CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2020/01/05 19:00:47
Modified files:
usr.bin/ssh : PROTOCOL.u2f sk-api.h sk-usbhid.c ssh-add.c
ssh-keygen.1 ssh-keygen.c ssh-sk-client.c
ssh-sk-helper.c ssh-sk.c ssh-sk.h
Log message:
Extends the SK API to accept a set of key/value options for all
operations. These are intended to future-proof the API a little by
making it easier to specify additional fields for without having to
change the API version for each.
At present, only two options are defined: one to explicitly specify
the device for an operation (rather than accepting the middleware's
autoselection) and another to specify the FIDO2 username that may
be used when generating a resident key. These new options may be
invoked at key generation time via ssh-keygen -O
This also implements a suggestion from Markus to avoid "int" in favour
of uint32_t for the algorithm argument in the API, to make implementation
of ssh-sk-client/helper a little easier.
feedback, fixes and ok markus@
