diff options
| author | Damien Miller <djm@mindrot.org> | 2019-12-14 09:21:46 +1100 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2019-12-14 09:21:46 +1100 |
| commit | 9244990ecdcfa36bb9371058111685b05f201c1e (patch) | |
| tree | a068b6ce79b806f20c0159cf3306a0234ef1f387 /ssh-ecdsa-sk.c | |
| parent | a33ab1688b5c460a7e2a301418241ce1b13b2638 (diff) | |
remove a bunch of ENABLE_SK #ifdefs
The ssh-sk-helper client API gives us a nice place to disable
security key support when it is wasn't enabled at compile time,
so we don't need to check everywere.
Also, verification of security key signatures can remain enabled
all the time - it has no additional dependencies. So sshd can
accept security key pubkeys in authorized_keys, etc regardless of
the host's support for dlopen, etc.
Diffstat (limited to 'ssh-ecdsa-sk.c')
| -rw-r--r-- | ssh-ecdsa-sk.c | 3 |
1 files changed, 0 insertions, 3 deletions
diff --git a/ssh-ecdsa-sk.c b/ssh-ecdsa-sk.c index 40f0dc8c0..7a2355c1a 100644 --- a/ssh-ecdsa-sk.c +++ b/ssh-ecdsa-sk.c | |||
| @@ -29,8 +29,6 @@ | |||
| 29 | 29 | ||
| 30 | #include "includes.h" | 30 | #include "includes.h" |
| 31 | 31 | ||
| 32 | #ifdef ENABLE_SK | ||
| 33 | |||
| 34 | #include <sys/types.h> | 32 | #include <sys/types.h> |
| 35 | 33 | ||
| 36 | #include <openssl/bn.h> | 34 | #include <openssl/bn.h> |
| @@ -203,4 +201,3 @@ ssh_ecdsa_sk_verify(const struct sshkey *key, | |||
| 203 | free(ktype); | 201 | free(ktype); |
| 204 | return ret; | 202 | return ret; |
| 205 | } | 203 | } |
| 206 | #endif /* ENABLE_SK */ | ||