Class: Paperback::Preparer

Inherits:

Object

• Object
• Paperback::Preparer

Extended by:

T::Sig

Defined in:

lib/paperback/preparer.rb

Overview

Class wrapping functions to prepare data for paperback storage, including QR code and sixword encoding.

Constant Summary

PassChars =

T.let(
  [*'a'..'z', *'A'..'Z', *'0'..'9'].freeze, T::Array[String]
)

Instance Attribute Summary

• #data ⇒ Object readonly

  Returns the value of attribute data.

• #encrypt ⇒ Object readonly

  Returns the value of attribute encrypt.

• #labels ⇒ Object readonly

  Returns the value of attribute labels.

• #passphrase_file ⇒ Object readonly

  Returns the value of attribute passphrase_file.

• #qr_base64 ⇒ Object readonly

  Returns the value of attribute qr_base64.

Class Method Summary

• .gpg_ascii_dearmor(data) ⇒ Object
• .gpg_ascii_enarmor(data, strip_comments: true) ⇒ Object
• .gpg_encrypt(filename:, password:) ⇒ Object
• .log ⇒ Object
• .random_passphrase(entropy_bits: 256, char_set: PassChars) ⇒ Object
• .truncated_sha256(content) ⇒ Object

Instance Method Summary

• #include_base64? ⇒ Boolean
• #initialize(filename:, encrypt: true, qr_base64: false, qr_level: nil, comment: nil, passphrase_file: nil, include_base64: true) ⇒ Preparer constructor

  A new instance of Preparer.

• #log ⇒ Object
• #passphrase ⇒ Object
• #render(output_filename:, extra_draw_opts: {}) ⇒ Object

Constructor Details

#initialize(filename:, encrypt: true, qr_base64: false, qr_level: nil, comment: nil, passphrase_file: nil, include_base64: true) ⇒ Preparer

Returns a new instance of Preparer.

# File 'lib/paperback/preparer.rb', line 44

def initialize(filename:, encrypt: true, qr_base64: false, qr_level: nil,
               comment: nil, passphrase_file: nil, include_base64: true)

  log.debug('Preparer#initialize')

  # lazy initializers, all explicitly set to nil
  @log = T.let(nil, T.nilable(Logger))
  @qr_code = T.let(nil, T.nilable(RQRCode::QRCode))
  @sixword_lines = T.let(nil, T.nilable(T::Array[String]))
  @passphrase = T.let(nil, T.nilable(String))

  log.info("Reading #{filename.inspect}")
  plain_data = File.read(filename)

  log.debug("Read #{plain_data.bytesize} bytes")

  @encrypt = T.let(encrypt, T::Boolean)

  if encrypt
    @data = self.class.gpg_encrypt(filename: filename, password: passphrase)
  else
    @data = T.let(plain_data, String)
  end
  @sha256 = T.let(Digest::SHA256.hexdigest(plain_data), String)

  @qr_base64 = T.let(qr_base64, T::Boolean)
  @qr_level = T.let(qr_level, T.nilable(Symbol))

  @passphrase_file = T.let(passphrase_file, T.nilable(String))

  @include_base64 = T.let(!!include_base64, T::Boolean)

  @labels = T.let({}, T::Hash[String, T.untyped])
  @labels['Filename'] = filename
  @labels['Backed up'] = Time.now.to_s

  stat = File.stat(filename)
  @labels['Mtime'] = stat.mtime
  @labels['Bytes'] = plain_data.bytesize
  @labels['Comment'] = comment if comment

  @labels['SHA256'] = Digest::SHA256.hexdigest(plain_data)

  @document = T.let(Paperback::Document.new, Paperback::Document)
end

Instance Attribute Details

#data ⇒ Object (readonly)

Returns the value of attribute data.

# File 'lib/paperback/preparer.rb', line 19

def data
  @data
end

#encrypt ⇒ Object (readonly)

Returns the value of attribute encrypt.

# File 'lib/paperback/preparer.rb', line 28

def encrypt
  @encrypt
end

#labels ⇒ Object (readonly)

Returns the value of attribute labels.

# File 'lib/paperback/preparer.rb', line 22

def labels
  @labels
end

#passphrase_file ⇒ Object (readonly)

Returns the value of attribute passphrase_file.

# File 'lib/paperback/preparer.rb', line 31

def passphrase_file
  @passphrase_file
end

#qr_base64 ⇒ Object (readonly)

Returns the value of attribute qr_base64.

# File 'lib/paperback/preparer.rb', line 25

def qr_base64
  @qr_base64
end

Class Method Details

.gpg_ascii_dearmor(data) ⇒ Object

# File 'lib/paperback/preparer.rb', line 212

def self.gpg_ascii_dearmor(data)
  cmd = %w[gpg --batch --dearmor]
  out = T.let(nil, T.nilable(String))

  log.debug('+ ' + cmd.join(' '))
  Subprocess.check_call(cmd, stdin: Subprocess::PIPE,
                             stdout: Subprocess::PIPE) do |p|
    out, _err = p.communicate(data)
  end

  T.must(out)
end

.gpg_ascii_enarmor(data, strip_comments: true) ⇒ Object

# File 'lib/paperback/preparer.rb', line 192

def self.gpg_ascii_enarmor(data, strip_comments: true)
  cmd = %w[gpg --batch --enarmor]
  out = T.let(nil, T.nilable(String))

  log.debug('+ ' + cmd.join(' '))
  Subprocess.check_call(cmd, stdin: Subprocess::PIPE,
                             stdout: Subprocess::PIPE) do |p|
    out, _err = p.communicate(data)
  end

  out = T.must(out)

  if strip_comments
    out = out.each_line.select { |l| !l.start_with?('Comment: ') }.join
  end

  out
end

.gpg_encrypt(filename:, password:) ⇒ Object

# File 'lib/paperback/preparer.rb', line 176

def self.gpg_encrypt(filename:, password:)
  cmd = %w[
    gpg -c -o - --batch --cipher-algo aes256 --passphrase-fd 0 --
  ] + [filename]
  out = T.let(nil, T.nilable(String))

  log.debug('+ ' + cmd.join(' '))
  Subprocess.check_call(cmd, stdin: Subprocess::PIPE,
                             stdout: Subprocess::PIPE) do |p|
    out, _err = p.communicate(password)
  end

  T.must(out)
end

.log ⇒ Object

# File 'lib/paperback/preparer.rb', line 97

def self.log
  @log ||= Paperback.class_log(self)
end

.random_passphrase(entropy_bits: 256, char_set: PassChars) ⇒ Object

# File 'lib/paperback/preparer.rb', line 162

def self.random_passphrase(entropy_bits: 256, char_set: PassChars)
  chars_needed = (entropy_bits / Math.log2(char_set.length)).ceil
  (0...chars_needed).map {
    PassChars.fetch(SecureRandom.random_number(char_set.length))
  }.join
end

.truncated_sha256(content) ⇒ Object

# File 'lib/paperback/preparer.rb', line 171

def self.truncated_sha256(content)
  Digest::SHA256.hexdigest(content)[0...16]
end

Instance Method Details

#include_base64? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/paperback/preparer.rb', line 229

def include_base64?
  !!@include_base64
end

#log ⇒ Object

# File 'lib/paperback/preparer.rb', line 93

def log
  @log ||= Paperback.class_log(self.class)
end

#passphrase ⇒ Object

# File 'lib/paperback/preparer.rb', line 149

def passphrase
  raise "Can't have passphrase without encrypt" unless encrypt
  @passphrase ||= self.class.random_passphrase
end

#render(output_filename:, extra_draw_opts: {}) ⇒ Object

# File 'lib/paperback/preparer.rb', line 102

def render(output_filename:, extra_draw_opts: {})
  log.debug('Preparer#render')

  opts = {
    labels: labels,
    qr_code: qr_code,
    sixword_lines: sixword_lines,
    sixword_bytes: data.bytesize,
  }

  if include_base64?
    opts[:base64_content] = base64_content
    opts[:base64_bytes] = data.bytesize
  end

  if encrypt
    opts[:passphrase_sha] = self.class.truncated_sha256(passphrase)
    opts[:passphrase_len] = passphrase.length
    if passphrase_file
      File.open(
        T.must(passphrase_file),
        File::CREAT | File::EXCL | File::WRONLY,
        0o400
      ) do |f|
        f.write(passphrase)
      end
      log.info("Wrote passphrase to #{passphrase_file.inspect}")
    end
  end

  opts.merge!(extra_draw_opts)

  @document.render(output_file: output_filename, draw_opts: opts)

  log.info('Render complete')

  if encrypt
    puts 'SHA256(passphrase)[0...16]: ' + opts.fetch(:passphrase_sha)
    if !passphrase_file
      puts "Passphrase: #{passphrase}"
    end
  else
    log.info('Content was not encrypted')
  end
end