3 # howler: server gpg key generator/publisher
6 # Jameson Rollins <jrollins@fifthhorseman.net>
8 # Copyright 2008, released under the GPL, version 3 or later
12 ########################################################################
14 ########################################################################
21 ########################################################################
23 ########################################################################
25 MS_HOME=${MS_HOME:-/etc/monkeysphere}
27 . "$MS_HOME"/monkeysphere.conf
31 KEY_TYPE=${KEY_TYPE:-RSA}
32 KEY_LENGTH=${KEY_LENGTH:-2048}
33 KEY_USAGE=${KEY_USAGE:-encrypt,auth}
34 SERVICE=${SERVICE:-ssh}
35 HOSTNAME=${HOSTNAME:-$(hostname -f)}
37 USERID=${USERID:-"$SERVICE"://"$HOSTNAME"}
39 echo "key parameters:"
42 Key-Length: $KEY_LENGTH
47 read -p "generate key? [Y|n]: " OK; OK=${OK:=Y}
48 if [ ${OK/y/Y} != 'Y' ] ; then
52 if gpg --list-key ="$USERID" > /dev/null 2>&1 ; then
53 failure "key for '$USERID' already exists"
56 echo "generating server key..."
57 gpg --batch --gen-key <<EOF
59 Key-Length: $KEY_LENGTH
65 read -p "publish key to $KEY_SERVER? [Y|n]: " OK; OK=${OK:=Y}
66 if [ ${OK/y/Y} != 'Y' ] ; then
70 echo "sending key to keyserver '$KEYSERVER'..."
71 keyID=$(gpg --list-key --with-colons ="$USERID" 2> /dev/null | grep '^pub:' | cut -d: -f5)
73 # dummy command so as not to publish fakes keys during testing
75 #gpg --send-keys --keyserver "$KEYSERVER" "$keyID"
76 echo "gpg --send-keys --keyserver $KEYSERVER $keyID"