/mandos/release : revision 237.7.290

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to mandos-keygen

Committer: Teddy Hogeborn
Date: 2015-03-10 18:03:38 UTC
mto: (237.7.304 trunk)
mto: This revision was merged to the branch mainline in revision 325.
Revision ID: teddy@recompile.se-20150310180338-pcxw6r2qmw9k6br9

Add ":!RSA" to GnuTLS priority string, to disallow non-DHE kx.

If Mandos was somehow made to use a non-ephemeral Diffie-Hellman key
exchange algorithm in the TLS handshake, any saved network traffic
could then be decrypted later if the Mandos client key was obtained.
By default, Mandos uses ephemeral DH key exchanges which does not have
this problem, but a non-ephemeral key exchange algorithm was still
enabled by default. The simplest solution is to simply turn that off,
which ensures that Mandos will always use ephemeral DH key exchanges.

There is a "PFS" priority string specifier, but we can't use it because:

1. Security-wise, it is a mix between "NORMAL" and "SECURE128" - it
enables a lot more algorithms than "SECURE256".

2. It is only available since GnuTLS 3.2.4.

Thanks to Andreas Fischer <af@bantuX.org> for reporting this issue.

files added:
debian/upstream

debian/upstream/signing-key.asc

files modified:
DBUS-API

INSTALL

Makefile

NEWS

TODO

common.ent

debian/changelog

debian/control

debian/copyright

debian/mandos-client.lintian-overrides

debian/mandos.postinst

debian/rules

debian/watch

initramfs-tools-hook

intro.xml

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-keygen

mandos-keygen.xml

mandos-monitor

mandos-monitor.xml

mandos-options.xml

mandos.conf

mandos.lsm

mandos.service

mandos.xml

plugin-runner.c

plugins.d/askpass-fifo.c

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/plymouth.c

plugins.d/splashy.c

plugins.d/usplash.c

Show diffs side-by-side

added added

removed removed

mandos-keygen

# Mandos key generator - create a new OpenPGP key for a Mandos client

# This program is free software: you can redistribute it and/or modify

# it under the terms of the GNU General Public License as published by

# Contact the authors at <mandos@recompile.se>.

VERSION="1.6.2"

VERSION="1.6.9"

KEYDIR="/etc/keys/mandos"

KEYTYPE=RSA

KEYCOMMENT=""

KEYEXPIRE=0

FORCE=no

SSH=yes

KEYCOMMENT_ORIG="$KEYCOMMENT"

mode=keygen

# Parse options

TEMP=`getopt --options vhpF:d:t:l:s:L:n:e:c:x:f \

--longoptions version,help,password,passfile:,dir:,type:,length:,subtype:,sublength:,name:,email:,comment:,expire:,force \

TEMP=`getopt --options vhpF:d:t:l:s:L:n:e:c:x:fS \

--longoptions version,help,password,passfile:,dir:,type:,length:,subtype:,sublength:,name:,email:,comment:,expire:,force,no-ssh \

--name "$0" -- "$@"`

help(){

basename="`basename $0`"

basename="`basename "$0"`"

cat <<EOF

Usage: $basename [ -v | --version ]

$basename [ -h | --help ]

Encrypt a password from FILE using the key in

the key directory. All options other than

--dir and --name are ignored.

-S, --no-ssh Don't get SSH key or set "checker" option.

EOF

}

103

105

-c|--comment) KEYCOMMENT="$2"; shift 2;;

104

106

-x|--expire) KEYEXPIRE="$2"; shift 2;;

105

107

-f|--force) FORCE=yes; shift;;

108

-S|--no-ssh) SSH=no; shift;;

106

109

-v|--version) echo "$0 $VERSION"; exit;;

107

110

-h|--help) help; exit;;

108

111

--) shift; break;;

110

113

esac

111

114

done

112

115

if [ "$#" -gt 0 ]; then

113

echo "Unknown arguments: '$@'" >&2

116

echo "Unknown arguments: '$*'" >&2

114

117

exit 1

115

118

116

119

188

191

trap "

189

192

set +e; \

190

193

test -n \"$SECFILE\" && shred --remove \"$SECFILE\"; \

191

shred --remove \"$RINGDIR\"/sec*;

194

shred --remove \"$RINGDIR\"/sec* 2>/dev/null;

192

195

test -n \"$BATCHFILE\" && rm --force \"$BATCHFILE\"; \

193

196

rm --recursive --force \"$RINGDIR\";

194

197

tty --quiet && stty echo; \

228

231

date

229

232

230

233

234

# Make sure trustdb.gpg exists;

235

# this is a workaround for Debian bug #737128

236

gpg --quiet --batch --no-tty --no-options --enable-dsa2 \

237

--homedir "$RINGDIR" \

238

--import-ownertrust < /dev/null

231

239

# Generate a new key in the key rings

232

240

gpg --quiet --batch --no-tty --no-options --enable-dsa2 \

233

241

--homedir "$RINGDIR" --trust-model always \

269

277

270

278

271

279

if [ "$mode" = password ]; then

280

281

# Make SSH be 0 or 1

282

case "$SSH" in

283

[Yy][Ee][Ss]|[Tt][Rr][Uu][Ee]) SSH=1;;

284

[Nn][Oo]|[Ff][Aa][Ll][Ss][Ee]|*) SSH=0;;

285

esac

286

287

if [ $SSH -eq 1 ]; then

288

set +e

289

ssh_fingerprint="`ssh-keyscan localhost 2>/dev/null`"

290

if [ $? -ne 0 ]; then

291

ssh_fingerprint=""

292

293

set -e

294

ssh_fingerprint="${ssh_fingerprint#localhost }"

295

296

272

297

# Import key into temporary key rings

273

298

gpg --quiet --batch --no-tty --no-options --enable-dsa2 \

274

299

--homedir "$RINGDIR" --trust-model always --armor \

279

304

280

305

# Get fingerprint of key

281

306

FINGERPRINT="`gpg --quiet --batch --no-tty --no-options \

282

--enable-dsa2 --homedir \"$RINGDIR\" --trust-model always \

307

--enable-dsa2 --homedir "$RINGDIR" --trust-model always \

283

308

--fingerprint --with-colons \

284

309

| sed --quiet \

285

310

--expression='/^fpr:/{s/^fpr:.*:\$[0-9A-Z]*\$:\$/\\1/p;q}'`"

337

362

/^[^-]/s/^/ /p

338

363

}

339

364

}' < "$SECFILE"

365

if [ -n "$ssh_fingerprint" ]; then

366

echo 'checker = ssh-keyscan %%(host)s 2>/dev/null | grep --fixed-strings --line-regexp --quiet --regexp=%%(host)s" %(ssh_fingerprint)s"'

367

echo "ssh_fingerprint = ${ssh_fingerprint}"

368

340

369

341

370

342

371

trap - EXIT

347

376

shred --remove "$SECFILE"

348

377

349

378

# Remove the key rings

350

shred --remove "$RINGDIR"/sec*

379

shred --remove "$RINGDIR"/sec* 2>/dev/null

351

380

rm --recursive --force "$RINGDIR"

Older »