-
Notifications
You must be signed in to change notification settings - Fork 6
/
Copy pathmain.go
98 lines (86 loc) · 2.47 KB
/
main.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
package main
import (
"bytes"
"fmt"
"io"
"os"
"os/exec"
"strings"
"syscall"
"github.com/pborman/getopt/v2"
"github.com/xaionaro-go/cryptoWallet"
)
var (
// Just some random values (from /dev/random)
initialKeyValue = []byte{
0xea, 0x30, 0xe0, 0xc7, 0x11, 0x4a, 0x64, 0x8b, 0x4a, 0xb3, 0x8f, 0xb9, 0xf1, 0x8a, 0x8d, 0xa1,
0x56, 0x03, 0xbe, 0xd2, 0xa3, 0xba, 0x63, 0x18, 0xf0, 0xd2, 0xda, 0x47, 0x2a, 0x97, 0xfa, 0x48,
}
iv = []byte{
0xf9, 0xa1, 0x99, 0xec, 0xa6, 0x81, 0x78, 0x19, 0xcc, 0x67, 0x55, 0x61, 0x6e, 0xc3, 0x1e, 0xd8,
}
)
func checkError(err error) {
if err == nil {
return
}
fmt.Fprintln(os.Stderr, "Got error:", err)
os.Exit(-1)
}
func run(stdin io.Reader, cmdName string, params ...string) error {
fmt.Println("Running:", cmdName, params)
cmd := exec.Command(cmdName, params...)
cmd.Stdout = os.Stdout
cmd.Stderr = os.Stderr
cmd.Stdin = stdin
return cmd.Run()
}
func usage() int {
getopt.Usage()
err := run(os.Stdin, "cryptsetup", "--help")
checkError(err)
return int(syscall.EINVAL)
}
func main() {
helpFlag := getopt.BoolLong("help", 'h', "print help message")
keyNameParameter := getopt.StringLong("trezor-key-name", 0, "luks", "sets the name of a key to be received from the Trezor")
getopt.Parse()
args := getopt.Args()
if *helpFlag {
os.Exit(usage())
}
var luksCmd string
for _, arg := range args {
if !strings.HasPrefix(arg, "luks") {
continue
}
luksCmd = arg
break
}
var err error
var decryptedKey []byte
var stdin io.Reader
stdin = os.Stdin
switch luksCmd {
case "":
os.Exit(usage())
case "luksOpen", "luksFormat", "luksDump", "luksResume", "luksAddKey", "luksChangeKey":
fmt.Println("Sent the request to the Trezor device (please confirm the operation if required)")
wallet := cryptoWallet.FindAny()
wallet.SetGetPinFunc(func(title, description, ok, cancel string) ([]byte, error) {
cmd := exec.Command("/lib/cryptsetup/askpass", title)
cmd.Stdin = os.Stdin
cmd.Stderr = os.Stderr
return cmd.Output()
})
wallet.SetGetConfirmFunc(func(title, description, ok, cancel string) (bool, error) {
return false, nil // Confirmation is required to reconnect to Trezor. We considered that disconnected Trezor is enough to exit the program.
})
decryptedKey, err = wallet.DecryptKey(`m/10019'/1'`, initialKeyValue, iv, *keyNameParameter)
checkError(err)
args = append([]string{"--key-file", "-"}, args...)
stdin = bytes.NewReader(decryptedKey)
}
err = run(stdin, "cryptsetup", args...)
checkError(err)
}