Fixed passphrase caching.

[elisp/epg.git] / epa-file.el

;;; epa-file.el --- the EasyPG Assistant hooks for transparent file encryption
;; Copyright (C) 2006 Daiki Ueno

;; Author: Daiki Ueno <ueno@unixuser.org>
;; Keywords: PGP, GnuPG

;; This file is part of EasyPG.

;; This program is free software; you can redistribute it and/or modify
;; it under the terms of the GNU General Public License as published by
;; the Free Software Foundation; either version 2, or (at your option)
;; any later version.

;; This program is distributed in the hope that it will be useful,
;; but WITHOUT ANY WARRANTY; without even the implied warranty of
;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
;; GNU General Public License for more details.

;; You should have received a copy of the GNU General Public License
;; along with GNU Emacs; see the file COPYING.  If not, write to the
;; Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
;; Boston, MA 02110-1301, USA.

;;; Code:

(require 'epa)

(defgroup epa-file nil
  "The EasyPG Assistant hooks for transparent file encryption"
  :group 'epa)

(defcustom epa-file-name-regexp "\\.gpg\\'"
  "Regexp which matches filenames to be encrypted with GnuPG."
  :type 'regexp
  :group 'epa-file)
  
(defvar epa-file-passphrase-alist nil)

(defun epa-file-passphrase-callback-function (key-id file)
  (if (eq key-id 'SYM)
      (let ((entry (assoc file epa-file-passphrase-alist))
            passphrase)
        (or (copy-sequence (cdr entry))
            (progn
              (unless entry
                (setq entry (list file)
                      epa-file-passphrase-alist (cons entry
                                                 epa-file-passphrase-alist)))
              (setq passphrase (epg-passphrase-callback-function key-id nil))
              (setcdr entry (copy-sequence passphrase))
              passphrase)))
    (epg-passphrase-callback-function key-id nil)))

(defun epa-file-handler (operation &rest args)
  (save-match-data
    (let ((op (get operation 'epa-file)))
      (if op
          (apply op args)
        (epa-file-run-real-handler operation args)))))

(defun epa-file-run-real-handler (operation args)
  (let ((inhibit-file-name-handlers
         (cons 'epa-file-handler
               (and (eq inhibit-file-name-operation operation)
                    inhibit-file-name-handlers)))
        (inhibit-file-name-operation operation))
    (apply operation args)))

(defvar last-coding-system-used)
(defun epa-file-insert-file-contents (file &optional visit beg end replace)
  (barf-if-buffer-read-only)
  (if (or beg end)
      (error "Can't read the file partially."))
  (setq file (expand-file-name file))
  (let ((local-copy (epa-file-run-real-handler #'file-local-copy (list file)))
        (context (epg-make-context))
        point length entry)
    (if visit
        (setq buffer-file-name file))
    (epg-context-set-passphrase-callback
     context
     (cons #'epa-file-passphrase-callback-function
           file))
    (unwind-protect
        (progn
          (if replace
              (goto-char (point-min)))
          (setq point (point))
          (condition-case error
              (insert (epg-decrypt-file context file nil))
            (error (signal 'file-error
                           (cons "Opening input file"
                                 (nthcdr 2 error)))))
          (setq length (- (point) point))
          (if replace
              (delete-region (point) (point-max)))
          (decode-coding-region point (point) 'undecided)
          (if (boundp 'last-coding-system-used)
              (set-buffer-file-coding-system last-coding-system-used)
            (set-buffer-file-coding-system default-buffer-file-coding-system))
          (goto-char point))
      (if (and local-copy
               (file-exists-p local-copy))
          (delete-file local-copy)))
    (list file length)))
(put 'insert-file-contents 'epa-file 'epa-file-insert-file-contents)

(defun epa-file-write-region (start end file &optional append visit lockname
                                    mustbenew)
  (if append
      (error "Can't append to the file."))
  (setq file (expand-file-name file))
  (let* ((coding-system (if (boundp 'last-coding-system-used)
                            (condition-case nil
                                (write-region (point-min) (point-max) "/")
                              (error last-coding-system-used))
                          buffer-file-coding-system))
         (context (epg-make-context))
         (coding-system-for-write 'binary))
    (epg-context-set-passphrase-callback
     context
     (cons #'epa-file-passphrase-callback-function
           file))
    (epa-file-run-real-handler
     #'write-region
     (list (epg-encrypt-string
            context
            (encode-coding-string (buffer-string) coding-system)
            (mapcar (lambda (key)
                      (epg-sub-key-id (car (epg-key-sub-key-list key))))
                    (unless (assoc file epa-file-passphrase-alist)
                      (epa-select-keys
                       "Select recipents for encryption.
If no one is selected, symmetric encryption will be performed.  "))))
           nil file append visit lockname mustbenew))
    (if (boundp 'last-coding-system-used)
        (setq last-coding-system-used coding-system))
    (if (eq visit t)
        (progn
          (setq buffer-file-name file)
          (set-visited-file-modtime))
      (if (stringp visit)
          (progn
            (set-visited-file-modtime)
            (setq buffer-file-name visit))))
    (if (or (eq visit t)
            (eq visit nil)
            (stringp visit))
        (message "Wrote %s" buffer-file-name))))
(put 'write-region 'epa-file 'epa-file-write-region)

(provide 'epa-file)

;;; epa-file.el ends here