mlmmj-expose

author: Gregor Kleen <gkleen@yggdrasil.li> 2016-06-02 02:11:28 +0200
committer: Gregor Kleen <gkleen@yggdrasil.li> 2016-06-02 02:11:28 +0200
commit: 9af39788be8d359239b238c49c60247bda9fd69d (patch)
tree: 50ef3fb235b5a5f2f55ac78601a1927eccea63fc
parent: 1af57675931369e3b1a7b908b18469fc14497be7 (diff)
download: nixos-9af39788be8d359239b238c49c60247bda9fd69d.tar
nixos-9af39788be8d359239b238c49c60247bda9fd69d.tar.gz
nixos-9af39788be8d359239b238c49c60247bda9fd69d.tar.bz2
nixos-9af39788be8d359239b238c49c60247bda9fd69d.tar.xz
nixos-9af39788be8d359239b238c49c60247bda9fd69d.zip
3 files changed, 92 insertions, 3 deletions
diff --git a/ymir.nix b/ymir.nix
index faf139f4..115953e6 100644
--- a/ymir.nix
+++ b/ymir.nix
@@ -16,7 +16,8 @@ let
 in rec {
  imports =
    [
-      ./ymir-hw.nix
+      ./ymir/hw.nix
+      ./ymir/mlmmj-expose.nix
      ./custom/zsh.nix
      ./users.nix
      ./custom/tinc/def.nix
@@ -419,8 +420,9 @@ in rec {
      alias_maps = hash:/etc/postfix/aliases texthash:/srv/mail/spm
    '';
    extraMasterConf = ''
-      uucp  unix - n n - - pipe flags=Fqhu user=uucp  argv=/var/setuid-wrappers/uux -z -a$sender - $nexthop!rmail ($recipient)
+      uucp       unix - n n - - pipe flags=Fqhu user=uucp  argv=/var/setuid-wrappers/uux -z -a$sender - $nexthop!rmail ($recipient)
-      mlmmj unix - n n - - pipe flags=ORhu user=mlmmj argv=${pkgs.mlmmj}/bin/mlmmj-receive -F -L /var/spool/lists/''${user}
+      mlmmj      unix - n n - - pipe flags=ORhu user=mlmmj argv=${pkgs.mlmmj}/bin/mlmmj-receive -F -L /var/spool/lists/''${user}
+      mlmmj-subs unix - n n - - pipe flags=ORhu user=mlmmj argv=${pkgs.mlmmj-exposed}/bin/mlmmj-exposed /var/spool/lists/''${user} ''${extension}
    '';
    networks = ["127.0.0.0/8" "[::ffff:127.0.0.0]/104" "[::1]/128" "10.141.0.0/16"];
  };
diff --git a/ymir-hw.nix b/ymir/hw.nix
index 3ddf1035..3ddf1035 100644
--- a/ymir-hw.nix
+++ b/ymir/hw.nix
diff --git a/ymir/mlmmj-expose.nix b/ymir/mlmmj-expose.nix
new file mode 100644
index 00000000..4fa317a0
--- /dev/null
+++ b/ymir/mlmmj-expose.nix
@@ -0,0 +1,87 @@
+{ config, pkgs, ... }:
+let
+  haskellEnv = pkgs.haskellPackages.ghcWithPackages (pkgs: with pkgs; [ filepath directory simpleAES bytestring base64-bytestring ]);
+  mlmmj-exposed = pkgs.stdenv.mkDerivation {
+    name = "mlmmj-exposed";
+    src = pkgs.writeScript "mlmmj-exposed" ''
+      #! ${haskellEnv}/bin/runghc
+      {-# LANGUAGE ViewPatterns #-}
+      import System.IO
+      import System.IO.Error
+      import System.FilePath
+      import System.Environment
+      import System.Exit
+      import System.Directory
+      import System.Process
+      import Data.Char
+      import Control.Monad
+      import Codec.Crypto.SimpleAES
+      import qualified Data.ByteString.Lazy as LBS
+      import qualified Data.ByteString.Lazy.Char8 as CLBS
+      import qualified Data.ByteString as BS
+      import qualified Data.ByteString.Base64 as Base64
+      main :: IO ()
+      main = do
+        progName <- takeFileName <$> getProgName
+        case progName of
+          "mlmmj-exposed" -> do
+            args <- getArgs
+            case args of
+              [listDir, (Base64.decodeLenient -> extension)] -> do
+                setCurrentDirectory listDir
+                key <- (BS.readFile "exposed.key") `catchIOError` (\e -> if isDoesNotExistError e then randomKey >>= (\k -> BS.writeFile "exposed.key" k >> return k) else ioError e)
+                let (((map toLower -> ident), (map toLower -> recipient)) :: (String, String)) = read . CLBS.unpack $ decryptMsg CBC key recipientExt
+                identities <- (read <$> readFile "exposed.ids") `catchIOError` (\e -> if isDoesNotExistError e then return [] else ioError e)
+                unless (ident `elem` identities) . die $ "Unknown sender: ‘" ++ ident ++ "’"
+                subscribers <- getSubscribers
+                unless (recipient `elem` subscribers) . dio $ "Unknown recipient: ‘" ++ recipient ++ "’"
+                getContents >>= writeFile "queue/exposed"
+                callProcess "${pkgs.mlmmj}/bin/mlmmj-send" ["-L", listDir, "-l", "6", "-m", "queue/exposed", "-T", recipient]
+              _ -> hPutStrLn stderr ("Called without expected arguments (<listDirectory> <recipientExtension>)") >> exitWith (ExitFailure 2)
+          "mlmmj-expose" -> do
+            args <- getArgs
+            case args of
+              [listDir, (map toLower -> ident)] -> do
+                setCurrentDirectory listDir
+                identities <- (read <$> readFile "exposed.ids") `catchIOError` (\e -> if isDoesNotExistError e then return [] else ioError e)
+                case ident `elem` identities of
+                  True -> putStrLn "Identity is already known"
+                  False -> writeFile "exosed.ids" . show $ ident : identities
+              _ -> hPutStrLn stderr ("Called without expected arguments (<listDirectory> <senderIdentity>)") >> exitWith (ExitFailure 2)
+           "mlmmj-get-exposed" -> do
+            args <- getArgs
+            case args of
+              [listDir, (map toLower -> ident), (map toLower -> recipient)] -> do
+                setCurrentDirectory listDir
+                key <- (BS.readFile "exposed.key") `catchIOError` (\e -> if isDoesNotExistError e then randomKey >>= (\k -> BS.writeFile "exposed.key" k >> return k) else ioError e)
+                identities <- (read <$> readFile "exposed.ids") `catchIOError` (\e -> if isDoesNotExistError e then return [] else ioError e)
+                unless (ident `elem` identities) . die $ "Unknown sender: ‘" ++ ident ++ "’"
+                subscribers <- getSubscribers
+                unless (recipient `elem` subscribers) . dio $ "Unknown recipient: ‘" ++ recipient ++ "’"
+                encryptMsg CBC key (CLBS.pack . show $ (ident, recipient)) >>= CLBS.putStrLn
+              _ -> hPutStrLn stderr ("Called without expected arguments (<listDirectory> <senderIdentity> <recipient>)") >> exitWith (ExitFailure 2)
+          _ -> hPutStrLn stderr ("Called under unsupported name ‘" ++ progName ++ "’") >> exitWith (ExitFailure 2)
+      getSubscribers :: IO [String]
+      getSubscribers = map (map toLower) . concat <$> mapM (flip catchIOError (\e -> if isDoesNotExistError e then return [] else ioError e) . readDir) ["subscribers.d", "digesters.d"]
+        where
+          readDir dir = concat <$> mapM (fmap lines . readFile) =<< (getDirectoryContents dir)
+    '';
+    buildCommand = ''
+      mkdir -p $out/bin
+      cp $src $out/bin/.mlmmj-exposed
+      ln -s $out/bin/mlmmj-exposed .mlmmj-exposed
+    '';
+  };
+in rec {
+  environment.systemPackages = [ mlmmj-exposed ];
+}
author	Gregor Kleen <gkleen@yggdrasil.li>	2016-06-02 02:11:28 +0200
committer	Gregor Kleen <gkleen@yggdrasil.li>	2016-06-02 02:11:28 +0200
commit	9af39788be8d359239b238c49c60247bda9fd69d (patch)
tree	50ef3fb235b5a5f2f55ac78601a1927eccea63fc
parent	1af57675931369e3b1a7b908b18469fc14497be7 (diff)
download	nixos-9af39788be8d359239b238c49c60247bda9fd69d.tar nixos-9af39788be8d359239b238c49c60247bda9fd69d.tar.gz nixos-9af39788be8d359239b238c49c60247bda9fd69d.tar.bz2 nixos-9af39788be8d359239b238c49c60247bda9fd69d.tar.xz nixos-9af39788be8d359239b238c49c60247bda9fd69d.zip

diff --git a/ymir.nix b/ymir.nix index faf139f4..115953e6 100644 --- a/ymir.nix +++ b/ymir.nix
@@ -16,7 +16,8 @@ let
16	in rec {	16	in rec {
17	imports =	17	imports =
18	[	18	[
19	./ymir-hw.nix	19	./ymir/hw.nix
		20	./ymir/mlmmj-expose.nix
20	./custom/zsh.nix	21	./custom/zsh.nix
21	./users.nix	22	./users.nix
22	./custom/tinc/def.nix	23	./custom/tinc/def.nix
@@ -419,8 +420,9 @@ in rec {
419	alias_maps = hash:/etc/postfix/aliases texthash:/srv/mail/spm	420	alias_maps = hash:/etc/postfix/aliases texthash:/srv/mail/spm
420	'';	421	'';
421	extraMasterConf = ''	422	extraMasterConf = ''
422	uucp unix - n n - - pipe flags=Fqhu user=uucp argv=/var/setuid-wrappers/uux -z -a$sender - $nexthop!rmail ($recipient)	423	uucp unix - n n - - pipe flags=Fqhu user=uucp argv=/var/setuid-wrappers/uux -z -a$sender - $nexthop!rmail ($recipient)
423	mlmmj unix - n n - - pipe flags=ORhu user=mlmmj argv=${pkgs.mlmmj}/bin/mlmmj-receive -F -L /var/spool/lists/''${user}	424	mlmmj unix - n n - - pipe flags=ORhu user=mlmmj argv=${pkgs.mlmmj}/bin/mlmmj-receive -F -L /var/spool/lists/''${user}
		425	mlmmj-subs unix - n n - - pipe flags=ORhu user=mlmmj argv=${pkgs.mlmmj-exposed}/bin/mlmmj-exposed /var/spool/lists/''${user} ''${extension}
424	'';	426	'';
425	networks = ["127.0.0.0/8" "[::ffff:127.0.0.0]/104" "[::1]/128" "10.141.0.0/16"];	427	networks = ["127.0.0.0/8" "[::ffff:127.0.0.0]/104" "[::1]/128" "10.141.0.0/16"];
426	};	428	};


diff --git a/ymir-hw.nix b/ymir/hw.nix index 3ddf1035..3ddf1035 100644 --- a/ymir-hw.nix +++ b/ymir/hw.nix


diff --git a/ymir/mlmmj-expose.nix b/ymir/mlmmj-expose.nix new file mode 100644 index 00000000..4fa317a0 --- /dev/null +++ b/ymir/mlmmj-expose.nix
@@ -0,0 +1,87 @@
		1	{ config, pkgs, ... }:
		2
		3	let
		4	haskellEnv = pkgs.haskellPackages.ghcWithPackages (pkgs: with pkgs; [ filepath directory simpleAES bytestring base64-bytestring ]);
		5	mlmmj-exposed = pkgs.stdenv.mkDerivation {
		6	name = "mlmmj-exposed";
		7	src = pkgs.writeScript "mlmmj-exposed" ''
		8	#! ${haskellEnv}/bin/runghc
		9
		10	{-# LANGUAGE ViewPatterns #-}
		11
		12	import System.IO
		13	import System.IO.Error
		14	import System.FilePath
		15	import System.Environment
		16	import System.Exit
		17	import System.Directory
		18	import System.Process
		19
		20	import Data.Char
		21
		22	import Control.Monad
		23
		24	import Codec.Crypto.SimpleAES
		25
		26	import qualified Data.ByteString.Lazy as LBS
		27	import qualified Data.ByteString.Lazy.Char8 as CLBS
		28	import qualified Data.ByteString as BS
		29
		30	import qualified Data.ByteString.Base64 as Base64
		31
		32	main :: IO ()
		33	main = do
		34	progName <- takeFileName <$> getProgName
		35	case progName of
		36	"mlmmj-exposed" -> do
		37	args <- getArgs
		38	case args of
		39	[listDir, (Base64.decodeLenient -> extension)] -> do
		40	setCurrentDirectory listDir
		41	key <- (BS.readFile "exposed.key") `catchIOError` (\e -> if isDoesNotExistError e then randomKey >>= (\k -> BS.writeFile "exposed.key" k >> return k) else ioError e)
		42	let (((map toLower -> ident), (map toLower -> recipient)) :: (String, String)) = read . CLBS.unpack $ decryptMsg CBC key recipientExt
		43	identities <- (read <$> readFile "exposed.ids") `catchIOError` (\e -> if isDoesNotExistError e then return [] else ioError e)
		44	unless (ident `elem` identities) . die $ "Unknown sender: ‘" ++ ident ++ "’"
		45	subscribers <- getSubscribers
		46	unless (recipient `elem` subscribers) . dio $ "Unknown recipient: ‘" ++ recipient ++ "’"
		47	getContents >>= writeFile "queue/exposed"
		48	callProcess "${pkgs.mlmmj}/bin/mlmmj-send" ["-L", listDir, "-l", "6", "-m", "queue/exposed", "-T", recipient]
		49	_ -> hPutStrLn stderr ("Called without expected arguments (<listDirectory> <recipientExtension>)") >> exitWith (ExitFailure 2)
		50	"mlmmj-expose" -> do
		51	args <- getArgs
		52	case args of
		53	[listDir, (map toLower -> ident)] -> do
		54	setCurrentDirectory listDir
		55	identities <- (read <$> readFile "exposed.ids") `catchIOError` (\e -> if isDoesNotExistError e then return [] else ioError e)
		56	case ident `elem` identities of
		57	True -> putStrLn "Identity is already known"
		58	False -> writeFile "exosed.ids" . show $ ident : identities
		59	_ -> hPutStrLn stderr ("Called without expected arguments (<listDirectory> <senderIdentity>)") >> exitWith (ExitFailure 2)
		60	"mlmmj-get-exposed" -> do
		61	args <- getArgs
		62	case args of
		63	[listDir, (map toLower -> ident), (map toLower -> recipient)] -> do
		64	setCurrentDirectory listDir
		65	key <- (BS.readFile "exposed.key") `catchIOError` (\e -> if isDoesNotExistError e then randomKey >>= (\k -> BS.writeFile "exposed.key" k >> return k) else ioError e)
		66	identities <- (read <$> readFile "exposed.ids") `catchIOError` (\e -> if isDoesNotExistError e then return [] else ioError e)
		67	unless (ident `elem` identities) . die $ "Unknown sender: ‘" ++ ident ++ "’"
		68	subscribers <- getSubscribers
		69	unless (recipient `elem` subscribers) . dio $ "Unknown recipient: ‘" ++ recipient ++ "’"
		70	encryptMsg CBC key (CLBS.pack . show $ (ident, recipient)) >>= CLBS.putStrLn
		71	_ -> hPutStrLn stderr ("Called without expected arguments (<listDirectory> <senderIdentity> <recipient>)") >> exitWith (ExitFailure 2)
		72	_ -> hPutStrLn stderr ("Called under unsupported name ‘" ++ progName ++ "’") >> exitWith (ExitFailure 2)
		73
		74	getSubscribers :: IO [String]
		75	getSubscribers = map (map toLower) . concat <$> mapM (flip catchIOError (\e -> if isDoesNotExistError e then return [] else ioError e) . readDir) ["subscribers.d", "digesters.d"]
		76	where
		77	readDir dir = concat <$> mapM (fmap lines . readFile) =<< (getDirectoryContents dir)
		78	'';
		79	buildCommand = ''
		80	mkdir -p $out/bin
		81	cp $src $out/bin/.mlmmj-exposed
		82	ln -s $out/bin/mlmmj-exposed .mlmmj-exposed
		83	'';
		84	};
		85	in rec {
		86	environment.systemPackages = [ mlmmj-exposed ];
		87	}