summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
AgeCommit message (Expand)Author
2019-11-27Revert previous commit. The channels code still uses int in many placesDarren Tucker
2019-11-27use error()+_exit() instead of fatal() to avoid running cleanupDamien Miller
2019-11-27Make channel_id u_int32_t and remove unnecessary check and cast that wereDarren Tucker
2019-11-26tweak previous;Jason McIntyre
2019-11-26more debugging; behind DEBUG_SKDamien Miller
2019-11-25redundant testDamien Miller
2019-11-25document the "no-touch-required" certificate extension;Damien Miller
2019-11-25Print a key touch reminder when generating a security key. Most keysDamien Miller
2019-11-25allow "ssh-keygen -x no-touch-required" when generating a security keyDamien Miller
2019-11-25add a "no-touch-required" option for authorized_keys and a similarDamien Miller
2019-11-25Add a sshd_config PubkeyAuthOptions directiveDamien Miller
2019-11-25Add new structure for signature optionsDamien Miller
2019-11-25memleak in error pathDamien Miller
2019-11-22Wait for FD to be readable or writeable during a nonblocking connect,Darren Tucker
2019-11-19adjust on-wire signature encoding for ecdsa-sk keys to better matchDamien Miller
2019-11-19a little more information from the monitor when signatureDamien Miller
2019-11-19revert previous: naddy pointed out what's meant to happen. rethink needed...Jason McIntyre
2019-11-19-c and -s do not make sense with -k; reshuffle -k into the main synopsis/usage;Jason McIntyre
2019-11-18document '$' environment variable expansion for SecurityKeyProvider; ok djm@Christian Weisgerber
2019-11-18more missing mentions of ed25519-sk; ok djm@Christian Weisgerber
2019-11-18additional missing stdarg.h includes when built without WITH_OPENSSL; ok djm@Christian Weisgerber
2019-11-18add the missing WITH_OPENSSL ifdefs after the ED25519-SK addition; ok djm@Christian Weisgerber
2019-11-18fix a bug that prevented serialisation of ed25519-sk keysDamien Miller
2019-11-18Fix incorrect error message when key certification failsDamien Miller
2019-11-18fix bug that prevented certification of ed25519-sk keysDamien Miller
2019-11-18allow *-sk key types to be turned into certificatesDamien Miller
2019-11-18mention ed25519-sk key/cert types here too; prompted by jmc@Damien Miller
2019-11-18mention ed25519-sk in places where it is accepted; prompted by jmc@Damien Miller
2019-11-18document ed25519-sk pubkey, private key and certificate formatsDamien Miller
2019-11-18correct order or ecdsa-sk private key fieldsDamien Miller
2019-11-18correct description of fields in pub/private keys (was missing curveDamien Miller
2019-11-18missing break in getopt switch; spotted by Sebastian KinneDamien Miller
2019-11-16tweak debug messageDamien Miller
2019-11-16a little debug() in the security key interfaceDamien Miller
2019-11-16always use ssh-sk-helper, even for the internal USB HID support.Damien Miller
2019-11-15fix typos in sk_enrollMarkus Friedl
2019-11-15double word;Jason McIntyre
2019-11-15remove most uses of BN_CTXDamien Miller
2019-11-15unshield security key privkey before attempting signature inDamien Miller
2019-11-15rewrite c99-ismTheo de Raadt
2019-11-15only clang understands those new -W optionsTheo de Raadt
2019-11-15don't consult dlopen whitelist for internal security key provider;Damien Miller
2019-11-15U2F tokens may return FIDO_ERR_USER_PRESENCE_REQUIRED when probed toDamien Miller
2019-11-15show the "please touch your security key" notifier when using theDamien Miller
2019-11-15close the "touch your security key" notifier on the error path tooDamien Miller
2019-11-15correct function name in debug messageDamien Miller
2019-11-15follow existing askpass logic for security key notifier: fall backDamien Miller
2019-11-14remove debugging goop that snuck in to last commitDamien Miller
2019-11-14directly support U2F/FIDO2 security keys in OpenSSH by linkingDamien Miller
2019-11-13in order to be able to figure out the number of signatures left onMarkus Friedl