diff options
| author | Markus Friedl <markus@cvs.openbsd.org> | 2010-02-08 10:50:21 +0000 |
|---|---|---|
| committer | Markus Friedl <markus@cvs.openbsd.org> | 2010-02-08 10:50:21 +0000 |
| commit | c5a426e3369a8674495c660c39ebd5bffb764a6f (patch) | |
| tree | f5067e4cadefe54001a450458ba0d8512c2fc051 /usr.bin/ssh/pathnames.h | |
| parent | 22e0496c0669a0c8e5b32bc387471ba9b089448b (diff) | |
replace our obsolete smartcard code with PKCS#11.
ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-11/v2-20/pkcs-11v2-20.pdf
ssh(1) and ssh-keygen(1) use dlopen(3) directly to talk to a PKCS#11
provider (shared library) while ssh-agent(1) delegates PKCS#11 to
a forked a ssh-pkcs11-helper process.
PKCS#11 is currently a compile time option.
feedback and ok djm@; inspired by patches from Alon Bar-Lev
Diffstat (limited to 'usr.bin/ssh/pathnames.h')
| -rw-r--r-- | usr.bin/ssh/pathnames.h | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/usr.bin/ssh/pathnames.h b/usr.bin/ssh/pathnames.h index 9ec1cd8b6db..cb5ed861728 100644 --- a/usr.bin/ssh/pathnames.h +++ b/usr.bin/ssh/pathnames.h @@ -1,4 +1,4 @@ -/* $OpenBSD: pathnames.h,v 1.17 2008/12/29 02:23:26 stevesk Exp $ */ +/* $OpenBSD: pathnames.h,v 1.18 2010/02/08 10:50:20 markus Exp $ */ /* * Author: Tatu Ylonen <ylo@cs.hut.fi> @@ -113,6 +113,9 @@ /* Location of ssh-keysign for hostbased authentication */ #define _PATH_SSH_KEY_SIGN "/usr/libexec/ssh-keysign" +/* Location of ssh-keysign for hostbased authentication */ +#define _PATH_SSH_PKCS11_HELPER "/usr/libexec/ssh-pkcs11-helper" + /* xauth for X11 forwarding */ #define _PATH_XAUTH "/usr/X11R6/bin/xauth" |