Re: [9fans] retry with aescbc

Re: [9fans] retry with aescbc

[Charles Forsyth]

i suggested

>>>			ramfs -m /n/kremvax >[2] /dev/null #suppress unmount message
>
> those that worry can include -p to make ramfs's memory private
> for the short time it lives.

but of course there was more to protect than just ramfs in that interaction.

Re: [9fans] retry with aescbc

[Russ Cox]

It should be read -m.
Factotum shouldn't accept
the multiline control message.

Russ

Re: [9fans] retry with aescbc

[Micah Stetson]

> # retry until good password
> ramfs -m /n/kremvax >[2] /dev/null #suppress unmount message
> status = 'failed to authenticate'
> while(~ $status *'failed to authenticate'*)
> 	auth/aescbc -d < lib/factotum.aes > /n/kremvax/factotum
> cp /n/kremvax/factotum /mnt/factotum/ctl
> unmount /n/kremvax

When I use cp to inject keys into factotum, I get weird results.
Should read -m always be used, or is this a bug in factotum?
Here's what I get reading /mnt/factotum/ctl after read -m:

key ek=2F n=reallylongnumber proto=sshrsa size=1024 !dk? !p? !q? !kp? !kq? !c2?
key dom=outside.plan9.bell-labs.com proto=p9sk1 user=micah !password?
key proto=vnc server=cephas !password?

But using cp, I get this:

key dom=outside.plan9.bell-labs.com ek=2F key='' key='' n=reallylongnumber proto=sshrsa server=cephas size=1024 user=micah !dk? !p? !q? !kp? !kq? !c2? !password? !password?
key dom=outside.plan9.bell-labs.com ek=2F key='' key='' n=reallylongnumber proto=p9sk1 server=cephas size=1024 user=micah !dk? !p? !q? !kp? !kq? !c2? !password? !password?
key dom=outside.plan9.bell-labs.com ek=2F key='' key='' n=reallylongnumber proto=vnc server=cephas size=1024 user=micah !dk? !p? !q? !kp? !kq? !c2? !password? !password?

I think this is a consequence of cp using a single write to copy
the file.  I wouldn't bring it up except that rob uses cp in his
example.

Micah

Re: [9fans] retry with aescbc

[Charles Forsyth]

>>			ramfs -m /n/kremvax >[2] /dev/null #suppress unmount message

those that worry can include -p to make ramfs's memory private
for the short time it lives.

[9fans] retry with aescbc

[rob pike, esq.]

Russ fixed the rc buglet, so if you get new stuff from sources you can use

			# retry until good password
			ramfs -m /n/kremvax >[2] /dev/null #suppress unmount message
			status = 'failed to authenticate'
			while(~ $status *'failed to authenticate'*)
				auth/aescbc -d < lib/factotum.aes > /n/kremvax/factotum
			cp /n/kremvax/factotum /mnt/factotum/ctl
			unmount /n/kremvax

Also, Eric fixed a buglet in aescbc so it takes <CR> for an answer,
making it possible to get out of this loop by providing an empty
password.

-rob

[9fans] retry with aescbc

[rob pike, esq.]

auth/aescbc detects a bad password but generates output anyway, so
if you use it as a μsecstore you'll be disappointed the first time
you type a bad password. that is, if you
	auth/aescbc -d < lib/factotum.aes > /mnt/factotum/ctl
and get the password wrong, factotum will get delivered garbage.
here's a clumsy wrapper that addresses the issue; perhaps someone
else will find a better way.  (the need for $result is due to a
buglet in rc regarding $status at the top of a while loop.)

	# retry until good password
	ramfs -m /n/kremvax >[2] /dev/null #suppress unmount message
	result = 'failed to authenticate'
	while(~ $result *'failed to authenticate'*){
		auth/aescbc -d < lib/factotum.aes > /n/kremvax/factotum
		result = $status
	}
	cp /n/kremvax/factotum /mnt/factotum/ctl
	unmount /n/kremvax

aescbc is a little too liberal with the exit string 'failed to
authenticate' but i've asked ehg to tighten it up.

-rob