projects
/
monkeysphere.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
fix output formatting for cases where multiple fingerprints are found, in functions...
[monkeysphere.git]
/
src
/
monkeysphere-host
diff --git
a/src/monkeysphere-host
b/src/monkeysphere-host
index 00f7c3441a8437bc92704779cafc2d1ede500d69..540a8ab1c0e3a531ef13abf72cc5afbf761c27fa 100755
(executable)
--- a/
src/monkeysphere-host
+++ b/
src/monkeysphere-host
@@
-54,14
+54,15
@@
usage: $PGRM <subcommand> [options] [args]
Monkeysphere host admin tool.
subcommands:
Monkeysphere host admin tool.
subcommands:
- import-key (i)
[NAME[:PORT]]
import existing ssh key to gpg
+ import-key (i)
FILE NAME[:PORT]
import existing ssh key to gpg
show-key (s) output all host key information
show-key (s) output all host key information
- set-expire (e) EXPIRE set host key expiration
+ publish-key (p) publish host key to keyserver
+ set-expire (e) [EXPIRE] set host key expiration
add-hostname (n+) NAME[:PORT] add hostname user ID to host key
revoke-hostname (n-) NAME[:PORT] revoke hostname user ID
add-hostname (n+) NAME[:PORT] add hostname user ID to host key
revoke-hostname (n-) NAME[:PORT] revoke hostname user ID
- add-revoker (
o) FINGERPRINT
add a revoker to the host key
- revoke-key
(r) revoke host key
- publish-key (p) publish host key to keyserver
+ add-revoker (
r+) [KEYID|FILE]
add a revoker to the host key
+ revoke-key
generate and/or publish revocation
+ certificate for host key
version (v) show version number
help (h,?) this help
version (v) show version number
help (h,?) this help
@@
-172,6
+173,11
@@
show_key() {
# import the host key into the tmp dir
gpg --quiet --import <"$HOST_KEY_FILE"
# import the host key into the tmp dir
gpg --quiet --import <"$HOST_KEY_FILE"
+ # create the ssh key
+ TMPSSH="$GNUPGHOME"/ssh_host_key_rsa_pub
+ openpgp2ssh <"$HOST_KEY_FILE" 2>/dev/null >"$TMPSSH"
+
+ # get the gpg fingerprint
HOST_FINGERPRINT=$(gpg --quiet --list-keys --with-colons --with-fingerprint \
| grep '^fpr:' | cut -d: -f10 )
HOST_FINGERPRINT=$(gpg --quiet --list-keys --with-colons --with-fingerprint \
| grep '^fpr:' | cut -d: -f10 )
@@
-188,9
+194,7
@@
show_key() {
# list the ssh fingerprint
echo -n "ssh fingerprint: "
# list the ssh fingerprint
echo -n "ssh fingerprint: "
- ssh-keygen -l -f /dev/stdin \
- <<<$(openpgp2ssh <"$HOST_KEY_FILE" 2>/dev/null) \
- | awk '{ print $1, $2, $4 }'
+ ssh-keygen -l -f "$TMPSSH" | awk '{ print $1, $2, $4 }'
# remove the tmp file
trap - EXIT
# remove the tmp file
trap - EXIT
@@
-233,6
+237,12
@@
COMMAND="$1"
shift
case $COMMAND in
shift
case $COMMAND in
+ 'import-key'|'i')
+ check_host_key
+ source "${MHSHAREDIR}/import_key"
+ import_key "$@"
+ ;;
+
'show-key'|'show'|'s')
check_host_no_key
show_key
'show-key'|'show'|'s')
check_host_no_key
show_key
@@
-259,14
+269,14
@@
case $COMMAND in
revoke_hostname "$@"
;;
revoke_hostname "$@"
;;
- 'add-revoker'|'
o
')
+ 'add-revoker'|'
r+
')
check_host_no_key
load_fingerprint
source "${MHSHAREDIR}/add_revoker"
add_revoker "$@"
;;
check_host_no_key
load_fingerprint
source "${MHSHAREDIR}/add_revoker"
add_revoker "$@"
;;
- 'revoke-key'
|'r'
)
+ 'revoke-key')
check_host_no_key
load_fingerprint
source "${MHSHAREDIR}/revoke_key"
check_host_no_key
load_fingerprint
source "${MHSHAREDIR}/revoke_key"
@@
-280,12
+290,6
@@
case $COMMAND in
publish_key
;;
publish_key
;;
- 'import-key'|'i')
- check_host_key
- source "${MHSHAREDIR}/import_key"
- import_key "$@"
- ;;
-
'diagnostics'|'d')
load_fingerprint
source "${MHSHAREDIR}/diagnostics"
'diagnostics'|'d')
load_fingerprint
source "${MHSHAREDIR}/diagnostics"