Jeff Johnson
|
d69eff61a1
Round 2 of fixes and integrration of backports.
|
4 years ago |
Jeff Johnson
|
1643e89a1c
multi: Port upstream patches: 1/27/21 -> 2/4/21.
|
4 years ago |
Jeff Johnson
|
b41f7de459
multi: Backport upstream 1/23/21 through 1/26/21
|
4 years ago |
Jeff Johnson
|
27cb5b64c8
multi: Backport upstream 1/18/21 through 1/22/21
|
4 years ago |
Jeff Johnson
|
4745c0fbd8
Initial porting of IBM and Red Hat modifications.
|
4 years ago |
djm@openbsd.org
|
9b8ad93824
upstream: support for user-verified FIDO keys
|
4 years ago |
markus@openbsd.org
|
e3fa6249e6
upstream: only call sshkey_xmss_init() once for KEY_XMSS_CERT; ok
|
5 years ago |
djm@openbsd.org
|
bb52e70fa5
upstream: Add support for FIDO webauthn (verification only).
|
5 years ago |
djm@openbsd.org
|
3779b50ee9
upstream: Refactor private key parsing. Eliminates a fair bit of
|
5 years ago |
djm@openbsd.org
|
f290ab0833
upstream: add sshkey_parse_pubkey_from_private_fileblob_type()
|
5 years ago |
djm@openbsd.org
|
8d514eea4a
upstream: simplify sshkey_parse_private_fileblob_type()
|
5 years ago |
djm@openbsd.org
|
421169d0e7
upstream: check private key type against requested key type in
|
5 years ago |
djm@openbsd.org
|
6aabfb6d22
upstream: check that pubkey in private key envelope matches actual
|
5 years ago |
djm@openbsd.org
|
c0f5b22947
upstream: refactor private key parsing a little
|
5 years ago |
markus@openbsd.org
|
7b4f70ddeb
upstream: sshkey_cert_check_authority requires reason to be set;
|
5 years ago |
markus@openbsd.org
|
05efe270df
upstream: passphrase depends on kdfname, not ciphername (possible
|
5 years ago |
jsg@openbsd.org
|
d5ba1c0327
upstream: change explicit_bzero();free() to freezero()
|
5 years ago |
djm@openbsd.org
|
4a05d789b8
upstream: fix ssh-keygen not displaying authenticator touch
|
5 years ago |
djm@openbsd.org
|
c54cd1892c
upstream: SK API and sk-helper error/PIN passing
|
5 years ago |
Damien Miller
|
9244990ecd
remove a bunch of ENABLE_SK #ifdefs
|
5 years ago |
djm@openbsd.org
|
b52ec0ba39
upstream: use ssh-sk-helper for all security key signing operations
|
5 years ago |
djm@openbsd.org
|
b7e74ea072
upstream: Add new structure for signature options
|
5 years ago |
djm@openbsd.org
|
4bfc0503ad
upstream: fix a bug that prevented serialisation of ed25519-sk keys
|
5 years ago |
djm@openbsd.org
|
740c4bc987
upstream: fix bug that prevented certification of ed25519-sk keys
|
5 years ago |
Darren Tucker
|
857f49e91e
Move ifdef OPENSSL_HAS_ECC.
|
5 years ago |
djm@openbsd.org
|
fd1a96490c
upstream: remove most uses of BN_CTX
|
5 years ago |
markus@openbsd.org
|
4f5e331cb8
upstream: in order to be able to figure out the number of
|
5 years ago |
markus@openbsd.org
|
bf219920b7
upstream: fix shield/unshield for xmss keys: - in ssh-agent we need
|
5 years ago |
Darren Tucker
|
1e0b248d47
Put sshsk_sign call inside ifdef ENABLE_SK.
|
5 years ago |
markus@openbsd.org
|
2c55744a56
upstream: enable ed25519 support; ok djm
|
5 years ago |