summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2009-02-15have the import_key also create the ssh pub file, since it is needed to show ↵Jameson Graef Rollins
full host key info.
2009-02-12fix something that was resolved improperly in the previous merge.Jameson Graef Rollins
2009-02-12Merge commit 'dkg/master'Jameson Graef Rollins
Conflicts: src/share/ma/setup
2009-02-12fix some calls to gpg_sphere that where not putting all arguments into a ↵Jameson Graef Rollins
single argument, as required by the strange su requirements.
2009-02-12trust level != trust modelDaniel Kahn Gillmor
2009-02-12fix the su_monkeysphere_user function so that it does 'bash -c' instead of ↵Jameson Graef Rollins
'eval', if the user already is the monkeysphere user, so that a proper subshell is invoked.
2009-02-12su_monkeysphere_user now invokes a subshell even when already called by the ↵Daniel Kahn Gillmor
monkeysphere user.
2009-02-12tweak some of the log output inconsequentiallyJameson Graef Rollins
2009-02-12no longer require the primary-keyring for the sphere gpg.conf now that we ↵Daniel Kahn Gillmor
use a single keyring
2009-02-12fix typoDaniel Kahn Gillmor
2009-02-12fix some things in ma certifier functions:Jameson Graef Rollins
- fix left over bad invocations of gpg_sphere --list-keys - add some more debug log output
2009-02-12Fix the ma/setup function:Jameson Graef Rollins
- fix reference to MONKEYSPHERE_USER for GNUPGHOME_SPHERE - break out core_fingerprint function - export core key to sphere keyring (necessary) - fix some logging (add more debug) and formatting
2009-02-12fix reference to MONKEYSPHER_USER in ma/setupJameson Graef Rollins
2009-02-12add some debug logging to some common functionsJameson Graef Rollins
2009-02-12add ability to supress confirmation prompt in ma/add_certifierJameson Graef Rollins
fix some logging output
2009-02-12clean up how trust level was check in ma/setup, with some debug outputJameson Graef Rollins
2009-02-12break out a bunch of common functions in monkeysphere-host:Jameson Graef Rollins
- create_*_*_file to create the key files - load_*fingerprint to load the host fingerprint into an exported variable (HOST_FINGERPRINT) - check_host_*key to check for the presence of a host key modified {import,gen}_key to use these new functions.
2009-02-09add much of an add_revoker function. still needs to be fleshed outJameson Graef Rollins
and tested, though, so it's not "active" yet.
2009-02-09small formatting tweaks to add_certifier functionJameson Graef Rollins
2009-02-09rename function to get the host fingerprint, and fix someJameson Graef Rollins
HOST_FINGERPRINT variables.
2009-02-09fix name of set_expire functionJameson Graef Rollins
2009-02-09break su_monkeysphere_user into common function, since it will likelyJameson Graef Rollins
be needed by both m-host and m-auth for communicating with keyservers.
2009-02-09define variable for public key files (HOST_KEY_PUB, HOST_KEY_PUB_GPG).Jameson Graef Rollins
also, fix some function calls to check_host_fail function.
2009-02-09a couple of small fixes to the {gen,import}_key functionsJameson Graef Rollins
2009-02-09Break out host export commands into gpg_host_export andJameson Graef Rollins
gpg_host_export_to_ssh_file functions, and update the {gen,import}_key functions accordingly.
2009-02-08Merge commit 'dkg/master'Jameson Graef Rollins
2009-02-08Some rearragement/cleanup in the monkeysphere-host:Jameson Graef Rollins
- define exported variable to hold host key fingerprint (HOST_FINGERPRINT) - broke out some common commands into simpler functions - rename the 'extend_key' function to be 'set_expire', since function is more generically offered now.
2009-02-05m-a setup: take advantage of the new ability of pem2openpgp to generate its ↵Daniel Kahn Gillmor
own key.
2009-02-05updated pem2openpgp invocation in m-h import-keyDaniel Kahn Gillmor
2009-02-05pem2openpgp now supports generating the key as an alternative to reading it ↵Daniel Kahn Gillmor
from stdin.
2009-02-04pem2openpgp: avoid dumping garbage to stderrDaniel Kahn Gillmor
2009-02-04pem2openpgp: when creating a signature, make sure that the public key ↵Daniel Kahn Gillmor
material uses a 2-octet packet length.
2009-02-04ensure that the output of modular multiplicative inverse is positive.Daniel Kahn Gillmor
2009-02-03bring comments up-to-date and parameterize expiration date.Daniel Kahn Gillmor
2009-02-03use the environment to determine usage flags (default to certify)Daniel Kahn Gillmor
2009-02-03*still* trying to get clean perl for pem2openpgpDaniel Kahn Gillmor
2009-02-03still trying to get clean perl for pem2openpgpDaniel Kahn Gillmor
2009-02-03stupid perl flailing in pem2openpgp.Daniel Kahn Gillmor
2009-02-03accept environment variables to adjust the behavior of pem2openpgpDaniel Kahn Gillmor
2009-02-03fix up gen/import-key:Jameson Graef Rollins
- remove stuff about expiration, so we assume keys imported/generated with no expiration - set expiration with 'set-expire' function - update tests to test key importing and generation - fix some bugs
2009-02-02add ability to specify key length of core secret key, so the test scripts ↵Jameson Graef Rollins
can specify something smaller than the default.
2009-02-01add some log debug output to ma-setupJameson Graef Rollins
2009-02-01Fix a bug in setup where gpg was called instead of gpg_core. ThisJameson Graef Rollins
could have caused serious data loss for the running user. Should note to be carefull with this in the future. Also fix ownership on sphere gnupghome.
2009-02-01new function to export signatures from core to sphere keyrings. thisJameson Graef Rollins
is so that the sphere does not have to read the core pubring to get the certifier ltsigs, and we can therefore keep tighter permissions on the core keyring files. updated some comments/documentation as well.
2009-02-01fix the log output for the ssh-proxycommandJameson Graef Rollins
2009-02-01small tweak to ssh-proxycommand comments.Jameson Graef Rollins
2009-02-01some tweaks to the man pagesJameson Graef Rollins
2009-02-01some general fixes:Jameson Graef Rollins
- fix some references to old function names - move fingerprint_server_key to be fingerprint_host_key - update diagnostic scripts
2009-02-01fix a bunch of directory references to the new data/share dirsJameson Graef Rollins
2009-02-01some small tweaks, and one tiny syntax bug fix, to ma/setup, and someJameson Graef Rollins
small formating and comment changes to test/basic