#! /bin/sh
## keyfoo -- do something with a key, and e-mail it to its owner
## (C) 2001 Gergely Nagy <algernon@debian.org>
## (C) 2004 Benjamin Hill (Mako) <mako@debian.org>
##
## Released under the terms of the GNU GPL v2.
##

## some globals, initialized as empty
KF_KEY=
KF_ADDRESS=
KF_RECIPIENT=
KF_KEYID=
TEMPFILE=
KF_BODY=
KF_KEYFILE=
GPG='gpg'
KF_MAIL_CMD='mutt -F /dev/null -H "${KF_BODY}" -a "${KF_KEYFILE}" -e "set "'

# do not send email with the key
# KF_NOMAIL=1

# do not upload the key to a keyserver
KF_NOSEND=1

## this one prints the usage, *wonder*
keyfoo_usage ()
{
    cat <<EOF
keyfoo -- the key hacker script

Usage: keyfoo [id|email|whatever] <[address to send mail to]>
EOF
    exit ${1:-0}
}

## this one LARTs the user
keyfoo_not_configured ()
{
    cat <<EOF
keyfoo -- the key hacker script

keyfoo is not configured, no command specified to send the signed key,
please consult the documentation
EOF

    exit ${1:-1}
}

## this one parses the output of gpg --list-key
keyfoo_parse_gpg ()
{
    local kf_tmp
    kf_tmp=`gpg --list-key ${KF_KEY} | head -n 1`
    # and now a complicated regexp, I do this separately, so
    # the line will fit into 80 chars ;]
    KF_ADDRESS=`echo ${kf_tmp} | sed -e "s,^pub *[^ ]* *[0-9\-]* *,,"`
    KF_KEYID=`echo ${kf_tmp} | sed -e "s,^pub *[^\/]*\/\([^ ]*\) .*,0x\1,"`
}

## Here comes the main hackery-wackery
# first of all, check paramaters
if test $# -lt 1; then
    keyfoo_usage 1
fi

test -e /etc/keyfoorc && . /etc/keyfoorc
test -e ${HOME}/.keyfoorc && . ${HOME}/.keyfoorc

## Sanity check..
test -z "${KF_MAIL_CMD}" && keyfoo_not_configured

## determine the tempfile
if test -x /bin/tempfile; then
    TEMPFILE=`tempfile`
else
    TEMPFILE=${TMPDIR:-/tmp}/keyfoo.$$
fi

KF_KEY=$1;

KF_PRESIGN="gpg --recv-key ${KF_KEY} ; gpg --list-sigs ${KF_KEY}"
test -z "${KF_PRESIGN}" || eval "${KF_PRESIGN}"

keyfoo_parse_gpg

test $# -eq 2 && test x"$2" != x && KF_RECIPIENT=$2
KF_RECIPIENT=${KF_RECIPIENT:-$KF_ADDRESS}

# now, we got everything we'll ever need :]
# time to launch gpg --edit-key
gpg --sign-key ${KF_KEY}

KF_SUBJECT="Your signed GPG key (Key ID ${KF_KEYID})"

## now mail the thing
# first, create a draft mail:
KF_BODY=${TEMPFILE}
cat >${KF_BODY} <<EOF
Subject: ${KF_SUBJECT}
To: ${KF_RECIPIENT}
From: "Benj. Mako Hill" <mako@bork.hampshire.edu>
Bcc: mako@bork.hampshire.edu
X-Met: key signing

Attached to this e-mail is your GPG key which has now been signed by
both of my public keys.  I have *not* uploaded your key to any
keyservers. Please import the key and upload it yourself. 

I hope you will sign both of my public keys (607559E6 and
C99870B1). Note that I am in control of both <mako@bork.hampshire.edu>
and <mako@debian.org>. Please sign both UIDs on both keys upload them
to keyservers. Thank you if you already have.

Regards,
Benjamin Mako Hill

EOF

# export the key..
KF_KEYFILE=${TEMPFILE}.key
$GPG --armor --export ${KF_KEY} >${KF_KEYFILE}

# ..then launch the mailer
if [ ! "${KF_NOMAIL}" ]; then
    eval ${KF_MAIL_CMD}
fi
 
rm -f ${KF_KEYFILE} ${KF_BODY}

#### export the key

if [ ! "${KF_NOSEND}" ]; then
    eval "${GPG} --send-key ${KF_KEY}"
fi