keyquorum 0.1.0-alpha.1

Shamir secret sharing daemon for distributed key quorum
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141

use anyhow::{bail, Result};
use tokio::io::{AsyncBufReadExt, AsyncWriteExt, BufReader};
use zeroize::Zeroize;

use keyquorum_core::protocol::{ActionResult, ClientMessage, DaemonMessage};
use keyquorum_core::types::ShareSubmission;

pub async fn run(user: Option<String>, socket: String) -> Result<()> {
    // Read share from stdin (pipe or interactive).
    // share_input is zeroized at end of function to avoid lingering in memory.
    let share_input = {
        if std::io::IsTerminal::is_terminal(&std::io::stdin()) {
            eprintln!("Enter share (then press Enter twice, or Ctrl+D):");
        }
        let mut buf = String::new();
        let mut saw_content = false;
        let mut in_envelope = false;
        let mut saw_envelope_blank = false;
        loop {
            let mut line = String::new();
            let n = std::io::stdin().read_line(&mut line)?;
            if n == 0 {
                break; // EOF (Ctrl+D or pipe ended)
            }
            let trimmed = line.trim();
            if trimmed.starts_with("KEYQUORUM-SHARE-") {
                in_envelope = true;
            }
            if trimmed.is_empty() {
                if in_envelope && !saw_envelope_blank {
                    // Blank line inside PEM envelope separates headers from payload
                    saw_envelope_blank = true;
                    buf.push_str(&line);
                    continue;
                }
                if saw_content {
                    break; // blank line after content = done
                }
                continue; // skip leading blank lines
            }
            saw_content = true;
            buf.push_str(&line);
        }
        buf.trim().to_string()
    };

    if share_input.is_empty() {
        bail!("no share data provided");
    }

    // Parse the share (auto-detects format: PEM envelope, bare v1, legacy base64/base32)
    let parsed = keyquorum_core::share_format::parse_share(&share_input)
        .map_err(|e| anyhow::anyhow!("invalid share: {}", e))?;

    if parsed.malformed_envelope {
        eprintln!(
            "warning: share extracted from malformed envelope (missing marker or headers)"
        );
    }

    let index = parsed.index;

    // Validate it's a valid sharks share
    if sharks::Share::try_from(parsed.sharks_data.as_slice()).is_err() {
        bail!("invalid share data");
    }

    // Build and serialize the message. share_input is moved into
    // ShareSubmission (which has ZeroizeOnDrop), so it's zeroized when
    // msg drops at the end of this block. The serialized json buffer
    // still contains the share data and is zeroized after sending.
    let mut json = {
        let msg = ClientMessage::SubmitShare {
            share: ShareSubmission {
                index,
                data: share_input,
                submitted_by: user,
            },
        };
        let mut j = serde_json::to_string(&msg)?;
        j.push('\n');
        j
        // msg drops here → ShareSubmission.data is zeroized
    };

    // Connect to daemon
    let conn = super::connect(&socket).await?;
    let (reader, mut writer) = conn.split();

    // Send the message, then zeroize the serialized buffer
    writer.write_all(json.as_bytes()).await?;
    writer.flush().await?;
    json.zeroize();

    // Read response
    let mut lines = BufReader::new(reader).lines();
    if let Some(line) = lines.next_line().await? {
        let response: DaemonMessage = serde_json::from_str(&line)?;
        print_response(&response);
    } else {
        bail!("daemon closed connection without responding");
    }

    Ok(())
}

fn print_response(msg: &DaemonMessage) {
    match msg {
        DaemonMessage::ShareAccepted { status } => {
            eprintln!("Share accepted.");
            eprintln!("  Shares: {}/{}", status.shares_received, status.threshold);
            if status.shares_needed > 0 {
                eprintln!("  Still need {} more share(s)", status.shares_needed);
            } else {
                eprintln!("  Quorum reached!");
            }
            let remaining = status.timeout_secs.saturating_sub(status.elapsed_secs);
            eprintln!("  Time remaining: {}m {}s", remaining / 60, remaining % 60);
        }
        DaemonMessage::ShareRejected { reason } => {
            eprintln!("Share rejected: {}", reason);
            std::process::exit(1);
        }
        DaemonMessage::QuorumReached { action_result } => match action_result {
            ActionResult::Success { message } => {
                eprintln!("Quorum reached! Action succeeded: {}", message);
            }
            ActionResult::Failure { message } => {
                eprintln!("Quorum reached but action failed: {}", message);
                std::process::exit(1);
            }
        },
        DaemonMessage::Error { message } => {
            eprintln!("Error: {}", message);
            std::process::exit(1);
        }
        DaemonMessage::Status { status } => {
            eprintln!("Status: {:?}", status.state);
        }
    }
}