Release keyfork v0.2.6

CHANGELOG.md

@@ -1,3 +1,50 @@
+# Keyfork v0.2.6
+
+* The `--daemon` flag has been added for `keyfork recover` subcommands.
+* `keyfork mnemonic generate` now has a bunch more options, to improve the out-of-the-box experience.
+* `keyfork shard metadata` can be used to get the threshold and OpenPGP certificates.
+* `keyfork derive openpgp` now correctly provides private keys, instead of public keys.
+
+### Changes in keyfork:
+
+```
+4e342ac keyfork: add `--daemon`
+c232828 superpower `keyfork mnemonic generate`
+8756c3d keyfork wizard generate-shard-secret: allow exporting certificates and cross-sign generated keys
+c95ed0b keyfork shard metadata: initial commit
+adb5293 keyfork derive openpgp: export secret keys instead of public certs
+```
+
+### Changes in keyfork-derive-openpgp:
+
+```
+adb5293 keyfork derive openpgp: export secret keys instead of public certs
+```
+
+### Changes in keyfork-prompt:
+
+```
+35e0eb5 keyfork-prompt: use raw mode for input
+```
+
+### Changes in keyfork-shard:
+
+```
+c95ed0b keyfork shard metadata: initial commit
+```
+
+### Changes in keyfork-tests:
+
+```
+19fbb51 keyfork-tests: initial commit. also, fixup test_util's Panicable to not be generic. it's always unit type
+```
+
+### Changes in keyforkd:
+
+```
+19fbb51 keyfork-tests: initial commit. also, fixup test_util's Panicable to not be generic. it's always unit type
+```
+
 # Keyfork v0.2.5
 
 ### Changes in keyfork:

Cargo.lock

@@ -629,6 +629,12 @@ version = "1.0.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "baf1de4339761588bc0619e3cbc0120ee582ebb74b53b4efbf79117bd2da40fd"
 
+[[package]]
+name = "cfg_aliases"
+version = "0.2.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "613afe47fcd5fac7ccf1db93babcb082c5994d996f20b8b159f2ad1658eb5724"
+
 [[package]]
 name = "chrono"
 version = "0.4.38"
@@ -1779,7 +1785,7 @@ dependencies = [
 
 [[package]]
 name = "keyfork"
-version = "0.2.5"
+version = "0.2.6"
 dependencies = [
  "base64",
  "card-backend-pcsc",
@@ -1797,6 +1803,7 @@ dependencies = [
  "keyforkd",
  "keyforkd-client",
  "keyforkd-models",
+ "nix",
  "openpgp-card",
  "openpgp-card-sequoia",
  "sequoia-openpgp",
@@ -1852,7 +1859,7 @@ dependencies = [
 
 [[package]]
 name = "keyfork-derive-openpgp"
-version = "0.1.4"
+version = "0.1.5"
 dependencies = [
  "anyhow",
  "ed25519-dalek",
@@ -1923,7 +1930,7 @@ dependencies = [
 
 [[package]]
 name = "keyfork-prompt"
-version = "0.2.0"
+version = "0.2.1"
 dependencies = [
  "keyfork-bug",
  "keyfork-crossterm",
@@ -2004,7 +2011,7 @@ dependencies = [
 
 [[package]]
 name = "keyforkd"
-version = "0.1.3"
+version = "0.1.4"
 dependencies = [
  "bincode",
  "hex-literal",
@@ -2273,6 +2280,18 @@ version = "1.0.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "650eef8c711430f1a879fdd01d4745a7deea475becfb90269c06775983bbf086"
 
+[[package]]
+name = "nix"
+version = "0.29.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "71e2746dc3a24dd78b3cfcb7be93368c6de9963d30f43a6a73998a9cf4b17b46"
+dependencies = [
+ "bitflags 2.6.0",
+ "cfg-if",
+ "cfg_aliases",
+ "libc",
+]
+
 [[package]]
 name = "nom"
 version = "7.1.3"

Cargo.toml

@@ -77,6 +77,9 @@ tokio = "1.35.1"
 v4l = "0.14.0"
 base64 = "0.22.1"
 
+[profile.release]
+debug = true
+
 [profile.dev.package.keyfork-qrcode]
 opt-level = 3
 debug = true

MAINTENANCE.md

@@ -3,6 +3,7 @@
 * Add and review a new blurb to the changelog by running the
 `make-changelog-blurb.sh` script and appending the result to the top of
 the file.
+	* Make sure to add some human-readable snippets at the top!
 * Update all versions of crates listed in the changelog.
 * Commit changes.
 * Run the `sign-new-versions.sh` script to tag the new versions.

crates/daemon/keyforkd/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "keyforkd"
-version = "0.1.3"
+version = "0.1.4"
 edition = "2021"
 license = "AGPL-3.0-only"
 

crates/derive/keyfork-derive-openpgp/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "keyfork-derive-openpgp"
-version = "0.1.4"
+version = "0.1.5"
 edition = "2021"
 license = "AGPL-3.0-only"
 

crates/keyfork/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "keyfork"
-version = "0.2.5"
+version = "0.2.6"
 edition = "2021"
 license = "AGPL-3.0-only"
 
@@ -47,3 +47,4 @@ clap_complete = { version = "4.4.6", optional = true }
 sequoia-openpgp = { workspace = true }
 keyforkd-models.workspace = true
 base64.workspace = true
+nix = { version = "0.29.0", default-features = false, features = ["process"] }

crates/keyfork/src/cli/recover.rs

@@ -1,6 +1,10 @@
 use super::Keyfork;
 use clap::{Parser, Subcommand};
 use std::path::PathBuf;
+use nix::{
+    sys::wait::waitpid,
+    unistd::{fork, ForkResult},
+};
 
 use keyfork_mnemonic::{English, Mnemonic};
 use keyfork_prompt::{
@@ -80,12 +84,32 @@ impl RecoverSubcommands {
 pub struct Recover {
     #[command(subcommand)]
     command: RecoverSubcommands,
+
+    /// Daemonize the server once started, restoring control back to the shell.
+    #[arg(long, global=true)]
+    daemon: bool,
 }
 
 impl Recover {
     pub fn handle(&self, _k: &Keyfork) -> Result<()> {
         let seed = self.command.handle()?;
         let mnemonic = Mnemonic::try_from_slice(&seed)?;
+        if self.daemon {
+            // SAFETY: Forking threaded programs is unsafe. We know we don't have multiple
+            // threads at this point.
+            match unsafe { fork() }? {
+                ForkResult::Parent { child } => {
+                    // wait for the child to die, so we don't exit prematurely
+                    waitpid(Some(child), None)?;
+                    return Ok(());
+                },
+                ForkResult::Child => {
+                    if let ForkResult::Parent { .. } = unsafe { fork() }? {
+                        return Ok(());
+                    }
+                },
+            }
+        }
         tokio::runtime::Builder::new_multi_thread()
             .enable_all()
             .build()

crates/util/keyfork-prompt/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "keyfork-prompt"
-version = "0.2.0"
+version = "0.2.1"
 description = "Prompt management utilities for Keyfork"
 repository = "https://git.distrust.co/public/keyfork"
 edition = "2021"