PageRenderTime 23ms CodeModel.GetById 13ms RepoModel.GetById 0ms app.codeStats 0ms

/utils/cryptostick/pwdtool.vim

https://bitbucket.org/markfink/testing-software
Vim Script | 184 lines | 73 code | 10 blank | 101 comment | 4 complexity | c72df699281421119393bb90bb58128f MD5 | raw file
Possible License(s): LGPL-3.0 
    

  1. " pwdtool.vim ported to vim-python by Mark Fink
    2. 

  2. " based on openssl.vim from Noah Spurrier
    3. 

  3. " uses Python + PyCrypto instead of openssl (easier to set up on my environment)
    4. 

  4. " and I need Python anyway :-))
    5. 

  5. "
    6. 

  6. " Adapted from the original documentation:
    7. 

  7. " openssl.vim version 3.3 2008 Noah Spurrier <noah@noah.org>
    8. 

  8. "
    9. 

  9. " == Edit OpenSSL encrypted files and turn Vim into a Password Safe! ==
    10. 

  10. "
    11. 

  11. " This plugin enables reading and writing of files encrypted using OpenSSL.
    12. 

  12. " The file must have the extension of one of the ciphers used by OpenSSL.
    13. 

  13. " For example:
    14. 

  14. "
    15. 

  15. "    .des3 .aes .bf .bfa .idea .cast .rc2 .rc4 .rc5 (.bfa is base64 ASCII
    16. 

  16. "    encoded blowfish.)
    17. 

  17. "
    18. 

  18. " This will turn off the swap file and the .viminfo log. The `openssl` command
    19. 

  19. " line tool must be in the path.
    20. 

  20. "
    21. 

  21. " == Install ==
    22. 

  22. "
    23. 

  23. " Put this in your plugin directory and Vim will automatically load it:
    24. 

  24. "
    25. 

  25. "    ~/.vim/plugin/pwdtool.vim
    26. 

  26. "
    27. 

  27. " You can start by editing an empty unencrypted file. Give it one of the
    28. 

  28. " extensions above. When you write the file you will be asked to give it a new
    29. 

  29. " password.
    30. 

  30. "
    31. 

  31. " == Simple Vim Password Safe ==
    32. 

  32. "
    33. 

  33. " If you edit any file named '.auth.bfa' (that's the full name, not just the
    34. 

  34. " extension) then this plugin will add folding features and an automatic quit
    35. 

  35. " timeout.
    36. 

  36. "
    37. 

  37. " Vim will quit automatically after 2 minutes of no typing activity (unless
    38. 

  38. " the file has been changed).
    39. 

  39. "
    40. 

  40. " This plugin will fold on wiki-style headlines in the following format:
    41. 

  41. "
    42. 

  42. "     == This is a headline ==
    43. 

  43. " 
    44. 

  44. " Any notes under the headline will be inside the fold until the next headline
    45. 

  45. " is reached. The SPACE key will toggle a fold open and closed. The q key will
    46. 

  46. " quit Vim. Create the following example file named ~/.auth.bfa:
    47. 

  47. "
    48. 

  48. "     == Colo server ==
    49. 

  49. "
    50. 

  50. "     username: maryjane password: esydpm
    51. 

  51. "
    52. 

  52. "     == Office server ==
    53. 

  53. "
    54. 

  54. "     username: peter password: 4m4z1ng
    55. 

  55. "
    56. 

  56. " Then create this bash alias:
    57. 

  57. "
    58. 

  58. "     alias auth='view ~/.auth.bfa'
    59. 

  59. "
    60. 

  60. " Now you can view your password safe by typing 'auth'. When Vim starts all
    61. 

  61. " the password information will be hidden under the headlines. To view the
    62. 

  62. " password information put the cursor on the headline and press SPACE. When
    63. 

  63. " you write an encrypted file a backup will automatically be made.
    64. 

  64. "
    65. 

  65. " This plugin can also make a backup of an encrypted file before writing
    66. 

  66. " changes. This helps guard against the situation where you may edit a file
    67. 

  67. " and write changes with the wrong password. You can still go back to the
    68. 

  68. " previous backup version. The backup file will have the same name as the
    69. 

  69. " original file with .bak appended. For example:
    70. 

  70. "
    71. 

  71. "     .auth.bfa  -->  .auth.bfa.bak
    72. 

  72. " 
    73. 

  73. " Backups are NOT made by default. To turn on backups put the following global
    74. 

  74. " definition in your .vimrc file:
    75. 

  75. " 
    76. 

  76. "     let g:openssl_backup = 1
    77. 

  77. "
    78. 

  78. " Thanks to Tom Purl for the original des3 tip.
    79. 

  79. "
    80. 

  80. " I release all copyright claims. This code is in the public domain.
    81. 

  81. " Permission is granted to use, copy modify, distribute, and sell this
    82. 

  82. " software for any purpose. I make no guarantee about the suitability of this
    83. 

  83. " software for any purpose and I am not liable for any damages resulting from
    84. 

  84. " its use. Further, I am under no obligation to maintain or extend this
    85. 

  85. " software. It is provided on an 'as is' basis without any expressed or
    86. 

  86. " implied warranty.
    87. 

  87. "
    88. 

  88. augroup pwdtool
    89. 

  89. 

  90. function! s:CryptoReadPre()
    91. 

  91.     set secure
    92. 

  92.     set viminfo=
    93. 

  93.     set clipboard=
    94. 

  94.     set noswapfile
    95. 

  95.     set noshelltemp
    96. 

  96.     set bin
    97. 

  97. endfunction
    98. 

  98. 

  99. function! s:CryptoReadPost()
    100. 

  100. python << EOF
    101. 

  101. from Crypto.Cipher import Blowfish
    102. 

  102. import hashlib, base64
    103. 

  103. import vim
    104. 

  104. a = vim.eval('inputsecret("Password: ")')
    105. 

  105. key = hashlib.sha256(a).digest()
    106. 

  106. cipher = Blowfish.new(key, Blowfish.MODE_CFB)
    107. 

  107. text = cipher.decrypt(base64.b64decode('\n'.join(vim.current.buffer)))
    108. 

  108. #text = '\n'.join(vim.current.buffer)
    109. 

  109. vim.current.buffer[:] = text.split('\n')
    110. 

  110. EOF
    111. 

  111.     set nobin
    112. 

  112. "    execute ":doautocmd BufReadPost ".expand("%:r")
    113. 

  113.     redraw!
    114. 

  114. endfunction
    115. 

  115. 

  116. function! s:CryptoWritePre()
    117. 

  117.     set bin
    118. 

  118. python << EOF
    119. 

  119. from Crypto.Cipher import Blowfish
    120. 

  120. import hashlib, base64
    121. 

  121. import vim
    122. 

  122. a = vim.eval('inputsecret("       New password: ")')
    123. 

  123. ac = vim.eval('inputsecret("Retype new password: ")')
    124. 

  124. if a != ac:
    125. 

  125.     # This gives OpenSSLWritePost something to UNDO..
    126. 

  126.     vim.command('silent! execute "0goto"')
    127. 

  127.     vim.command('silent! execute "normal iThis file has not been saved.\n"')
    128. 

  128.     
    129. 

  129.     print "ERROR -- COULD NOT ENCRYPT"
    130. 

  130.     print "The new password and the confirmation password did not match."
    131. 

  131.     print "ERROR -- COULD NOT ENCRYPT"
    132. 

  132.     print "Press any key to continue..."
    133. 

  133.     # vim.command("redraw!")
    134. 

  134.     vim.eval('getchar()')
    135. 

  135. else:
    136. 

  136.     key = hashlib.sha256(a).digest()
    137. 

  137.     cipher = Blowfish.new(key, Blowfish.MODE_CFB)
    138. 

  138.     text = base64.b64encode(cipher.encrypt('\n'.join(vim.current.buffer)))
    139. 

  139.     #text = '\n'.join(vim.current.buffer)
    140. 

  140.     vim.current.buffer[:] = text.split('\n')
    141. 

  141.     #vim.command("redraw")
    142. 

  142. EOF
    143. 

  143.     set bin
    144. 

  144. endfunction
    145. 

  145. 

  146. function! s:CryptoWritePost()
    147. 

  147.     " It was necessary to encrypt the buffer for writing
    148. 

  148.     " Undo the encryption.
    149. 

  149.     silent! undo
    150. 

  150.     set nobin
    151. 

  151.     redraw!
    152. 

  152. endfunction
    153. 

  153. 

  154. autocmd BufReadPre,FileReadPre     *.bfa call s:CryptoReadPre()
    155. 

  155. autocmd BufReadPost,FileReadPost   *.bfa call s:CryptoReadPost()
    156. 

  156. autocmd BufWritePre,FileWritePre   *.bfa call s:CryptoWritePre()
    157. 

  157. autocmd BufWritePost,FileWritePost *.bfa call s:CryptoWritePost()
    158. 

  158. 

  159. "
    160. 

  160. " The following implements a simple password safe for any file named
    161. 

  161. " '.auth.bfa'. The file is encrypted with Blowfish and base64 encoded.
    162. 

  162. " Folding is supported for == headlines == style lines.
    163. 

  163. "
    164. 

    165. 

  165. function! HeadlineDelimiterExpression(lnum)
    166. 

  166.     if a:lnum == 1
    167. 

  167.         return ">1"
    168. 

  168.     endif
    169. 

  169.     return (getline(a:lnum)=~"^\\s*==.*==\\s*$") ? ">1" : "="
    170. 

  170. endfunction
    171. 

  171. autocmd BufReadPost,FileReadPost,BufWritePost,FileWritePost   .auth.bfa set foldexpr=HeadlineDelimiterExpression(v:lnum)
    172. 

  172. autocmd BufReadPost,FileReadPost,BufWritePost,FileWritePost   .auth.bfa set foldlevel=0
    173. 

  173. autocmd BufReadPost,FileReadPost,BufWritePost,FileWritePost   .auth.bfa set foldcolumn=0
    174. 

  174. autocmd BufReadPost,FileReadPost,BufWritePost,FileWritePost   .auth.bfa set foldmethod=expr
    175. 

  175. autocmd BufReadPost,FileReadPost,BufWritePost,FileWritePost   .auth.bfa set foldtext=getline(v:foldstart)
    176. 

  176. autocmd BufReadPost,FileReadPost,BufWritePost,FileWritePost   .auth.bfa nnoremap <silent><space> :exe 'silent! normal! za'.(foldlevel('.')?'':'l')<CR>
    177. 

  177. autocmd BufReadPost,FileReadPost,BufWritePost,FileWritePost   .auth.bfa nnoremap <silent>q :q<CR>
    178. 

  178. autocmd BufReadPost,FileReadPost,BufWritePost,FileWritePost   .auth.bfa highlight Folded ctermbg=red ctermfg=black
    179. 

  179. autocmd BufReadPost,FileReadPost,BufWritePost,FileWritePost   .auth.bfa set updatetime=300000
    180. 

  180. autocmd CursorHold                 .auth.bfa quit
    181. 

  181. 

  182. " End of pwdtool
    183. 

  183. augroup END
    184. 

  184. 

  185.