path: root/keysafe.hs

{-# LANGUAGE OverloadedStrings #-}

{- Copyright 2016 Joey Hess <id@joeyh.name>
 -
 - Licensed under the GNU AGPL version 3 or higher.
 -}

module Main where

import Types
import Tunables
import Encryption
import Shard
import Raaz.Core.Encode
import System.IO
import System.Posix.ByteString
import qualified Data.ByteString as B
import Control.DeepSeq

main :: IO ()
main = do
	storedemo
	retrievedemo

storedemo :: IO ()
storedemo = do
	kek <- genKeyEncryptionKey tunables name password
	let esk = encrypt kek secretkey
	let sis = shardIdents tunables name keyid
	shards <- genShards esk tunables
	mapM_ (uncurry storeShard) (zip (getIdents sis) shards)
  where
	password = Password "foo"
	name = Name "bar"
	tunables = testModeTunables -- defaultTunables
	keyid = KeyId gpgKey "foobar"
	secretkey = SecretKey "this is a gpg private key"

retrievedemo :: IO ()
retrievedemo = do
	let sis = shardIdents tunables name keyid
	shards <- mapM retrieveShard (drop 1 $ getIdents sis)
	-- TODO: need to try all orders of shards until one works,
	-- because the shard numbers are not preserved
	let esk = combineShards tunables shards
	kek <- genKeyEncryptionKey tunables name password
	-- TODO: need to solve the encryption puzzle
	case decrypt kek esk of
		Just (SecretKey sk) -> print sk
		Nothing -> print ("Failed" :: String, esk)
  where
	password = Password "foo"
	name = Name "bar"
	tunables = testModeTunables -- defaultTunables
	keyid = KeyId gpgKey "foobar"

storeShard :: StorableObjectIdent -> StorableObject -> IO ()
storeShard i o = do
	print $ toByteString i
	fd <- openFd (toByteString i) WriteOnly (Just 0o666)
		(defaultFileFlags { exclusive = True } )
	h <- fdToHandle fd
	B.hPut h (fromStorableObject o)
	hClose h

retrieveShard :: StorableObjectIdent -> IO StorableObject
retrieveShard i = do
	fd <- openFd (toByteString i) ReadOnly Nothing defaultFileFlags
	h <- fdToHandle fd
	b <- B.hGetContents h
	b `deepseq` hClose h
	return (StorableObject b)