Class: Trezor::Agent

Inherits:

Object

• Object
• Trezor::Agent

Includes:

Utils

Defined in:

lib/trezor/agent.rb

Constant Summary

MAPPING =

{
  Net::SSH::Authentication::Agent::SSH2_AGENT_REQUEST_VERSION => :send_version,
  Net::SSH::Authentication::Agent::SSH2_AGENT_REQUEST_IDENTITIES => :list_identities,
  Net::SSH::Authentication::Agent::SSH2_AGENT_SIGN_REQUEST => :sign_challenge
}

Instance Method Summary

• #failure_message ⇒ Object
• #initialize(socket_path:, key_manager:) ⇒ Agent constructor

  A new instance of Agent.

• #list_identities(body) ⇒ Object
• #on_request ⇒ Object
• #read_packet(socket) ⇒ Object
• #run ⇒ Object
• #send_version(body) ⇒ Object
• #server ⇒ Object
• #sign_challenge(body) ⇒ Object

Constructor Details

#initialize(socket_path:, key_manager:) ⇒ Agent

Returns a new instance of Agent.

# File 'lib/trezor/agent.rb', line 19

def initialize(socket_path:, key_manager:)
  @socket_path = socket_path
  @key_manager = key_manager
end

Instance Method Details

#failure_message ⇒ Object

# File 'lib/trezor/agent.rb', line 66

def failure_message
  Buffer.from(:byte, Net::SSH::Authentication::Agent::SSH_AGENT_FAILURE)
end

#list_identities(body) ⇒ Object

# File 'lib/trezor/agent.rb', line 57

def list_identities(body)
  Buffer.from(
    :byte, Net::SSH::Authentication::Agent::SSH2_AGENT_IDENTITIES_ANSWER,
    :long, @key_manager.identities.count,
    :string,
    @key_manager.map { |i| [i.key.to_blob, i.key_name] }.flatten
  )
end

#on_request ⇒ Object

# File 'lib/trezor/agent.rb', line 28

def on_request
  socket = server.accept
  Thread.new do
    yield(socket)
    socket.close
  end
end

#read_packet(socket) ⇒ Object

# File 'lib/trezor/agent.rb', line 80

def read_packet(socket)
  buffer = Buffer.new(socket.read(4))
  buffer.append(socket.read(buffer.read_long))
  type = buffer.read_byte
  #debug { "received agent packet #{type} len #{buffer.length - 4}" }
  return type, buffer
end

#run ⇒ Object

# File 'lib/trezor/agent.rb', line 36

def run
  while true
    on_request do |socket|
      while true
        type, body = read_packet(socket)
        break unless method_name = MAPPING[type]
        response = send(method_name, body)
        socket.write(Buffer.from(:string, response.to_s))
      end
    end
  end
ensure
  File.unlink(@socket_path) if File.exists?(@socket_path)
end

#send_version(body) ⇒ Object

# File 'lib/trezor/agent.rb', line 51

def send_version(body)
  # Net::SSH::Authentication::Agent::SSH2_AGENT_VERSION_RESPONSE
  buffer = body.read
  Buffer.from(:byte, 2, :long, 0)
end

#server ⇒ Object

# File 'lib/trezor/agent.rb', line 24

def server
  @server ||= UNIXServer.new(@socket_path)
end

#sign_challenge(body) ⇒ Object

# File 'lib/trezor/agent.rb', line 70

def sign_challenge(body)
  server_key = body.read_buffer.read_key
  blob = body.read_buffer
  return failure_message unless signature = @key_manager.sign(server_key, blob)
  Buffer.from(
    :byte, Net::SSH::Authentication::Agent::SSH2_AGENT_SIGN_RESPONSE,
    :string, signature
  )
end