summaryrefslogtreecommitdiff
path: root/src/share/mh/import_key
blob: 6394ad734fec1e601f92d1362329ae9ba51f06ad (plain) 
    

  1. # -*-shell-script-*-
    2. 

  2. # This should be sourced by bash (though we welcome changes to make it POSIX sh compliant)
    3. 

  3. 

  4. # Monkeysphere host import-key subcommand
    5. 

  5. #
    6. 

  6. # The monkeysphere scripts are written by:
    7. 

  7. # Jameson Rollins <jrollins@finestructure.net>
    8. 

  8. # Jamie McClelland <jm@mayfirst.org>
    9. 

  9. # Daniel Kahn Gillmor <dkg@fifthhorseman.net>
    10. 

  10. #
    11. 

  11. # They are Copyright 2008-2009 and are all released under the GPL,
    12. 

  12. # version 3 or later.
    13. 

  13. 

  14. import_key() {
    15. 

  15. 

  16. local sshKeyFile
    17. 

  17. local hostName
    18. 

  18. local domain
    19. 

  19. local userID
    20. 

  20. 

  21. sshKeyFile="$1"
    22. 

  22. hostName="$2"
    23. 

  23. 

  24. # use the default hostname if not specified
    25. 

  25. if [ -z "$hostName" ] ; then
    26. 

  26.     hostName=$(hostname -f) || failure "Could not determine hostname."
    27. 

  27.     # test that the domain is not obviously illegitimate
    28. 

  28.     domain=${foo##*.}
    29. 

  29.     case $domain in
    30. 

  30.     'local'|'localdomain')
    31. 

  31.         failure "Host domain '$domain' is not legitimate.  Aborting key import."
    32. 

  32.         ;;
    33. 

  33.     esac
    34. 

  34.     # test that there are at least two parts
    35. 

  35.     if (( $(echo "$hostName" | tr . ' ' | wc -w) < 2 )) ; then
    36. 

  36.     failure "Host name '$hostName' is not legitimate.  Aborting key import."
    37. 

  37.     fi
    38. 

  38. fi
    39. 

  39. 

  40. userID="ssh://${hostName}"
    41. 

  41. 

  42. # create host home
    43. 

  43. mkdir -p "${MHDATADIR}"
    44. 

  44. mkdir -p "${GNUPGHOME_HOST}"
    45. 

  45. chmod 700 "${GNUPGHOME_HOST}"
    46. 

  46. 

  47. # import ssh key to a private key
    48. 

  48. if [ -z "$sshKeyFile" ] ; then
    49. 

  49.     failure "Must specify ssh key file to import, or specify '-' for stdin."
    50. 

  50. elif [ "$sshKeyFile" = '-' ] ; then
    51. 

  51.     log verbose "importing ssh key from stdin..."
    52. 

  52.     PEM2OPENPGP_USAGE_FLAGS=authenticate pem2openpgp "$userID" \
    53. 

  53.     | gpg_host --import
    54. 

  54. else
    55. 

  55.     log verbose "importing ssh key from file '$sshKeyFile'..."
    56. 

  56.     PEM2OPENPGP_USAGE_FLAGS=authenticate pem2openpgp "$userID" \
    57. 

  57.     <"$sshKeyFile" \
    58. 

  58.     | gpg_host --import
    59. 

  59. fi
    60. 

  60. 

  61. # load the new host fpr into the fpr variable.  this is so we can
    62. 

  62. # create the gpg pub key file.  we have to do this from the secret key
    63. 

  63. # ring since we obviously don't have the gpg pub key file yet, since
    64. 

  64. # that's what we're trying to produce (see below).
    65. 

  65. load_fingerprint_secret
    66. 

  66. 

  67. # export to gpg public key to file
    68. 

  68. update_gpg_pub_file
    69. 

  69. 

  70. log info "host key imported:"
    71. 

  71. 

  72. # show info about new key
    73. 

  73. show_key
    74. 

  74. 

  75. }
    76.
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-28 09:37:39 +0000