homelab/sigtool
2
0
Fork 0
Code Issues Pull requests Projects Releases 3 Packages Wiki Activity Actions
sigtool/crypt.go

386 lines
8.2 KiB
Go
Raw Normal View History

WIP: added encryption key mgmt * added encrypt, decrypt commands (empty now) * use command abbreviation util library * switched to go1.13 (ed25519 now in stdlib) * added new code to convert/manage Ed25519 keys to Curve25519 (thanks to FiloSottile/age)
2019-10-09 14:52:34 -07:00
// crypt.go -- Encrypt/decrypt command handling
//
// (c) 2016 Sudhi Herle <sudhi@herle.net>
//
// Licensing Terms: GPLv2
//
// If you need a commercial license for this work, please contact
// the author.
//
// This software does not come with any express or implied
// warranty; it is provided "as is". No claim is made to its
// suitability for any purpose.
package main
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
import (
"fmt"
"io"
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
"io/ioutil"
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
"os"
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
"strings"
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
"github.com/opencoff/go-utils"
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
flag "github.com/opencoff/pflag"
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
"github.com/opencoff/sigtool/sign"
)
// sigtool encrypt [-i|--identity my.key] to.pub [to.pub] [ssh.pub] inputfile|- [-o output]
WIP: added encryption key mgmt * added encrypt, decrypt commands (empty now) * use command abbreviation util library * switched to go1.13 (ed25519 now in stdlib) * added new code to convert/manage Ed25519 keys to Curve25519 (thanks to FiloSottile/age)
2019-10-09 14:52:34 -07:00
func encrypt(args []string) {
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
fs := flag.NewFlagSet("encrypt", flag.ExitOnError)
fs.Usage = func() {
encryptUsage(fs)
}
var outfile string
var keyfile string
var envpw string
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
var nopw, force bool
Use size parsing option in pflag
2019-11-15 13:26:11 -08:00
var blksize uint64
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
fs.StringVarP(&outfile, "outfile", "o", "", "Write the output to file `F`")
fs.StringVarP(&keyfile, "sign", "s", "", "Sign using private key `S`")
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
fs.BoolVarP(&nopw, "no-password", "", false, "Don't ask for passphrase to decrypt the private key")
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
fs.StringVarP(&envpw, "env-password", "E", "", "Use passphrase from environment variable `E`")
Better handling of sender verification * Sender identity is never shared in the encrypted payload * Sender signs the data-encryption key via Ed25519 if sender-auth is desired; else a "signature" of all zeroes is used. In either case, this signature is encrypted with the same data-encryption key. * cleaned up stale code and updated tests
2020-03-23 10:44:40 -07:00
fs.SizeVarP(&blksize, "block-size", "B", 128*1024, "Use `S` as the encryption block size")
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
fs.BoolVarP(&force, "overwrite", "", false, "Overwrite the output file if it exists")
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
err := fs.Parse(args)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
var pws, infile string
var sk *sign.PrivateKey
if len(keyfile) > 0 {
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
sk, err = sign.ReadPrivateKey(keyfile, func() ([]byte, error) {
if nopw {
return nil, nil
}
if len(envpw) > 0 {
pws = os.Getenv(envpw)
} else {
pws, err = utils.Askpass("Enter passphrase for private key", false)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
}
}
return []byte(pws), nil
})
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
}
args = fs.Args()
if len(args) < 2 {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("Insufficient args. Try '%s --help'", os.Args[0])
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
var infd io.Reader = os.Stdin
Added new io.Reader and io.WriteCloser interface to Decryption and Encryption respectively. * added test case for streaming read/write * bumped version#
2020-02-14 18:47:25 -08:00
var outfd io.WriteCloser = os.Stdout
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
var inf *os.File
if len(args) > 1 {
infile = args[len(args)-1]
if infile != "-" {
inf := mustOpen(infile, os.O_RDONLY)
defer inf.Close()
infd = inf
}
}
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
// Lets try to read the authorized files
home, err := os.UserHomeDir()
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("can't find homedir for this user")
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
}
authkeys := fmt.Sprintf("%s/.ssh/authorized_keys", home)
authdata, err := ioutil.ReadFile(authkeys)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
if !os.IsNotExist(err) {
Die("can't open %s: %s", authkeys, err)
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
}
}
pka, err := sign.ParseAuthorizedKeys(authdata)
keymap := make(map[string]*sign.PublicKey)
for _, pk := range pka {
keymap[pk.Comment] = pk
}
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
if len(outfile) > 0 && outfile != "-" {
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
var mode os.FileMode = 0600 // conservative output mode
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
if inf != nil {
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
var err error
var ist, ost os.FileInfo
if ost, err = os.Stat(outfile); err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("can't stat %s: %s", outfile, err)
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
if ist, err = inf.Stat(); err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("can't stat %s: %s", infile, err)
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
if os.SameFile(ist, ost) {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("won't create output file: same as input file!")
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
mode = ist.Mode()
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
sf, err := sign.NewSafeFile(outfile, force, os.O_WRONLY|os.O_CREATE|os.O_TRUNC, mode)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
}
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
AtExit(sf.Abort)
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
defer sf.Abort()
outfd = sf
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
Teach 'sigtool enc' to accept a user defined block size
2019-10-21 13:28:27 -07:00
en, err := sign.NewEncryptor(sk, blksize)
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
}
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
errs := 0
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
for i := 0; i < len(args)-1; i++ {
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
var err error
var pk *sign.PublicKey
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
fn := args[i]
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
if strings.Index(fn, "@") > 0 {
var ok bool
pk, ok = keymap[fn]
if !ok {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Warn("can't find user %s in %s", fn, authkeys)
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
errs += 1
continue
}
} else {
pk, err = sign.ReadPublicKey(fn)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Warn("%s", err)
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
errs += 1
continue
}
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
err = en.AddRecipient(pk)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
}
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
if errs > 0 {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("Too many errors!")
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
}
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
err = en.Encrypt(infd, outfd)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
}
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
outfd.Close()
WIP: added encryption key mgmt * added encrypt, decrypt commands (empty now) * use command abbreviation util library * switched to go1.13 (ed25519 now in stdlib) * added new code to convert/manage Ed25519 keys to Curve25519 (thanks to FiloSottile/age)
2019-10-09 14:52:34 -07:00
}
Teach dec to run in test-only mode
2019-11-08 10:49:13 -08:00
type nullWriter struct{}
func (w *nullWriter) Write(p []byte) (int, error) {
return len(p), nil
}
func (w *nullWriter) Close() error {
return nil
}
var _ io.WriteCloser = &nullWriter{}
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
// sigtool decrypt a.key [file] [-o output]
WIP: added encryption key mgmt * added encrypt, decrypt commands (empty now) * use command abbreviation util library * switched to go1.13 (ed25519 now in stdlib) * added new code to convert/manage Ed25519 keys to Curve25519 (thanks to FiloSottile/age)
2019-10-09 14:52:34 -07:00
func decrypt(args []string) {
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
fs := flag.NewFlagSet("decrypt", flag.ExitOnError)
fs.Usage = func() {
decryptUsage(fs)
}
var envpw string
var outfile string
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
var pubkey string
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
var nopw, test, force bool
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
fs.StringVarP(&outfile, "outfile", "o", "", "Write the output to file `F`")
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
fs.BoolVarP(&nopw, "no-password", "", false, "Don't ask for passphrase to decrypt the private key")
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
fs.StringVarP(&envpw, "env-password", "E", "", "Use passphrase from environment variable `E`")
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
fs.StringVarP(&pubkey, "verify-sender", "v", "", "Verify that the sender matches public key in `F`")
Teach dec to run in test-only mode
2019-11-08 10:49:13 -08:00
fs.BoolVarP(&test, "test", "t", false, "Test the encrypted file against the given key without writing to output")
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
fs.BoolVarP(&force, "overwrite", "", false, "Overwrite the output file if it exists")
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
err := fs.Parse(args)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
args = fs.Args()
if len(args) < 1 {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("Insufficient args. Try '%s --help'", os.Args[0])
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
var infd io.Reader = os.Stdin
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
var outfd io.WriteCloser = os.Stdout
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
var inf *os.File
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
var infile string
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
keyfile := args[0]
sk, err := sign.ReadPrivateKey(keyfile, func() ([]byte, error) {
var pws string
if nopw {
return nil, nil
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
if len(envpw) > 0 {
pws = os.Getenv(envpw)
} else {
pws, err = utils.Askpass("Enter passphrase for private key", false)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
sigtool now supports openssh ed25519 public and private keys. * Added support to read openssh public keys and encrypted private keys * reworked private key handling * made password the default; generating keys without password requires explicit "--no-password"
2019-11-05 21:42:25 +01:00
}
}
return []byte(pws), nil
})
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
var pk *sign.PublicKey
if len(pubkey) > 0 {
pk, err = sign.ReadPublicKey(pubkey)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
}
}
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
if len(args) > 1 {
infile = args[1]
if infile != "-" {
inf := mustOpen(infile, os.O_RDONLY)
defer inf.Close()
infd = inf
}
}
Better handling of sender verification * Sender identity is never shared in the encrypted payload * Sender signs the data-encryption key via Ed25519 if sender-auth is desired; else a "signature" of all zeroes is used. In either case, this signature is encrypted with the same data-encryption key. * cleaned up stale code and updated tests
2020-03-23 10:44:40 -07:00
Teach dec to run in test-only mode
2019-11-08 10:49:13 -08:00
if test {
outfd = &nullWriter{}
} else if len(outfile) > 0 && outfile != "-" {
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
var mode os.FileMode = 0600 // conservative mode
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
if inf != nil {
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
var ist, ost os.FileInfo
var err error
if ost, err = os.Stat(outfile); err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("can't stat %s: %s", outfile, err)
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
if ist, err = inf.Stat(); err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("can't stat %s: %s", infile, err)
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
if os.SameFile(ist, ost) {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("won't create output file: same as input file!")
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
mode = ist.Mode()
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
sf, err := sign.NewSafeFile(outfile, force, os.O_WRONLY|os.O_CREATE|os.O_TRUNC, mode)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
}
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
AtExit(sf.Abort)
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
defer sf.Abort()
outfd = sf
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
Working version with enc/dec of all key types. * Updated README * fix non-ephemeral key wrap/unwrap * fix out of bounds error in decrypt
2019-10-18 15:42:08 -07:00
d, err := sign.NewDecryptor(infd)
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
}
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
Working version with enc/dec of all key types. * Updated README * fix non-ephemeral key wrap/unwrap * fix out of bounds error in decrypt
2019-10-18 15:42:08 -07:00
err = d.SetPrivateKey(sk, pk)
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
}
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
Better handling of sender verification * Sender identity is never shared in the encrypted payload * Sender signs the data-encryption key via Ed25519 if sender-auth is desired; else a "signature" of all zeroes is used. In either case, this signature is encrypted with the same data-encryption key. * cleaned up stale code and updated tests
2020-03-23 10:44:40 -07:00
if pk == nil && d.AuthenticatedSender() {
var fn string = infile
if len(fn) == 0 || fn == "-" {
fn = "<stdin>"
}
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Warn("%s: Missing sender Public Key; can't authenticate sender ..", fn)
Better handling of sender verification * Sender identity is never shared in the encrypted payload * Sender signs the data-encryption key via Ed25519 if sender-auth is desired; else a "signature" of all zeroes is used. In either case, this signature is encrypted with the same data-encryption key. * cleaned up stale code and updated tests
2020-03-23 10:44:40 -07:00
}
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
if err = d.Decrypt(outfd); err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("%s", err)
First working version of encrypt/decrypt * use protobuf for encryption-header * use fixed size file-header (42 bytes) before the encryption-header * add encryption/decryption contexts * teach MakePrivateKey() to fixup its internal public key bits
2019-10-17 14:29:01 -07:00
}
Teach dec to run in test-only mode
2019-11-08 10:49:13 -08:00
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
outfd.Close()
Teach dec to run in test-only mode
2019-11-08 10:49:13 -08:00
if test {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Warn("Enc file OK")
Teach dec to run in test-only mode
2019-11-08 10:49:13 -08:00
}
Refactored the core signing & encryption library, teach sigtool to use safe I/O. * Added new SafeFile (io.WriteCloser) class + methods to atomically write a file. * Teach core lib to use SafeFile for all file I/O * Teach sigtool to use SafeFile for all file I/O * Cleaned up the public interfaces of sign/ to be more coherent: - with uniform APIs for marshaling, unmarshaling, serialization. - removed KeyPair class/interface and stick to PrivateKey as the primary interface. * collected common rand utility functions into rand.go * Teach sigtool to NOT overwrite existing output files (keys, signatures etc.) * Teach sigtool to use a new --overwrite option for every command that creates files (generate, sign, encrypt, decrypt) * encrypt/decrypt will try to use the input file mode/perm where possible (unless input is stdin). * Added more tests
2022-04-29 21:36:39 +05:30
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
func encryptUsage(fs *flag.FlagSet) {
fmt.Printf(`%s encrypt: Encrypt a file to one or more recipients.
Usage: %s encrypt [options] to [to ...] infile|-
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Where TO is the public key of the recipient; it can be one of:
- a file referring to an SSH or sigtool public key.
- string of the form 'a@b' - in which case the user's default
ssh/authorized_keys is consulted to find the comment matching
'a@b' - in which case the user's ssh authorized_keys file is consulted to
find the comment matching the string.
INFILE is an input file to be encrypted. If the input file is '-' then %s
reads from STDIN. Unless '-o' is used, %s writes the encrypted output to STDOUT.
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
Options:
`, Z, Z, Z, Z)
fs.PrintDefaults()
os.Exit(0)
}
func decryptUsage(fs *flag.FlagSet) {
fmt.Printf(`%s decrypt: Decrypt a file.
Usage: %s decrypt [options] key [infile]
Where KEY is the private key to be used for decryption and INFILE is
the encrypted input file. If INFILE is not provided, %s reads
from STDIN. Unless '-o' is used, %s writes the decrypted output to STDOUT.
Options:
`, Z, Z, Z, Z)
fs.PrintDefaults()
os.Exit(0)
}
func mustOpen(fn string, flag int) *os.File {
fdk, err := os.OpenFile(fn, flag, 0600)
if err != nil {
Minor cleanups and one bugfix: * bugfix: use os.IsNotExist() instead of comparing errors for equality; this fixes incorrect handling of missing authorized_keys file. * move die() and warn() into die.go - and make them public functions. * teach die.go to also provide atexit() like functionality * teach all callers of sign.SafeFile{} to use AtExit() to delete temporary artifacts * symbol renaming: die->Die, warn->Warn.
2022-05-12 16:53:27 -07:00
Die("can't open file %s: %s", fn, err)
Added encrypt/decrypt commands to sigtool
2019-10-14 09:46:03 -07:00
}
return fdk
WIP: added encryption key mgmt * added encrypt, decrypt commands (empty now) * use command abbreviation util library * switched to go1.13 (ed25519 now in stdlib) * added new code to convert/manage Ed25519 keys to Curve25519 (thanks to FiloSottile/age)
2019-10-09 14:52:34 -07:00
}
Reference in a new issue Copy permalink