summaryrefslogtreecommitdiff
path: root/src/share
AgeCommit message (Collapse)Author
2009-02-21make sure all prompt messages are going to stderrJameson Graef Rollins
2009-02-21fix output formatting for cases where multiple fingerprints are found, in ↵Jameson Graef Rollins
functions that are doing that sort of thing
2009-02-21Merge commit 'dkg/master'Jameson Graef Rollins
2009-02-21add tests to add_revoker and add_certifier that more than one key was not ↵Jameson Graef Rollins
found when adding by using key ID.
2009-02-21un-fix non-typo in ssh_proxycommand. (my mistake!)Daniel Kahn Gillmor
2009-02-21fixing typo in ssh_proxycommand.Daniel Kahn Gillmor
2009-02-21fix return in subkey_to_ssh_agent, so that it returns, instead of exitsJameson Graef Rollins
2009-02-21import-key now requires a hostname be specified, and no longer doesJameson Graef Rollins
any hostname guessing. this is so that we don't have to worry about prompting the user when guessing the hostname. also updated documentation.
2009-02-21make sure we're explicitly capturing return codes in places where they are ↵Jameson Graef Rollins
tested, in case things are being run set -e
2009-02-21fix failure message in import_keyJameson Graef Rollins
2009-02-20tweak/cleanup some of the prompts.Jameson Graef Rollins
2009-02-20tuning some diagnostic text.Daniel Kahn Gillmor
2009-02-20tune automated revocation certificate description; add FIXME to allow it to ↵Daniel Kahn Gillmor
be set explicitly.
2009-02-20monkeysphere-host revoke-key should now be capable of publishing theDaniel Kahn Gillmor
revocation certificate to the keyservers directly, should the admin want that. It can also run without prompting, if MONKEYSPHERE_PROMPT=false. In the no-prompts case, it never publishes to the keyserver, it indicates that the key was compromised, and it writes a boilerplate description to make it easy to identify this kind of certificate.
2009-02-20trivial implementation of monkeysphere-host revoke-key: just prints ↵Daniel Kahn Gillmor
ascii-armored revocation certificate to stdout, and admin is expected to know what to do with it.
2009-02-20clarify revoke_hostname warningDaniel Kahn Gillmor
2009-02-20document why monkeysphere import-subkey is not yet working.Daniel Kahn Gillmor
2009-02-20explicitly set GNUPGHOME in su_monkeysphere_user calls to gpg in ↵Jameson Graef Rollins
add_revoker, to avoid any confusion about having GNUPGHOME as a tempdir exported to the environment.
2009-02-20stupid bug fixJameson Graef Rollins
2009-02-20add_revoker fully working. also cleanup of add_certifier.Jameson Graef Rollins
add_revoker and add_certifier to many similar procedures, so I'm trying to keep them in sync as I figure out the right way to handle things.
2009-02-19Merge commit 'jrollins/master'Daniel Kahn Gillmor
2009-02-19correcting ssh_proxycommand output.Daniel Kahn Gillmor
2009-02-19remove import_subkey from monkeysphere usage and man page until we getJameson Graef Rollins
a chance to fully implement it.
2009-02-19clean up the diagnostics functions, check for ID-Certifiers in m-a dDaniel Kahn Gillmor
2009-02-19cleaning up output of cruft reportDaniel Kahn Gillmor
2009-02-19diagnostics should now check for cruft from old versions of the monkeysphere.Daniel Kahn Gillmor
2009-02-19fix arg parsing in add_certifier to allow of - for stdin read.Jameson Graef Rollins
2009-02-19Modify/cleanup add_certifier and add_revoker, so that their code baseJameson Graef Rollins
is more similar, and so that they can read keys from stdin instead of just from a file. Also fix the permissions on the tempdir in publish_key.
2009-02-19the import_subkey function was in fact not implement at all. MUST FIX!Jameson Graef Rollins
2009-02-19add a gpg_user function in monkeysphere to add some gpg quietingJameson Graef Rollins
option, and use it in all gpg invocations. add a trap to subkey_to_ssh_agent.
2009-02-19The monkeysphere {import,gen}_subkey functions were not up-to-date.Jameson Graef Rollins
did a lot of work to bring them up-to-date, and better handle argument checking. also updated man page, changelog, and tests/basic.
2009-02-19modify import_key to take the key file to import as an argument. can be '-' ↵Jameson Graef Rollins
to import from stdin. modify man page and test accordingly.
2009-02-19more fix permissions and ownership on authentication directories.Jameson Graef Rollins
2009-02-19fix permissions and ownership on authentication directories.Jameson Graef Rollins
2009-02-19avoid chown -R, explicitly indicate the files we expect to be changed.Daniel Kahn Gillmor
2009-02-19do not show uid validity for gpg authentication core, since the core has no ↵Daniel Kahn Gillmor
ultimate ownertrust
2009-02-19added msmktempfile; got rid of /dev/stdin assumption in ssh_proxycommand for ↵Daniel Kahn Gillmor
portability
2009-02-19fix CHECK_KEYSERVER variable in monkeysphere, so the default is correct for ↵Jameson Graef Rollins
proxycommand, and fix an errant bad line in proxycommand.
2009-02-19fail if hostname can not be determined in import_keyJameson Graef Rollins
2009-02-19Merge commit 'dkg/master'Jameson Graef Rollins
2009-02-19Merge commit 'dkg/master'Jameson Graef Rollins
2009-02-19add PROMPT respect in get_gpg_expirationJameson Graef Rollins
2009-02-19add some log debug redirectsJameson Graef Rollins
2009-02-19making clearer comments in the transition script, invoking from postinst for ↵Daniel Kahn Gillmor
debian.
2009-02-19shipping transition script; requiring manual version synchronization between ↵Daniel Kahn Gillmor
common and the changelog (until we come up with a more general templating build process)
2009-02-19Merge commit 'dkg/master'Jameson Graef Rollins
2009-02-19tweak some of the prompting, to change defaults, and add PROMPT usage where ↵Jameson Graef Rollins
missing
2009-02-19made gpg_sphere use --quiet again, and now doing more explicit extraction of ↵Daniel Kahn Gillmor
key fingerprint during add-certifier from file.
2009-02-19Merge commit 'dkg/master'Jameson Graef Rollins
2009-02-19Cleanup how variables are specified and loaded:Jameson Graef Rollins
- define more common variables in share/common - cleanup how defaults are specified - fix how CHECK_KEYSERVER was determined in monkeysphere Fix calls to update_known_hosts and update_authorized_keys in monkeysphere so that some of the checks are done within the functions themselves, as opposed in the monkeysphere wrapper, so that other functions can call them easier. Fix ssh-proxycommand that had some left over cruft from the transition.