Created
August 5, 2022 08:56
-
-
Save weakish/3c0b3dc0ee03a951f617abd94f3c59bf to your computer and use it in GitHub Desktop.
play with jsdoc typing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| const crypto = require("crypto"); | |
| const fs = require("fs"); | |
| const path = require("path"); | |
| const os = require("os"); | |
| const process = require("process"); | |
| const { Encryptor, Decryptor } = require("strong-cryptor"); | |
| const globby = require("globby"); | |
| const makeDir = require("make-dir"); | |
| const prompts = require("prompts"); | |
| const simpleGit = require("simple-git/promise"); | |
| /** | |
| * @template T, U | |
| * @typedef {U & { readonly __TYPE__: T}} Opaque */ | |
| /** @typedef {Opaque<'path', string>} Path */ | |
| /** @type {function(string): Path} */ | |
| const newPath = filePath => { | |
| if (filePath.includes("\0")) { | |
| throw new Error("path cannot contain NUL character"); | |
| } else { | |
| return /** @type Path */ (filePath); | |
| } | |
| }; | |
| /** @type {Path} */ | |
| const repo = newPath(path.join(os.homedir(), "loom")); | |
| /** @type {Path} */ | |
| const verifyKeyPath = newPath(path.join(repo, ".loom-verify.key")); | |
| /** @type {function(): boolean} */ | |
| const hasVerifyKey = () => hasFileOrDirectory(verifyKeyPath, "file"); | |
| /** @typedef {Opaque<'verifyKey', string>} VerifyKey */ | |
| /** @type {function(string): VerifyKey} */ | |
| const newVerifyKey = k => { | |
| if (/^[0-9a-fA-F]{8}$/.test(k)) { | |
| return /** @type {VerifyKey} */ (k); | |
| } else { | |
| throw new Error("verify key length must be a hex string of length 8"); | |
| } | |
| }; | |
| /** @type {function(): VerifyKey} */ | |
| const readVerifyKey = () => { | |
| return newVerifyKey(fs.readFileSync(verifyKeyPath, "utf-8")); | |
| }; | |
| /** @type {function(VerifyKey): void} */ | |
| const saveVerifyKey = verifyKey => { | |
| fs.writeFileSync(verifyKeyPath, verifyKey, "utf-8"); | |
| }; | |
| /** @typedef {Opaque<'encryptKey', string>} EncryptKey */ | |
| /** @type {function(string): EncryptKey} */ | |
| const newEncryptKey = k => { | |
| if (/^[0-9a-fA-F]{32}$/.test(k)) { | |
| return /** @type {EncryptKey} */ (k); | |
| } else { | |
| throw new Error("encrypt key length must be a hex string of length 32"); | |
| } | |
| }; | |
| /** @typedef {{filePath: Path, needEncryption: boolean}} SourceFile */ | |
| /** @type{function(Path, boolean): SourceFile} */ | |
| const newSourceFile = (filePath, needEncryption) => ({ | |
| filePath: newPath(path.resolve(filePath)), | |
| needEncryption | |
| }); | |
| /** @typedef {{type: 'password', name: string, message: string}} PasswordPrompt */ | |
| /** @type {PasswordPrompt} */ | |
| const passphrase = { | |
| type: "password", | |
| name: "passphrase", | |
| message: "Type a passphrase to generate encryption key:" | |
| }; | |
| /** @type {PasswordPrompt} */ | |
| const repeatedPassphrase = { | |
| type: "password", | |
| name: "repeatedPassphrase", | |
| message: "Type a passphrase to generate encryption key:" | |
| }; | |
| /** @type {function(string): [EncryptKey, VerifyKey]} */ | |
| const genKeyFromPass = pass => { | |
| /** @type {string} */ | |
| const sha256Hex = crypto | |
| .createHash("sha256") | |
| .update(pass) | |
| .digest("hex"); | |
| /** @type {EncryptKey} */ | |
| const encryptKey = newEncryptKey(sha256Hex.substring(0, 32)); | |
| /** @type {VerifyKey} */ | |
| const verifyKey = newVerifyKey(sha256Hex.substring(56, 64)); | |
| return [encryptKey, verifyKey]; | |
| }; | |
| /** @type {function(): Promise<EncryptKey>} */ | |
| const genEncryptKey = async () => { | |
| if (hasVerifyKey()) { | |
| /** @type {prompts.Answers<"passphrase">} */ | |
| const response = await prompts(passphrase); | |
| /** @type {[EncryptKey, VerifyKey]} */ | |
| const [encryptKey, verifyKey] = genKeyFromPass(response.passphrase); | |
| /** @type {VerifyKey} */ | |
| const existingVerifyKey = readVerifyKey(); | |
| if (verifyKey === existingVerifyKey) { | |
| return encryptKey; | |
| } else { | |
| console.log( | |
| "Passphrase dose not match record, probably because of typos. Try again." | |
| ); | |
| return genEncryptKey(); | |
| } | |
| } else { | |
| /** @type {prompts.Answers<"passphrase" | "repeatedPassphrase">} */ | |
| const response = await prompts([passphrase, repeatedPassphrase]); | |
| if (response.passphrase === response.repeatedPassphrase) { | |
| /** @type {[EncryptKey, VerifyKey]} */ | |
| const [encryptKey, verifyKey] = genKeyFromPass(response.passphrase); | |
| saveVerifyKey(verifyKey); | |
| return encryptKey; | |
| } else { | |
| console.log("Repeated passphrase does not match. Try again."); | |
| return genEncryptKey(); | |
| } | |
| } | |
| }; | |
| /** @type {function(SourceFile, Path, EncryptKey): Path?} */ | |
| const cpSourceFile = (sourceFile, destDir, key) => { | |
| /** @type {Path} */ | |
| const sourcePath = sourceFile.filePath; | |
| if (sourcePath.startsWith(os.homedir())) { | |
| /** @type {Path} */ | |
| const relativeSourcePath = newPath(path.relative(os.homedir(), sourcePath)); | |
| /** @type {Path} */ | |
| const dest = newPath(path.join(destDir, relativeSourcePath)); | |
| makeDir.sync(path.dirname(dest)); | |
| if (sourceFile.needEncryption) { | |
| /** @type {Encryptor} */ | |
| const encryptor = new Encryptor({ key }); | |
| /** @type {string} */ | |
| const encryptedData = encryptor.encryptFile(sourcePath); | |
| fs.writeFileSync(dest, encryptedData, "utf-8"); | |
| } else { | |
| fs.copyFileSync(sourceFile.filePath, dest); | |
| } | |
| return dest; | |
| } else { | |
| console.error( | |
| `${sourcePath} is not under home directory. Skip copying this file.` | |
| ); | |
| return null; | |
| } | |
| }; | |
| /** @type {function(SourceFile, Path, EncryptKey, string): void} */ | |
| const restoreSourceFile = (sourceFile, repoDir, key, destFilePath) => { | |
| /** @type {Path} */ | |
| const sourcePath = sourceFile.filePath; | |
| if (sourcePath.startsWith(os.homedir())) { | |
| /** @type {Path} */ | |
| const relativeSourcePath = newPath(path.relative(os.homedir(), sourcePath)); | |
| /** @type {Path} */ | |
| const dest = newPath(path.join(repoDir, relativeSourcePath)); | |
| if (sourceFile.needEncryption) { | |
| /** @type {Decryptor} */ | |
| const decryptor = new Decryptor({ key }); | |
| /** @type {Buffer} */ | |
| const decryptedData = decryptor.decryptFile(dest, { toBuffer: true }); | |
| fs.writeFileSync(destFilePath, decryptedData); | |
| } else { | |
| fs.copyFileSync(dest, destFilePath); | |
| } | |
| } else { | |
| console.error( | |
| `${sourcePath} is not under home directory. Skip restoring this file.` | |
| ); | |
| process.exit(1); | |
| } | |
| }; | |
| /** @type {function(string[]): Path?} */ | |
| const pickOnePath = candidates => { | |
| if (candidates.length === 1) { | |
| return newPath(candidates[0]); | |
| } else { | |
| return null; | |
| } | |
| }; | |
| /** @type {function(): SourceFile[]} */ | |
| const firefoxLockwise = () => { | |
| /** @type{string} */ | |
| const dotFirefox = path.join(os.homedir(), ".mozilla", "firefox"); | |
| /** @type{string[]} */ | |
| const loginsCandidates = globby.sync(`${dotFirefox}/*.default/logins.json`); // ignore nightly etc. | |
| /** @type{string[]} */ | |
| const key4Candidates = globby.sync(`${dotFirefox}/*.default/key4.db`); | |
| /** @type {Path?} */ | |
| const logins = pickOnePath(loginsCandidates); | |
| /** @type {Path?} */ | |
| const key4 = pickOnePath(key4Candidates); | |
| if (logins === null) { | |
| if (key4 === null) { | |
| return []; | |
| } else { | |
| return [newSourceFile(key4, true)]; | |
| } | |
| } else { | |
| if (key4 === null) { | |
| return [newSourceFile(logins, false)]; | |
| } else { | |
| return [newSourceFile(key4, true), newSourceFile(logins, false)]; | |
| } | |
| } | |
| }; | |
| /** @type{function(Path, 'file' | 'directory'): boolean} */ | |
| const hasFileOrDirectory = (fileOrDirectoryPath, fileOrDirectory) => { | |
| if (fs.existsSync(fileOrDirectoryPath)) { | |
| /** @type{fs.Stats} */ | |
| const f = fs.statSync(fileOrDirectoryPath); | |
| switch (fileOrDirectory) { | |
| case "file": { | |
| if (f.isFile()) { | |
| return true; | |
| } else { | |
| console.error(`${fileOrDirectoryPath} must be a file!`); | |
| return process.exit(1); | |
| } | |
| } | |
| case "directory": { | |
| if (f.isDirectory()) { | |
| return true; | |
| } else { | |
| console.error(`${fileOrDirectoryPath} must be a directory!`); | |
| return process.exit(1); | |
| } | |
| } | |
| } | |
| } else { | |
| return false; | |
| } | |
| }; | |
| /** @type {function(): boolean} */ | |
| const hasLoomRepo = () => | |
| hasFileOrDirectory(newPath(repo + "/.git"), "directory"); | |
| /** @typedef {Opaque<'git-remote', string>} GitRemote */ | |
| /** @type {function(string): GitRemote} */ | |
| const newGitRemote = url => /** @type {GitRemote} */ (url); | |
| // Assume current username is same as github user name. | |
| /** @type {GitRemote} */ | |
| const remoteRepo = newGitRemote( | |
| `git@github.com:${os.userInfo().username}/loom.git` | |
| ); | |
| /** @type {function(string): void} */ | |
| const gitIgnore = ignorePattern => { | |
| fs.writeFileSync(path.join(repo, ".gitignore"), ignorePattern, "utf-8"); | |
| }; | |
| /** @type {<T>(things: Array<T | null>) => Array<T>} */ | |
| const filterOutNull = things => things.filter(thing => thing !== null); | |
| /** @type {(...args: [] | [0] | [1, string]) => void} */ | |
| const usage = (...args) => { | |
| if (args.length === 0 || args[0] === 0) { | |
| console.log("usage: loom\n loom restore /path/to/source/file dest"); | |
| return process.exit(0); | |
| } else { | |
| /** @type {string} */ | |
| const message = args[1]; | |
| console.log(message); | |
| console.log("usage: loom\n loom restore /path/to/source/file dest"); | |
| return process.exit(1); | |
| } | |
| }; | |
| void (async () => { | |
| /** @type {string[]} */ | |
| const args = process.argv.slice(2); | |
| if (args.length === 0) { | |
| try { | |
| /** @typedef { import("simple-git/promise").SimpleGit } Git */ | |
| /** @type {Git} */ | |
| const git = simpleGit(); | |
| if (!hasLoomRepo()) { | |
| await git.clone(remoteRepo, repo); | |
| gitIgnore(".loom-verify.key"); | |
| process.chdir(repo); | |
| await git.cwd(repo); | |
| await git.add(".gitignore"); | |
| } | |
| process.chdir(repo); | |
| await git.cwd(repo); | |
| /** @type {EncryptKey} */ | |
| const encryptKey = await genEncryptKey(); | |
| /** @type {Path[]} */ | |
| const destPaths = filterOutNull( | |
| firefoxLockwise().map(sourceFile => | |
| cpSourceFile(sourceFile, repo, encryptKey) | |
| ) | |
| ); | |
| await git.add(destPaths); | |
| await git.commit(`:new: ${new Date().toISOString()}`); | |
| await git.push(remoteRepo, "master"); | |
| process.exit(0); | |
| } catch (error) { | |
| console.error(error); | |
| process.exit(1); | |
| } | |
| } else { | |
| /** @type {string} */ | |
| const arg = args[0]; | |
| if (["help", "--help", "-help", "-h"].includes(arg)) { | |
| usage(); | |
| } else if (arg === "restore") { | |
| /** @type {string | undefined} */ | |
| const restoreFile = args[1]; | |
| const restoreDest = args[2]; | |
| if (restoreFile === undefined) { | |
| usage(1, `restore file unspecified`); | |
| } else if (restoreDest === undefined) { | |
| usage(1, `restore destination unspecified`); | |
| } else { | |
| /** @type {EncryptKey} */ | |
| const encryptKey = await genEncryptKey(); | |
| /** @type {SourceFile | undefined} */ | |
| const restoreSource = firefoxLockwise().find( | |
| ({ filePath }) => filePath === restoreFile | |
| ); | |
| if (restoreSource === undefined) { | |
| usage(1, `unknown file: ${restoreFile}`); | |
| } else { | |
| restoreSourceFile(restoreSource, repo, encryptKey, restoreDest); | |
| } | |
| } | |
| } else { | |
| usage(1, `unknown argument: ${arg}`); | |
| } | |
| } | |
| })(); |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment