summaryrefslogtreecommitdiff
path: root/src/seckey2sshagent
blob: 1266db5b329987af795f1b6ea286a33f27eb5691 (plain) 
    

  1. #!/bin/sh
    2. 

  2. 

  3. # seckey2sshagent: this is a hack of a script to cope with the fact
    4. 

  4. # that openpgp2ssh currently cannot support encrypted secret keys.
    5. 

  5. 

  6. # the basic operating principal is: 
    7. 

  7. 

  8. # export the secret key in encrypted format to a new keyring
    9. 

  9. 

  10. # remove the passphrase in that keyring
    11. 

  11. 

  12. # use that keyring with openpgp2ssh
    13. 

  13. 

  14. # Authors: Daniel Kahn Gillmor <dkg@fifthhorseman.net>,
    15. 

  15. #          Jameson Rollins <jrollins@fifthhorseman.net>
    16. 

  16. 

  17. 

  18. cleanup() {
    19. 

  19.     echo -n "removing temp gpg home... " 1>&2
    20. 

  20.     rm -rf $FOO
    21. 

  21.     echo "done." 1>&2
    22. 

  22. }
    23. 

  23. 

  24. trap cleanup EXIT
    25. 

  25. 

  26. #GPGID="$1"
    27. 

  27. GPGID=$(echo "$1" | cut -c 25-)
    28. 

  28. 

  29. FOO=$(mktemp -d)
    30. 

  30. 

  31. gpg --export-secret-key $GPGID | GNUPGHOME="$FOO" gpg --import
    32. 

  32. 

  33. # idea to script the password stuff.  not working.
    34. 

  34. # read -s -p "enter gpg password: " PASSWD; echo
    35. 

  35. # cmd=$(cat <<EOF
    36. 

  36. # passwd
    37. 

  37. # $PASSWD
    38. 

  38. # \n
    39. 

  39. # \n
    40. 

  40. # \n
    41. 

  41. # yes
    42. 

  42. # save
    43. 

  43. # EOF
    44. 

  44. # )
    45. 

  45. # echo -e "$cmd" | GNUPGHOME="$FOO" gpg --command-fd 0 --edit-key $GPGID
    46. 

  46. 

  47. GNUPGHOME="$FOO" gpg --edit-key $GPGID
    48. 

  48. 

  49. ln -s /dev/stdin "$FOO"/openpgp
    50. 

  50. 

  51. GNUPGHOME="$FOO" gpg --export-secret-key $GPGID | \
    52. 

  52.     openpgp2ssh $GPGID | ssh-add -c "$FOO"/openpgp
    53.
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-28 11:16:59 +0000