Jeff Johnson
|
94068e17b6
Backport 473201783f732ca8b0ec528b56aa55fa0d8cf717
|
3 years ago |
Jeff Johnson
|
2759135243
multi: Port upstream patches: 2/17/21 -> 2/24/21
|
3 years ago |
djm@openbsd.org
|
c767735241
upstream: when writing an attestation blob for a FIDO key, record all
|
4 years ago |
djm@openbsd.org
|
b649b3daa6
upstream: preserve verify-required for resident FIDO keys
|
4 years ago |
djm@openbsd.org
|
59d2de956e
upstream: when signing a challenge using a FIDO toke, perform the
|
4 years ago |
markus@openbsd.org
|
1b378c0d98
upstream: return correct error in sshsk_ed25519_sig; ok djm
|
4 years ago |
djm@openbsd.org
|
dd992520be
upstream: better error message when trying to use a FIDO key
|
4 years ago |
naddy@openbsd.org
|
a47f6a6c0e
upstream: Replace "security key" with "authenticator" in program
|
4 years ago |
djm@openbsd.org
|
24c0f752ad
upstream: changes to support FIDO attestation
|
4 years ago |
djm@openbsd.org
|
59d01f1d72
upstream: improve the error message for u2f enrollment errors by
|
4 years ago |
Darren Tucker
|
429170f273
Wrap stdint.h inside HAVE_STDINT_H.
|
5 years ago |
djm@openbsd.org
|
c312ca077c
upstream: Extends the SK API to accept a set of key/value options
|
5 years ago |
djm@openbsd.org
|
43ce96427b
upstream: translate and return error codes; retry on bad PIN
|
5 years ago |
djm@openbsd.org
|
d433596736
upstream: improve some error messages; ok markus@
|
5 years ago |
djm@openbsd.org
|
c54cd1892c
upstream: SK API and sk-helper error/PIN passing
|
5 years ago |
djm@openbsd.org
|
14cea36df3
upstream: resident keys support in SK API
|
5 years ago |
djm@openbsd.org
|
2fe05fcb4a
upstream: Factor out parsing of struct sk_enroll_response
|
5 years ago |
djm@openbsd.org
|
b52ec0ba39
upstream: use ssh-sk-helper for all security key signing operations
|
5 years ago |
djm@openbsd.org
|
d8b2838c5d
upstream: remove stray semicolon after closing brace of function;
|
5 years ago |
djm@openbsd.org
|
a70d92f236
upstream: adjust on-wire signature encoding for ecdsa-sk keys to
|
5 years ago |
naddy@openbsd.org
|
723a536986
upstream: add the missing WITH_OPENSSL ifdefs after the ED25519-SK
|
5 years ago |
djm@openbsd.org
|
9a1225e8ca
upstream: tweak debug message
|
5 years ago |
djm@openbsd.org
|
4103a3ec7c
upstream: a little debug() in the security key interface
|
5 years ago |
djm@openbsd.org
|
6bff9521ab
upstream: directly support U2F/FIDO2 security keys in OpenSSH by
|
5 years ago |
markus@openbsd.org
|
dffd02e297
upstream: fix check for sig_s; noted by qsa at qualys.com
|
5 years ago |
djm@openbsd.org
|
fccff339ca
upstream: allow an empty attestation certificate returned by a
|
5 years ago |
markus@openbsd.org
|
b556cc3cbf
upstream: remove extra layer for ed25519 signature; ok djm@
|
5 years ago |
markus@openbsd.org
|
3fcf69ace1
upstream: check sig_r and sig_s for ssh-sk keys; ok djm
|
5 years ago |
markus@openbsd.org
|
fd1a3b5e38
upstream: update sk-api to version 2 for ed25519 support; ok djm
|
5 years ago |
markus@openbsd.org
|
7c32b51edb
upstream: implement sshsk_ed25519_assemble(); ok djm
|
5 years ago |