Age | Commit message (Collapse) | Author | |
---|---|---|---|
2009-02-15 | have the import_key also create the ssh pub file, since it is needed to show ↵ | Jameson Graef Rollins | |
full host key info. | |||
2009-02-12 | fix something that was resolved improperly in the previous merge. | Jameson Graef Rollins | |
2009-02-12 | Merge commit 'dkg/master' | Jameson Graef Rollins | |
Conflicts: src/share/ma/setup | |||
2009-02-12 | fix some calls to gpg_sphere that where not putting all arguments into a ↵ | Jameson Graef Rollins | |
single argument, as required by the strange su requirements. | |||
2009-02-12 | trust level != trust model | Daniel Kahn Gillmor | |
2009-02-12 | fix the su_monkeysphere_user function so that it does 'bash -c' instead of ↵ | Jameson Graef Rollins | |
'eval', if the user already is the monkeysphere user, so that a proper subshell is invoked. | |||
2009-02-12 | su_monkeysphere_user now invokes a subshell even when already called by the ↵ | Daniel Kahn Gillmor | |
monkeysphere user. | |||
2009-02-12 | tweak some of the log output inconsequentially | Jameson Graef Rollins | |
2009-02-12 | no longer require the primary-keyring for the sphere gpg.conf now that we ↵ | Daniel Kahn Gillmor | |
use a single keyring | |||
2009-02-12 | fix typo | Daniel Kahn Gillmor | |
2009-02-12 | fix some things in ma certifier functions: | Jameson Graef Rollins | |
- fix left over bad invocations of gpg_sphere --list-keys - add some more debug log output | |||
2009-02-12 | Fix the ma/setup function: | Jameson Graef Rollins | |
- fix reference to MONKEYSPHERE_USER for GNUPGHOME_SPHERE - break out core_fingerprint function - export core key to sphere keyring (necessary) - fix some logging (add more debug) and formatting | |||
2009-02-12 | fix reference to MONKEYSPHER_USER in ma/setup | Jameson Graef Rollins | |
2009-02-12 | add some debug logging to some common functions | Jameson Graef Rollins | |
2009-02-12 | add ability to supress confirmation prompt in ma/add_certifier | Jameson Graef Rollins | |
fix some logging output | |||
2009-02-12 | clean up how trust level was check in ma/setup, with some debug output | Jameson Graef Rollins | |
2009-02-12 | break out a bunch of common functions in monkeysphere-host: | Jameson Graef Rollins | |
- create_*_*_file to create the key files - load_*fingerprint to load the host fingerprint into an exported variable (HOST_FINGERPRINT) - check_host_*key to check for the presence of a host key modified {import,gen}_key to use these new functions. | |||
2009-02-09 | add much of an add_revoker function. still needs to be fleshed out | Jameson Graef Rollins | |
and tested, though, so it's not "active" yet. | |||
2009-02-09 | small formatting tweaks to add_certifier function | Jameson Graef Rollins | |
2009-02-09 | rename function to get the host fingerprint, and fix some | Jameson Graef Rollins | |
HOST_FINGERPRINT variables. | |||
2009-02-09 | fix name of set_expire function | Jameson Graef Rollins | |
2009-02-09 | break su_monkeysphere_user into common function, since it will likely | Jameson Graef Rollins | |
be needed by both m-host and m-auth for communicating with keyservers. | |||
2009-02-09 | define variable for public key files (HOST_KEY_PUB, HOST_KEY_PUB_GPG). | Jameson Graef Rollins | |
also, fix some function calls to check_host_fail function. | |||
2009-02-09 | a couple of small fixes to the {gen,import}_key functions | Jameson Graef Rollins | |
2009-02-09 | Break out host export commands into gpg_host_export and | Jameson Graef Rollins | |
gpg_host_export_to_ssh_file functions, and update the {gen,import}_key functions accordingly. | |||
2009-02-08 | Merge commit 'dkg/master' | Jameson Graef Rollins | |
2009-02-08 | Some rearragement/cleanup in the monkeysphere-host: | Jameson Graef Rollins | |
- define exported variable to hold host key fingerprint (HOST_FINGERPRINT) - broke out some common commands into simpler functions - rename the 'extend_key' function to be 'set_expire', since function is more generically offered now. | |||
2009-02-05 | m-a setup: take advantage of the new ability of pem2openpgp to generate its ↵ | Daniel Kahn Gillmor | |
own key. | |||
2009-02-05 | updated pem2openpgp invocation in m-h import-key | Daniel Kahn Gillmor | |
2009-02-05 | pem2openpgp now supports generating the key as an alternative to reading it ↵ | Daniel Kahn Gillmor | |
from stdin. | |||
2009-02-04 | pem2openpgp: avoid dumping garbage to stderr | Daniel Kahn Gillmor | |
2009-02-04 | pem2openpgp: when creating a signature, make sure that the public key ↵ | Daniel Kahn Gillmor | |
material uses a 2-octet packet length. | |||
2009-02-04 | ensure that the output of modular multiplicative inverse is positive. | Daniel Kahn Gillmor | |
2009-02-03 | bring comments up-to-date and parameterize expiration date. | Daniel Kahn Gillmor | |
2009-02-03 | use the environment to determine usage flags (default to certify) | Daniel Kahn Gillmor | |
2009-02-03 | *still* trying to get clean perl for pem2openpgp | Daniel Kahn Gillmor | |
2009-02-03 | still trying to get clean perl for pem2openpgp | Daniel Kahn Gillmor | |
2009-02-03 | stupid perl flailing in pem2openpgp. | Daniel Kahn Gillmor | |
2009-02-03 | accept environment variables to adjust the behavior of pem2openpgp | Daniel Kahn Gillmor | |
2009-02-03 | fix up gen/import-key: | Jameson Graef Rollins | |
- remove stuff about expiration, so we assume keys imported/generated with no expiration - set expiration with 'set-expire' function - update tests to test key importing and generation - fix some bugs | |||
2009-02-02 | add ability to specify key length of core secret key, so the test scripts ↵ | Jameson Graef Rollins | |
can specify something smaller than the default. | |||
2009-02-01 | add some log debug output to ma-setup | Jameson Graef Rollins | |
2009-02-01 | Fix a bug in setup where gpg was called instead of gpg_core. This | Jameson Graef Rollins | |
could have caused serious data loss for the running user. Should note to be carefull with this in the future. Also fix ownership on sphere gnupghome. | |||
2009-02-01 | new function to export signatures from core to sphere keyrings. this | Jameson Graef Rollins | |
is so that the sphere does not have to read the core pubring to get the certifier ltsigs, and we can therefore keep tighter permissions on the core keyring files. updated some comments/documentation as well. | |||
2009-02-01 | fix the log output for the ssh-proxycommand | Jameson Graef Rollins | |
2009-02-01 | small tweak to ssh-proxycommand comments. | Jameson Graef Rollins | |
2009-02-01 | some tweaks to the man pages | Jameson Graef Rollins | |
2009-02-01 | some general fixes: | Jameson Graef Rollins | |
- fix some references to old function names - move fingerprint_server_key to be fingerprint_host_key - update diagnostic scripts | |||
2009-02-01 | fix a bunch of directory references to the new data/share dirs | Jameson Graef Rollins | |
2009-02-01 | some small tweaks, and one tiny syntax bug fix, to ma/setup, and some | Jameson Graef Rollins | |
small formating and comment changes to test/basic |