2016-06-20 09:00:47 -04:00
|
|
|
;;; org-crypt.el --- Public Key Encryption for Org Entries -*- lexical-binding: t; -*-
|
2020-05-16 17:56:21 -04:00
|
|
|
;;
|
2020-01-01 13:38:46 -05:00
|
|
|
;; Copyright (C) 2007-2020 Free Software Foundation, Inc.
|
2009-09-16 09:03:35 -04:00
|
|
|
|
|
|
|
;; Author: John Wiegley <johnw@gnu.org>
|
|
|
|
|
|
|
|
;; This file is part of GNU Emacs.
|
|
|
|
;;
|
|
|
|
;; GNU Emacs is free software: you can redistribute it and/or modify
|
|
|
|
;; it under the terms of the GNU General Public License as published by
|
|
|
|
;; the Free Software Foundation, either version 3 of the License, or
|
|
|
|
;; (at your option) any later version.
|
|
|
|
|
|
|
|
;; GNU Emacs is distributed in the hope that it will be useful,
|
|
|
|
;; but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
;; GNU General Public License for more details.
|
|
|
|
|
|
|
|
;; You should have received a copy of the GNU General Public License
|
2017-09-13 18:52:52 -04:00
|
|
|
;; along with GNU Emacs. If not, see <https://www.gnu.org/licenses/>.
|
2009-09-16 09:03:35 -04:00
|
|
|
|
|
|
|
;;; Commentary:
|
|
|
|
|
|
|
|
;; Right now this is just a set of functions to play with. It depends
|
|
|
|
;; on the epg library. Here's how you would use it:
|
|
|
|
;;
|
|
|
|
;; 1. To mark an entry for encryption, tag the heading with "crypt".
|
|
|
|
;; You can change the tag to any complex tag matching string by
|
|
|
|
;; setting the `org-crypt-tag-matcher' variable.
|
|
|
|
;;
|
|
|
|
;; 2. Set the encryption key to use in the `org-crypt-key' variable,
|
|
|
|
;; or use `M-x org-set-property' to set the property CRYPTKEY to
|
|
|
|
;; any address in your public keyring. The text of the entry (but
|
|
|
|
;; not its properties or headline) will be encrypted for this user.
|
|
|
|
;; For them to read it, the corresponding secret key must be
|
|
|
|
;; located in the secret key ring of the account where you try to
|
|
|
|
;; decrypt it. This makes it possible to leave secure notes that
|
|
|
|
;; only the intended recipient can read in a shared-org-mode-files
|
|
|
|
;; scenario.
|
2010-05-08 01:09:16 -04:00
|
|
|
;; If the key is not set, org-crypt will default to symmetric encryption.
|
2009-09-16 09:03:35 -04:00
|
|
|
;;
|
|
|
|
;; 3. To later decrypt an entry, use `org-decrypt-entries' or
|
|
|
|
;; `org-decrypt-entry'. It might be useful to bind this to a key,
|
2020-05-16 17:56:21 -04:00
|
|
|
;; like C-c C-/.
|
2009-09-16 09:03:35 -04:00
|
|
|
;;
|
|
|
|
;; 4. To automatically encrypt all necessary entries when saving a
|
|
|
|
;; file, call `org-crypt-use-before-save-magic' after loading
|
|
|
|
;; org-crypt.el.
|
|
|
|
|
|
|
|
;;; Thanks:
|
|
|
|
|
|
|
|
;; - Carsten Dominik
|
|
|
|
;; - Vitaly Ostanin
|
|
|
|
|
2010-07-15 16:26:51 -04:00
|
|
|
;;; Code:
|
|
|
|
|
2020-05-16 17:56:21 -04:00
|
|
|
(require 'org-macs)
|
|
|
|
(require 'org-compat)
|
|
|
|
|
2009-09-16 19:12:15 -04:00
|
|
|
(declare-function epg-decrypt-string "epg" (context cipher))
|
|
|
|
(declare-function epg-list-keys "epg" (context &optional name mode))
|
|
|
|
(declare-function epg-make-context "epg"
|
|
|
|
(&optional protocol armor textmode include-certs
|
|
|
|
cipher-algorithm digest-algorithm
|
|
|
|
compress-algorithm))
|
|
|
|
(declare-function epg-encrypt-string "epg"
|
|
|
|
(context plain recipients &optional sign always-trust))
|
2013-11-23 10:15:45 -05:00
|
|
|
(defvar epg-context)
|
|
|
|
|
2020-05-16 17:56:21 -04:00
|
|
|
(declare-function org-back-over-empty-lines "org" ())
|
|
|
|
(declare-function org-back-to-heading "org" (&optional invisible-ok))
|
|
|
|
(declare-function org-before-first-heading-p "org" ())
|
|
|
|
(declare-function org-end-of-meta-data "org" (&optional full))
|
|
|
|
(declare-function org-end-of-subtree "org" (&optional invisible-ok to-heading))
|
|
|
|
(declare-function org-entry-get "org" (pom property &optional inherit literal-nil))
|
|
|
|
(declare-function org-flag-subtree "org" (flag))
|
|
|
|
(declare-function org-make-tags-matcher "org" (match))
|
|
|
|
(declare-function org-previous-visible-heading "org" (arg))
|
|
|
|
(declare-function org-scan-tags "org" (action matcher todo-only &optional start-level))
|
|
|
|
(declare-function org-set-property "org" (property value))
|
2009-09-16 09:03:35 -04:00
|
|
|
|
|
|
|
(defgroup org-crypt nil
|
2012-07-30 04:08:15 -04:00
|
|
|
"Org Crypt."
|
2012-03-19 16:38:12 -04:00
|
|
|
:tag "Org Crypt"
|
2011-03-06 04:01:33 -05:00
|
|
|
:group 'org)
|
2009-09-16 09:03:35 -04:00
|
|
|
|
|
|
|
(defcustom org-crypt-tag-matcher "crypt"
|
2010-07-15 16:26:51 -04:00
|
|
|
"The tag matcher used to find headings whose contents should be encrypted.
|
|
|
|
|
|
|
|
See the \"Match syntax\" section of the org manual for more details."
|
2012-03-19 16:38:12 -04:00
|
|
|
:type 'string
|
2011-03-06 04:01:33 -05:00
|
|
|
:group 'org-crypt)
|
2009-09-16 09:03:35 -04:00
|
|
|
|
2011-03-06 04:01:33 -05:00
|
|
|
(defcustom org-crypt-key ""
|
2010-07-15 16:26:51 -04:00
|
|
|
"The default key to use when encrypting the contents of a heading.
|
|
|
|
|
2020-05-15 10:56:57 -04:00
|
|
|
The string is matched against all keys in the key ring. In
|
|
|
|
particular, the empty string matches no key.
|
|
|
|
|
|
|
|
This setting can be overridden in the CRYPTKEY property.
|
|
|
|
|
|
|
|
If no key is found, look for the `epa-file-encrypt-to' local
|
|
|
|
variable. Ultimately fall back to symmetric encryption."
|
|
|
|
:group 'org-crypt
|
|
|
|
:type 'string)
|
2009-09-16 09:03:35 -04:00
|
|
|
|
2011-06-28 06:04:16 -04:00
|
|
|
(defcustom org-crypt-disable-auto-save 'ask
|
|
|
|
"What org-decrypt should do if `auto-save-mode' is enabled.
|
|
|
|
|
|
|
|
t : Disable auto-save-mode for the current buffer
|
|
|
|
prior to decrypting an entry.
|
|
|
|
|
|
|
|
nil : Leave auto-save-mode enabled.
|
|
|
|
This may cause data to be written to disk unencrypted!
|
|
|
|
|
2015-09-21 00:24:12 -04:00
|
|
|
`ask' : Ask user whether or not to disable auto-save-mode
|
2011-06-28 06:04:16 -04:00
|
|
|
for the current buffer.
|
|
|
|
|
2015-09-21 00:24:12 -04:00
|
|
|
`encrypt': Leave auto-save-mode enabled for the current buffer,
|
2011-06-28 06:04:16 -04:00
|
|
|
but automatically re-encrypt all decrypted entries
|
|
|
|
*before* auto-saving.
|
|
|
|
NOTE: This only works for entries which have a tag
|
|
|
|
that matches `org-crypt-tag-matcher'."
|
|
|
|
:group 'org-crypt
|
2012-03-19 16:38:12 -04:00
|
|
|
:version "24.1"
|
2011-06-28 06:04:16 -04:00
|
|
|
:type '(choice (const :tag "Always" t)
|
|
|
|
(const :tag "Never" nil)
|
|
|
|
(const :tag "Ask" ask)
|
|
|
|
(const :tag "Encrypt" encrypt)))
|
|
|
|
|
2020-05-16 17:53:48 -04:00
|
|
|
(defun org-crypt--encrypted-text (beg end)
|
|
|
|
"Return encrypted text in between BEG and END."
|
|
|
|
;; Ignore indentation.
|
|
|
|
(replace-regexp-in-string
|
|
|
|
"^[ \t]*" ""
|
|
|
|
(buffer-substring-no-properties beg end)))
|
|
|
|
|
|
|
|
(defun org-at-encrypted-entry-p ()
|
|
|
|
"Is the current entry encrypted?
|
|
|
|
When the entry is encrypted, return a pair (BEG . END) where BEG
|
|
|
|
and END are buffer positions delimiting the encrypted area."
|
|
|
|
(org-with-wide-buffer
|
|
|
|
(unless (org-before-first-heading-p)
|
|
|
|
(org-back-to-heading t)
|
|
|
|
(org-end-of-meta-data)
|
|
|
|
(let ((case-fold-search nil)
|
|
|
|
(banner-start (rx (seq bol
|
|
|
|
(zero-or-more (any "\t "))
|
|
|
|
"-----BEGIN PGP MESSAGE-----"
|
|
|
|
eol))))
|
|
|
|
(when (looking-at banner-start)
|
|
|
|
(let ((start (point))
|
|
|
|
(banner-end (rx (seq bol
|
|
|
|
(or (group (zero-or-more (any "\t "))
|
|
|
|
"-----END PGP MESSAGE-----"
|
|
|
|
eol)
|
|
|
|
(seq (one-or-more "*") " "))))))
|
|
|
|
(when (and (re-search-forward banner-end nil t) (match-string 1))
|
|
|
|
(cons start (line-beginning-position 2)))))))))
|
|
|
|
|
2011-08-28 14:46:47 -04:00
|
|
|
(defun org-crypt-check-auto-save ()
|
|
|
|
"Check whether auto-save-mode is enabled for the current buffer.
|
|
|
|
|
|
|
|
`auto-save-mode' may cause leakage when decrypting entries, so
|
|
|
|
check whether it's enabled, and decide what to do about it.
|
|
|
|
|
|
|
|
See `org-crypt-disable-auto-save'."
|
|
|
|
(when buffer-auto-save-file-name
|
|
|
|
(cond
|
|
|
|
((or
|
|
|
|
(eq org-crypt-disable-auto-save t)
|
|
|
|
(and
|
|
|
|
(eq org-crypt-disable-auto-save 'ask)
|
2012-08-11 13:10:44 -04:00
|
|
|
(y-or-n-p "org-decrypt: auto-save-mode may cause leakage. Disable it for current buffer? ")))
|
2015-09-20 12:40:35 -04:00
|
|
|
(message "org-decrypt: Disabling auto-save-mode for %s"
|
|
|
|
(or (buffer-file-name) (current-buffer)))
|
|
|
|
;; The argument to auto-save-mode has to be "-1", since
|
|
|
|
;; giving a "nil" argument toggles instead of disabling.
|
2011-08-28 14:46:47 -04:00
|
|
|
(auto-save-mode -1))
|
|
|
|
((eq org-crypt-disable-auto-save nil)
|
2012-08-11 13:10:44 -04:00
|
|
|
(message "org-decrypt: Decrypting entry with auto-save-mode enabled. This may cause leakage."))
|
2011-08-28 14:46:47 -04:00
|
|
|
((eq org-crypt-disable-auto-save 'encrypt)
|
|
|
|
(message "org-decrypt: Enabling re-encryption on auto-save.")
|
Remove final parts of XEmacs compatibility code
* lisp/org-compat.el: Declare `org-add-hook', `org-decompose-region',
`org-detach-overlay', `org-file-equal-p', `org-float-time',
`org-indent-line-to', `org-indent-to-column', `org-looking-at-p',
`org-looking-back', `org-propertize', `org-re' and
`org-select-frame-set-input-focus' as obsolete.
(org-overlay-display, org-overlay-before-string, org-find-overlays):
Move to "org.el"
(org-xemacs-key-equivalents, org-xemacs-p): Remove variables.
(org-region-active-p): Drop XEmacs support.
(org-xemacs-without-invisibility): Remove macro.
(org-get-x-clipboard-compat): Remove function.
* lisp/org-macs.el (org-match-string-no-properties): Remove function.
* lisp/ob-core.el:
* lisp/org-agenda.el:
* lisp/org-archive.el:
* lisp/org-clock.el:
* lisp/org-colview.el:
* lisp/org-crypt.el:
* lisp/org-element.el:
* lisp/org-faces.el:
* lisp/org-feed.el:
* lisp/org-footnote.el:
* lisp/org-habit.el:
* lisp/org-id.el:
* lisp/org-indent.el:
* lisp/org-inlinetask.el:
* lisp/org-lint.el:
* lisp/org-list.el:
* lisp/org-mouse.el:
* lisp/org-pcomplete.el:
* lisp/org-src.el:
* lisp/org-table.el:
* lisp/org-timer.el:
* lisp/org.el:
* lisp/ox-ascii.el:
* lisp/ox-odt.el:
* lisp/ox.el:
* contrib/lisp/org-notify.el:
* contrib/lisp/ox-taskjuggler.el:
* contrib/lisp/org-wikinodes.el:
* testing/lisp/test-org-src.el:
* testing/lisp/test-org.el: Silence byte-compiler.
2016-05-26 06:18:00 -04:00
|
|
|
(add-hook 'auto-save-hook
|
2013-04-18 04:29:00 -04:00
|
|
|
(lambda ()
|
|
|
|
(message "org-crypt: Re-encrypting all decrypted entries due to auto-save.")
|
|
|
|
(org-encrypt-entries))
|
|
|
|
nil t))
|
2011-08-28 14:46:47 -04:00
|
|
|
(t nil))))
|
|
|
|
|
2009-09-16 09:03:35 -04:00
|
|
|
(defun org-crypt-key-for-heading ()
|
2020-05-15 10:56:57 -04:00
|
|
|
"Return the encryption key(s) for the current heading.
|
|
|
|
Assume `epg-context' is set."
|
|
|
|
(or (epg-list-keys epg-context
|
|
|
|
(or (org-entry-get nil "CRYPTKEY" 'selective)
|
|
|
|
org-crypt-key))
|
|
|
|
(bound-and-true-p epa-file-encrypt-to)
|
|
|
|
(progn (message "No crypt key set, using symmetric encryption.") nil)))
|
2011-02-07 18:18:37 -05:00
|
|
|
|
2020-05-16 17:56:21 -04:00
|
|
|
;;;###autoload
|
2009-09-16 09:03:35 -04:00
|
|
|
(defun org-encrypt-entry ()
|
|
|
|
"Encrypt the content of the current headline."
|
|
|
|
(interactive)
|
2020-05-16 17:53:48 -04:00
|
|
|
(unless (org-at-encrypted-entry-p)
|
|
|
|
(require 'epg)
|
|
|
|
(setq-local epg-context (epg-make-context nil t t))
|
|
|
|
(org-with-wide-buffer
|
|
|
|
(org-back-to-heading t)
|
|
|
|
(let ((start-heading (point))
|
|
|
|
(crypt-key (org-crypt-key-for-heading))
|
|
|
|
(folded? (org-invisible-p (line-beginning-position))))
|
|
|
|
(org-end-of-meta-data)
|
|
|
|
(let ((beg (point))
|
|
|
|
(folded-heading
|
|
|
|
(and folded?
|
|
|
|
(save-excursion
|
|
|
|
(org-previous-visible-heading 1)
|
|
|
|
(point)))))
|
2016-03-10 03:43:36 -05:00
|
|
|
(goto-char start-heading)
|
|
|
|
(org-end-of-subtree t t)
|
|
|
|
(org-back-over-empty-lines)
|
2020-05-15 10:56:57 -04:00
|
|
|
(let* ((contents (delete-and-extract-region beg (point)))
|
|
|
|
(key (get-text-property 0 'org-crypt-key contents))
|
|
|
|
(checksum (get-text-property 0 'org-crypt-checksum contents)))
|
2017-01-01 04:26:22 -05:00
|
|
|
(condition-case err
|
2020-05-15 10:56:57 -04:00
|
|
|
(insert
|
|
|
|
;; Text and key have to be identical, otherwise we
|
|
|
|
;; re-crypt.
|
|
|
|
(if (and (equal crypt-key key)
|
|
|
|
(string= checksum (sha1 contents)))
|
|
|
|
(get-text-property 0 'org-crypt-text contents)
|
|
|
|
(epg-encrypt-string epg-context contents crypt-key)))
|
2017-01-01 04:26:22 -05:00
|
|
|
;; If encryption failed, make sure to insert back entry
|
|
|
|
;; contents in the buffer.
|
2020-05-15 10:56:57 -04:00
|
|
|
(error
|
|
|
|
(insert contents)
|
|
|
|
(error (error-message-string err)))))
|
2020-05-16 17:53:48 -04:00
|
|
|
(when folded-heading
|
|
|
|
(goto-char folded-heading)
|
2019-05-11 03:48:53 -04:00
|
|
|
(org-flag-subtree t))
|
2016-03-10 03:43:36 -05:00
|
|
|
nil)))))
|
2009-09-16 09:03:35 -04:00
|
|
|
|
2020-05-16 17:56:21 -04:00
|
|
|
;;;###autoload
|
2009-09-16 09:03:35 -04:00
|
|
|
(defun org-decrypt-entry ()
|
2010-03-21 03:16:08 -04:00
|
|
|
"Decrypt the content of the current headline."
|
2009-09-16 09:03:35 -04:00
|
|
|
(interactive)
|
2020-05-16 17:53:48 -04:00
|
|
|
(pcase (org-at-encrypted-entry-p)
|
|
|
|
(`(,beg . ,end)
|
|
|
|
(require 'epg)
|
|
|
|
(setq-local epg-context (epg-make-context nil t t))
|
|
|
|
(org-with-point-at beg
|
|
|
|
(org-crypt-check-auto-save)
|
|
|
|
(let* ((folded-heading
|
|
|
|
(and (org-invisible-p)
|
|
|
|
(save-excursion
|
|
|
|
(org-previous-visible-heading 1)
|
|
|
|
(point))))
|
|
|
|
(encrypted-text (org-crypt--encrypted-text beg end))
|
|
|
|
(decrypted-text
|
|
|
|
(decode-coding-string
|
|
|
|
(epg-decrypt-string epg-context encrypted-text)
|
|
|
|
'utf-8)))
|
|
|
|
;; Delete region starting just before point, because the
|
|
|
|
;; outline property starts at the \n of the heading.
|
|
|
|
(delete-region (1- (point)) end)
|
|
|
|
;; Store a checksum of the decrypted and the encrypted text
|
|
|
|
;; value. This allows reusing the same encrypted text if the
|
|
|
|
;; text does not change, and therefore avoid a re-encryption
|
|
|
|
;; process.
|
|
|
|
(insert "\n"
|
|
|
|
(propertize decrypted-text
|
|
|
|
'org-crypt-checksum (sha1 decrypted-text)
|
|
|
|
'org-crypt-key (org-crypt-key-for-heading)
|
|
|
|
'org-crypt-text encrypted-text))
|
|
|
|
(when folded-heading
|
|
|
|
(goto-char folded-heading)
|
|
|
|
(org-flag-subtree t))
|
|
|
|
nil)))
|
|
|
|
(_ nil)))
|
2009-09-16 09:03:35 -04:00
|
|
|
|
2020-05-16 17:56:21 -04:00
|
|
|
;;;###autoload
|
2009-09-16 09:03:35 -04:00
|
|
|
(defun org-encrypt-entries ()
|
2010-03-21 03:16:08 -04:00
|
|
|
"Encrypt all top-level entries in the current buffer."
|
2009-09-16 09:03:35 -04:00
|
|
|
(interactive)
|
2016-01-09 14:24:21 -05:00
|
|
|
(let ((org--matcher-tags-todo-only nil))
|
2012-03-21 19:49:07 -04:00
|
|
|
(org-scan-tags
|
|
|
|
'org-encrypt-entry
|
|
|
|
(cdr (org-make-tags-matcher org-crypt-tag-matcher))
|
2016-01-09 14:24:21 -05:00
|
|
|
org--matcher-tags-todo-only)))
|
2009-09-16 09:03:35 -04:00
|
|
|
|
2020-05-16 17:56:21 -04:00
|
|
|
;;;###autoload
|
2009-09-16 09:03:35 -04:00
|
|
|
(defun org-decrypt-entries ()
|
2010-03-21 03:16:08 -04:00
|
|
|
"Decrypt all entries in the current buffer."
|
2009-09-16 09:03:35 -04:00
|
|
|
(interactive)
|
2016-01-09 14:24:21 -05:00
|
|
|
(let ((org--matcher-tags-todo-only nil))
|
2012-03-21 19:49:07 -04:00
|
|
|
(org-scan-tags
|
|
|
|
'org-decrypt-entry
|
|
|
|
(cdr (org-make-tags-matcher org-crypt-tag-matcher))
|
2016-01-09 14:24:21 -05:00
|
|
|
org--matcher-tags-todo-only)))
|
2009-09-16 09:03:35 -04:00
|
|
|
|
2020-05-16 17:56:21 -04:00
|
|
|
;;;###autoload
|
2009-09-16 09:03:35 -04:00
|
|
|
(defun org-crypt-use-before-save-magic ()
|
2010-07-15 16:26:51 -04:00
|
|
|
"Add a hook to automatically encrypt entries before a file is saved to disk."
|
2010-04-01 07:11:54 -04:00
|
|
|
(add-hook
|
|
|
|
'org-mode-hook
|
Remove final parts of XEmacs compatibility code
* lisp/org-compat.el: Declare `org-add-hook', `org-decompose-region',
`org-detach-overlay', `org-file-equal-p', `org-float-time',
`org-indent-line-to', `org-indent-to-column', `org-looking-at-p',
`org-looking-back', `org-propertize', `org-re' and
`org-select-frame-set-input-focus' as obsolete.
(org-overlay-display, org-overlay-before-string, org-find-overlays):
Move to "org.el"
(org-xemacs-key-equivalents, org-xemacs-p): Remove variables.
(org-region-active-p): Drop XEmacs support.
(org-xemacs-without-invisibility): Remove macro.
(org-get-x-clipboard-compat): Remove function.
* lisp/org-macs.el (org-match-string-no-properties): Remove function.
* lisp/ob-core.el:
* lisp/org-agenda.el:
* lisp/org-archive.el:
* lisp/org-clock.el:
* lisp/org-colview.el:
* lisp/org-crypt.el:
* lisp/org-element.el:
* lisp/org-faces.el:
* lisp/org-feed.el:
* lisp/org-footnote.el:
* lisp/org-habit.el:
* lisp/org-id.el:
* lisp/org-indent.el:
* lisp/org-inlinetask.el:
* lisp/org-lint.el:
* lisp/org-list.el:
* lisp/org-mouse.el:
* lisp/org-pcomplete.el:
* lisp/org-src.el:
* lisp/org-table.el:
* lisp/org-timer.el:
* lisp/org.el:
* lisp/ox-ascii.el:
* lisp/ox-odt.el:
* lisp/ox.el:
* contrib/lisp/org-notify.el:
* contrib/lisp/ox-taskjuggler.el:
* contrib/lisp/org-wikinodes.el:
* testing/lisp/test-org-src.el:
* testing/lisp/test-org.el: Silence byte-compiler.
2016-05-26 06:18:00 -04:00
|
|
|
(lambda () (add-hook 'before-save-hook 'org-encrypt-entries nil t))))
|
2010-03-21 03:16:08 -04:00
|
|
|
|
|
|
|
(add-hook 'org-reveal-start-hook 'org-decrypt-entry)
|
2010-04-01 07:11:54 -04:00
|
|
|
|
2009-09-16 09:03:35 -04:00
|
|
|
(provide 'org-crypt)
|
|
|
|
|
|
|
|
;;; org-crypt.el ends here
|