1inguini/pijul-encrypt - Change OZXUS4F6MZQGADD3EHLKEROGNPPJ2N43IYZUCMT4ARAKNRYWI43QC

これで行けるはず

Created by 1inguini on March 12, 2025

OZXUS4F6MZQGADD3EHLKEROGNPPJ2N43IYZUCMT4ARAKNRYWI43QC

Dependencies

In channels

main

Change contents

File addition: hello (d--x------)
[3.1]
File addition: secret (d--x------)
[0.17]
File addition: world (d--x------)
[0.37]
File addition: hello.gpg (----------)
[0.56]
File addition: hello.gpg (----------)
[0.37]
File addition: Hello World.gpg (----------)
[3.1]

Replacement in .pijul/hook-encrypt.sh at line 12 [2.60]

B:BD[2.229] → [2.229:339]

# if ! sha256sum=$(command -v sha256sum) >/dev/null; then
#   echo "$0 requires sha256sum" >&2
#   false
# fi

[2.229]

[2.339]

if ! sha256sum=$(command -v sha256sum) >/dev/null; then
  echo "$0 requires sha256sum" >&2
  false
fi

Replacement in .pijul/hook-encrypt.sh at line 29 [2.60]

B:BD[2.642] → [2.642:820]

# decrypt() {
#   path=$1
#   $gpg --decrypt .encrypt.d/master_key.gpg |
#     $gpg --batch --output - --pinentry-mode loopback --passphrase-fd 0 \
#       --decrypt "$path"
# }

[2.642]

[2.820]

decrypt() {
  path=$1
  $gpg --decrypt .encrypt.d/master_key.gpg |
    $gpg --batch --output - --passphrase-fd 0 \
      --decrypt "$path"
}

Deletion in .pijul/hook-encrypt.sh at line 36 [2.60]
B:BD[2.821] → [2.821:843]
```
rules=$(cat .encrypt)
```

Replacement in .pijul/hook-encrypt.sh at line 37 [2.60]

B:BD[2.956] → [2.956:1036]

# shellcheck disable=SC2086
secrets_in_worktree=$(find $(cat .encrypt) -type f)

[2.956]

[2.1036]

# shellcheck disable=SC2046
worktree_glob=$(find $(cat .encrypt) -type f -not -name '*.gpg')
: "↓debug worktree_glob↓
$worktree_glob"

Deletion in .pijul/hook-encrypt.sh at line 42 [2.60]
B:BD[2.1037] → [2.1037:1095]
```
: "↓debug secrets_in_worktree↓
$secrets_in_worktree"
```

Replacement in .pijul/hook-encrypt.sh at line 43 [2.60]

B:BD[2.1173] → [2.1173:1261]

secrets_in_tracked=$(printf '%s\n' $secrets_in_worktree $(pijul list) | sort | uniq -d)

[2.1173]

[2.1261]

# shellcheck disable=SC2086
# shellcheck disable=SC2046
tracked_glob=$(printf '%s\n' $worktree_glob $(pijul list) | sort | uniq -d)
: "↓debug tracked_glob↓
$tracked_glob"

Replacement in .pijul/hook-encrypt.sh at line 49 [2.60]

B:BD[2.1262] → [2.1262:1317]

: "↓debug secrets_in_tracked↓
$secrets_in_tracked"

[2.1262]

[2.1317]

# shellcheck disable=SC2086
pijul remove $tracked_glob # 秘密のファイルはさっさと記録から除外

Replacement in .pijul/hook-encrypt.sh at line 52 [2.60]

B:BD[2.1318] → [2.1318:1434]

# .encryptにマッチするパスをremoveして`.gpg`をつけてaddし直す
for path in $secrets_in_tracked; do

[2.1318]

[2.1434]

# pijulが記録しているパスのうち`*.gpg`にマッチするもの (pijul listが変わってるのでtracked_globとは重複しない)
gpg_tracked=$(pijul list | grep '\.gpg$' | sed 's/\.gpg$//')
: "↓debug gpg_tracked↓
$gpg_tracked"

Replacement in .pijul/hook-encrypt.sh at line 57 [2.60]

B:BD[2.1435] → [2.1435:1583]

  case $path in
  *.gpg)
    break
    ;;
  *)
    pijul remove "$path" # 秘密のファイルはrecordしてはいけない
    touch "$path.gpg"

[2.1435]

[2.1583]

# 秘密にしなければいけないファイルたち
will_be_encrypted="$tracked_glob
$gpg_tracked"
# 秘密のファイルに変更があれば暗号化し直す
for path in $will_be_encrypted; do
  if [ ! -f "$path" ]; then
    [ "$path" = ".encrypt.d/master_key" ] || pijul remove "$path.gpg"
  else
    if [ -f "$path.gpg" ] &&
      [ "$($sha256sum <"$path")" != "$(decrypt "$path.gpg" | $sha256sum)" ]; then
      rm "$path.gpg"
    fi
    if [ ! -e "$path.gpg" ]; then
      encrypt "$path"
    fi

Replacement in .pijul/hook-encrypt.sh at line 74 [2.60]
B:BD[2.1609] → [2.1609:1624]
```
    ;;
  esac
```
[2.1609]
[2.1624]
```
  fi
```

Deletion in .pijul/hook-encrypt.sh at line 76 [2.60]

B:BD[2.1629] → [2.1629:1882]


# # `.gpg`で終わるファイルを更新
# for path in $(pijul list); do
#   case $path in
#   .encrypt.d/master_key.gpg) ;;
#   *.gpg)
#     if [ -f "$path" ]; then
#       rm "$path"
#     fi
#     encrypt "${path%%.gpg}"
#     ;;
#   esac
# done

Replacement in .encrypt.d/master_key.gpg at line 1 [2.2083]
B:BD[2.2083] → [2.2084:2185]
[2.2083]

これで行けるはず

Dependencies

In channels

Change contents

File addition: hello (d--x------)

File addition: secret (d--x------)

File addition: world (d--x------)

File addition: hello.gpg (----------)

File addition: hello.gpg (----------)

File addition: Hello World.gpg (----------)

Replacement in .pijul/hook-encrypt.sh at line 12 [2.60]

Replacement in .pijul/hook-encrypt.sh at line 29 [2.60]

Deletion in .pijul/hook-encrypt.sh at line 36 [2.60]

Replacement in .pijul/hook-encrypt.sh at line 37 [2.60]

Deletion in .pijul/hook-encrypt.sh at line 42 [2.60]

Replacement in .pijul/hook-encrypt.sh at line 43 [2.60]

Replacement in .pijul/hook-encrypt.sh at line 49 [2.60]

Replacement in .pijul/hook-encrypt.sh at line 52 [2.60]

Replacement in .pijul/hook-encrypt.sh at line 57 [2.60]

Replacement in .pijul/hook-encrypt.sh at line 74 [2.60]

Deletion in .pijul/hook-encrypt.sh at line 76 [2.60]

Replacement in .encrypt.d/master_key.gpg at line 1 [2.2083]