Passphrase fixups

[riyazdf]

Fixes some logic in the keystore when counting number of passphrase attempts, especially when short passphrases are provided.

🐳 $ bin/notary init testGun
Root key found, using: 4327a8deba2cae19a4b393d2c6cf3a2f349652c84bc41bc1e09ade182d86b19a
Enter passphrase for root key with ID 4327a8d:
Enter passphrase for new targets key with ID 454c204 (testGun):
Passphrase is too short. Please use a password manager to generate and store a good random passphrase.
Enter passphrase for new targets key with ID 454c204 (testGun):
Passphrase is too short. Please use a password manager to generate and store a good random passphrase.
...
Enter passphrase for new targets key with ID 454c204 (testGun):
Passphrase is too short. Please use a password manager to generate and store a good random passphrase.

* fatal: failed to add key to filestore: maximum number of passphrase attempts exceeded

Also, ensures that PromptRetriever() has an actual terminal when requesting passphrases and will error out with ErrNoInput if that is not the case instead of trying to read input over and over.

Closes #899
Closes #812

[cyli]

Non-blocking: wondering if we should decrease this number to 3 or some such? That would give the user 5 tries. (currently it fails out after 12 tries - I was wondering whether that's too many)

[endophage]

I agree. 10 is feeling like too many. Also would be good to move the exact number to a const.

[cyli]

Thank you for fixing this! LGTM - took it for a spin and it correctly terminates, and in a script without stdin it immediately fails.

[endophage]

Yeah, this is a good reason for us to switch to crypto/terminal in the future. Better API for retrieving passwords from the terminal.

[endophage]

LGTM. We can modify the number of retries separately