openssh.git -

Age	Commit message (Collapse)	Author
2019-11-28	upstream: remove stray semicolon after closing brace of function;	djm@openbsd.org
	from Michael Forney OpenBSD-Commit-ID: fda95acb799bb160d15e205ee126117cf33da3a7
2019-11-20	upstream: adjust on-wire signature encoding for ecdsa-sk keys to	djm@openbsd.org
	better match ec25519-sk keys. Discussed with markus@ and Sebastian Kinne NB. if you are depending on security keys (already?) then make sure you update both your clients and servers. OpenBSD-Commit-ID: 53d88d8211f0dd02a7954d3af72017b1a79c0679
2019-11-20	upstream: add the missing WITH_OPENSSL ifdefs after the ED25519-SK	naddy@openbsd.org
	addition; ok djm@ OpenBSD-Commit-ID: a9545e1c273e506cf70e328cbb9d0129b6d62474
2019-11-18	upstream: tweak debug message	djm@openbsd.org
	OpenBSD-Commit-ID: 2bf336d3be0b7e3dd97920d7e7471146a281d2b9
2019-11-17	upstream: a little debug() in the security key interface	djm@openbsd.org
	OpenBSD-Commit-ID: 4c70300609a5c8b19707207bb7ad4109e963b0e8
2019-11-15	upstream: directly support U2F/FIDO2 security keys in OpenSSH by	djm@openbsd.org
	linking against the (previously external) USB HID middleware. The dlopen() capability still exists for alternate middlewares, e.g. for Bluetooth, NFC and test/debugging. OpenBSD-Commit-ID: 14446cf170ac0351f0d4792ba0bca53024930069
2019-11-15	upstream: fix check for sig_s; noted by qsa at qualys.com	markus@openbsd.org
	OpenBSD-Commit-ID: 34198084e4afb424a859f52c04bb2c9668a52867
2019-11-13	upstream: allow an empty attestation certificate returned by a	djm@openbsd.org
	security key enrollment - these are possible for tokens that only offer self- attestation. This also needs support from the middleware. ok markus@ OpenBSD-Commit-ID: 135eeeb937088ef6830a25ca0bbe678dfd2c57cc
2019-11-13	upstream: remove extra layer for ed25519 signature; ok djm@	markus@openbsd.org
	OpenBSD-Commit-ID: 7672d9d0278b4bf656a12d3aab0c0bfe92a8ae47
2019-11-13	upstream: check sig_r and sig_s for ssh-sk keys; ok djm	markus@openbsd.org
	OpenBSD-Commit-ID: 1a1e6a85b5f465d447a3800f739e35c5b74e0abc
2019-11-13	upstream: update sk-api to version 2 for ed25519 support; ok djm	markus@openbsd.org
	OpenBSD-Commit-ID: 77aa4d5b6ab17987d8a600907b49573940a0044a
2019-11-13	upstream: implement sshsk_ed25519_assemble(); ok djm	markus@openbsd.org
	OpenBSD-Commit-ID: af9ec838b9bc643786310b5caefc4ca4754e68c6
2019-11-13	upstream: implement sshsk_ed25519_inner_sig(); ok djm	markus@openbsd.org
	OpenBSD-Commit-ID: f422d0052c6d948fe0e4b04bc961f37fdffa0910
2019-11-13	upstream: rename sshsk_ecdsa_sign() to sshsk_sign(); ok djm	markus@openbsd.org
	OpenBSD-Commit-ID: 1524042e09d81e54c4470d7bfcc0194c5b46fe19
2019-11-13	upstream: factor out sshsk_ecdsa_inner_sig(); ok djm@	markus@openbsd.org
	OpenBSD-Commit-ID: 07e41997b542f670a15d7e2807143fe01efef584
2019-11-13	upstream: factor out sshsk_ecdsa_assemble(); ok djm@	markus@openbsd.org
	OpenBSD-Commit-ID: 2313761a3a84ccfe032874d638d3c363e0f14026
2019-11-01	autoconf pieces for U2F support	Damien Miller
	Mostly following existing logic for PKCS#11 - turning off support when either libcrypto or dlopen(3) are unavailable.
2019-11-01	upstream: U2F/FIDO middleware interface	djm@openbsd.org
	Supports enrolling (generating) keys and signatures. feedback & ok markus@ OpenBSD-Commit-ID: 73d1dd5939454f9c7bd840f48236cba41e8ad592