git.ipfire.org Git - thirdparty/openssh-portable.git/commit

author	djm@openbsd.org <djm@openbsd.org>
	Mon, 6 Jan 2020 02:00:46 +0000 (02:00 +0000)
committer	Damien Miller <djm@mindrot.org>
	Mon, 6 Jan 2020 02:12:46 +0000 (13:12 +1100)
commit	c312ca077cd2a6c15545cd6b4d34ee2f69289174
tree	b8dd974c55dd0de351dfcbfc4f33fddb935a1c12	tree
parent	2ab335712d084d9ccaf3f53afc3fa9535329da87	commit \| diff

upstream: Extends the SK API to accept a set of key/value options

for all operations. These are intended to future-proof the API a little by
making it easier to specify additional fields for without having to change
the API version for each.

At present, only two options are defined: one to explicitly specify
the device for an operation (rather than accepting the middleware's
autoselection) and another to specify the FIDO2 username that may
be used when generating a resident key. These new options may be
invoked at key generation time via ssh-keygen -O

This also implements a suggestion from Markus to avoid "int" in favour
of uint32_t for the algorithm argument in the API, to make implementation
of ssh-sk-client/helper a little easier.

feedback, fixes and ok markus@

OpenBSD-Commit-ID: 973ce11704609022ab36abbdeb6bc23c8001eabc

PROTOCOL.u2f		diff \| blob \| blame \| history
sk-api.h		diff \| blob \| blame \| history
sk-usbhid.c		diff \| blob \| blame \| history
ssh-add.c		diff \| blob \| blame \| history
ssh-keygen.1		diff \| blob \| blame \| history
ssh-keygen.c		diff \| blob \| blame \| history
ssh-sk-client.c		diff \| blob \| blame \| history
ssh-sk-helper.c		diff \| blob \| blame \| history
ssh-sk.c		diff \| blob \| blame \| history
ssh-sk.h		diff \| blob \| blame \| history