diff options
author | Matt Goins <mjgoins@openflows.com> | 2009-01-31 21:31:30 -0500 |
---|---|---|
committer | Matt Goins <mjgoins@openflows.com> | 2009-01-31 21:31:30 -0500 |
commit | af6f93d261025cd859996fce65e7edfc68fb1f34 (patch) | |
tree | ab92c8bc0b04c06a9ee38edfd46270fc40498140 | |
parent | 487fffd53cd109fb7f6291735c1f5cb5a0df8eeb (diff) | |
parent | 5d9e91f20216702ad675244465157ad54cde75a4 (diff) |
Merge commit 'jrollins/master'
-rwxr-xr-x | Makefile | 15 | ||||
-rw-r--r-- | packaging/debian/monkeysphere.dirs | 2 | ||||
-rwxr-xr-x | packaging/debian/monkeysphere.postinst | 17 | ||||
-rwxr-xr-x | packaging/debian/monkeysphere.postrm | 4 | ||||
-rwxr-xr-x | packaging/debian/monkeysphere.preinst | 20 | ||||
-rwxr-xr-x | packaging/debian/monkeysphere.prerm | 11 | ||||
-rwxr-xr-x | src/monkeysphere | 265 | ||||
-rw-r--r-- | src/subcommands/m/gen_subkey | 127 | ||||
-rw-r--r-- | src/subcommands/m/import_subkey | 54 | ||||
-rw-r--r-- | src/subcommands/m/ssh_proxycommand (renamed from src/subcommands/m/ssh-proxycommand) | 0 | ||||
-rw-r--r-- | src/subcommands/m/subkey_to_ssh_agent | 112 | ||||
-rw-r--r-- | src/subcommands/ma/add_certifier (renamed from src/subcommands/ma/add-certifier) | 0 | ||||
-rw-r--r-- | src/subcommands/ma/list_certifiers (renamed from src/subcommands/ma/list-certifiers) | 0 | ||||
-rw-r--r-- | src/subcommands/ma/remove_certifier (renamed from src/subcommands/ma/remove-certifier) | 0 | ||||
-rw-r--r-- | src/subcommands/ma/update_users (renamed from src/subcommands/ma/update-users) | 0 | ||||
-rw-r--r-- | src/subcommands/mh/add_hostname (renamed from src/subcommands/mh/add-hostname) | 0 | ||||
-rw-r--r-- | src/subcommands/mh/add_revoker (renamed from src/subcommands/mh/add-revoker) | 0 | ||||
-rw-r--r-- | src/subcommands/mh/extend_key (renamed from src/subcommands/mh/extend-key) | 0 | ||||
-rw-r--r-- | src/subcommands/mh/gen_key (renamed from src/subcommands/mh/gen-key) | 0 | ||||
-rw-r--r-- | src/subcommands/mh/import_key (renamed from src/subcommands/mh/import-key) | 0 | ||||
-rw-r--r-- | src/subcommands/mh/publish_key (renamed from src/subcommands/mh/publish-key) | 0 | ||||
-rw-r--r-- | src/subcommands/mh/revoke_hostname (renamed from src/subcommands/mh/revoke-hostname) | 0 | ||||
-rw-r--r-- | src/subcommands/mh/revoke_key (renamed from src/subcommands/mh/revoke-key) | 0 |
23 files changed, 321 insertions, 306 deletions
@@ -47,17 +47,20 @@ clean: # this target is to be called from the tarball, not from the git # working dir! install: all installman - mkdir -p $(DESTDIR)$(PREFIX)/bin $(DESTDIR)$(PREFIX)/sbin $(DESTDIR)$(PREFIX)/share/monkeysphere - mkdir -p $(DESTDIR)$(PREFIX)/share/doc/monkeysphere + mkdir -p $(DESTDIR)$(PREFIX)/bin $(DESTDIR)$(PREFIX)/sbin + mkdir -p $(DESTDIR)$(PREFIX)/share/monkeysphere/m $(DESTDIR)$(PREFIX)/share/monkeysphere/mh $(DESTDIR)$(PREFIX)/share/monkeysphere/ma mkdir -p $(DESTDIR)$(ETCPREFIX)/etc/monkeysphere + mkdir -p $(DESTDIR)$(PREFIX)/share/doc/monkeysphere install src/monkeysphere src/keytrans/openpgp2ssh src/keytrans/pem2openpgp $(DESTDIR)$(PREFIX)/bin - install src/monkeysphere-authentication src/monkeysphere-host $(DESTDIR)$(PREFIX)/sbin + install src/monkeysphere-host src/monkeysphere-authentication $(DESTDIR)$(PREFIX)/sbin install -m 0644 src/common $(DESTDIR)$(PREFIX)/share/monkeysphere + install -m 0644 src/subcommands/m/* $(DESTDIR)$(PREFIX)/share/monkeysphere/m + install -m 0644 src/subcommands/mh/* $(DESTDIR)$(PREFIX)/share/monkeysphere/mh + install -m 0644 src/subcommands/ma/* $(DESTDIR)$(PREFIX)/share/monkeysphere/ma install doc/* $(DESTDIR)$(PREFIX)/share/doc/monkeysphere - install -m 0644 etc/gnupg-host.conf $(DESTDIR)$(ETCPREFIX)/etc/monkeysphere/gnupg-host.conf$(ETCSUFFIX) - install -m 0644 etc/gnupg-authentication.conf $(DESTDIR)$(ETCPREFIX)/etc/monkeysphere/gnupg-authentication.conf$(ETCSUFFIX) install -m 0644 etc/monkeysphere.conf $(DESTDIR)$(ETCPREFIX)/etc/monkeysphere/monkeysphere.conf$(ETCSUFFIX) - install -m 0644 etc/monkeysphere-server.conf $(DESTDIR)$(ETCPREFIX)/etc/monkeysphere/monkeysphere-server.conf$(ETCSUFFIX) + install -m 0644 etc/monkeysphere-host.conf $(DESTDIR)$(ETCPREFIX)/etc/monkeysphere/monkeysphere-host.conf$(ETCSUFFIX) + install -m 0644 etc/monkeysphere-authentication.conf $(DESTDIR)$(ETCPREFIX)/etc/monkeysphere/monkeysphere-authentication.conf$(ETCSUFFIX) installman: mkdir -p $(DESTDIR)$(MANPREFIX)/man1 $(DESTDIR)$(MANPREFIX)/man7 $(DESTDIR)$(MANPREFIX)/man8 diff --git a/packaging/debian/monkeysphere.dirs b/packaging/debian/monkeysphere.dirs index 1f9e66b..e07fb2c 100644 --- a/packaging/debian/monkeysphere.dirs +++ b/packaging/debian/monkeysphere.dirs @@ -1,6 +1,4 @@ var/lib/monkeysphere -var/lib/monkeysphere/authorized_keys -var/lib/monkeysphere/tmp usr/bin usr/sbin usr/share diff --git a/packaging/debian/monkeysphere.postinst b/packaging/debian/monkeysphere.postinst index 8f1fe77..c697ae2 100755 --- a/packaging/debian/monkeysphere.postinst +++ b/packaging/debian/monkeysphere.postinst @@ -2,12 +2,12 @@ # postinst script for monkeysphere -# Author: Jameson Rollins <jrollins@fifthhorseman.net> -# Copyright 2008 +# Author: Jameson Rollins <jrollins@finestructure.net> +# Copyright 2008-2009 -ETC="/etc/monkeysphere" VARLIB="/var/lib/monkeysphere" +# add a monkeysphere user if one does not already exist if ! getent passwd monkeysphere >/dev/null ; then echo "adding monkeysphere user..." adduser --quiet --system --no-create-home --group \ @@ -17,15 +17,8 @@ if ! getent passwd monkeysphere >/dev/null ; then monkeysphere fi -# install host gnupg home directory -install --owner root --group monkeysphere --mode 750 -d "$VARLIB"/gnupg-host -# link in the gpg.conf -ln -sTf "$ETC"/gnupg-host.conf "$VARLIB"/gnupg-host/gpg.conf - -# install authentication gnupg home directory -install --owner monkeysphere --group monkeysphere --mode 700 -d "$VARLIB"/gnupg-authentication -# link in the gpg.conf -ln -sTf "$ETC"/gnupg-authentication.conf "$VARLIB"/gnupg-authentication/gpg.conf +# import the host ssh key into the monkeysphere, with no expiration +# FIXME: figure out how to do this best # dh_installdeb will replace this with shell code automatically # generated by other debhelper scripts. diff --git a/packaging/debian/monkeysphere.postrm b/packaging/debian/monkeysphere.postrm index 7c0fede..79f7245 100755 --- a/packaging/debian/monkeysphere.postrm +++ b/packaging/debian/monkeysphere.postrm @@ -2,8 +2,8 @@ # postrm script for monkeysphere -# Author: Jameson Rollins <jrollins@fifthhorseman.net> -# Copyright 2008 +# Author: Jameson Rollins <jrollins@finestructure.net> +# Copyright 2008-2009 case $1 in purge) diff --git a/packaging/debian/monkeysphere.preinst b/packaging/debian/monkeysphere.preinst index 528da84..73c4169 100755 --- a/packaging/debian/monkeysphere.preinst +++ b/packaging/debian/monkeysphere.preinst @@ -2,24 +2,8 @@ # preinst script for monkeysphere -# Author: Jameson Rollins <jrollins@fifthhorseman.net> -# Copyright 2008 - -ETC="/etc/monkeysphere" -VARLIB="/var/lib/monkeysphere" - -# move the gpg.conf files from the GNUPGHOMEs if they're there to -# /etc, where they will be linked back into the GNUPGHOMEs later -if [ -f "$VARLIB"/gnupg-host/gpg.conf -a ! -L "$VARLIB"/gnupg-host/gpg.conf ] ; then - mv "$VARLIB"/gnupg-host/gpg.conf "$ETC"/gpg-host.conf - chown root:root "$ETC"/gpg-host.conf - ln -s "$ETC"/gpg-host.conf "$VARLIB"/gnupg-host/gpg.conf -fi -if [ -f "$VARLIB"/gnupg-authentication/gpg.conf -a ! -L "$VARLIB"/gnupg-authentication/gpg.conf ] ; then - mv "$VARLIB"/gnupg-authentication/gpg.conf "$ETC"/gpg-authentication.conf - chown root:root "$ETC"/gpg-authentication.conf - ln -s "$ETC"/gpg-authentication.conf "$VARLIB"/gnupg-authentication/gpg.conf -fi +# Author: Jameson Rollins <jrollins@finestructure.net> +# Copyright 2008-2009 # dh_installdeb will replace this with shell code automatically # generated by other debhelper scripts. diff --git a/packaging/debian/monkeysphere.prerm b/packaging/debian/monkeysphere.prerm index 00523a1..1fb2636 100755 --- a/packaging/debian/monkeysphere.prerm +++ b/packaging/debian/monkeysphere.prerm @@ -2,15 +2,8 @@ # prerm script for monkeysphere -# Author: Jameson Rollins <jrollins@fifthhorseman.net> -# Copyright 2008 - -VARLIB="/var/lib/monkeysphere" - -rm -f "$VARLIB"/gnupg-host/gpg.conf -rm -f "$VARLIB"/gnupg-authentication/gpg.conf -rmdir --ignore-fail-on-non-empty "$VARLIB"/gnupg-host -rmdir --ignore-fail-on-non-empty "$VARLIB"/gnupg-authentication +# Author: Jameson Rollins <jrollins@finestructure.net> +# Copyright 2008-2009 # dh_installdeb will replace this with shell code automatically # generated by other debhelper scripts. diff --git a/src/monkeysphere b/src/monkeysphere index 46abf6f..bce0072 100755 --- a/src/monkeysphere +++ b/src/monkeysphere @@ -1,6 +1,6 @@ #!/usr/bin/env bash -# monkeysphere: MonkeySphere client tool +# monkeysphere: Monkeysphere client tool # # The monkeysphere scripts are written by: # Jameson Rollins <jrollins@fifthhorseman.net> @@ -18,6 +18,9 @@ SYSSHAREDIR=${MONKEYSPHERE_SYSSHAREDIR:-"/usr/share/monkeysphere"} export SYSSHAREDIR . "${SYSSHAREDIR}/common" || exit 1 +# sharedir for host functions +MSHAREDIR="${SYSSHAREDIR}/m" + # UTC date in ISO 8601 format if needed DATE=$(date -u '+%FT%T') @@ -56,261 +59,6 @@ subcommands: EOF } -# import an existing ssh key as a gpg subkey -import_subkey() { - local keyFile="~/.ssh/id_rsa" - local keyExpire - local keyID - local gpgOut - local userID - - # get options - while true ; do - case "$1" in - -f|--keyfile) - keyFile="$2" - shift 2 - ;; - -e|--expire) - keyExpire="$2" - shift 2 - ;; - *) - if [ "$(echo "$1" | cut -c 1)" = '-' ] ; then - failure "Unknown option '$1'. -Type '$PGRM help' for usage." - fi - break - ;; - esac - done - - log verbose "importing ssh key..." - fifoDir=$(mktemp -d ${TMPDIR:-/tmp}/tmp.XXXXXXXXXX) - (umask 077 && mkfifo "$fifoDir/pass") - ssh2openpgp | gpg --passphrase-fd 3 3< "$fifoDir/pass" --expert --command-fd 0 --import & - - passphrase_prompt "Please enter your passphrase for $keyID: " "$fifoDir/pass" - - rm -rf "$fifoDir" - wait - log verbose "done." -} - -# generate a subkey with the 'a' usage flags set -gen_subkey(){ - local keyLength - local keyExpire - local keyID - local gpgOut - local userID - - # get options - while true ; do - case "$1" in - -l|--length) - keyLength="$2" - shift 2 - ;; - -e|--expire) - keyExpire="$2" - shift 2 - ;; - *) - if [ "$(echo "$1" | cut -c 1)" = '-' ] ; then - failure "Unknown option '$1'. -Type '$PGRM help' for usage." - fi - break - ;; - esac - done - - case "$#" in - 0) - gpgSecOut=$(gpg --quiet --fixed-list-mode --list-secret-keys --with-colons 2>/dev/null | egrep '^sec:') - ;; - 1) - gpgSecOut=$(gpg --quiet --fixed-list-mode --list-secret-keys --with-colons "$1" | egrep '^sec:') || failure - ;; - *) - failure "You must specify only a single primary key ID." - ;; - esac - - # check that only a single secret key was found - case $(echo "$gpgSecOut" | grep -c '^sec:') in - 0) - failure "No secret keys found. Create an OpenPGP key with the following command: - gpg --gen-key" - ;; - 1) - keyID=$(echo "$gpgSecOut" | cut -d: -f5) - ;; - *) - echo "Multiple primary secret keys found:" - echo "$gpgSecOut" | cut -d: -f5 - failure "Please specify which primary key to use." - ;; - esac - - # check that a valid authentication key does not already exist - IFS=$'\n' - for line in $(gpg --quiet --fixed-list-mode --list-keys --with-colons "$keyID") ; do - type=$(echo "$line" | cut -d: -f1) - validity=$(echo "$line" | cut -d: -f2) - usage=$(echo "$line" | cut -d: -f12) - - # look at keys only - if [ "$type" != 'pub' -a "$type" != 'sub' ] ; then - continue - fi - # check for authentication capability - if ! check_capability "$usage" 'a' ; then - continue - fi - # if authentication key is valid, prompt to continue - if [ "$validity" = 'u' ] ; then - echo "A valid authentication key already exists for primary key '$keyID'." - read -p "Are you sure you would like to generate another one? (y/N) " OK; OK=${OK:N} - if [ "${OK/y/Y}" != 'Y' ] ; then - failure "aborting." - fi - break - fi - done - - # set subkey defaults - # prompt about key expiration if not specified - keyExpire=$(get_gpg_expiration "$keyExpire") - - # generate the list of commands that will be passed to edit-key - editCommands=$(cat <<EOF -addkey -7 -S -E -A -Q -$keyLength -$keyExpire -save -EOF -) - - log verbose "generating subkey..." - fifoDir=$(mktemp -d ${TMPDIR:-/tmp}/tmp.XXXXXXXXXX) - (umask 077 && mkfifo "$fifoDir/pass") - echo "$editCommands" | gpg --passphrase-fd 3 3< "$fifoDir/pass" --expert --command-fd 0 --edit-key "$keyID" & - - # FIXME: this needs to fail more gracefully if the passphrase is incorrect - passphrase_prompt "Please enter your passphrase for $keyID: " "$fifoDir/pass" - - rm -rf "$fifoDir" - wait - log verbose "done." -} - -subkey_to_ssh_agent() { - # try to add all authentication subkeys to the agent: - - local sshaddresponse - local secretkeys - local authsubkeys - local workingdir - local keysuccess - local subkey - local publine - local kname - - if ! test_gnu_dummy_s2k_extension ; then - failure "Your version of GnuTLS does not seem capable of using with gpg's exported subkeys. -You may want to consider patching or upgrading to GnuTLS 2.6 or later. - -For more details, see: - http://lists.gnu.org/archive/html/gnutls-devel/2008-08/msg00005.html" - fi - - # if there's no agent running, don't bother: - if [ -z "$SSH_AUTH_SOCK" ] || ! which ssh-add >/dev/null ; then - failure "No ssh-agent available." - fi - - # and if it looks like it's running, but we can't actually talk to - # it, bail out: - ssh-add -l >/dev/null - sshaddresponse="$?" - if [ "$sshaddresponse" = "2" ]; then - failure "Could not connect to ssh-agent" - fi - - # get list of secret keys (to work around https://bugs.g10code.com/gnupg/issue945): - secretkeys=$(gpg --list-secret-keys --with-colons --fixed-list-mode --fingerprint | \ - grep '^fpr:' | cut -f10 -d: | awk '{ print "0x" $1 "!" }') - - if [ -z "$secretkeys" ]; then - failure "You have no secret keys in your keyring! -You might want to run 'gpg --gen-key'." - fi - - authsubkeys=$(gpg --list-secret-keys --with-colons --fixed-list-mode \ - --fingerprint --fingerprint $secretkeys | \ - cut -f1,5,10,12 -d: | grep -A1 '^ssb:[^:]*::[^:]*a[^:]*$' | \ - grep '^fpr::' | cut -f3 -d: | sort -u) - - if [ -z "$authsubkeys" ]; then - failure "no authentication-capable subkeys available. -You might want to 'monkeysphere gen-subkey'" - fi - - workingdir=$(mktemp -d ${TMPDIR:-/tmp}/tmp.XXXXXXXXXX) - umask 077 - mkfifo "$workingdir/passphrase" - keysuccess=1 - - # FIXME: we're currently allowing any other options to get passed - # through to ssh-add. should we limit it to known ones? For - # example: -d or -c and/or -t <lifetime> - - for subkey in $authsubkeys; do - # choose a label by which this key will be known in the agent: - # we are labelling the key by User ID instead of by - # fingerprint, but filtering out all / characters to make sure - # the filename is legit. - - primaryuid=$(gpg --with-colons --list-key "0x${subkey}!" | grep '^pub:' | cut -f10 -d: | tr -d /) - - #kname="[monkeysphere] $primaryuid" - kname="$primaryuid" - - if [ "$1" = '-d' ]; then - # we're removing the subkey: - gpg --export "0x${subkey}!" | openpgp2ssh "$subkey" > "$workingdir/$kname" - (cd "$workingdir" && ssh-add -d "$kname") - else - # we're adding the subkey: - mkfifo "$workingdir/$kname" - gpg --quiet --passphrase-fd 3 3<"$workingdir/passphrase" \ - --export-options export-reset-subkey-passwd,export-minimal,no-export-attributes \ - --export-secret-subkeys "0x${subkey}!" | openpgp2ssh "$subkey" > "$workingdir/$kname" & - (cd "$workingdir" && DISPLAY=nosuchdisplay SSH_ASKPASS=/bin/false ssh-add "$@" "$kname" </dev/null )& - - passphrase_prompt "Enter passphrase for key $kname: " "$workingdir/passphrase" - wait %2 - fi - keysuccess="$?" - - rm -f "$workingdir/$kname" - done - - rm -rf "$workingdir" - - # FIXME: sort out the return values: we're just returning the - # success or failure of the final authentication subkey in this - # case. What if earlier ones failed? - exit "$keysuccess" -} - ######################################################################## # MAIN ######################################################################## @@ -419,15 +167,18 @@ case $COMMAND in ;; 'import-subkey'|'i') + source "${MSHAREDIR}/import-key" import_key "$@" ;; 'gen-subkey'|'g') + source "${MSHAREDIR}/import_key" gen_subkey "$@" ;; 'ssh-proxycommand'|'p') - ssh-proxycommand "$@" + source "${MSHAREDIR}/ssh_proxycommand" + ssh_proxycommand "$@" ;; 'subkey-to-ssh-agent'|'s') diff --git a/src/subcommands/m/gen_subkey b/src/subcommands/m/gen_subkey new file mode 100644 index 0000000..cbefaa3 --- /dev/null +++ b/src/subcommands/m/gen_subkey @@ -0,0 +1,127 @@ +# -*-shell-script-*- +# This should be sourced by bash (though we welcome changes to make it POSIX sh compliant) + +# Monkeysphere gen-subkey subcommand +# +# The monkeysphere scripts are written by: +# Jameson Rollins <jrollins@finestructure.net> +# Jamie McClelland <jm@mayfirst.org> +# Daniel Kahn Gillmor <dkg@fifthhorseman.net> +# +# They are Copyright 2008-2009, and are all released under the GPL, +# version 3 or later. + +# generate a subkey with the 'a' usage flags set + +gen_subkey(){ + local keyLength + local keyExpire + local keyID + local gpgOut + local userID + + # get options + while true ; do + case "$1" in + -l|--length) + keyLength="$2" + shift 2 + ;; + -e|--expire) + keyExpire="$2" + shift 2 + ;; + *) + if [ "$(echo "$1" | cut -c 1)" = '-' ] ; then + failure "Unknown option '$1'. +Type '$PGRM help' for usage." + fi + break + ;; + esac + done + + case "$#" in + 0) + gpgSecOut=$(gpg --quiet --fixed-list-mode --list-secret-keys --with-colons 2>/dev/null | egrep '^sec:') + ;; + 1) + gpgSecOut=$(gpg --quiet --fixed-list-mode --list-secret-keys --with-colons "$1" | egrep '^sec:') || failure + ;; + *) + failure "You must specify only a single primary key ID." + ;; + esac + + # check that only a single secret key was found + case $(echo "$gpgSecOut" | grep -c '^sec:') in + 0) + failure "No secret keys found. Create an OpenPGP key with the following command: + gpg --gen-key" + ;; + 1) + keyID=$(echo "$gpgSecOut" | cut -d: -f5) + ;; + *) + echo "Multiple primary secret keys found:" + echo "$gpgSecOut" | cut -d: -f5 + failure "Please specify which primary key to use." + ;; + esac + + # check that a valid authentication key does not already exist + IFS=$'\n' + for line in $(gpg --quiet --fixed-list-mode --list-keys --with-colons "$keyID") ; do + type=$(echo "$line" | cut -d: -f1) + validity=$(echo "$line" | cut -d: -f2) + usage=$(echo "$line" | cut -d: -f12) + + # look at keys only + if [ "$type" != 'pub' -a "$type" != 'sub' ] ; then + continue + fi + # check for authentication capability + if ! check_capability "$usage" 'a' ; then + continue + fi + # if authentication key is valid, prompt to continue + if [ "$validity" = 'u' ] ; then + echo "A valid authentication key already exists for primary key '$keyID'." + read -p "Are you sure you would like to generate another one? (y/N) " OK; OK=${OK:N} + if [ "${OK/y/Y}" != 'Y' ] ; then + failure "aborting." + fi + break + fi + done + + # set subkey defaults + # prompt about key expiration if not specified + keyExpire=$(get_gpg_expiration "$keyExpire") + + # generate the list of commands that will be passed to edit-key + editCommands=$(cat <<EOF +addkey +7 +S +E +A +Q +$keyLength +$keyExpire +save +EOF +) + + log verbose "generating subkey..." + fifoDir=$(mktemp -d ${TMPDIR:-/tmp}/tmp.XXXXXXXXXX) + (umask 077 && mkfifo "$fifoDir/pass") + echo "$editCommands" | gpg --passphrase-fd 3 3< "$fifoDir/pass" --expert --command-fd 0 --edit-key "$keyID" & + + # FIXME: this needs to fail more gracefully if the passphrase is incorrect + passphrase_prompt "Please enter your passphrase for $keyID: " "$fifoDir/pass" + + rm -rf "$fifoDir" + wait + log verbose "done." +} diff --git a/src/subcommands/m/import_subkey b/src/subcommands/m/import_subkey new file mode 100644 index 0000000..aa89958 --- /dev/null +++ b/src/subcommands/m/import_subkey @@ -0,0 +1,54 @@ +# -*-shell-script-*- +# This should be sourced by bash (though we welcome changes to make it POSIX sh compliant) + +# Monkeysphere import-subkey subcommand +# +# The monkeysphere scripts are written by: +# Jameson Rollins <jrollins@finestructure.net> +# Jamie McClelland <jm@mayfirst.org> +# Daniel Kahn Gillmor <dkg@fifthhorseman.net> +# +# They are Copyright 2008-2009, and are all released under the GPL, +# version 3 or later. + +# import an existing ssh key as a gpg subkey + +import_subkey() { + local keyFile="~/.ssh/id_rsa" + local keyExpire + local keyID + local gpgOut + local userID + + # get options + while true ; do + case "$1" in + -f|--keyfile) + keyFile="$2" + shift 2 + ;; + -e|--expire) + keyExpire="$2" + shift 2 + ;; + *) + if [ "$(echo "$1" | cut -c 1)" = '-' ] ; then + failure "Unknown option '$1'. +Type '$PGRM help' for usage." + fi + break + ;; + esac + done + + log verbose "importing ssh key..." + fifoDir=$(mktemp -d ${TMPDIR:-/tmp}/tmp.XXXXXXXXXX) + (umask 077 && mkfifo "$fifoDir/pass") + ssh2openpgp | gpg --passphrase-fd 3 3< "$fifoDir/pass" --expert --command-fd 0 --import & + + passphrase_prompt "Please enter your passphrase for $keyID: " "$fifoDir/pass" + + rm -rf "$fifoDir" + wait + log verbose "done." +} diff --git a/src/subcommands/m/ssh-proxycommand b/src/subcommands/m/ssh_proxycommand index 56a266e..56a266e 100644 --- a/src/subcommands/m/ssh-proxycommand +++ b/src/subcommands/m/ssh_proxycommand diff --git a/src/subcommands/m/subkey_to_ssh_agent b/src/subcommands/m/subkey_to_ssh_agent new file mode 100644 index 0000000..9bedb5e --- /dev/null +++ b/src/subcommands/m/subkey_to_ssh_agent @@ -0,0 +1,112 @@ +# -*-shell-script-*- +# This should be sourced by bash (though we welcome changes to make it POSIX sh compliant) + +# Monkeysphere subkey-to-ssh-agent subcommand +# +# The monkeysphere scripts are written by: +# Jameson Rollins <jrollins@finestructure.net> +# Jamie McClelland <jm@mayfirst.org> +# Daniel Kahn Gillmor <dkg@fifthhorseman.net> +# +# They are Copyright 2008-2009, and are all released under the GPL, +# version 3 or later. + +# try to add all authentication subkeys to the agent + +subkey_to_ssh_agent() { + local sshaddresponse + local secretkeys + local authsubkeys + local workingdir + local keysuccess + local subkey + local publine + local kname + + if ! test_gnu_dummy_s2k_extension ; then + failure "Your version of GnuTLS does not seem capable of using with gpg's exported subkeys. +You may want to consider patching or upgrading to GnuTLS 2.6 or later. + +For more details, see: + http://lists.gnu.org/archive/html/gnutls-devel/2008-08/msg00005.html" + fi + + # if there's no agent running, don't bother: + if [ -z "$SSH_AUTH_SOCK" ] || ! which ssh-add >/dev/null ; then + failure "No ssh-agent available." + fi + + # and if it looks like it's running, but we can't actually talk to + # it, bail out: + ssh-add -l >/dev/null + sshaddresponse="$?" + if [ "$sshaddresponse" = "2" ]; then + failure "Could not connect to ssh-agent" + fi + + # get list of secret keys (to work around https://bugs.g10code.com/gnupg/issue945): + secretkeys=$(gpg --list-secret-keys --with-colons --fixed-list-mode --fingerprint | \ + grep '^fpr:' | cut -f10 -d: | awk '{ print "0x" $1 "!" }') + + if [ -z "$secretkeys" ]; then + failure "You have no secret keys in your keyring! +You might want to run 'gpg --gen-key'." + fi + + authsubkeys=$(gpg --list-secret-keys --with-colons --fixed-list-mode \ + --fingerprint --fingerprint $secretkeys | \ + cut -f1,5,10,12 -d: | grep -A1 '^ssb:[^:]*::[^:]*a[^:]*$' | \ + grep '^fpr::' | cut -f3 -d: | sort -u) + + if [ -z "$authsubkeys" ]; then + failure "no authentication-capable subkeys available. +You might want to 'monkeysphere gen-subkey'" + fi + + workingdir=$(mktemp -d ${TMPDIR:-/tmp}/tmp.XXXXXXXXXX) + umask 077 + mkfifo "$workingdir/passphrase" + keysuccess=1 + + # FIXME: we're currently allowing any other options to get passed + # through to ssh-add. should we limit it to known ones? For + # example: -d or -c and/or -t <lifetime> + + for subkey in $authsubkeys; do + # choose a label by which this key will be known in the agent: + # we are labelling the key by User ID instead of by + # fingerprint, but filtering out all / characters to make sure + # the filename is legit. + + primaryuid=$(gpg --with-colons --list-key "0x${subkey}!" | grep '^pub:' | cut -f10 -d: | tr -d /) + + #kname="[monkeysphere] $primaryuid" + kname="$primaryuid" + + if [ "$1" = '-d' ]; then + # we're removing the subkey: + gpg --export "0x${subkey}!" | openpgp2ssh "$subkey" > "$workingdir/$kname" + (cd "$workingdir" && ssh-add -d "$kname") + else + # we're adding the subkey: + mkfifo "$workingdir/$kname" + gpg --quiet --passphrase-fd 3 3<"$workingdir/passphrase" \ + --export-options export-reset-subkey-passwd,export-minimal,no-export-attributes \ + --export-secret-subkeys "0x${subkey}!" | openpgp2ssh "$subkey" > "$workingdir/$kname" & + (cd "$workingdir" && DISPLAY=nosuchdisplay SSH_ASKPASS=/bin/false ssh-add "$@" "$kname" </dev/null )& + + passphrase_prompt "Enter passphrase for key $kname: " "$workingdir/passphrase" + wait %2 + fi + keysuccess="$?" + + rm -f "$workingdir/$kname" + done + + rm -rf "$workingdir" + + # FIXME: sort out the return values: we're just returning the + # success or failure of the final authentication subkey in this + # case. What if earlier ones failed? + exit "$keysuccess" +} diff --git a/src/subcommands/ma/add-certifier b/src/subcommands/ma/add_certifier index 0c3c647..0c3c647 100644 --- a/src/subcommands/ma/add-certifier +++ b/src/subcommands/ma/add_certifier diff --git a/src/subcommands/ma/list-certifiers b/src/subcommands/ma/list_certifiers index e37485e..e37485e 100644 --- a/src/subcommands/ma/list-certifiers +++ b/src/subcommands/ma/list_certifiers diff --git a/src/subcommands/ma/remove-certifier b/src/subcommands/ma/remove_certifier index 560281d..560281d 100644 --- a/src/subcommands/ma/remove-certifier +++ b/src/subcommands/ma/remove_certifier diff --git a/src/subcommands/ma/update-users b/src/subcommands/ma/update_users index 73685f6..73685f6 100644 --- a/src/subcommands/ma/update-users +++ b/src/subcommands/ma/update_users diff --git a/src/subcommands/mh/add-hostname b/src/subcommands/mh/add_hostname index 10d5f58..10d5f58 100644 --- a/src/subcommands/mh/add-hostname +++ b/src/subcommands/mh/add_hostname diff --git a/src/subcommands/mh/add-revoker b/src/subcommands/mh/add_revoker index f9d0bb6..f9d0bb6 100644 --- a/src/subcommands/mh/add-revoker +++ b/src/subcommands/mh/add_revoker diff --git a/src/subcommands/mh/extend-key b/src/subcommands/mh/extend_key index ccbaf0e..ccbaf0e 100644 --- a/src/subcommands/mh/extend-key +++ b/src/subcommands/mh/extend_key diff --git a/src/subcommands/mh/gen-key b/src/subcommands/mh/gen_key index aad213a..aad213a 100644 --- a/src/subcommands/mh/gen-key +++ b/src/subcommands/mh/gen_key diff --git a/src/subcommands/mh/import-key b/src/subcommands/mh/import_key index 386e02d..386e02d 100644 --- a/src/subcommands/mh/import-key +++ b/src/subcommands/mh/import_key diff --git a/src/subcommands/mh/publish-key b/src/subcommands/mh/publish_key index b7ab01d..b7ab01d 100644 --- a/src/subcommands/mh/publish-key +++ b/src/subcommands/mh/publish_key diff --git a/src/subcommands/mh/revoke-hostname b/src/subcommands/mh/revoke_hostname index b519cf6..b519cf6 100644 --- a/src/subcommands/mh/revoke-hostname +++ b/src/subcommands/mh/revoke_hostname diff --git a/src/subcommands/mh/revoke-key b/src/subcommands/mh/revoke_key index cccdc22..cccdc22 100644 --- a/src/subcommands/mh/revoke-key +++ b/src/subcommands/mh/revoke_key |