summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2009-02-28start to make an openpgp2ssh implementation within pem2openpgp.Daniel Kahn Gillmor
2009-02-28make pem2openpgp closer to a generic keytrans so that we can reuse it for ↵Daniel Kahn Gillmor
the openpgp2ssh replacement.
2009-02-28rewrite stdin slurping to match example in perldoc -f unpack.Daniel Kahn Gillmor
2009-02-28functionalize the bulk of pem2openpgp.Daniel Kahn Gillmor
2009-02-28made transitions/0.23 a little bit more resilient; made it so that running ↵Daniel Kahn Gillmor
again after a failure is not fooled by the previous failure into thinking that the transition is done.
2009-02-28transition script should ensure that the (old, deprecated) ↵Daniel Kahn Gillmor
monkeysphere-server.conf gets renamed to monkeysphere-authentication.conf
2009-02-22egrep -q terminates at the first match. m-a list-identity-certifiers chokes ↵Daniel Kahn Gillmor
if it cannot write to stdout. Because we are setting pipefail, this causes the pipeline checking for any certifiers to return untrue. solution? do not use -q, and send the output to /dev/null
2009-02-22really really fix m-a diagnostics checking of identity certifiers.Daniel Kahn Gillmor
2009-02-22fix some return code setting stuf that was no longer being used, and change ↵Jameson Graef Rollins
name of return code variable in update_users, since all-caps variables should be reserved for global vars.
2009-02-22Fix how version number is saved/retrieved. Version is now stored inJameson Graef Rollins
VERSION file, which is created in the tarball target. This is then installed at /usr/share/monkeysphere/VERSION, and cat'ed when the version number is requested by the front-end ui. No more manual setting of version number required (to avoid future problems, aka "0.23.1"). This system is also more flexible, as the VERSION file could potentially hold more info than just the release number.
2009-02-21reverse sense of test for valid identity certifiers in m-a diagnostics.Daniel Kahn Gillmor
2009-02-21added some FIXMEs to transitions/0.23, concerning host keys that were ↵Daniel Kahn Gillmor
originally created with an expiration date.
2009-02-21fix syntax error in m-a diagnostics.Daniel Kahn Gillmor
2009-02-21preparing for stupid brown paper bag 0.23.1 release.Daniel Kahn Gillmor
2009-02-21fixing stupid internal version number synchronization.Daniel Kahn Gillmor
2009-02-21adjusting extraction of revokers.Daniel Kahn Gillmor
2009-02-21make show-key so that it works even if there are no revokers.Jameson Graef Rollins
2009-02-21extend show-key to show fingerprints of revokers as well.Jameson Graef Rollins
2009-02-21add FIXME to show key about how it should show revokers as well.Jameson Graef Rollins
2009-02-21correct return codes for monkeysphere subkey-to-ssh-agentDaniel Kahn Gillmor
2009-02-21make sure all prompt messages are going to stderrJameson Graef Rollins
2009-02-21fix output formatting for cases where multiple fingerprints are found, in ↵Jameson Graef Rollins
functions that are doing that sort of thing
2009-02-21Merge commit 'dkg/master'Jameson Graef Rollins
2009-02-21add tests to add_revoker and add_certifier that more than one key was not ↵Jameson Graef Rollins
found when adding by using key ID.
2009-02-21un-fix non-typo in ssh_proxycommand. (my mistake!)Daniel Kahn Gillmor
2009-02-21fixing typo in ssh_proxycommand.Daniel Kahn Gillmor
2009-02-21fix return in subkey_to_ssh_agent, so that it returns, instead of exitsJameson Graef Rollins
2009-02-21import-key now requires a hostname be specified, and no longer doesJameson Graef Rollins
any hostname guessing. this is so that we don't have to worry about prompting the user when guessing the hostname. also updated documentation.
2009-02-21remove 'return' line from monkeysphere that was errantly not removed in the ↵Jameson Graef Rollins
previous commit.
2009-02-21make sure we're explicitly capturing return codes in places where they are ↵Jameson Graef Rollins
tested, in case things are being run set -e
2009-02-21fix failure message in import_keyJameson Graef Rollins
2009-02-20tweak/cleanup some of the prompts.Jameson Graef Rollins
2009-02-20tuning some diagnostic text.Daniel Kahn Gillmor
2009-02-20tune automated revocation certificate description; add FIXME to allow it to ↵Daniel Kahn Gillmor
be set explicitly.
2009-02-20monkeysphere-host revoke-key should now be capable of publishing theDaniel Kahn Gillmor
revocation certificate to the keyservers directly, should the admin want that. It can also run without prompting, if MONKEYSPHERE_PROMPT=false. In the no-prompts case, it never publishes to the keyserver, it indicates that the key was compromised, and it writes a boilerplate description to make it easy to identify this kind of certificate.
2009-02-20trivial implementation of monkeysphere-host revoke-key: just prints ↵Daniel Kahn Gillmor
ascii-armored revocation certificate to stdout, and admin is expected to know what to do with it.
2009-02-20clarify revoke_hostname warningDaniel Kahn Gillmor
2009-02-20document why monkeysphere import-subkey is not yet working.Daniel Kahn Gillmor
2009-02-20explicitly set GNUPGHOME in su_monkeysphere_user calls to gpg in ↵Jameson Graef Rollins
add_revoker, to avoid any confusion about having GNUPGHOME as a tempdir exported to the environment.
2009-02-20stupid bug fixJameson Graef Rollins
2009-02-20add_revoker fully working. also cleanup of add_certifier.Jameson Graef Rollins
add_revoker and add_certifier to many similar procedures, so I'm trying to keep them in sync as I figure out the right way to handle things.
2009-02-19Merge commit 'jrollins/master'Daniel Kahn Gillmor
2009-02-19correcting ssh_proxycommand output.Daniel Kahn Gillmor
2009-02-19remove import_subkey from monkeysphere usage and man page until we getJameson Graef Rollins
a chance to fully implement it.
2009-02-19clean up the diagnostics functions, check for ID-Certifiers in m-a dDaniel Kahn Gillmor
2009-02-19cleaning up output of cruft reportDaniel Kahn Gillmor
2009-02-19diagnostics should now check for cruft from old versions of the monkeysphere.Daniel Kahn Gillmor
2009-02-19fix arg parsing in add_certifier to allow of - for stdin read.Jameson Graef Rollins
2009-02-19Modify/cleanup add_certifier and add_revoker, so that their code baseJameson Graef Rollins
is more similar, and so that they can read keys from stdin instead of just from a file. Also fix the permissions on the tempdir in publish_key.
2009-02-19the import_subkey function was in fact not implement at all. MUST FIX!Jameson Graef Rollins