hancock

## Usage

Example:

    hancock-sign [-private /path/to/private/key]

Optional parameter "-private" specifies the signing key (default
"~/.ssh/id_25519")

Currently, the only supported private key format is that produced by
`ssh-keygen -t ed25519`. For example, to produce a key in the default
location expected by hancock-sign:

    ssh-keygen -t ed25519 -N ” -f ~/.ssh/id_ed25519

## User Configuration

Note that users of `hancock verify` configure your key as a signing
authority by including it in "~/.config/hancock/hancock.cfg" under the
[authority] section. For example:

    [authority]
        acme corp = ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBwXgvPPq9NEACJ6eGrckPxN2DXMDDBAYggmohpI+tQW

The format of the public key value must be as `ssh-keygen` wrote in
"~/.ssh/id_ed25519.pub".

By David N. Cohen, see source code for open source license terms (AGPL 3)

## Usage

Example:

    hancock-sign [-private /path/to/private/key]

Optional parameter "-private" specifies the signing key (default
"~/.config/hancock/id_25519")

Currently, the only supported private key format is that produced by
`ssh-keygen -t ed25519`. For example, to produce a key in the default
location expected by hancock-sign:

    ssh-keygen -t ed25519 -N '' -f ~/.config/hancock/id_ed25519

## User Configuration

Note that users of `hancock verify` configure your key as a signing
authority by including it in "~/.config/hancock/hancock.cfg" under the
[authority] section. For example:

    [authority]
        acme corp = ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBwXgvPPq9NEACJ6eGrckPxN2DXMDDBAYggmohpI+tQW

The format of the public key value must be as `ssh-keygen` created in
"~/.config/hancock/id_ed25519.pub".

By David N. Cohen, see source code for open source license terms (AGPL 3)

// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU Affero General Public License for more details.

// You should have received a copy of the GNU Affero General Public License
// along with this program.  If not, see <https://www.gnu.org/licenses/>.



// The hancock-sign tool produces cryptographic signatures of file
// manifests.  Signed manifests are referred to as testimony.
//
// hancock-sign expects as input the output of `hancock manifest`, and
// produces output in the format expected by `hancock testimony`.
//
// The commands may be executed in a pipeline:
//
//    hancock manifest <source file> | hancock-sign | hancock testimony
//
// See https://src.d10.dev/hancock/cmd/hancock/ for more.
//
// Usage
//
// Example:
//
//     hancock-sign [-private /path/to/private/key]
//
// Optional parameter "-private" specifies the signing key (default "~/.ssh/id_25519")
//
// Currently, the only supported private key format is that produced
// by `ssh-keygen -t ed25519`.  For example, to produce a key in the
// default location expected by hancock-sign:
//
//     ssh-keygen -t ed25519 -N '' -f ~/.ssh/id_ed25519
//
// User Configuration
//
// Note that users of `hancock verify` configure your key as a signing
// authority by including it in "~/.config/hancock/hancock.cfg" under
// the [authority] section.  For example:
//
//    [authority]
//        acme corp = ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBwXgvPPq9NEACJ6eGrckPxN2DXMDDBAYggmohpI+tQW
//
// The format of the public key value must be as `ssh-keygen` wrote in
// "~/.ssh/id_ed25519.pub".
//
// By David N. Cohen, see source code for open source license terms (AGPL 3)
package main

//go:generate sh -c "go doc | dumbdown > README.md"

import (
................................................................................
	} else {
		homeDir = usr.HomeDir
	}
	if homeDir == "" {
		homeDir = filepath.Join("", "var", "hancock")
	}

	privateFlag := flag.CommandLine.String("private", filepath.Join(homeDir, ".ssh", "id_ed25519"), "path to secret key file")
	numFlag := flag.CommandLine.Uint("n", 0, "how many json objects to sign, use 0 for no limit")

	err := flag.CommandLine.Parse(os.Args[1:])
	if err != nil {
		fmt.Println(err)
		flag.CommandLine.Usage()
		os.Exit(2)
	}

	// Load key in ssh format
	// TODO lock memory
	buffer, err := ioutil.ReadFile(*privateFlag)
	check(err)




	key, err := ssh.ParsePrivateKey(buffer)
	if err != nil {
		fmt.Printf("Failed to parse private key (%s): %s\n", *privateFlag, err)
		os.Exit(1)
	}

................................................................................
	public := key.PublicKey()
	out, err := json.MarshalIndent(strings.TrimSpace(string(ssh.MarshalAuthorizedKey(public))), "", "\t") // MarshalAuthorizedKey is a simple string, not a data structure
	check(err)
	_, err = os.Stdout.Write(out)
	fmt.Println("") // line break

	// We sign what is piped into stdin
	// Old way, sign everything (does not need to be json)
	//in, err := ioutil.ReadAll(os.Stdin)

	// new way, sign any number of json objects independently
	dec := json.NewDecoder(os.Stdin)
	var raw json.RawMessage
	i := uint(0)
	for *numFlag == 0 || i < *numFlag {
		err = dec.Decode(&raw)
		if err == io.EOF {
			break
................................................................................
	// too verbose?
	log.Printf("signed %d items with key %q", i, *privateFlag)
}

func check(err error) {
	if err != nil {
		fmt.Println(err)
		log.Panic(err) // debug, stack trace
		os.Exit(1)
	}
}

// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU Affero General Public License for more details.

// You should have received a copy of the GNU Affero General Public License
// along with this program.  If not, see <https://www.gnu.org/licenses/>.

// Hancock-Sign
//
// The hancock-sign tool produces cryptographic signatures of file
// manifests.  Signed manifests are better known as testimony.
//
// hancock-sign expects as input the output of `hancock manifest`, and
// produces output in the format expected by `hancock testimony`.
//
// The commands may be executed in a pipeline:
//
//    hancock manifest <source file> | hancock-sign | hancock testimony
//

//
// Usage
//
// Example:
//
//     hancock-sign [-private /path/to/private/key]
//
// Optional parameter "-private" specifies the signing key (default "~/.config/hancock/id_25519")
//
// Currently, the only supported private key format is that produced
// by `ssh-keygen -t ed25519`.  For example, to produce a key in the
// default location expected by hancock-sign:
//
//     ssh-keygen -t ed25519 -N '' -f ~/.config/hancock/id_ed25519
//
// User Configuration
//
// Note that users of `hancock verify` configure your key as a signing
// authority by including it in "~/.config/hancock/hancock.cfg" under
// the [authority] section.  For example:
//
//    [authority]
//        acme corp = ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBwXgvPPq9NEACJ6eGrckPxN2DXMDDBAYggmohpI+tQW
//
// The format of the public key value must be as `ssh-keygen` created in
// "~/.config/hancock/id_ed25519.pub".
//
// By David N. Cohen, see source code for open source license terms (AGPL 3)
package main

//go:generate sh -c "go doc | dumbdown > README.md"

import (
................................................................................
	} else {
		homeDir = usr.HomeDir
	}
	if homeDir == "" {
		homeDir = filepath.Join("", "var", "hancock")
	}

	privateFlag := flag.CommandLine.String("private", filepath.Join(homeDir, ".config", "hancock", "id_ed25519"), "path to secret key file")
	numFlag := flag.CommandLine.Uint("n", 0, "how many json objects to sign, use 0 for no limit")

	err := flag.CommandLine.Parse(os.Args[1:])
	if err != nil {
		fmt.Println(err)
		flag.CommandLine.Usage()
		os.Exit(2)
	}

	// Load key in ssh format
	// TODO lock memory
	buffer, err := ioutil.ReadFile(*privateFlag)
	if err != nil {
		fmt.Printf("no private key (%q): %w", *privateFlag, err)
		os.Exit(1)
	}

	key, err := ssh.ParsePrivateKey(buffer)
	if err != nil {
		fmt.Printf("Failed to parse private key (%s): %s\n", *privateFlag, err)
		os.Exit(1)
	}

................................................................................
	public := key.PublicKey()
	out, err := json.MarshalIndent(strings.TrimSpace(string(ssh.MarshalAuthorizedKey(public))), "", "\t") // MarshalAuthorizedKey is a simple string, not a data structure
	check(err)
	_, err = os.Stdout.Write(out)
	fmt.Println("") // line break

	// We sign what is piped into stdin
	// JSON-encoded objects are expected.



	dec := json.NewDecoder(os.Stdin)
	var raw json.RawMessage
	i := uint(0)
	for *numFlag == 0 || i < *numFlag {
		err = dec.Decode(&raw)
		if err == io.EOF {
			break
................................................................................
	// too verbose?
	log.Printf("signed %d items with key %q", i, *privateFlag)
}

func check(err error) {
	if err != nil {
		fmt.Println(err)
		//log.Panic(err) // debug, uncomment for stack trace
		os.Exit(1)
	}
}