free
/
freedombonee
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

gpg functions

This commit is contained in:
Bob Mottram 2017-06-24 11:07:04 +01:00
parent d0c6e0f573
commit e4ab5fe54e
1 changed files with 25 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
src/freedombone-utils-keys
View File

@ -28,6 +28,28 @@
# You should have received a copy of the GNU Affero General Public License # You should have received a copy of the GNU Affero General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>. # along with this program. If not, see <http://www.gnu.org/licenses/>.
function gpg_delete_key {
key_username=$1
key_id=$2
su -c "gpg --batch --quiet --homedir=/home/$key_username/.gnupg --delete-secret-key $key_id" - $key_username
su -c "gpg --batch --quiet --homedir=/home/$key_username/.gnupg --delete-key $key_id" - $key_username
}
function gpg_set_permissions {
key_username=$1
if [[ "$key_username" != 'root' ]]; then
chmod 700 /home/$key_username/.gnupg
chmod -R 600 /home/$key_username/.gnupg/*
chown -R $key_username:$key_username /home/$key_username/.gnupg
else
chmod 700 /root/.gnupg
chmod -R 600 /root/.gnupg/*
chown -R $key_username:$key_username /root/.gnupg
fi
}
function reconstruct_key { function reconstruct_key {
if [ ! -d /home/$MY_USERNAME/.gnupg_fragments ]; then if [ ! -d /home/$MY_USERNAME/.gnupg_fragments ]; then
return return
@ -143,18 +165,14 @@ function interactive_gpg_from_usb {
chown -R $MY_USERNAME:$MY_USERNAME $HOME_DIR/.gnupg_old chown -R $MY_USERNAME:$MY_USERNAME $HOME_DIR/.gnupg_old
fi fi
echo $'Removing old gpg keys' echo $'Removing old gpg keys'
gpg --batch --quiet --homedir=$HOME_DIR/.gnupg --delete-key "$CURR_GPG_BACKUP_ID" gpg_delete_key $MY_USERNAME $CURR_GPG_BACKUP_ID
gpg --batch --quiet --homedir=$HOME_DIR/.gnupg --delete-key "$CURR_GPG_ID" gpg_delete_key $MY_USERNAME $CURR_GPG_ID
gpg --batch --quiet --homedir=$HOME_DIR/.gnupg --delete-secret-key "$CURR_GPG_BACKUP_ID"
gpg --batch --quiet --homedir=$HOME_DIR/.gnupg --delete-secret-key "$CURR_GPG_ID"
echo $'Importing master keys' echo $'Importing master keys'
gpg --homedir=$HOME_DIR/.gnupg --allow-secret-key-import --import $USB_MOUNT/.mastergpgkey gpg --homedir=$HOME_DIR/.gnupg --allow-secret-key-import --import $USB_MOUNT/.mastergpgkey
echo "$BACKUP_DUMMY_PASSWORD" | gpg --batch --passphrase-fd 0 --homedir=$HOME_DIR/.gnupg --allow-secret-key-import --import $USB_MOUNT/.backupgpgkey echo "$BACKUP_DUMMY_PASSWORD" | gpg --batch --passphrase-fd 0 --homedir=$HOME_DIR/.gnupg --allow-secret-key-import --import $USB_MOUNT/.backupgpgkey
if [ -d $HOME_DIR/.gnupg ]; then if [ -d $HOME_DIR/.gnupg ]; then
echo $'Setting permissions' echo $'Setting permissions'
chmod 700 $HOME_DIR/.gnupg gpg_set_permissions $MY_USERNAME
chmod -R 600 $HOME_DIR/.gnupg/*
chown -R $MY_USERNAME:$MY_USERNAME $HOME_DIR/.gnupg
fi fi
GPG_LOADING="no" GPG_LOADING="no"
dialog --title $"Recover Encryption Keys" \ dialog --title $"Recover Encryption Keys" \