Introduce a cli interface to interace with the challenger client

This will make debugging easier both while developing and in production. No need to use it through the kcrypt binary anymore, because we might not actually care about decrypting the disks but rather about getting the passphrase from the KMS. Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me>
2025-09-27 21:38:55 +00:00 · 2025-09-18 13:47:10 +03:00
parent 80cd276ff3
commit f943b01c90
4 changed files with 698 additions and 14 deletions
--- a/cmd/discovery/client/client.go
+++ b/cmd/discovery/client/client.go
@@ -32,6 +32,11 @@ func NewClient() (*Client, error) {
 }

 // ❯ echo '{ "data": "{ \\"label\\": \\"LABEL\\" }"}' | sudo -E WSS_SERVER="http://localhost:8082/challenge" ./challenger "discovery.password"
+// GetPassphrase retrieves a passphrase for the given partition - core business logic
+func (c *Client) GetPassphrase(partition *block.Partition, attempts int) (string, error) {
+	return c.waitPass(partition, attempts)
+}
+
 func (c *Client) Start() error {
 	if err := os.RemoveAll(LOGFILE); err != nil { // Start fresh
 		return fmt.Errorf("removing the logfile: %w", err)
@@ -51,7 +56,8 @@ func (c *Client) Start() error {
 			}
 		}

-		pass, err := c.waitPass(b, 30)
+		// Use the extracted core logic
+		pass, err := c.GetPassphrase(b, 30)
 		if err != nil {
 			return pluggable.EventResponse{
 				Error: fmt.Sprintf("failed getting pass: %s", err.Error()),