 1 ] && { [ "${#recipients}" -gt 1 ] && {
@ -1259,9 +1258,14 @@ gen_key() {
_failure "You set an invalid GPG ID." _failure "You set an invalid GPG ID."
} }
gpgopt+=(`_recipients_arg "--hidden-recipient" $recipients`)
} || {
_message "No recipient specified, using default GPG key."
gpgopt+=("--default-recipient-self")
}
# Set gpg inputs and options # Set gpg inputs and options
gpgpass="$TOMBSECRET" gpgpass="$TOMBSECRET"
gpgopt=(--encrypt `_recipients_arg "--hidden-recipient" $recipients`)
opt='' opt=''
} || { } || {
if [ "$1" = "" ]; then if [ "$1" = "" ]; then