From bb1101c36df617921451029bb2ecfbc08a0215b8 Mon Sep 17 00:00:00 2001
From: Jon-William Lewis <xilmwa@xenami.net>
Date: Tue, 16 Feb 2016 21:35:42 -0600
Subject: [PATCH] Added store decryption/encryption capability

---
 build/sns.sh           |  55 ++++++++++++++++++++++++++++++++++++-----
 header.sh              |   3 ++-
 install.sh.gpg         | Bin 0 -> 1207 bytes
 src/main/stage1.sns.sh |  52 ++++++++++++++++++++++++++++++++++----
 4 files changed, 98 insertions(+), 12 deletions(-)
 create mode 100644 install.sh.gpg

diff --git a/build/sns.sh b/build/sns.sh
index 3073c0c..edb43a1 100755
--- a/build/sns.sh
+++ b/build/sns.sh
@@ -27,8 +27,9 @@ readonly NOTES_DIR="$ROOT_DIR"/notes
 readonly TMP_DIR="$ROOT_DIR"/tmp
 readonly CONFIG_FILE="$ROOT_DIR/sns.conf"
 
-#Color codes for error reporting
+#Color codes for messages
 readonly RED_COLOR='\033[1;31m'
+readonly YELLOW_COLOR='\033[1;33m'
 readonly RESET_COLOR='\033[0m'
 
 #Print the program header to stdout
@@ -251,32 +252,74 @@ function list(){
 if [ -r "$CONFIG_FILE" ]; then
     source "$CONFIG_FILE"
     verify_store
-elif [ $1 != "-i" ]; then
+elif [ "$1" != "-i" ]; then
     >&2 printf "  $RED_COLOR!$RESET_COLOR %s\n\t%s\n"\
      "Configuration not found. Please run sns -i."
      exit 5 #ERR_NO_STORE
 fi
 
+cd "$NOTES_DIR"
 if [ "$ENCRYPTION" == "TRUE" ]; then
+    # If the user chose not to decrypt notes before, clear that preference.
+    if [ -r "$NOTES_DIR"/.do_not_decrypt ]; then
+        rm "$NOTES_DIR"/.do_not_decrypt;
+    fi
+    # Check if GPG is installed.
     if   [ ! -r "$(which gpg)" ]; then
         >&2 printf "  $RED_COLOR!$RESET_COLOR %s\n\t%s\n"\
             "Encryption was specified, but GPG is not installed."
         exit 100
+    # Check if we have a GPG recipient
     elif [ -z "$PUBKEY" ]; then
         >&2 printf "  $RED_COLOR!$RESET_COLOR %s\n\t%s\n"\
          "No GPG recipient was provided in $CONFIG_FILE. "
         exit 110
+    # All is good. If any previously unencrypted notes exist, encrypt them.
+    # No harm in extra security.
     else
-        cd "$NOTES_DIR"
         find . -type f -name "*.$EXT" | grep -v "gpg" | while read TMP_NOTE; do
             NOTE="${TMP_NOTE%.$EXT}.gpg.$EXT"
-            echo $NOTE
             encrypt
-            if [ -r $NOTE ]; then
-                rm $TMP_NOTE
+            if [ -r "$NOTE" ]; then
+                printf "  $YELLOW_COLOR!$RESET_COLOR %s\n" "Encrypted ${NOTE%.$EXT}"
+                rm "$TMP_NOTE"
             fi
         done
+    fi
+# If encryption isn't enabled, make sure either all notes are decrypted or the user
+# does not wish to decrypt all notes.
+else
+    if [ ! -r "$NOTES_DIR"/.do_not_decrypt ]; then
+        if [ -n $(find "$NOTES_DIR" -type f -name "*.gpg.$EXT" > /dev/null) ]; then
+            while true; do
+                read -p "Would you like to de-encrypt previously encrypted notes? " YN
+                case $YN in
+                    [Yy]* )
+                        read -s -p "Please enter your passphrase: " PASSPHRASE
+		        cd "$NOTES_DIR"
+                        find . -type f -name "*.gpg.$EXT" | while read -r NOTE; do
+    			    gpg\
+                                 --passphrase "$PASSPHRASE"\
+                                 -o "${NOTE%.gpg.note}.note"\
+                                 --decrypt "$NOTE" >> /dev/null  2>&1
 
+                            if [ -r "${NOTE%.gpg.note}.note" ]; then
+                                printf "  $YELLOW_COLOR!$RESET_COLOR %s\n"\
+                                     "De-encrypted ${NOTE%.gpg.$EXT}"
+                                rm "$NOTE";
+                            fi
+	     	         done
+		         break;;
+        		[Nn]* )
+                            # Remember the user's preference.
+                            touch "$NOTES_DIR/.do_not_decrypt"
+	        	    break;;
+        		*)
+                        printf " $RED_COLOR!$RESET_COLOR %s\n" "Please enter Y or N"
+                        ;; 
+                esac
+            done
+        fi
     fi
 fi
 #==============================================================================
diff --git a/header.sh b/header.sh
index 5a27ea1..21c026d 100644
--- a/header.sh
+++ b/header.sh
@@ -32,8 +32,9 @@ readonly NOTES_DIR="\$ROOT_DIR"/notes
 readonly TMP_DIR="\$ROOT_DIR"/tmp
 readonly CONFIG_FILE="\$ROOT_DIR/sns.conf"
 
-#Color codes for error reporting
+#Color codes for messages
 readonly RED_COLOR='\033[1;31m'
+readonly YELLOW_COLOR='\033[1;33m'
 readonly RESET_COLOR='\033[0m'
 
 #Print the program header to stdout
diff --git a/install.sh.gpg b/install.sh.gpg
new file mode 100644
index 0000000000000000000000000000000000000000..81deee203e9b49cef21edd7857d33bb6352edff8
GIT binary patch
literal 1207
zcmV;o1W5aZ0Sp5*K@@3rRMLO}2m1zbiH4{LE5tFkjIu-`Mw!^evzK{+7iK9`6M?WJ
z9$^3RYNr{gGNJkb==85?Xoq1Yxgz;GE?B~OR}uZo0!pd<*SsF2%=I8j%%^?hyB1-s
zvlUhSJY|`brZQW3kZCSkvia+8Q1lsT$W}(x2<AlyBC)<C5D>VDk8^I$Wd#VCc}xF(
z<-hn(BD&e%aX<^L3+m;qc5bFT8cO>?G9c@r6njhOb^kzxlQ+fZXe%f;;lNWxas-JC
zvuCsiihMv!KQ3LRMzlaFU{fFuhUj^_4?k|j$?U>DQYSC$_S?j+-8KQmGR|zi9s{^p
z!U(3IxmDx=AbbyIXaJ|qPhryO0UX<u@1jttTsN+n1Z2yd)x9L|ZrY(Io4G}0;*$P*
z!gGDw!`qKRF>aj=ep+hEm&d%J83!P3Nll09`vI^r2!8?K4w=@LzhZ!jYu&M{ARw2J
z1?;;^BO7bFubka&yW`>iuHzNbvLLC1DUK*3nSW(OI##@@J3AD1$M<`qX6jF0J|nIo
zzdg0r_WC36@d2}dOwhCqh2cYvO~*;^i@mW{`6yhDzyzsL(@bJY$Ote4_aV8C%L6p;
z{fwYC3jFZR7vG)0i_QeKVPuH5WUcWR>|LV3t3+l53`Ygv6PVzbQ5E+~v!x<MVi?H{
zW;9(aZhHtb{W67lvcksoT*Okx&6aU;iPUsWrF+N4mvKm5D?m3QzpCLmtX(3ldF!&$
zoUvfgb4ZTH#|wXo9PClhB_^UT?fh#PNx<D0z6oKQJ3lC!N-+00nr-X(wSRoc^=Ua_
z>Odb-5O(3M%mag>bDGpf==eyM=`Oqm(`e%&)5DuF-?>4XRZu8y%XoD7crJ_@4=`7z
zn33JanHA1+>iTxTl3`h+BFubahR&D5M2sSzEz2ljQ=4tZoc-H@Xge<J$!_9Z;ty2H
zcN@5SDzohI15;|758V&Orzx~idLG}GRAU&LZ=g(|Lyl|xcpoVE2p<`>DCtp76ahmM
zP)b2{8bJdK)^=Czz~qsrr5lWS%^u1T5BwF2b^N{~X(K&OpahnMU0%p8MWGeCL(X~A
zk^d=wFkzl%pYr7LdM4XIDTP&+(uQTI4bMv7E^{^3rr>i3T*q67o!2uvM(F2<NMgbD
z)36vK5fixh=4Wpz&fZ+@?AP-GTh|-NlC{ND#OvkDt%I~rRuLpm9)J#w(7(|{zwt8j
zQ4i#?w9Ss7&S+n<MKu2KG#2UjJu&z+&k4Hhvhn>2%TpSCp?NBmI77o(-r>lG79K3#
z42n85{WUGl4Wz0VGo$tIiy|5HA6?Q<d+}d=BI;01@}inVo3D>h6v`ojc-}Zbby7{D
z&_xL5KdQ;4Qg5`!lK$t8Aq^u4$~e*>5A#nMr^REHZnd0H<&f89@n(i@(4VvXGt=u;
zf#^x~oY}TO&CL&nKx^WgfhEpLu>04k5WJSV>UOttnl8XcX>e7^BhBkmy4kqppQc52
zLO+mwfR+(ikfgQvmnluToudK>HtNhuELP{tKrWIXhPe8~BVeBA&si?-5xqR=EBZ0-
VvoD$giw)uCHzL+7*=g<gb9iM{TWkOT

literal 0
HcmV?d00001

diff --git a/src/main/stage1.sns.sh b/src/main/stage1.sns.sh
index 5dd3cab..98fd341 100644
--- a/src/main/stage1.sns.sh
+++ b/src/main/stage1.sns.sh
@@ -5,31 +5,73 @@
 if [ -r "$CONFIG_FILE" ]; then
     source "$CONFIG_FILE"
     verify_store
-elif [ $1 != "-i" ]; then
+elif [ "$1" != "-i" ]; then
     >&2 printf "  $RED_COLOR!$RESET_COLOR %s\n\t%s\n"\
      "Configuration not found. Please run sns -i."
      exit 5 #ERR_NO_STORE
 fi
 
+cd "$NOTES_DIR"
 if [ "$ENCRYPTION" == "TRUE" ]; then
+    # If the user chose not to decrypt notes before, clear that preference.
+    if [ -r "$NOTES_DIR"/.do_not_decrypt ]; then
+        rm "$NOTES_DIR"/.do_not_decrypt;
+    fi
+    # Check if GPG is installed.
     if   [ ! -r "$(which gpg)" ]; then
         >&2 printf "  $RED_COLOR!$RESET_COLOR %s\n\t%s\n"\
             "Encryption was specified, but GPG is not installed."
         exit 100
+    # Check if we have a GPG recipient
     elif [ -z "$PUBKEY" ]; then
         >&2 printf "  $RED_COLOR!$RESET_COLOR %s\n\t%s\n"\
          "No GPG recipient was provided in $CONFIG_FILE. "
         exit 110
+    # All is good. If any previously unencrypted notes exist, encrypt them.
+    # No harm in extra security.
     else
-        cd "$NOTES_DIR"
         find . -type f -name "*.$EXT" | grep -v "gpg" | while read TMP_NOTE; do
             NOTE="${TMP_NOTE%.$EXT}.gpg.$EXT"
-            echo $NOTE
             encrypt
-            if [ -r $NOTE ]; then
-                rm $TMP_NOTE
+            if [ -r "$NOTE" ]; then
+                printf "  $YELLOW_COLOR!$RESET_COLOR %s\n" "Encrypted ${NOTE%.$EXT}"
+                rm "$TMP_NOTE"
             fi
         done
+    fi
+# If encryption isn't enabled, make sure either all notes are decrypted or the user
+# does not wish to decrypt all notes.
+else
+    if [ ! -r "$NOTES_DIR"/.do_not_decrypt ]; then
+        if [ -n $(find "$NOTES_DIR" -type f -name "*.gpg.$EXT" > /dev/null) ]; then
+            while true; do
+                read -p "Would you like to de-encrypt previously encrypted notes? " YN
+                case $YN in
+                    [Yy]* )
+                        read -s -p "Please enter your passphrase: " PASSPHRASE
+		        cd "$NOTES_DIR"
+                        find . -type f -name "*.gpg.$EXT" | while read -r NOTE; do
+    			    gpg\
+                                 --passphrase "$PASSPHRASE"\
+                                 -o "${NOTE%.gpg.note}.note"\
+                                 --decrypt "$NOTE"
 
+                            if [ -r "${NOTE%.gpg.note}.note" ]; then
+                                printf "  $YELLOW_COLOR!$RESET_COLOR %s\n"\
+                                     "De-encrypted ${NOTE%.gpg.$EXT}"
+                                rm "$NOTE";
+                            fi
+	     	         done
+		         break;;
+        		[Nn]* )
+                            # Remember the user's preference.
+                            touch "$NOTES_DIR/.do_not_decrypt"
+	        	    break;;
+        		*)
+                        printf " $RED_COLOR!$RESET_COLOR %s\n" "Please enter Y or N"
+                        ;; 
+                esac
+            done
+        fi
     fi
 fi