summaryrefslogtreecommitdiff
path: root/src/share/mh/import_key
blob: 040b41c57140862760b9e10dcac2189bdcb44f65 (plain) 
    

  1. # -*-shell-script-*-
    2. 

  2. # This should be sourced by bash (though we welcome changes to make it POSIX sh compliant)
    3. 

  3. 

  4. # Monkeysphere host import-key subcommand
    5. 

  5. #
    6. 

  6. # The monkeysphere scripts are written by:
    7. 

  7. # Jameson Rollins <jrollins@finestructure.net>
    8. 

  8. # Jamie McClelland <jm@mayfirst.org>
    9. 

  9. # Daniel Kahn Gillmor <dkg@fifthhorseman.net>
    10. 

  10. #
    11. 

  11. # They are Copyright 2008-2009 and are all released under the GPL,
    12. 

  12. # version 3 or later.
    13. 

  13. 

  14. import_key() {
    15. 

  15. 

  16. local sshKeyFile
    17. 

  17. local hostName
    18. 

  18. local domain
    19. 

  19. local userID
    20. 

  20. 

  21. sshKeyFile="$1"
    22. 

  22. hostName="$2"
    23. 

  23. 

  24. # check that key file specified
    25. 

  25. if [ -z "$sshKeyFile" ] ; then
    26. 

  26.     failure "Must specify ssh key file to import, or specify '-' for stdin."
    27. 

  27. fi
    28. 

  28. 

  29. # use the default hostname if not specified
    30. 

  30. if [ -z "$hostName" ] ; then
    31. 

  31.     hostName=$(hostname -f) || failure "Could not determine hostname."
    32. 

  32.     # test that the domain is not obviously illegitimate
    33. 

  33.     domain=${foo##*.}
    34. 

  34.     case $domain in
    35. 

  35.     'local'|'localdomain')
    36. 

  36.         failure "Host domain '$domain' is not legitimate.  Aborting key import."
    37. 

  37.         ;;
    38. 

  38.     esac
    39. 

  39.     # test that there are at least two parts
    40. 

  40.     if (( $(echo "$hostName" | tr . ' ' | wc -w) < 2 )) ; then
    41. 

  41.     failure "Host name '$hostName' is not legitimate.  Aborting key import."
    42. 

  42.     fi
    43. 

  43. fi
    44. 

  44. 

  45. userID="ssh://${hostName}"
    46. 

  46. 

  47. # create host home
    48. 

  48. mkdir -p "${MHDATADIR}"
    49. 

  49. mkdir -p "${GNUPGHOME_HOST}"
    50. 

  50. chmod 700 "${GNUPGHOME_HOST}"
    51. 

  51. 

  52. # import ssh key to a private key
    53. 

  53. if [ "$sshKeyFile" = '-' ] ; then
    54. 

  54.     log verbose "importing ssh key from stdin..."
    55. 

  55.     PEM2OPENPGP_USAGE_FLAGS=authenticate pem2openpgp "$userID" \
    56. 

  56.     | gpg_host --import
    57. 

  57. else
    58. 

  58.     log verbose "importing ssh key from file '$sshKeyFile'..."
    59. 

  59.     PEM2OPENPGP_USAGE_FLAGS=authenticate pem2openpgp "$userID" \
    60. 

  60.     <"$sshKeyFile" \
    61. 

  61.     | gpg_host --import
    62. 

  62. fi
    63. 

  63. 

  64. # load the new host fpr into the fpr variable.  this is so we can
    65. 

  65. # create the gpg pub key file.  we have to do this from the secret key
    66. 

  66. # ring since we obviously don't have the gpg pub key file yet, since
    67. 

  67. # that's what we're trying to produce (see below).
    68. 

  68. load_fingerprint_secret
    69. 

  69. 

  70. # export to gpg public key to file
    71. 

  71. update_gpg_pub_file
    72. 

  72. 

  73. log info "host key imported:"
    74. 

  74. 

  75. # show info about new key
    76. 

  76. show_key
    77. 

  77. 

  78. }
    79.
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-28 20:53:59 +0000