/mandos/trunk : changes

» Changes from revision 1222

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

From Revision 972 to 953

expand all

Rev	Summary	Authors	Date
972	Merge from release branch Merge from release branch	Teddy Hogeborn	6 years ago
971	Bug fix: Only create TLS key with certtool, and read correct... Bug fix: Only create TLS key with certtool, and read correct key file * debian/mandos-client.postinst (create_keys): Remove any bad keys created by 1.8.0-1. Only create TLS keys if certtool succeeds. * debian/mandos.postinst (configure): Remove any bad keys from clients.conf, and inform the user if any were found. * debian/mandos.templates (mandos/removed_bad_key_ids): New message. * mandos (MandosServer.handle_ipc): Do not trust a key_id with a known bad key ID. * mandos-keygen (keygen): Only create TLS keys if certtool succeeds. (password): Bug fix: Generate key_id correctly, and only output key_id if TLS key exists.	Teddy Hogeborn	6 years ago
970	Merge from release branch Merge from release branch	Teddy Hogeborn	6 years ago
969	Update copyright year to 2019 Update copyright year to 2019 * DBUS-API: Update copyright year to 2019. * debian/copyright: - '' - * intro.xml: - '' - * mandos: - '' - * mandos-clients.conf.xml: - '' - * mandos-ctl: - '' - * mandos-ctl.xml: - '' - * mandos-keygen: - '' - * mandos-keygen.xml: - '' - * mandos-monitor: - '' - * mandos-monitor.xml: - '' - * mandos.conf.xml: - '' - * mandos.xml: - '' - * plugin-runner.xml: - '' - * plugins.d/askpass-fifo.xml: - '' - * plugins.d/mandos-client.c: - '' - * plugins.d/mandos-client.xml: - '' - * plugins.d/password-prompt.xml: - '' - * plugins.d/plymouth.xml: - '' - * plugins.d/splashy.xml: - '' - * plugins.d/usplash.xml: - '' -	Teddy Hogeborn	6 years ago
968	Do minor fix to make mandos-monitor work with new python-urw... Do minor fix to make mandos-monitor work with new python-urwid * mandos-monitor (UserInterface.log): Initialize to an urwid.SimpleListWalker([]), not an empty list. (UserInterface.log_message_raw): Fix off-by-one error.	Teddy Hogeborn	6 years ago
967	Show debconf note about new TLS key IDs Show debconf note about new TLS key IDs If mandos-client did not see TLS keys and had to create them, or if mandos sees GnuTLS version 3.6.6 or later, show an important notice on package installation about the importance of adding the new key_id options to clients.conf on the Mandos server. * debian/control (Package: mandos, Package: mandos-client): Depend on debconf. * debian/mandos-client.lintian-overrides: Override warnings. * debian/mandos-client.postinst (create_keys): Show notice if new TLS key files were created. * debian/mandos-client.templates: New. * debian/mandos.lintian-overrides: Override warnings. * debian/mandos.postinst (configure): If GnuTLS 3.6.6 or later is detected, show an important notice (once) about the new key_id option required in clients.conf. * debian/mandos.templates: New.	Teddy Hogeborn	6 years ago
966	Update Debian package standard-version to "4.3.0" Update Debian package standard-version to "4.3.0" * debian/control (Standards-Version): Update to "4.3.0".	Teddy Hogeborn	6 years ago
965	Doc fix: Minor clarification Doc fix: Minor clarification * mandos-clients.conf.xml (OPTIONS/checker): Be more clear that it's specifically an SSH key fingerprint that is being compared, and no other kind of fingerprint.	Teddy Hogeborn	6 years ago
964	Doc fix: Change some "/etc/mandos" to "/etc/keys/mandos" Doc fix: Change some "/etc/mandos" to "/etc/keys/mandos" * clients.conf: Change "/etc/mandos" to "/etc/keys/mandos" where appropriate * mandos-keygen.xml: - '' -	Teddy Hogeborn	6 years ago
963	* TODO (Use raw public keys): Remove. * TODO (Use raw public keys): Remove.	Teddy Hogeborn	6 years ago
962	Add support for using raw public keys in TLS (RFC 7250) Add support for using raw public keys in TLS (RFC 7250) Since GnuTLS removed support for OpenPGP keys in TLS (RFC 6091), and no other library supports it, we have to change the protocol to use something else. We choose to use "raw public keys" (RFC 7250). Since we still use OpenPGP keys to decrypt the secret password, this means that each client will have two keys: One OpenPGP key and one TLS public/private key, and the key ID of the latter key is used to identify clients instead of the fingerprint of the OpenPGP key. Note that this code is still compatible with GnuTLS before version 3.6.0 (when OpenPGP key support was removed). This commit merely adds support for using raw pulic keys instead with GnuTLS 3.6.6. or later. * DBUS-API (Signals/ClientNotFound): Change name of first parameter from "Fingerprint" to "KeyID". (Mandos Client Interface/Properties/KeyID): New. * INSTALL: Document conflict with GnuTLS 3.6.0 (which removed OpenPGP key support) up until 3.6.6, when support for raw public keys was added. Also document new dependency of client on "gnutls-bin" package (for certtool). * Makefile (run-client): Depend on TLS key files, and also pass them as arguments to client. (keydir/tls-privkey.pem, keydir/tls-pubkey.pem): New. (confdir/clients.conf): Add dependency on TLS public key. (purge-client): Add removal of TLS key files. * clients.conf ([foo]/key_id, [bar]/key_id): New. * debian/control (Source: mandos/Build-Depends): Also allow libgnutls30 (>= 3.6.6) (Package: mandos/Depends): - '' - (Package: mandos/Description): Alter description to match new design. (Package: mandos-client/Description): - '' - (Package: mandos-client/Depends): Move "gnutls-bin \| openssl" to here from "Recommends". * debian/mandos-client.README.Debian: Add --tls-privkey and --tls-pubkey options to test command. * debian/mandos-client.postinst (create_key): Renamed to "create_keys" (all callers changed), and also create TLS key. * debian/mandos-client.postrm (purge): Also remove TLS key files. * intro.xml (DESCRIPTION): Describe new dual-key design. * mandos (GnuTLS): Define different functions depending on whether support for raw public keys is detected. (Client.key_id): New attribute. (ClientDBus.KeyID_dbus_property): New method. (ProxyClient.__init__): Take new "key_id" parameter. (ClientHandler.handle): Use key IDs when using raw public keys and use fingerprints when using OpenPGP keys. (ClientHandler.peer_certificate): Also handle raw public keys. (ClientHandler.key_id): New. (MandosServer.handle_ipc): Pass key ID over the pipe IPC. Also check for key ID matches when looking up clients. (main): Default GnuTLS priority string depends on whether we are using raw public keys or not. When unpickling clients, set key_id if not set in the pickle. (main/MandosDBusService.ClientNotFound): Change name of first parameter from "Fingerprint" to "KeyID". * mandos-clients.conf.xml (OPTIONS): Document new "key_id" option. (OPTIONS/secret): Mention new key ID matchning. (EXPANSION/RUNTIME EXPANSION): Add new "key_id" option. (EXAMPLE): - '' - * mandos-ctl (tablewords, main/keywords): Add new "KeyID" property. * mandos-keygen: Create TLS key files. New "--tls-keytype" (-T) option. Alter help text to be more clear about key types. When in password mode, also output "key_id" option. * mandos-keygen.xml (SYNOPSIS): Add new "--tls-keytype" (-T) option. (DESCRIPTION): Alter to match new dual-key design. (OVERVIEW): - '' - (FILES): Add TLS key files. * mandos-options.xml (priority): Document new default priority string when using raw public keys. * mandos.xml (NETWORK PROTOCOL): Describe new protocol using key ID. (BUGS): Remove issue about checking expire times of OpenPGP keys, since TLS public keys do not have expiration times. (SECURITY/CLIENT): Alter description to match new design. (SEE ALSO/GnuTLS): - '' - (SEE ALSO): Add reference to RFC 7250, and alter description of when RFC 6091 is used. * overview.xml: Alter text to match new design. * plugin-runner.xml (EXAMPLE): Add --tls-pubkey and --tls-privkey options to mandos-client options. * plugins.d/mandos-client.c: Use raw public keys when compiling with supporting GnuTLS versions. Add new "--tls-pubkey" and "--tls-privkey" options (which do nothing if GnuTLS library does not support raw public keys). Alter text throughout to reflect new design. Only generate new DH parameters (based on size of OpenPGP key) when using OpenPGP in TLS. Default GnuTLS priority string depends on whether we are using raw public keys or not. * plugins.d/mandos-client.xml (SYNOPSIS): Add new "--tls-privkey" (-t) and "--tls-pubkey" (-T) options. (DESCRIPTION): Describe new dual-key design. (OPTIONS): Document new "--tls-privkey" (-t) and "--tls-pubkey" (-T) options. (OPTIONS/--dh-bits): No longer necessarily depends on OpenPGP key size. (FILES): Add default locations for TLS public and private key files. (EXAMPLE): Use new --tls-pubkey and --tls-privkey options. (SECURITY): Alter wording slightly to reflect new dual-key design. (SEE ALSO/GnuTLS): Alter description to match new design. (SEE ALSO): Add reference to RFC 7250, and alter description of when RFC 6091 is used.	Teddy Hogeborn	6 years ago
961	Depend on either old cryptsetup or new cryptsetup-initramfs Depend on either old cryptsetup or new cryptsetup-initramfs * debian/control (Package: mandos-client/Depends): Change "cryptsetup" to "cryptsetup (<< 2:2.0.3-1) \| cryptsetup-initramfs".	Teddy Hogeborn	7 years ago
960	Update Debian package standard-version to "4.2.1" Update Debian package standard-version to "4.2.1" * debian/control (Standards-Version): Update to "4.2.1".	Teddy Hogeborn	7 years ago
959	Merge from release branch Merge from release branch	Teddy Hogeborn	7 years ago
958	Update Debian package standard-version to "4.2.0" Update Debian package standard-version to "4.2.0" * debian/control (Standards-Version): Update to "4.2.0".	Teddy Hogeborn	7 years ago
957	Use new header "Rules-Requires-Root" in debian/control Use new header "Rules-Requires-Root" in debian/control * debian/control (Source: mandos/Rules-Requires-Root): New; set to "binary-targets".	Teddy Hogeborn	7 years ago
956	Set executable permissions on new files Set executable permissions on new files * initramfs-tools-script-stop: Did "chmod +x". * mandos-to-cryptroot-unlock: - '' -	Teddy Hogeborn	7 years ago
955	Remove workaround for old mkinitramfs-kpkg Remove workaround for old mkinitramfs-kpkg * Makefile (install-client-nokey): Do not install "initramfs-tools-hook-conf". * debian/control (mandos-client/Depends): Add "(>= 0.99)" to dependency on "initramfs-tools", since that is the version which removed mkinitramfs-kpkg. * debian/mandos-client.dirs: Remove "usr/share/initramfs-tools/conf-hooks.d". * initramfs-tools-hook-conf: Removed.	Teddy Hogeborn	7 years ago
954	Move UMASK setting to more proper place Move UMASK setting to more proper place * Makefile (install-client-nokey): Also install new conf files "initramfs-tools-conf". * debian/mandos-client.dirs: Add "usr/share/initramfs-tools/conf.d". * initramfs-tools-conf: New file which sets UMASK. * initramfs-tools-hook: Change comment to correctly state new location of UMASK setting. * initramfs-tools-hook-conf: Remove UMASK setting.	Teddy Hogeborn	7 years ago
953	Adapt to changes in cryptsetup; use "cryptroot-unlock" progr... Adapt to changes in cryptsetup; use "cryptroot-unlock" program * Makefile (install-client-nokey): Also install new script files "mandos-to-cryptroot-unlock" and "initramfs-tools-script-stop". * debian/mandos-client.dirs: Add "usr/share/initramfs-tools/scripts/local-premount". * initramfs-tools-hook: Also copy "mandos-to-cryptroot-unlock". * initramfs-tools-script: Only modify keyscript setting in cryptroot file if the file exists, otherwise start "mandos-to-cryptroot-unlock" in background. * initramfs-tools-script-stop: New script to make sure plugin-runner has stopped before continuing. * mandos-to-cryptroot-unlock: New script to run plugin-runner and feed any password it gets into the "cryptroot-unlock" program.	Teddy Hogeborn	7 years ago