Daniel Kahn Gillmor [Fri, 29 Oct 2010 06:23:49 +0000 (02:23 -0400)]
refactored, pulling der2key into separate subfunction, simplifying reviewcert()
Daniel Kahn Gillmor [Fri, 29 Oct 2010 05:17:38 +0000 (01:17 -0400)]
removed msva-review-cert; it is already bit-rotted, we have no clear use-case for it, and no argument currently for wanting to maintain a new interface. It might return eventually in some other form.
Daniel Kahn Gillmor [Fri, 29 Oct 2010 05:13:44 +0000 (01:13 -0400)]
allow people to enter upper-case pkc types
Daniel Kahn Gillmor [Fri, 29 Oct 2010 04:54:01 +0000 (00:54 -0400)]
fix up the pem-handling code, and test it
Daniel Kahn Gillmor [Thu, 28 Oct 2010 22:44:01 +0000 (18:44 -0400)]
add support for x509pem as a pkc type (addressing MS #2566)
Daniel Kahn Gillmor [Thu, 28 Oct 2010 21:48:03 +0000 (17:48 -0400)]
ensure that every response returns a server identifier
Daniel Kahn Gillmor [Thu, 28 Oct 2010 21:14:46 +0000 (17:14 -0400)]
reset list of certifiers for each User ID (addresses MS #2567)
Daniel Kahn Gillmor [Wed, 27 Oct 2010 05:49:04 +0000 (01:49 -0400)]
added simple test suite (must currently be executed manually)
Daniel Kahn Gillmor [Wed, 27 Oct 2010 05:03:46 +0000 (01:03 -0400)]
do not explicitly wait on the pid in question; just reap the zombies on SIGCHLD
Daniel Kahn Gillmor [Wed, 27 Oct 2010 04:18:03 +0000 (00:18 -0400)]
ensure that quickly-terminating master subprocesses do not escape our notice
Daniel Kahn Gillmor [Wed, 27 Oct 2010 03:18:52 +0000 (23:18 -0400)]
avoid re-setting the exit code after waiting for upgrade monitoring process to terminate
Daniel Kahn Gillmor [Wed, 27 Oct 2010 02:51:20 +0000 (22:51 -0400)]
detect upgrades and prompt user when we notice them if the right underlying modules are available
Daniel Kahn Gillmor [Mon, 18 Oct 2010 13:41:25 +0000 (09:41 -0400)]
fix some broken syntax
Daniel Kahn Gillmor [Mon, 18 Oct 2010 06:28:35 +0000 (02:28 -0400)]
only try to parse the certificate client side at verbose or noisier log_level
Daniel Kahn Gillmor [Mon, 18 Oct 2010 06:22:00 +0000 (02:22 -0400)]
do not force msva-query-client to depend on Crypt::X509
Daniel Kahn Gillmor [Mon, 18 Oct 2010 06:18:37 +0000 (02:18 -0400)]
begin modularization of Crypt::Monkeysphere::MSVA -- not exporting raw functions any more
Daniel Kahn Gillmor [Mon, 18 Oct 2010 06:15:15 +0000 (02:15 -0400)]
use modularized logging for msva-query-agent
Daniel Kahn Gillmor [Mon, 18 Oct 2010 05:48:01 +0000 (01:48 -0400)]
moved logging business into its own class
Daniel Kahn Gillmor [Mon, 18 Oct 2010 05:12:11 +0000 (01:12 -0400)]
handle non-responsive agents more politely
Daniel Kahn Gillmor [Mon, 18 Oct 2010 05:04:48 +0000 (01:04 -0400)]
remove more environment variables from Client.pm, for a more flexible programmatic interface
Daniel Kahn Gillmor [Mon, 18 Oct 2010 04:20:04 +0000 (00:20 -0400)]
do not die if we do not recognize the pkc type -- just hand over the data to the agent, which might know better than we do
Daniel Kahn Gillmor [Mon, 18 Oct 2010 04:18:16 +0000 (00:18 -0400)]
hand pkc data over to Client.pm as a variable, instead of letting Client.pm read it from stdin directly
Daniel Kahn Gillmor [Mon, 18 Oct 2010 00:39:16 +0000 (20:39 -0400)]
simplify/shorten msva-query-agent documentation
Daniel Kahn Gillmor [Mon, 18 Oct 2010 00:35:10 +0000 (20:35 -0400)]
generalize/shorten Makefile
Jameson Rollins [Sat, 16 Oct 2010 05:48:04 +0000 (01:48 -0400)]
Add client module to query agent
A new command-line utility, msva-query-agent, is created that can
query an msva. It takes the pkc data on stdin, and then the context,
peer, and pkc type as arguments.
An alternate command, msva-review-cert, is also included that actually
uses the msva library to review the cert directly, without needing to
query an agent over a network socket.
Jameson Rollins [Sat, 16 Oct 2010 14:45:57 +0000 (10:45 -0400)]
remove old info from man page
Daniel Kahn Gillmor [Fri, 15 Oct 2010 06:15:44 +0000 (02:15 -0400)]
do not kill off child processes during HUP. let them finish.
Daniel Kahn Gillmor [Fri, 15 Oct 2010 05:59:09 +0000 (01:59 -0400)]
now respects keyserverpolicy request member variable (closes MS #2542)
Daniel Kahn Gillmor [Tue, 12 Oct 2010 07:50:32 +0000 (03:50 -0400)]
preparing proposed 0.5 release
Daniel Kahn Gillmor [Tue, 12 Oct 2010 07:46:08 +0000 (03:46 -0400)]
allow clean re-exec for smoother upgrades (closes MS #2532)
Daniel Kahn Gillmor [Tue, 12 Oct 2010 07:45:29 +0000 (03:45 -0400)]
cleanup debug info
Daniel Kahn Gillmor [Tue, 12 Oct 2010 07:44:43 +0000 (03:44 -0400)]
simple env variable cleanup (treating empty environment variables as unset)
Daniel Kahn Gillmor [Tue, 12 Oct 2010 03:36:10 +0000 (23:36 -0400)]
Make the marginal UI conditional on the presence of the Gtk2 perl module (closes MS #2514)
Daniel Kahn Gillmor [Tue, 12 Oct 2010 03:35:11 +0000 (23:35 -0400)]
only bother asking for a marginal UI if the UID of the corresponding key is not fully valid
Daniel Kahn Gillmor [Tue, 12 Oct 2010 03:11:32 +0000 (23:11 -0400)]
added details about requesting processes, on systems where we can find such information. (closes MS #2005)
Daniel Kahn Gillmor [Mon, 11 Oct 2010 20:27:20 +0000 (16:27 -0400)]
read keyserver from gpg.conf if $MSVA_KEYSERVER is empty or unset
Daniel Kahn Gillmor [Thu, 7 Oct 2010 04:44:35 +0000 (00:44 -0400)]
still more cleanup on the marginal UI
Daniel Kahn Gillmor [Thu, 7 Oct 2010 04:30:25 +0000 (00:30 -0400)]
a bit more cleanup on the UI
Daniel Kahn Gillmor [Thu, 7 Oct 2010 04:06:11 +0000 (00:06 -0400)]
more tweaks to marginal UI behavior
Daniel Kahn Gillmor [Thu, 7 Oct 2010 03:53:07 +0000 (23:53 -0400)]
changed reveal details approach
Daniel Kahn Gillmor [Thu, 7 Oct 2010 02:59:15 +0000 (22:59 -0400)]
more cleanup on prompt info
Jameson Rollins [Mon, 4 Oct 2010 15:49:34 +0000 (11:49 -0400)]
some improvements to the marginal ui prompt
Daniel Kahn Gillmor [Mon, 4 Oct 2010 05:10:43 +0000 (01:10 -0400)]
preparing for version 0.4
Daniel Kahn Gillmor [Mon, 4 Oct 2010 05:08:41 +0000 (01:08 -0400)]
trivially untaint environment for the main child process
Jameson Rollins [Mon, 4 Oct 2010 04:53:48 +0000 (00:53 -0400)]
update changelog with MS bug closures
Daniel Kahn Gillmor [Mon, 4 Oct 2010 04:37:44 +0000 (00:37 -0400)]
whitespace, licensing, attribution cleanup
Daniel Kahn Gillmor [Mon, 4 Oct 2010 04:29:10 +0000 (00:29 -0400)]
moved the prompting code to the MarginalUI sub-module
Daniel Kahn Gillmor [Mon, 4 Oct 2010 03:43:40 +0000 (23:43 -0400)]
reorganize some code
Daniel Kahn Gillmor [Mon, 4 Oct 2010 03:36:31 +0000 (23:36 -0400)]
dialog box actually goes away! (at the cost of re-initializing Gtk2 in every child process, bleh)
Daniel Kahn Gillmor [Mon, 4 Oct 2010 02:51:26 +0000 (22:51 -0400)]
removed dependency on Gtk2::Glade
Daniel Kahn Gillmor [Mon, 4 Oct 2010 02:13:45 +0000 (22:13 -0400)]
successfully deal with at least one prompt per msva run :/
Daniel Kahn Gillmor [Sun, 3 Oct 2010 08:01:19 +0000 (04:01 -0400)]
Merge remote branch 'mjgoins/marginalUI-perl'
Daniel Kahn Gillmor [Sun, 3 Oct 2010 07:53:01 +0000 (03:53 -0400)]
build a first-pass marginal prompt
Matthew James Goins [Sun, 3 Oct 2010 05:52:06 +0000 (01:52 -0400)]
Merge branch 'master' into marginalUI-perl
Daniel Kahn Gillmor [Sun, 3 Oct 2010 05:49:58 +0000 (01:49 -0400)]
still more keyserver and local checking re-organization
Daniel Kahn Gillmor [Sun, 3 Oct 2010 04:53:34 +0000 (00:53 -0400)]
allow explicit setting of MSVA_KEYSERVER_POLICY to "unlessvalid" (the default)
Matthew James Goins [Sun, 3 Oct 2010 04:45:32 +0000 (00:45 -0400)]
Simplify keyserver-checking logic
Matthew James Goins [Sun, 3 Oct 2010 04:42:25 +0000 (00:42 -0400)]
Simplify keyserver-checking logic
Matthew James Goins [Sun, 3 Oct 2010 04:17:00 +0000 (00:17 -0400)]
Merge remote branch 'dkg/master' into marginalUI-perl
Conflicts:
msva-perl
Matthew James Goins [Sun, 3 Oct 2010 04:13:31 +0000 (00:13 -0400)]
Fix whitespace
Matthew James Goins [Sun, 3 Oct 2010 04:12:27 +0000 (00:12 -0400)]
Continue to move code to standard layout
Matthew James Goins [Sun, 3 Oct 2010 04:09:12 +0000 (00:09 -0400)]
Move marginal ui code to a more standard layout
Daniel Kahn Gillmor [Sun, 3 Oct 2010 03:55:27 +0000 (23:55 -0400)]
do keyserver checking directly
Matthew James Goins [Sun, 3 Oct 2010 03:42:13 +0000 (23:42 -0400)]
Merge remote branch 'enw/marginalUI-perl' into marginalUI-perl
Matthew James Goins [Sun, 3 Oct 2010 03:41:34 +0000 (23:41 -0400)]
Prep to merge with enw (this commit should be squashed, not published)
Daniel Kahn Gillmor [Sat, 2 Oct 2010 21:51:27 +0000 (17:51 -0400)]
remove dependency on monkeysphere -- we now just rely on gnupg (which requires a few more perl modules)
Daniel Kahn Gillmor [Sat, 2 Oct 2010 21:38:27 +0000 (17:38 -0400)]
tighten up regexps for context and peer
Elliot Winard [Sat, 2 Oct 2010 21:18:05 +0000 (17:18 -0400)]
add marginalUI spike in perl
Jameson Rollins [Sun, 2 May 2010 00:53:20 +0000 (20:53 -0400)]
untaint $uid.
Found out that $uid is in fact tainted while trying to use it in a
system() call in another context. We have untainted it here.
I think this actually means that perl's taint checking is broken,
because it fails to check for taint in the open() call to a
subprocesses.
Daniel Kahn Gillmor [Wed, 16 Jun 2010 06:30:02 +0000 (02:30 -0400)]
preparing for 0.3 release
Daniel Kahn Gillmor [Fri, 11 Jun 2010 05:12:01 +0000 (01:12 -0400)]
restore default SIGCHLD handling to subprocesses so they can make their own mistakes
Daniel Kahn Gillmor [Thu, 29 Apr 2010 14:22:24 +0000 (10:22 -0400)]
close monkeysphere call, provide scaffolding for marginal UI
Daniel Kahn Gillmor [Tue, 23 Mar 2010 20:50:22 +0000 (16:50 -0400)]
updating Changelog for 0.3~pre
Daniel Kahn Gillmor [Tue, 23 Mar 2010 20:47:27 +0000 (16:47 -0400)]
align git tags with the tags made by git-buildpackage (maybe we can remove these and let git-buildpackage take care of them eventually)
Daniel Kahn Gillmor [Tue, 23 Mar 2010 20:28:52 +0000 (16:28 -0400)]
removing git buildpackage options from master; please specify in debian/gbp.conf on the debian branch
Daniel Kahn Gillmor [Fri, 19 Mar 2010 00:02:49 +0000 (20:02 -0400)]
Merge remote branch 'jrollins/master'
Daniel Kahn Gillmor [Mon, 15 Mar 2010 18:27:40 +0000 (14:27 -0400)]
preparing for msva-perl 0.2 release
Daniel Kahn Gillmor [Sat, 13 Mar 2010 18:00:47 +0000 (13:00 -0500)]
get rid of noisy spew when MSVA_PORT is set (resolving MS #2003)
Daniel Kahn Gillmor [Fri, 12 Mar 2010 05:32:17 +0000 (00:32 -0500)]
updated upstream Changelog
Daniel Kahn Gillmor [Fri, 12 Mar 2010 05:32:06 +0000 (00:32 -0500)]
minimize logging spew by default, emit POSIX sh commands to set environment variables if no subcommand is present
Daniel Kahn Gillmor [Fri, 12 Mar 2010 05:10:23 +0000 (00:10 -0500)]
clean cruft out of MSVA.pm
Daniel Kahn Gillmor [Fri, 12 Mar 2010 05:09:01 +0000 (00:09 -0500)]
default to a random available port (you can still explicitly request with MSVA_PORT)
Daniel Kahn Gillmor [Fri, 12 Mar 2010 04:41:02 +0000 (23:41 -0500)]
exit 13 if we are forced to quit before the service is even bound to a port.
Daniel Kahn Gillmor [Fri, 12 Mar 2010 04:16:53 +0000 (23:16 -0500)]
apply MSVA_LOG_LEVEL to Net::Server logging messages as well, so that verbosity is controlled with one variable
Daniel Kahn Gillmor [Fri, 12 Mar 2010 00:23:36 +0000 (19:23 -0500)]
handle race condition with rapid subprocess death; also ensure termination of subprocess if exec itself fails.
Daniel Kahn Gillmor [Fri, 12 Mar 2010 00:14:28 +0000 (19:14 -0500)]
added subprocess supervision to ease desktop integration
Daniel Kahn Gillmor [Wed, 10 Mar 2010 07:27:06 +0000 (02:27 -0500)]
adjusted Makefile to use strategies jrollins and i worked out from the xul-ext; cleaned up and decided to distribute docs
Jameson Rollins [Tue, 9 Mar 2010 14:04:21 +0000 (09:04 -0500)]
fix my uid in the readme
Daniel Kahn Gillmor [Tue, 9 Mar 2010 07:16:47 +0000 (02:16 -0500)]
including debian packaging commands in Makefile for ease of use
Daniel Kahn Gillmor [Tue, 9 Mar 2010 05:21:15 +0000 (00:21 -0500)]
streamlining new upstream releases
Daniel Kahn Gillmor [Tue, 9 Mar 2010 05:15:53 +0000 (00:15 -0500)]
preparing for 0.1 release
Daniel Kahn Gillmor [Tue, 9 Mar 2010 05:00:32 +0000 (00:00 -0500)]
updating git packaging info
Daniel Kahn Gillmor [Tue, 9 Mar 2010 04:59:47 +0000 (23:59 -0500)]
resolved a pod2man error
Daniel Kahn Gillmor [Tue, 9 Mar 2010 04:47:41 +0000 (23:47 -0500)]
added Makefile
Daniel Kahn Gillmor [Tue, 9 Mar 2010 04:33:58 +0000 (23:33 -0500)]
more readme updates
Daniel Kahn Gillmor [Tue, 9 Mar 2010 04:27:45 +0000 (23:27 -0500)]
updated README
Daniel Kahn Gillmor [Tue, 9 Mar 2010 04:22:05 +0000 (23:22 -0500)]
move version number to separate variable
Daniel Kahn Gillmor [Tue, 9 Mar 2010 04:14:33 +0000 (23:14 -0500)]
adding "upstream" Changelog
Daniel Kahn Gillmor [Tue, 9 Mar 2010 03:59:53 +0000 (22:59 -0500)]
renaming msva to msva-perl in preparation for packaging and playing nice with alternate implementations
Daniel Kahn Gillmor [Tue, 9 Mar 2010 03:59:04 +0000 (22:59 -0500)]
add documentation