Daniel Kahn Gillmor [Thu, 18 Feb 2010 17:11:47 +0000 (12:11 -0500)]
enforce --no-armor when exporting to openpgp2ssh in case weird gpg.conf options (see bug 1625)
Daniel Kahn Gillmor [Mon, 8 Feb 2010 19:55:29 +0000 (14:55 -0500)]
initial seminar details -- abstract and feeble outline
Daniel Kahn Gillmor [Sun, 7 Feb 2010 18:18:44 +0000 (13:18 -0500)]
Merge remote branch 'micah/master'
Micah Anderson [Sun, 7 Feb 2010 18:14:31 +0000 (13:14 -0500)]
remove old git documentation
Jameson Rollins [Thu, 4 Feb 2010 17:06:00 +0000 (12:06 -0500)]
fix monkeysphere-authentication man page reference to AuthorizedKeysFile for sshd_config
Jameson Rollins [Thu, 4 Feb 2010 17:00:01 +0000 (12:00 -0500)]
fix changelog about Standards-Version update
Jameson Rollins [Tue, 2 Feb 2010 21:27:31 +0000 (16:27 -0500)]
add some useful shortcuts for some common commands
Daniel Kahn Gillmor [Mon, 1 Feb 2010 06:44:17 +0000 (01:44 -0500)]
bumping debian packaging to Standards-Version 3.8.4 (no changes needed)
Daniel Kahn Gillmor [Tue, 19 Jan 2010 18:59:18 +0000 (13:59 -0500)]
added release note for 0.28
Daniel Kahn Gillmor [Tue, 19 Jan 2010 18:57:27 +0000 (13:57 -0500)]
updating changelogs in preparation for 0.28 release
Daniel Kahn Gillmor [Tue, 19 Jan 2010 16:46:42 +0000 (11:46 -0500)]
actually ship new upstream changelog
Jameson Rollins [Tue, 19 Jan 2010 15:10:17 +0000 (10:10 -0500)]
small man page typo tweak
Daniel Kahn Gillmor [Tue, 19 Jan 2010 08:12:59 +0000 (03:12 -0500)]
Merge remote branch 'jrollins/master'
Daniel Kahn Gillmor [Tue, 19 Jan 2010 08:11:55 +0000 (03:11 -0500)]
re-work monkeysphere-host diagnostics with an eye toward multiple host keys
Daniel Kahn Gillmor [Tue, 19 Jan 2010 08:03:26 +0000 (03:03 -0500)]
dump gpg --import error spew to /dev/null during hackish uses of gpg
Daniel Kahn Gillmor [Tue, 19 Jan 2010 07:36:20 +0000 (02:36 -0500)]
ignoring time conflict when extracting info in a hacky way from gpg. warnings still come out to stderr
Daniel Kahn Gillmor [Tue, 19 Jan 2010 07:01:35 +0000 (02:01 -0500)]
updating utils to deal with the newly split-out changelogs
Daniel Kahn Gillmor [Tue, 19 Jan 2010 06:55:46 +0000 (01:55 -0500)]
switch Makefile to use upstream changelog for versioning info
Daniel Kahn Gillmor [Tue, 19 Jan 2010 06:55:15 +0000 (01:55 -0500)]
updating copyright year in debian postinst packaging
Daniel Kahn Gillmor [Tue, 19 Jan 2010 06:42:34 +0000 (01:42 -0500)]
accepting "--version" as well as "version" subcommand for monkeysphere-host and monkeysphere-authentication
Daniel Kahn Gillmor [Tue, 19 Jan 2010 06:37:14 +0000 (01:37 -0500)]
added a few more FIXMEs to check_service_name()
Daniel Kahn Gillmor [Tue, 19 Jan 2010 06:36:32 +0000 (01:36 -0500)]
add get_cert_info() to common
Daniel Kahn Gillmor [Tue, 19 Jan 2010 04:43:43 +0000 (23:43 -0500)]
removing superfluous eval
Jameson Rollins [Tue, 19 Jan 2010 04:38:14 +0000 (23:38 -0500)]
tweak loading of fingerprints in multi_key wrapper function, so unnecessary error messages aren't output
Daniel Kahn Gillmor [Tue, 19 Jan 2010 04:15:43 +0000 (23:15 -0500)]
no need for recursive removal of a single file
Daniel Kahn Gillmor [Tue, 19 Jan 2010 04:10:42 +0000 (23:10 -0500)]
flesh out check for reasonable-looking service names
Jameson Rollins [Tue, 19 Jan 2010 03:59:26 +0000 (22:59 -0500)]
add 0.28 transition script to generate new host_keys.pub.pgp file, and remove all ssh_host_rsa_key.pub.gpg file
Jameson Rollins [Mon, 18 Jan 2010 23:38:27 +0000 (18:38 -0500)]
canonicalize prompting to prompt if MONKEYSPHERE_PROMPT != 'false'
Jameson Rollins [Mon, 18 Jan 2010 23:22:22 +0000 (18:22 -0500)]
add prompt if a service name is already being used then importing a key or adding a name.
This can be overridden with the MONKEYSPHERE_PROMPT var.
Daniel Kahn Gillmor [Mon, 18 Jan 2010 22:46:12 +0000 (17:46 -0500)]
monkeysphere-host: reverting from host_fingerprints() to list_primary_fingerprints()
Daniel Kahn Gillmor [Mon, 18 Jan 2010 22:28:43 +0000 (17:28 -0500)]
made public use of m-h show-keys instead of show-key, fixed stupid field-numbering bug in fingerprint extraction
Daniel Kahn Gillmor [Mon, 18 Jan 2010 22:14:04 +0000 (17:14 -0500)]
renaming m-h update_gpg_pub_file to update_pgp_pub_file
Daniel Kahn Gillmor [Mon, 18 Jan 2010 22:11:00 +0000 (17:11 -0500)]
renaming host_keys.pub.gpg to host_keys.pub.pgp
Daniel Kahn Gillmor [Mon, 18 Jan 2010 22:07:11 +0000 (17:07 -0500)]
got rid of monkeysphere-host fprs file
Jameson Rollins [Mon, 18 Jan 2010 18:12:00 +0000 (13:12 -0500)]
remove reference to HOST_KEY_FPR_FILE
except in update_gpg_pub_file, which dkg is going to modify to just
hold the host keys and not any other keys (like revoker keys). this
file alone can then be used to get host key info for non-priviledged
users.
Jameson Rollins [Mon, 18 Jan 2010 17:05:37 +0000 (12:05 -0500)]
Merge remote branch 'dkg/master'
Daniel Kahn Gillmor [Mon, 18 Jan 2010 16:54:33 +0000 (11:54 -0500)]
simplified test to cope with possibility of re-ordered keytrans listfprs output
Jameson Rollins [Mon, 18 Jan 2010 16:50:08 +0000 (11:50 -0500)]
suppress superfulous error output
Jameson Rollins [Mon, 18 Jan 2010 16:43:06 +0000 (11:43 -0500)]
add check that service name isn't already in use in import_key
Jameson Rollins [Mon, 18 Jan 2010 16:42:30 +0000 (11:42 -0500)]
fix show_key function to handle user ID input (needed for import_key)
Jameson Rollins [Mon, 18 Jan 2010 15:53:27 +0000 (10:53 -0500)]
fix keytrans test to handle possible permuted output of keytrans listfprs from expected order
Daniel Kahn Gillmor [Mon, 18 Jan 2010 06:46:53 +0000 (01:46 -0500)]
wordsmithing debian/control
Daniel Kahn Gillmor [Mon, 18 Jan 2010 06:42:52 +0000 (01:42 -0500)]
more tweaks to man pages
Daniel Kahn Gillmor [Mon, 18 Jan 2010 06:38:36 +0000 (01:38 -0500)]
Merge remote branch 'jrollins/master'
Daniel Kahn Gillmor [Mon, 18 Jan 2010 06:33:11 +0000 (01:33 -0500)]
fix stupid think-o that caused keytrans adduserid to misbehave if another key came in the input stream after the desired key was already found
Daniel Kahn Gillmor [Mon, 18 Jan 2010 06:32:08 +0000 (01:32 -0500)]
add check for multiple secret keys and new listfprs subcommand to tests/keytrans
Daniel Kahn Gillmor [Mon, 18 Jan 2010 06:06:50 +0000 (01:06 -0500)]
added non-public "keytrans listfprs" subcommand
Jameson Rollins [Mon, 18 Jan 2010 04:01:35 +0000 (23:01 -0500)]
Merge remote branch 'dkg/master'
Jameson Rollins [Mon, 18 Jan 2010 04:01:29 +0000 (23:01 -0500)]
separate upstream and debian packaging changelogs
Daniel Kahn Gillmor [Mon, 18 Jan 2010 03:23:25 +0000 (22:23 -0500)]
removed unnecessary tmpfile and repetitive keyid extraction from tests/basic
Jameson Rollins [Sat, 16 Jan 2010 18:55:46 +0000 (13:55 -0500)]
update package description
Jameson Rollins [Sat, 16 Jan 2010 18:49:29 +0000 (13:49 -0500)]
some improvements to man pages
Jameson Rollins [Sat, 16 Jan 2010 18:34:51 +0000 (13:34 -0500)]
small tweaks to failure messages
Jameson Rollins [Sat, 16 Jan 2010 18:23:22 +0000 (13:23 -0500)]
tweaks to the monkeysphere-host man page
Jameson Rollins [Sat, 16 Jan 2010 16:57:06 +0000 (11:57 -0500)]
update changelog
Jameson Rollins [Sat, 16 Jan 2010 16:49:18 +0000 (11:49 -0500)]
fix revocation test
was revoking the wrong key for the ssh test. test fully passing now!
Jameson Rollins [Sat, 16 Jan 2010 01:17:15 +0000 (20:17 -0500)]
Try to fix monkeysphere-host and tests/basic for revoke-key test
Unfortunately there's still a problem that I can't quite figure out.
gpg is for some reason failing to import that revocation certificate.
Could it be because gpg can't accept ascii armored certificates as
input? I'm at a loss.
Jameson Rollins [Sat, 16 Jan 2010 00:42:42 +0000 (19:42 -0500)]
Merge remote branch 'dkg/master'
Conflicts:
tests/basic
Jameson Rollins [Sat, 16 Jan 2010 00:37:45 +0000 (19:37 -0500)]
tweaks to tests/basic for new monkeysphere-host ui
Jameson Rollins [Sat, 16 Jan 2010 00:19:15 +0000 (19:19 -0500)]
Major rework of monkeysphere-host to handle multiple host keys.
This rework removes any assumption that monkeysphere-host is just
managing a single host key, or that the keys are used specifically for
ssh. The UI is exactly backwards compatible except that hostnames
('example.com') must be replaced by full service names
('ssh://example.com'). This incarnation passes the old tests with
those changes only.
There are a couple of things that still need to be done:
- need to see if a transition script is needed (some local file names
have changed)
- need to fill in check_service_name function to verify that a
specified service name fits the expected format.
- update diagnostics appropriately
Jameson Rollins [Fri, 15 Jan 2010 23:34:01 +0000 (18:34 -0500)]
add trap to remove temp dir in list_primary_fingerprints function
Daniel Kahn Gillmor [Fri, 15 Jan 2010 19:12:41 +0000 (14:12 -0500)]
adding website page about expanding the monkeysphere
Daniel Kahn Gillmor [Fri, 15 Jan 2010 05:58:22 +0000 (00:58 -0500)]
updating getting-started docs to use the 0.28 monkeysphere-host syntax (specifying full service user ID including scheme)
Daniel Kahn Gillmor [Fri, 15 Jan 2010 05:47:19 +0000 (00:47 -0500)]
overhaul monkeysphere-host(8) to match new multi-key capable interface
Daniel Kahn Gillmor [Fri, 15 Jan 2010 04:13:35 +0000 (23:13 -0500)]
added missing openssl.cnf for test suite.
Daniel Kahn Gillmor [Fri, 15 Jan 2010 04:11:53 +0000 (23:11 -0500)]
update monkeysphere-authentication(8) to acknowledge use of monkeysphere beyond OpenSSH
Daniel Kahn Gillmor [Fri, 15 Jan 2010 04:10:58 +0000 (23:10 -0500)]
update monkeysphere(1) to acknowledge use beyond OpenSSH
Daniel Kahn Gillmor [Fri, 15 Jan 2010 03:27:21 +0000 (22:27 -0500)]
added simple basic test for second key for monkeysphere-host, pulled this time from OpenSSL
Daniel Kahn Gillmor [Fri, 15 Jan 2010 03:23:05 +0000 (22:23 -0500)]
changed test suite variable from HOSTKEY to SSHHOSTKEY; updated path to exported host keys (from ssh_host_rsa_key.pub.gpg to host_keys.gpg.pub)
Daniel Kahn Gillmor [Fri, 15 Jan 2010 02:33:55 +0000 (21:33 -0500)]
updating test suite to new preferred "monkeysphere-host {add,revoke}-servicename" subcommand
Daniel Kahn Gillmor [Fri, 15 Jan 2010 02:20:35 +0000 (21:20 -0500)]
updated test suite to use scheme://hostname instead of raw hostname, in preparation for multi-key monkeysphere-host
Daniel Kahn Gillmor [Fri, 15 Jan 2010 02:18:56 +0000 (21:18 -0500)]
added test of "monkeysphere keys-for-userid"
Daniel Kahn Gillmor [Fri, 15 Jan 2010 02:18:27 +0000 (21:18 -0500)]
updated Makefile copyright info to use © symbol since (c) is apparently legally meaningless
Daniel Kahn Gillmor [Tue, 12 Jan 2010 18:05:30 +0000 (13:05 -0500)]
recorded recent george.riseup.net upgrade
Daniel Kahn Gillmor [Tue, 12 Jan 2010 05:41:13 +0000 (00:41 -0500)]
touching up the switch to keys-for-userid
Jameson Rollins [Tue, 12 Jan 2010 04:17:38 +0000 (23:17 -0500)]
rename keys-from-userid command to more accurate keys-for-userid
leave the old command for now, but warn as deprecated.
Daniel Kahn Gillmor [Tue, 12 Jan 2010 01:57:17 +0000 (20:57 -0500)]
added releasenote for 0.27
Daniel Kahn Gillmor [Tue, 12 Jan 2010 01:54:52 +0000 (20:54 -0500)]
preparing to release 0.27-1
Daniel Kahn Gillmor [Mon, 11 Jan 2010 16:24:16 +0000 (11:24 -0500)]
normalize output for monkeysphere when no subcommand is issued or when an unknown subcommand is issued
Jameson Rollins [Mon, 11 Jan 2010 16:10:30 +0000 (11:10 -0500)]
fix invocation without subcommands to call usage function and exit 1 explicitlly
Jameson Rollins [Mon, 11 Jan 2010 15:47:09 +0000 (10:47 -0500)]
add standard --version option for version output
Jameson Rollins [Mon, 11 Jan 2010 05:01:22 +0000 (00:01 -0500)]
add note to changelog about closure of issue #1536
Jameson Rollins [Mon, 11 Jan 2010 04:27:58 +0000 (23:27 -0500)]
update my user ID
Jameson Rollins [Mon, 11 Jan 2010 00:49:12 +0000 (19:49 -0500)]
Merge remote branch 'mjgoins/master'
Matthew James Goins [Mon, 11 Jan 2010 00:03:50 +0000 (19:03 -0500)]
Merge branch 'master' of git://labs.riseup.net/~micah/monkeysphere
Jameson Rollins [Sun, 10 Jan 2010 23:48:59 +0000 (18:48 -0500)]
Fix patch for gen_key to test gpg version.
This patch checks the version of gpg (for v1 and v2) and sets the key
type command for the gen_subkey gpg edit-key script appropriately.
Daniel Kahn Gillmor [Sun, 10 Jan 2010 22:19:48 +0000 (17:19 -0500)]
added notes about what version needs what keyType
Jameson Rollins [Sun, 10 Jan 2010 22:09:10 +0000 (17:09 -0500)]
Add new keys-from-userid subcommand to monkeysphere UI.
This new subcommand calls a new function, keys_from_userid, that
outputs to stdout all acceptable keys for a given user ID literal.
Jameson Rollins [Sun, 10 Jan 2010 22:06:39 +0000 (17:06 -0500)]
Clean up REQUIRED_KEY_CAPABILITY option passing to process_user_id.
Get rid of 'MODE' stuff, since it was not very clear and wasn't really
being used.
Daniel Kahn Gillmor [Sat, 9 Jan 2010 20:05:28 +0000 (15:05 -0500)]
fix pem2openpgp(1) synopsis.
Micah Anderson [Fri, 1 Jan 2010 00:38:06 +0000 (19:38 -0500)]
Its more useful and standard to actually output the 'help' output when
an improper number of arguments is passed, rather output a line
telling the user how to get the help output.
Daniel Kahn Gillmor [Sat, 26 Dec 2009 17:09:15 +0000 (12:09 -0500)]
indicate that no changes were needed for the policy bump (and version the unreleased changelog entry as a prerelease).
Jameson Graef Rollins [Thu, 24 Dec 2009 17:29:51 +0000 (12:29 -0500)]
add cpio to Build-Depends
Jameson Graef Rollins [Sun, 20 Dec 2009 16:52:09 +0000 (11:52 -0500)]
fix ms Issue #1536 for gpg edit/addkey UI change
gnupg apparently changed their edit-key/addkey function ordering such
that the monkeysphere gen-subkey subcommand was creating DSA
authentication subkeys instead of RSA subkeys. DSA subkeys are not
supported by the ms key translation utilities, so this is a big
problem. This patch fixes the problem, but it means that we have
require gnupg >=1.4.10 from now on, or at least until gnupg changes
their UI again for no good reason.
Jameson Graef Rollins [Sun, 20 Dec 2009 01:57:01 +0000 (20:57 -0500)]
update standards version to 3.8.3
Daniel Kahn Gillmor [Sat, 12 Dec 2009 20:12:49 +0000 (15:12 -0500)]
hush up m-a setup because the dd was making noise
Daniel Kahn Gillmor [Fri, 4 Dec 2009 00:44:21 +0000 (19:44 -0500)]
removed superfluous Copyright
Daniel Kahn Gillmor [Thu, 3 Dec 2009 22:52:54 +0000 (17:52 -0500)]
added revision information to the debian/copyright Format-Specification, since DEP5 is not yet stable
Daniel Kahn Gillmor [Sat, 28 Nov 2009 23:22:32 +0000 (18:22 -0500)]
updated debian/copyright to match the latest version of DEP5
Daniel Kahn Gillmor [Fri, 30 Oct 2009 15:36:56 +0000 (11:36 -0400)]
added link to mina (apache sshd)