From bf0fbf2b11a44f06a64b620af7d01ff171c28e13 Mon Sep 17 00:00:00 2001
From: "djm@openbsd.org" <djm@openbsd.org>
Date: Mon, 12 Mar 2018 00:52:01 +0000
Subject: upstream: add valid-before="[time]" authorized_keys option. A

simple way of giving a key an expiry date. ok markus@

OpenBSD-Commit-ID: 1793b4dd5184fa87f42ed33c7b0f4f02bc877947
---
 auth-options.h | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'auth-options.h')

diff --git a/auth-options.h b/auth-options.h
index 16871d754..bf59b30be 100644
--- a/auth-options.h
+++ b/auth-options.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth-options.h,v 1.25 2018/03/03 03:15:51 djm Exp $ */
+/* $OpenBSD: auth-options.h,v 1.26 2018/03/12 00:52:01 djm Exp $ */
 
 /*
  * Copyright (c) 2018 Damien Miller <djm@mindrot.org>
@@ -37,6 +37,9 @@ struct sshauthopt {
 	/* "restrict" keyword was invoked */
 	int restricted;
 
+	/* key/principal expiry date */
+	uint64_t valid_before;
+
 	/* Certificate-related options */
 	int cert_authority;
 	char *cert_principals;
-- 
cgit v1.2.3