diff options
author | Damien Miller <djm@mindrot.org> | 2010-02-12 09:21:02 +1100 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2010-02-12 09:21:02 +1100 |
commit | 7ea845e48df6d34a333ebbe79380cba0938d02a5 (patch) | |
tree | 44ab0d3fdfe0560b7ca92f5747e9dd5d012aea18 /ChangeLog | |
parent | 17751bcab25681d341442fdc2386a30a6bea345e (diff) |
- markus@cvs.openbsd.org 2010/02/08 10:50:20
[pathnames.h readconf.c readconf.h scp.1 sftp.1 ssh-add.1 ssh-add.c]
[ssh-agent.c ssh-keygen.1 ssh-keygen.c ssh.1 ssh.c ssh_config.5]
replace our obsolete smartcard code with PKCS#11.
ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-11/v2-20/pkcs-11v2-20.pdf
ssh(1) and ssh-keygen(1) use dlopen(3) directly to talk to a PKCS#11
provider (shared library) while ssh-agent(1) delegates PKCS#11 to
a forked a ssh-pkcs11-helper process.
PKCS#11 is currently a compile time option.
feedback and ok djm@; inspired by patches from Alon Bar-Lev
`
Diffstat (limited to 'ChangeLog')
-rw-r--r-- | ChangeLog | 10 |
1 files changed, 10 insertions, 0 deletions
@@ -5,6 +5,16 @@ | |||
5 | make buffer_get_string_ret() really non-fatal in all cases (it was | 5 | make buffer_get_string_ret() really non-fatal in all cases (it was |
6 | using buffer_get_int(), which could fatal() on buffer empty); | 6 | using buffer_get_int(), which could fatal() on buffer empty); |
7 | ok markus dtucker | 7 | ok markus dtucker |
8 | - markus@cvs.openbsd.org 2010/02/08 10:50:20 | ||
9 | [pathnames.h readconf.c readconf.h scp.1 sftp.1 ssh-add.1 ssh-add.c] | ||
10 | [ssh-agent.c ssh-keygen.1 ssh-keygen.c ssh.1 ssh.c ssh_config.5] | ||
11 | replace our obsolete smartcard code with PKCS#11. | ||
12 | ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-11/v2-20/pkcs-11v2-20.pdf | ||
13 | ssh(1) and ssh-keygen(1) use dlopen(3) directly to talk to a PKCS#11 | ||
14 | provider (shared library) while ssh-agent(1) delegates PKCS#11 to | ||
15 | a forked a ssh-pkcs11-helper process. | ||
16 | PKCS#11 is currently a compile time option. | ||
17 | feedback and ok djm@; inspired by patches from Alon Bar-Lev | ||
8 | 18 | ||
9 | 20100210 | 19 | 20100210 |
10 | - (djm) add -lselinux to LIBS before calling AC_CHECK_FUNCS for | 20 | - (djm) add -lselinux to LIBS before calling AC_CHECK_FUNCS for |