mirror of
https://github.com/Llewellynvdm/Tomb.git
synced 2025-01-05 07:02:12 +00:00
Expanded steganographic functionality with cloakify integration
This commit is contained in:
parent
12767764fb
commit
f2eb1fd242
@ -14,10 +14,12 @@ addons:
|
|||||||
- steghide
|
- steghide
|
||||||
- qrencode
|
- qrencode
|
||||||
- e2fsprogs
|
- e2fsprogs
|
||||||
|
- python2.7
|
||||||
|
|
||||||
before_script:
|
before_script:
|
||||||
- make --directory=extras/kdf-keys
|
- make --directory=extras/kdf-keys
|
||||||
- sudo make --directory=extras/kdf-keys install
|
- sudo make --directory=extras/kdf-keys install
|
||||||
|
- sudo ./extras/install_cloakify.sh
|
||||||
|
|
||||||
script:
|
script:
|
||||||
- make --directory=extras/kdf-keys test
|
- make --directory=extras/kdf-keys test
|
||||||
|
@ -95,6 +95,8 @@ or if you are in a hurry
|
|||||||
// Steganography:
|
// Steganography:
|
||||||
bury hide a KEY inside a JPEG image (for use with -k)
|
bury hide a KEY inside a JPEG image (for use with -k)
|
||||||
exhume extract a KEY from a JPEG image (prints to stdout)
|
exhume extract a KEY from a JPEG image (prints to stdout)
|
||||||
|
cloak transform a KEY into a TEXT using CIPHER (for use with -k)
|
||||||
|
uncloak extract a KEY from a TEXT file using CIPHER (prints to stdout)
|
||||||
|
|
||||||
Options:
|
Options:
|
||||||
|
|
||||||
|
11
extras/install_cloakify.sh
Executable file
11
extras/install_cloakify.sh
Executable file
@ -0,0 +1,11 @@
|
|||||||
|
#!/bin/sh
|
||||||
|
set -ex
|
||||||
|
wget https://github.com/TryCatchHCF/Cloakify/archive/v1.0.3.tar.gz -O /tmp/cloakify.tar.gz
|
||||||
|
mkdir -p extras/cloakify
|
||||||
|
tar -xvf /tmp/cloakify.tar.gz --strip-components=1 -C $PWD/extras/cloakify
|
||||||
|
echo "#!/bin/sh
|
||||||
|
python2 $PWD/extras/cloakify/cloakify.py" > /usr/bin/cloakify
|
||||||
|
echo "#!/bin/sh
|
||||||
|
python2 $PWD/extras/cloakify/decloakify.py" > /usr/bin/decloakify
|
||||||
|
chmod +x /usr/bin/cloakify
|
||||||
|
chmod +x /usr/bin/decloakify
|
@ -62,4 +62,13 @@ if test_have_prereq STEGHIDE; then
|
|||||||
'
|
'
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
if test_have_prereq PYTHON2 CLOAKIFY DECLOAKIFY; then
|
||||||
|
test_expect_success 'Testing tomb and steganographic: cloak' '
|
||||||
|
tt cloak -k $tomb_key $TEST_HOME/cipher-amphibians $tomb_text
|
||||||
|
'
|
||||||
|
|
||||||
|
test_expect_success 'Testing tomb and steganographic: uncloak' '
|
||||||
|
tt uncloak -k $tomb_key_cloak $tomb_text $TEST_HOME/cipher-amphibians
|
||||||
|
'
|
||||||
|
fi
|
||||||
test_done
|
test_done
|
||||||
|
66
extras/test/cipher-amphibians
Normal file
66
extras/test/cipher-amphibians
Normal file
@ -0,0 +1,66 @@
|
|||||||
|
Allophrynidae
|
||||||
|
Pipidae
|
||||||
|
Dicroglossidae
|
||||||
|
Myobatrachidae
|
||||||
|
Mavortium
|
||||||
|
Indotyphlidae
|
||||||
|
Elongatus
|
||||||
|
Croceater
|
||||||
|
Xanthoptica
|
||||||
|
Telmatobiidae
|
||||||
|
Arthroleptidae
|
||||||
|
Phrynobatrachidae
|
||||||
|
Hynobiidae
|
||||||
|
Rivularis
|
||||||
|
Torosa
|
||||||
|
Ranidae
|
||||||
|
Leptodactylidae
|
||||||
|
Dendrobatidae
|
||||||
|
Alsodidae
|
||||||
|
Eleutherodactylidae
|
||||||
|
Bufonidae
|
||||||
|
Craugastoridae
|
||||||
|
Ambystomatidae
|
||||||
|
Hylodidae
|
||||||
|
Croceum
|
||||||
|
Sierrae
|
||||||
|
Ambystoma
|
||||||
|
Micrixalidae
|
||||||
|
Nyctibatrachidae
|
||||||
|
Taricha
|
||||||
|
Typhlonectidae
|
||||||
|
Attenuatus
|
||||||
|
Brachycephalidae
|
||||||
|
Dicamptodon
|
||||||
|
Platycephalus
|
||||||
|
Ichthyophiidae
|
||||||
|
Centrolenidae
|
||||||
|
Plethodontidae
|
||||||
|
Oregonensis
|
||||||
|
Hyperoliidae
|
||||||
|
Batrachoseps
|
||||||
|
Hylidae
|
||||||
|
Rhacophoridae
|
||||||
|
Diabolicus
|
||||||
|
Ensatina
|
||||||
|
Gavilanensis
|
||||||
|
Nigriventris
|
||||||
|
Californiense
|
||||||
|
Rhyacotritonidae
|
||||||
|
Salamandridae
|
||||||
|
Altasierrae
|
||||||
|
Plethodon
|
||||||
|
Megophryidae
|
||||||
|
Sigillatum
|
||||||
|
Variegatus
|
||||||
|
Tenebrosus
|
||||||
|
Microhylidae
|
||||||
|
Pacificus
|
||||||
|
Odontobatrachidae
|
||||||
|
Ceratobatrachidae
|
||||||
|
Odontophrynidae
|
||||||
|
Strabomantidae
|
||||||
|
Mantellidae
|
||||||
|
Hydromantes
|
||||||
|
Siphonopidae
|
||||||
|
Pyxicephalidae
|
@ -52,6 +52,9 @@ command -v e2fsck resize2fs > /dev/null && test_set_prereq RESIZER
|
|||||||
command -v tomb-kdb-pbkdf2 > /dev/null && test_set_prereq KDF
|
command -v tomb-kdb-pbkdf2 > /dev/null && test_set_prereq KDF
|
||||||
command -v qrencode > /dev/null && test_set_prereq QRENCODE
|
command -v qrencode > /dev/null && test_set_prereq QRENCODE
|
||||||
command -v lsof > /dev/null && test_set_prereq LSOF
|
command -v lsof > /dev/null && test_set_prereq LSOF
|
||||||
|
command -v python2 > /dev/null && test_set_prereq PYTHON2
|
||||||
|
command -v cloakify > /dev/null && test_set_prereq CLOAKIFY
|
||||||
|
command -v decloakify > /dev/null && test_set_prereq DECLOAKIFY
|
||||||
|
|
||||||
|
|
||||||
# GnuPG config
|
# GnuPG config
|
||||||
@ -86,6 +89,8 @@ test_export() {
|
|||||||
export tomb_key_new="$TMP/$testname.new.tomb.key"
|
export tomb_key_new="$TMP/$testname.new.tomb.key"
|
||||||
export tomb_key_steg="$TMP/$testname.steg.tomb.key"
|
export tomb_key_steg="$TMP/$testname.steg.tomb.key"
|
||||||
export tomb_img="$TMP/$testname.jpg"
|
export tomb_img="$TMP/$testname.jpg"
|
||||||
|
export tomb_text="$TMP/$testname.txt"
|
||||||
|
export tomb_key_cloak="$TMP/$testname.cloak.tomb.key"
|
||||||
}
|
}
|
||||||
|
|
||||||
tt() {
|
tt() {
|
||||||
|
139
tomb
139
tomb
@ -74,6 +74,8 @@ unsetopt allexport
|
|||||||
# Flag optional commands if available (see _ensure_dependencies())
|
# Flag optional commands if available (see _ensure_dependencies())
|
||||||
typeset -i KDF=1
|
typeset -i KDF=1
|
||||||
typeset -i STEGHIDE=1
|
typeset -i STEGHIDE=1
|
||||||
|
typeset -i CLOAKIFY=1
|
||||||
|
typeset -i DECLOAKIFY=1
|
||||||
typeset -i RESIZER=1
|
typeset -i RESIZER=1
|
||||||
typeset -i SWISH=1
|
typeset -i SWISH=1
|
||||||
typeset -i QRENCODE=1
|
typeset -i QRENCODE=1
|
||||||
@ -654,10 +656,18 @@ usage() {
|
|||||||
_print " engrave makes a QR code of a KEY to be saved on paper"
|
_print " engrave makes a QR code of a KEY to be saved on paper"
|
||||||
echo
|
echo
|
||||||
}
|
}
|
||||||
[[ $STEGHIDE == 1 ]] && {
|
[[ $STEGHIDE == 1 || $CLOAKIFY == 1 || $DECLOAKIFY == 1 ]] && {
|
||||||
_print " // Steganography:"
|
_print " // Steganography:"
|
||||||
|
[[ $STEGHIDE == 1 ]] && {
|
||||||
_print " bury hide a KEY inside a JPEG image (for use with -k)"
|
_print " bury hide a KEY inside a JPEG image (for use with -k)"
|
||||||
_print " exhume extract a KEY from a JPEG image (prints to stdout)"
|
_print " exhume extract a KEY from a JPEG image (prints to stdout)"
|
||||||
|
}
|
||||||
|
[[ $CLOAKIFY == 1 ]] && {
|
||||||
|
_print " cloak transform a KEY into TEXT using CIPHER (for use with -k)"
|
||||||
|
}
|
||||||
|
[[ $DECLOAKIFY == 1 ]] && {
|
||||||
|
_print " uncloak extract a KEY from a TEXT using CIPHER (prints to stdout)"
|
||||||
|
}
|
||||||
echo
|
echo
|
||||||
}
|
}
|
||||||
_print "Options:"
|
_print "Options:"
|
||||||
@ -847,6 +857,12 @@ _ensure_dependencies() {
|
|||||||
command -v lsof 1>/dev/null 2>/dev/null || LSOF=0
|
command -v lsof 1>/dev/null 2>/dev/null || LSOF=0
|
||||||
# Check for steghide
|
# Check for steghide
|
||||||
command -v steghide 1>/dev/null 2>/dev/null || STEGHIDE=0
|
command -v steghide 1>/dev/null 2>/dev/null || STEGHIDE=0
|
||||||
|
# Check for python2
|
||||||
|
command -v python2 -V 1>/dev/null 2>/dev/null || PYTHON2=0
|
||||||
|
# Check for cloakify
|
||||||
|
command -v cloakify 1>/dev/null 2>/dev/null || CLOAKIFY=0
|
||||||
|
# Check for decloakify
|
||||||
|
command -v decloakify 1>/dev/null 2>/dev/null || DECLOAKIFY=0
|
||||||
# Check for resize
|
# Check for resize
|
||||||
command -v resize2fs 1>/dev/null 2>/dev/null || RESIZER=0
|
command -v resize2fs 1>/dev/null 2>/dev/null || RESIZER=0
|
||||||
# Check for KDF auxiliary tools
|
# Check for KDF auxiliary tools
|
||||||
@ -1575,6 +1591,110 @@ exhume_key() {
|
|||||||
return $r
|
return $r
|
||||||
}
|
}
|
||||||
|
|
||||||
|
# Steganographic function to transform a key into harmless-looking text
|
||||||
|
# using a cipher
|
||||||
|
# Requires cloakify to be installed
|
||||||
|
#
|
||||||
|
# mandatory 1st arg: the cipher to use
|
||||||
|
# optional 2nd arg: the output file where to save the result (none for stdout)
|
||||||
|
cloakify_key() {
|
||||||
|
|
||||||
|
_load_key # Try loading key from option -k and set TOMBKEY
|
||||||
|
|
||||||
|
local cipher="$1" # The cipher to use
|
||||||
|
local destfile="$2" # (Optional) the output file where to save the
|
||||||
|
# result (none for stdout)
|
||||||
|
|
||||||
|
_success "Encoding key ::1 tomb key:: using cipher ::2 cipher file::" $TOMBKEYFILE $cipher
|
||||||
|
|
||||||
|
# Ensure we have a valid destination for the cloaked key
|
||||||
|
[[ -z $destfile ]] && {
|
||||||
|
destfile="/dev/stdout" # No file was specified: fallback to stdout
|
||||||
|
_message "printing cloaked key on stdout" }
|
||||||
|
|
||||||
|
# Bail out if destination exists, unless -f (force) was passed
|
||||||
|
[[ $destfile != "/dev/stdout" && -s $destfile ]] && {
|
||||||
|
_warning "File exists: ::1 output file::" $destfile
|
||||||
|
{ option_is_set -f } && {
|
||||||
|
_warning "Use of --force selected: overwriting."
|
||||||
|
rm -f $destfile
|
||||||
|
} || {
|
||||||
|
_warning "Make explicit use of --force to overwrite."
|
||||||
|
_failure "Refusing to overwrite file. Operation aborted." }
|
||||||
|
}
|
||||||
|
|
||||||
|
# Cipher the key
|
||||||
|
cloakify $TOMBKEYFILE $cipher >$destfile
|
||||||
|
if [ $? != 0 ]; then
|
||||||
|
_warning "Encoding error: cloakify reports problems."
|
||||||
|
res=1
|
||||||
|
else
|
||||||
|
_success "Tomb key encoded succesfully"
|
||||||
|
res=0
|
||||||
|
fi
|
||||||
|
|
||||||
|
return $res
|
||||||
|
}
|
||||||
|
|
||||||
|
# mandatory 1st arg: the text file where key is supposed to be
|
||||||
|
# mandatory 2nd arg: the cipher to use
|
||||||
|
# optional 3rd arg: the key where to save the result (none for stdout)
|
||||||
|
decloakify_key() {
|
||||||
|
[[ "$1" = "" ]] && {
|
||||||
|
_failure "Uncloak failed, no text file specified" }
|
||||||
|
[[ "$2" = "" ]] && {
|
||||||
|
_failure "Uncloak failed, no cipher file specified" }
|
||||||
|
|
||||||
|
local textfile="$1" # The text file where to look for the key
|
||||||
|
local cipher="$2" # The cipher to use
|
||||||
|
local destkey="$3" # (Optional) the key file where to save the
|
||||||
|
# result (none for stdout)
|
||||||
|
local r=1 # Return code (default: fail)
|
||||||
|
|
||||||
|
# write all messages to stderr to avoid polluting stdout
|
||||||
|
_MSG_FD_OVERRIDE=2
|
||||||
|
|
||||||
|
# Ensure the text file is readable
|
||||||
|
[[ ! -r $textfile ]] && {
|
||||||
|
_failure "Uncloak failed, text file not found: ::1 text file::" "${textfile:-none}" }
|
||||||
|
# Ensure the cipher file is readable
|
||||||
|
[[ ! -r $cipher ]] && {
|
||||||
|
_failure "Uncloak failed, cipher file not found: ::1 cipher file::" "${cipher:-none}" }
|
||||||
|
|
||||||
|
# Ensure we have a valid destination for the key
|
||||||
|
[[ -z $destkey ]] && { option_is_set -k } && destkey=$(option_value -k)
|
||||||
|
[[ -z $destkey ]] && {
|
||||||
|
destkey="/dev/stdout" # No key was specified: fallback to stdout
|
||||||
|
_message "printing uncloaked key on stdout" }
|
||||||
|
|
||||||
|
# Bail out if destination exists, unless -f (force) was passed
|
||||||
|
[[ $destkey != "/dev/stdout" && -s $destkey ]] && {
|
||||||
|
_warning "File exists: ::1 tomb key::" $destkey
|
||||||
|
{ option_is_set -f } && {
|
||||||
|
_warning "Use of --force selected: overwriting."
|
||||||
|
rm -f $destkey
|
||||||
|
} || {
|
||||||
|
_warning "Make explicit use of --force to overwrite."
|
||||||
|
_failure "Refusing to overwrite file. Operation aborted." }
|
||||||
|
}
|
||||||
|
|
||||||
|
# Extract the key from the text file
|
||||||
|
decloakify $textfile $cipher >$destkey
|
||||||
|
r=$?
|
||||||
|
|
||||||
|
# Report to the user
|
||||||
|
[[ "$destkey" = "/dev/stdout" ]] && destkey="stdout"
|
||||||
|
[[ $r == 0 ]] && {
|
||||||
|
_success "Key succesfully uncloaked to ::1 key::." $destkey
|
||||||
|
} || {
|
||||||
|
_warning "Nothing found in ::1 text file::" $textfile
|
||||||
|
}
|
||||||
|
|
||||||
|
unset _MSG_FD_OVERRIDE
|
||||||
|
|
||||||
|
return $r
|
||||||
|
}
|
||||||
|
|
||||||
# Produces a printable image of the key contents so a backup on paper
|
# Produces a printable image of the key contents so a backup on paper
|
||||||
# can be made and hidden in books etc.
|
# can be made and hidden in books etc.
|
||||||
engrave_key() {
|
engrave_key() {
|
||||||
@ -2898,6 +3018,8 @@ main() {
|
|||||||
subcommands_opts[help]=""
|
subcommands_opts[help]=""
|
||||||
subcommands_opts[bury]="k: -tomb-pwd: r: R: "
|
subcommands_opts[bury]="k: -tomb-pwd: r: R: "
|
||||||
subcommands_opts[exhume]="k: -tomb-pwd: r: R: "
|
subcommands_opts[exhume]="k: -tomb-pwd: r: R: "
|
||||||
|
subcommands_opts[cloak]="k: "
|
||||||
|
subcommands_opts[uncloak]="k: "
|
||||||
# subcommands_opts[decompose]=""
|
# subcommands_opts[decompose]=""
|
||||||
# subcommands_opts[recompose]=""
|
# subcommands_opts[recompose]=""
|
||||||
# subcommands_opts[install]=""
|
# subcommands_opts[install]=""
|
||||||
@ -3117,6 +3239,21 @@ main() {
|
|||||||
exhume_key $PARAM[1]
|
exhume_key $PARAM[1]
|
||||||
;;
|
;;
|
||||||
|
|
||||||
|
# STEGANOGRAPHY: transform key into text using cipher
|
||||||
|
cloak)
|
||||||
|
[[ $CLOAKIFY == 0 ]] && {
|
||||||
|
_failure "Cloakify not installed: cannot cipher keys into texts" }
|
||||||
|
cloakify_key $PARAM
|
||||||
|
;;
|
||||||
|
|
||||||
|
# STEGANOGRAPHY: read key from text using cipher
|
||||||
|
uncloak)
|
||||||
|
[[ $DECLOAKIFY == 0 ]] && {
|
||||||
|
_failure "Decloakify not installed: cannot decipher keys from texts" }
|
||||||
|
decloakify_key $PARAM
|
||||||
|
;;
|
||||||
|
|
||||||
|
|
||||||
## Internal commands useful to developers
|
## Internal commands useful to developers
|
||||||
|
|
||||||
# Make tomb functions available to the calling shell or script
|
# Make tomb functions available to the calling shell or script
|
||||||
|
Loading…
Reference in New Issue
Block a user