diff options
| author | djm@openbsd.org <djm@openbsd.org> | 2019-11-25 00:54:23 +0000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2019-11-25 12:23:40 +1100 |
| commit | 2e71263b80fec7ad977e098004fef7d122169d40 (patch) | |
| tree | b4eef0768ef7fb69c0acdfad6a9d63762791d6f6 /auth-options.h | |
| parent | 0fddf2967ac51d518e300408a0d7e6adf4cd2634 (diff) | |
upstream: add a "no-touch-required" option for authorized_keys and
a similar extension for certificates. This option disables the default
requirement that security key signatures attest that the user touched their
key to authorize them.
feedback deraadt, ok markus
OpenBSD-Commit-ID: f1fb56151ba68d55d554d0f6d3d4dba0cf1a452e
Diffstat (limited to 'auth-options.h')
| -rw-r--r-- | auth-options.h | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/auth-options.h b/auth-options.h index 14cbfa49d..d96ffedee 100644 --- a/auth-options.h +++ b/auth-options.h | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: auth-options.h,v 1.28 2019/07/09 04:15:00 djm Exp $ */ | 1 | /* $OpenBSD: auth-options.h,v 1.29 2019/11/25 00:54:23 djm Exp $ */ |
| 2 | 2 | ||
| 3 | /* | 3 | /* |
| 4 | * Copyright (c) 2018 Damien Miller <djm@mindrot.org> | 4 | * Copyright (c) 2018 Damien Miller <djm@mindrot.org> |
| @@ -68,6 +68,9 @@ struct sshauthopt { | |||
| 68 | */ | 68 | */ |
| 69 | char *required_from_host_cert; | 69 | char *required_from_host_cert; |
| 70 | char *required_from_host_keys; | 70 | char *required_from_host_keys; |
| 71 | |||
| 72 | /* Key requires user presence asserted */ | ||
| 73 | int no_require_user_presence; | ||
| 71 | }; | 74 | }; |
| 72 | 75 | ||
| 73 | struct sshauthopt *sshauthopt_new(void); | 76 | struct sshauthopt *sshauthopt_new(void); |