encryption mercurial configuration-files repository

Encrypting files added to Mercurial repositories on commit

Having read this past question for git, I would like to ask if there exists something like that, but

can be done programmatically (file list) on each machine;
works for Mercurial.

The reason for this is that I would like to include in my public dotfiles repository some configuration files that store password in plaintext. I know I could write a wraparound script for hg(1) but I would like to know if there are alternative approaches, just for the sake of curiosity.

Thank you.

Solution

You could use a pair of pre-commit and post-update hooks to encrypt/decrypt as necessary. See http://hgbook.red-bean.com/read/handling-repository-events-with-hooks.html for more details.

However, it's worth pointing out that if you're storing encrypted text in your repo you'll be unable to create meaningful diffs -- essentially everything will be like a binary file but also poorly compressible.

Converting a Java Keystore into PEM Format
Rijndael implementation in NodeJs not working the same as C# or Java
FusionAuth support for signed and encrypted assertions
How to add elliptic curve points in python?
How to fix javax.crypto.BadPaddingException: Given final block not properly padded
How to encrypt value for {cipher} in spring boot?
Jasypt out of maintenance? What to use for encryption with Spring Boot
How to XOR a file buffer in C and output to a new file
Encrypting AES key with RSA public key
Convert a binary string (SecureRandom.random_bytes) into a hexadecimal string?
When using AES, is there a way to tell if data was encrypted using 128 or 256 bit keys?
Why do AES-256-CBC encryption results differ between MariaDB and SCV Crypto Manager?
Quantum Computing and Encryption Breaking
Bouncy Castle Configuration for TLS
Error decrypting AES-encrypted text from file through stdin and pipe to stdout in Node.js
Cannot find a way to decrypt a JWE token in python (but created in ASP.Net) using jwcrypto
How to decrypt a string with unknown encryption algorithm?
Not able to store key in .jks file.I am using AES 256 algorithm and GCM mode
How to check if file is encrypted by ansible-vault?
Encrypt a string with Java for decryption using PHP
Data type to handle decrypting data - as method param data type
How to check if the decryption is correct?
What is the main difference between base64_encode hashing and (sha1, md5, ...)?
Javascript encryption for JSON object
How to encrypt/decrypt a dynamic SQL query in Golang with a fixed-size encrypted result?
How to get cipher text as result of encryption using aes cbc 128 bit with open ssl in c language
How to Export Private / Secret ASC Key to Decrypt GPG Files
Should I do any transformation to AES CMAC provided key?
Postfix and OpenJDK 11: "No appropriate protocol (protocol is disabled or cipher suites are inappropriate)"
"No key data found" when using pgpainless to import key