cmd/fscrypt: read key from stdin

Fixes #123
author: Dimitry Ishenko <dimitry.ishenko@gmail.com> 2021-11-29 20:25:56 -0500
committer: Dimitry Ishenko <dimitry.ishenko@gmail.com> 2021-11-29 22:35:21 -0500
commit: 38d6cee5930f8109e8ef72a47a8496c875c49280 (patch)
tree: 2cce8155eb5639a3ba8bf1aae590ac08a7927200 /cmd/fscrypt
parent: b273e4158760a80f6496d815ab07f45cc1713a05 (diff)
1 files changed, 29 insertions, 17 deletions
diff --git a/cmd/fscrypt/keys.go b/cmd/fscrypt/keys.go
index cb86404..b57c01d 100644
--- a/cmd/fscrypt/keys.go
+++ b/cmd/fscrypt/keys.go
@@ -22,6 +22,7 @@
 package main
 
 import (
+	"bufio"
 	"fmt"
 	"io"
 	"log"
@@ -106,6 +107,33 @@ func getPassphraseKey(prompt string) (*crypto.Key, error) {
 	return crypto.NewKeyFromReader(passphraseReader{})
 }
 
+func makeRawKey(info actions.ProtectorInfo) (*crypto.Key, error) {
+	// When running non-interactively and no key was provided,
+	// try to read it from stdin
+	if keyFileFlag.Value == "" && !term.IsTerminal(stdinFd) {
+		return crypto.NewFixedLengthKeyFromReader(bufio.NewReader(os.Stdin),
+			metadata.InternalKeyLen)
+	}
+
+	prompt := fmt.Sprintf("Enter key file for protector %q: ", info.Name())
+	// Raw keys use a file containing the key data.
+	file, err := promptForKeyFile(prompt)
+	if err != nil {
+		return nil, err
+	}
+	defer file.Close()
+
+	fileInfo, err := file.Stat()
+	if err != nil {
+		return nil, err
+	}
+
+	if fileInfo.Size() != metadata.InternalKeyLen {
+		return nil, errors.Wrap(ErrKeyFileLength, file.Name())
+	}
+	return crypto.NewFixedLengthKeyFromReader(file, metadata.InternalKeyLen)
+}
+
 // makeKeyFunc creates an actions.KeyFunc. This function customizes the KeyFunc
 // to whether or not it supports retrying, whether it confirms the passphrase,
 // and custom prefix for printing (if any).
@@ -179,23 +207,7 @@ func makeKeyFunc(supportRetry, shouldConfirm bool, prefix string) actions.KeyFun
 			if prefix != "" {
 				return nil, ErrNotPassphrase
 			}
-			prompt := fmt.Sprintf("Enter key file for protector %q: ", info.Name())
-			// Raw keys use a file containing the key data.
-			file, err := promptForKeyFile(prompt)
-			if err != nil {
-				return nil, err
-			}
-			defer file.Close()
-
-			fileInfo, err := file.Stat()
-			if err != nil {
-				return nil, err
-			}
-
-			if fileInfo.Size() != metadata.InternalKeyLen {
-				return nil, errors.Wrap(ErrKeyFileLength, file.Name())
-			}
-			return crypto.NewFixedLengthKeyFromReader(file, metadata.InternalKeyLen)
+			return makeRawKey(info)
 
 		default:
 			return nil, ErrInvalidSource
author	Dimitry Ishenko <dimitry.ishenko@gmail.com>	2021-11-29 20:25:56 -0500
committer	Dimitry Ishenko <dimitry.ishenko@gmail.com>	2021-11-29 22:35:21 -0500
commit	38d6cee5930f8109e8ef72a47a8496c875c49280 (patch)
tree	2cce8155eb5639a3ba8bf1aae590ac08a7927200 /cmd/fscrypt
parent	b273e4158760a80f6496d815ab07f45cc1713a05 (diff)