-
Notifications
You must be signed in to change notification settings - Fork 5
/
Copy pathunlock_keyrings.sh
executable file
·39 lines (29 loc) · 1.19 KB
/
unlock_keyrings.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
#!/bin/bash
# This script should be run after gnome being started.
_self_bin_name="$0"
secret_file="$1"
smartcard_pin="$2"
[[ "$secret_file" = '' ]] && echo "Usage: $0 <secret_file> [<smartcard pin>]" && exit 1
function where_is_him () {
SOURCE="$1"
while [ -h "$SOURCE" ]; do # resolve $SOURCE until the file is no longer a symlink
DIR="$( cd -P "$( dirname "$SOURCE" )" && pwd )"
SOURCE="$(readlink "$SOURCE")"
[[ $SOURCE != /* ]] && SOURCE="$DIR/$SOURCE" # if $SOURCE was a relative symlink, we need to resolve it relative to the path where the symlink file was located
done
DIR="$( cd -P "$( dirname "$SOURCE" )" && pwd )"
echo -n "$DIR"
}
function where_am_i () {
_my_path=`type -p ${_self_bin_name}`
[[ "$_my_path" = "" ]] && where_is_him "$_self_bin_name" || where_is_him "$_my_path"
}
gpg_options=()
if [[ ! "$smartcard_pin" = '' ]]; then
gpg_options=("--pinentry-mode" "loopback" "--passphrase" "$smartcard_pin")
fi
# In arch GPG 2.2.24, you can not use smartcard before running this cmd.
# timeout 0.1s gpg --edit-card
cd `where_am_i` &&
gpg "${gpg_options[@]}" --decrypt "$secret_file" | bin/unlock_keyrings --secret-file - --quiet
exit $?