From: Daniel Kahn Gillmor Date: Fri, 29 Oct 2010 05:17:38 +0000 (-0400) Subject: removed msva-review-cert; it is already bit-rotted, we have no clear use-case for... X-Git-Tag: msva-perl_debian/0.6-1~3^2~9 X-Git-Url: http://git.tremily.us/?a=commitdiff_plain;h=86de6cdb6a1a65dbb0fcdc22c5b01049e9173c7e;p=monkeysphere-validation-agent.git removed msva-review-cert; it is already bit-rotted, we have no clear use-case for it, and no argument currently for wanting to maintain a new interface. It might return eventually in some other form. --- diff --git a/msva-review-cert b/msva-review-cert deleted file mode 100755 index 7ec0b9e..0000000 --- a/msva-review-cert +++ /dev/null @@ -1,141 +0,0 @@ -#!/usr/bin/perl -wT - -# Monkeysphere Validation Agent, Perl version -# Copyright © 2010 Daniel Kahn Gillmor -# -# This program is free software: you can redistribute it and/or modify -# it under the terms of the GNU General Public License as published by -# the Free Software Foundation, either version 3 of the License, or -# (at your option) any later version. -# -# This program is distributed in the hope that it will be useful, -# but WITHOUT ANY WARRANTY; without even the implied warranty of -# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -# GNU General Public License for more details. -# -# You should have received a copy of the GNU General Public License -# along with this program. If not, see . - -use warnings; -use strict; - -use Crypt::Monkeysphere::MSVA qw( msvalog reviewcert ); -use Crypt::Monkeysphere::MSVA::Client qw( create_apd); - -my $context = shift; -my $peer = shift; -my $pkctype = shift || 'x509der'; - -my $apd = create_apd($context,$peer,$pkctype); -my ($status,$ret) = reviewcert($apd); - -msvalog('info', "status: %s\n", $status); -msvalog('info', "valid: %s\n", $ret->{valid}); -msvalog('info', "message: %s\n", $ret->{message}); - -if ($ret->{valid}) { - exit 0; -} -else { - exit 1; -} -__END__ - -=head1 NAME - -msva-review-cert - review a certificate for validity - -=head1 SYNOPSIS - -msva-review-cert CONTEXT PEER PKC_TYPE < PKC_DATA - -=head1 ABSTRACT - -msva-review-cert provides... - -=head1 INTRODUCTION - -Takes as input a public key carrier (a raw public key, or some flavor -of certificate), the supposed name of the remote peer offering the -pubkey, and the context in which the validation check is relevant -(e.g. ssh, https, etc). Reports on the validity of the peer's use of -the public key in the given context. - -=head1 USAGE - -msva-review-cert create an agent post data (APD) object which is -reviewed by the monkeysphere. The return code of the client indicates -the validity of the certificate. If the certificate is valid, the -return code is 0. Otherwise, the return code if 1. - -The APD is created from certificate data provided on stdin (PKC_DATA), -and the following information provided on the command line: - -=over 4 - -=item CONTEXT - -Context of query, e.g. 'https', 'ssh', etc. - -=item PEER - -Service address portion of url, e.g. 'foo.example.net'. - -=item PKC_TYPE - -Type of public key carrier data provided on stdin, e.g. 'x509der', -etc. - -=item PKC_DATA - -Public key carrier data provided on stdin. - -=back - -=head1 ENVIRONMENT VARIABLES - -msva-review-cert accepts some environment variables: - -=over 4 - -=item MSVA_LOG_LEVEL - -Log messages about its operation to stderr. MSVA_LOG_LEVEL controls -its verbosity, and should be one of (in increasing verbosity): silent, -quiet, fatal, error, info, verbose, debug, debug1, debug2, debug3. -Default is 'error'. - -=item MSVA_KEYSERVER_POLICY - -msva-perl must decide when to check with keyservers (for new keys, -revocation certificates, new certifications, etc). There are three -possible options: 'always' means to check with the keyserver on every -query it receives. 'never' means to never check with a -keyserver. 'unlessvalid' will only check with the keyserver on a -specific query if no keys are already locally known to be valid for -the requested peer. Default is 'unlessvalid'. - -=back - -=head1 SEE ALSO - -msva-query-agent(1), msva-perl(1), monkeysphere(1), monkeysphere(7) - -=head1 BUGS AND FEEDBACK - -Bugs or feature requests for msva-perl should be filed with the -Monkeysphere project's bug tracker at -https://labs.riseup.net/code/projects/monkeysphere/issues/ - -=head1 AUTHORS AND CONTRIBUTORS - -Jameson Graef Rollins Ejrollins@finestructure.net -Daniel Kahn Gillmor Edkg@fifthhorseman.net - -The Monkeysphere Team http://web.monkeysphere.info/ - -=head1 COPYRIGHT AND LICENSE - -Copyright © Jameson Graef Rollins and others from the Monkeysphere -team. msva-query-agent is free software, distributed under the GNU -Public License, version 3 or later.