summaryrefslogtreecommitdiff
path: root/src/share
AgeCommit message (Collapse)Author
2010-03-14warn if keyserver query fails (Closes: MS #1750)Daniel Kahn Gillmor
2010-03-14enable use of hkps (closes: MS #1749)Daniel Kahn Gillmor
2010-03-08fix my email addressJameson Rollins
2010-02-18enforce --no-armor when exporting to openpgp2ssh in case weird gpg.conf ↵Daniel Kahn Gillmor
options (see bug 1625)
2010-01-19re-work monkeysphere-host diagnostics with an eye toward multiple host keysDaniel Kahn Gillmor
2010-01-19dump gpg --import error spew to /dev/null during hackish uses of gpgDaniel Kahn Gillmor
2010-01-19ignoring time conflict when extracting info in a hacky way from gpg. ↵Daniel Kahn Gillmor
warnings still come out to stderr
2010-01-19add get_cert_info() to commonDaniel Kahn Gillmor
2010-01-18flesh out check for reasonable-looking service namesDaniel Kahn Gillmor
2010-01-18canonicalize prompting to prompt if MONKEYSPHERE_PROMPT != 'false'Jameson Rollins
2010-01-18add prompt if a service name is already being used then importing a key or ↵Jameson Rollins
adding a name. This can be overridden with the MONKEYSPHERE_PROMPT var.
2010-01-18renaming m-h update_gpg_pub_file to update_pgp_pub_fileDaniel Kahn Gillmor
2010-01-18add check that service name isn't already in use in import_keyJameson Rollins
2010-01-18fix stupid think-o that caused keytrans adduserid to misbehave if another ↵Daniel Kahn Gillmor
key came in the input stream after the desired key was already found
2010-01-18added non-public "keytrans listfprs" subcommandDaniel Kahn Gillmor
2010-01-15Major rework of monkeysphere-host to handle multiple host keys.Jameson Rollins
This rework removes any assumption that monkeysphere-host is just managing a single host key, or that the keys are used specifically for ssh. The UI is exactly backwards compatible except that hostnames ('example.com') must be replaced by full service names ('ssh://example.com'). This incarnation passes the old tests with those changes only. There are a couple of things that still need to be done: - need to see if a transition script is needed (some local file names have changed) - need to fill in check_service_name function to verify that a specified service name fits the expected format. - update diagnostics appropriately
2010-01-15add trap to remove temp dir in list_primary_fingerprints functionJameson Rollins
2010-01-11rename keys-from-userid command to more accurate keys-for-useridJameson Rollins
leave the old command for now, but warn as deprecated.
2010-01-10Fix patch for gen_key to test gpg version.Jameson Rollins
This patch checks the version of gpg (for v1 and v2) and sets the key type command for the gen_subkey gpg edit-key script appropriately.
2010-01-10added notes about what version needs what keyTypeDaniel Kahn Gillmor
2010-01-10Add new keys-from-userid subcommand to monkeysphere UI.Jameson Rollins
This new subcommand calls a new function, keys_from_userid, that outputs to stdout all acceptable keys for a given user ID literal.
2010-01-10Clean up REQUIRED_KEY_CAPABILITY option passing to process_user_id.Jameson Rollins
Get rid of 'MODE' stuff, since it was not very clear and wasn't really being used.
2009-12-20fix ms Issue #1536 for gpg edit/addkey UI changeJameson Graef Rollins
gnupg apparently changed their edit-key/addkey function ordering such that the monkeysphere gen-subkey subcommand was creating DSA authentication subkeys instead of RSA subkeys. DSA subkeys are not supported by the ms key translation utilities, so this is a big problem. This patch fixes the problem, but it means that we have require gnupg >=1.4.10 from now on, or at least until gnupg changes their UI again for no good reason.
2009-12-12hush up m-a setup because the dd was making noiseDaniel Kahn Gillmor
2009-09-24avoid noisy warning message when ssh-askpass not availableDaniel Kahn Gillmor
2009-08-01cleaning up log function in checkperms for future expandability.Daniel Kahn Gillmor
2009-08-01swap order of bitwise and to avoid confusion in perl < 5.10Daniel Kahn Gillmor
2009-08-01removing duplicate check that snuck in somehowDaniel Kahn Gillmor
2009-08-01attempting to resolve MS #675Daniel Kahn Gillmor
2009-08-01switch to using new checkperms script.Daniel Kahn Gillmor
2009-08-01whitespace fixing and using environment variables exported from monkeysphere ↵Daniel Kahn Gillmor
for checkperms.
2009-08-01added new perl script to check permissions.Daniel Kahn Gillmor
2009-07-26ensuring that STRICT_MODES gets passed through to the monkeysphere subshell ↵Daniel Kahn Gillmor
properly, and that we set it to a literal "false" in the tests. This should resolve the FTBFS associated with MS #659
2009-07-26added MONKEYSPHERE_STRICT_MODES environment option to disable permissions ↵Daniel Kahn Gillmor
checking.
2009-07-24small bug fix, and readbility improvementsJameson Graef Rollins
2009-07-24Merge commit 'dkg/master'Jameson Graef Rollins
2009-07-24shoring up known_hosts creation with proper umask and with multi-level ↵Daniel Kahn Gillmor
directory creation.
2009-07-24make sure we check for the host key existence in the correct known_hosts file.Daniel Kahn Gillmor
do not look for a host key in a non-existant file. (should close MS 1147)
2009-07-24make failures with unwritable known_hosts slightly less cryptic.Daniel Kahn Gillmor
2009-07-24Merge commit 'dkg/master'Jameson Graef Rollins
2009-07-24only touch the known_hosts file if it does not exist, and create the parent ↵Daniel Kahn Gillmor
directory if it does not exist. if more than one level of enclosing directory does not exist, this will fail cryptically.
2009-07-24improve the marginal ui a bit. note number of invalid keys. closes ms #1141Jameson Graef Rollins
2009-07-23proposed fix to marginal ui in case where host key not retrieved (should fix ↵Jameson Graef Rollins
1141)
2009-07-14improvements monkeysphere-host diagnosticsJameson Graef Rollins
I made a couple of improvements to the mh diagnostics script, including rearranging some of the test, to try to better handle some of the possible low-level failures that one might run into. Hopefully this will be a little more informative. closes MS #624.
2009-07-14make sure that revokehostname sees the pieces it needs to see in order to ↵Daniel Kahn Gillmor
create a useful revocation certificate.
2009-07-14ensure proper usage flags on new hostname selfsigsDaniel Kahn Gillmor
2009-07-14simplifying find_host_user_id function.Daniel Kahn Gillmor
2009-07-14fixing find_host_userid -- did this ever work?Daniel Kahn Gillmor
2009-07-14tests/basic now tests for adding and revoking hostnames.Daniel Kahn Gillmor
2009-07-14fixing typo and thinko in keytransDaniel Kahn Gillmor