blob: 6104a70e37ec14360dcc1c10b8f6f08b19bbd343 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
|
#! /usr/bin/guile -s
!#
;; Based on https://gist.github.com/sardemff7/759cbf956bea20d382a6128c641d2746
(use-modules
(ice-9 popen)
(ice-9 textual-ports)
(srfi srfi-9) ;; For records
(ice-9 format)
(ice-9 regex))
(define-record-type <pinentry>
(make-pinentry ok prompt desc visibility)
pinentry?
(ok pinentry-ok set-pinentry-ok!)
(prompt pinentry-prompt set-pinentry-prompt!)
(desc pinentry-desc set-pinentry-desc!)
(visibility pinentry-visibility set-pinentry-visibility!))
(define-syntax-rule (set-and-return! val expr)
"Set val to expr and return val"
(begin (set! val expr) val))
(define (pinentry-option pinentry line)
"Process line if it starts with OPTION.
Return false otherwise.
Known options are:
grab
ttyname=/dev/pts/1
ttytype=tmux-256color
lc-messages=C
allow-external-password-cache
default-ok=_OK
default-cancel=_Cancel
default-yes=_Yes
default-no=_No
default-prompt=PIN:
default-pwmngr=_Save in password manager
default-cf-visi=Do you really want to make your passphrase visible on the screen?
default-tt-visi=Make passphrase visible
default-tt-hide=Hide passphrase
touch-file=/run/user/1000/gnupg/S.gpg-agent"
(let ((option-re (make-regexp "^OPTION (.+)$")))
(regexp-exec option-re line)))
(define (pinentry-getinfo pinentry line)
"Process line if it starts with GETINFO"
(let ((getinfo-re (make-regexp "^GETINFO (.+)$"))
(regex-match #f))
(when (set-and-return! regex-match (regexp-exec getinfo-re line))
(let ((info (match:substring regex-match 1)))
(cond
((string=? info "pid")
(format #t "D ~a\n" (getpid))))))
regex-match))
(define (pinentry-setkeyinfo pinentry line)
"SETKEYINFO s/FINGERPRINT"
(let ((setkeyinfo-re (make-regexp "^SETKEYINFO (.+)$")))
(regexp-exec setkeyinfo-re line)))
(define (pinentry-setdesc pinentry line)
"SETDESC Please enter the passphrase for the ssh key%0A ke:yf:in:ge:rp:ri:nt"
(let ((setdesc-re (make-regexp "^SETDESC (.+)$"))
(regex-match #f))
(when (set-and-return! regex-match (regexp-exec setdesc-re line))
(set-pinentry-desc! pinentry (match:substring regex-match 1)))
regex-match))
(define (pinentry-setprompt pinentry line)
"SETPROMPT Passphrase:"
(let ((setprompt-re (make-regexp "^SETPROMPT (.+)$"))
(regex-match #f))
(when (set-and-return! regex-match (regexp-exec setprompt-re line))
(set-pinentry-prompt! pinentry (match:substring regex-match 1)))
regex-match))
(define (pinentry-getpin pinentry line)
(let ((rofi "rofi -dmenu -input /dev/null -disable-history -lines 1 ~a -p ~s ~a ~s")
(getpin-re (make-regexp "^GETPIN$"))
(regex-match #f))
(when (set-and-return! regex-match (regexp-exec getpin-re line))
(let* ((rofi-cmd (format #f rofi
(if (pinentry-visibility pinentry) "" "-password")
(pinentry-prompt pinentry)
(if (equal? (pinentry-desc pinentry) "") "" "-mesg")
(pinentry-desc pinentry)))
(pipe (open-input-pipe rofi-cmd))
(pass (get-string-all pipe)))
(format #t "D ~a" pass))
;; (set-pinentry-ok! pinentry #f)
)
regex-match))
(define (pinentry-bye pinentry line)
(let ((bye-re (make-regexp "^BYE"))
(regex-match #f))
(when (set-and-return! regex-match (regexp-exec bye-re line))
(exit #t))
regex-match))
(define (pinentry-loop pinentry input-port)
(let ((line (get-line input-port)))
(unless (eof-object? line)
(cond
((pinentry-option pinentry line))
((pinentry-getinfo pinentry line))
((pinentry-setkeyinfo pinentry line))
((pinentry-setdesc pinentry line))
((pinentry-setprompt pinentry line))
((pinentry-getpin pinentry line))
((pinentry-bye pinentry line))
(#t (begin (format #t "BYE\n") (exit #f))))
(pinentry-loop pinentry input-port))))
(display "OK Please go ahead\n")
(let ((pinentry (make-pinentry #t "Passphrase:" "" #f)))
(pinentry-loop pinentry (current-input-port))
(when (pinentry-ok pinentry) (display "OK\n")))
|
