[openssh-commits] [openssh] branch master updated (fbd733ab -> 4c4e7f78)
git+noreply at mindrot.org
git+noreply at mindrot.org
Wed Mar 14 18:56:03 AEDT 2018
This is an automated email from the git hooks/post-receive script.
djm pushed a change to branch master
in repository openssh.
from fbd733ab Add AC_LANG_PROGRAM to AC_COMPILE_IFELSE.
new bf0fbf2b upstream: add valid-before="[time]" authorized_keys option. A
new abc0fa38 upstream: rename recently-added "valid-before" key restriction to
new 037fdc1d upstream: sort expiry-time;
new 3a43297c upstream: exlicitly include RSA/SHA-2 keytypes in
new a76b5d26 upstream: explicitly specify RSA/SHA-2 keytype here too
new 500396b2 upstream: check valid-before option in authorized_keys
new 4c4e7f78 upstream: rename recently-added "valid-before" key restriction to
The 7 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Detailed log of new commits:
commit 4c4e7f783b43b264c247233acb887ee10ed4ce4d
Author: djm at openbsd.org <djm at openbsd.org>
Date: Wed Mar 14 05:35:40 2018 +0000
upstream: rename recently-added "valid-before" key restriction to
"expiry-time" as the former is confusing wrt similar terminology in X.509;
pointed out by jsing@
OpenBSD-Regress-ID: ac8b41dbfd90cffd525d58350c327195b0937793
commit 500396b204c58e78ad9d081516a365a9f28dc3fd
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Mar 12 00:56:03 2018 +0000
upstream: check valid-before option in authorized_keys
OpenBSD-Regress-ID: 7e1e4a84f7f099a290e5a4cbf4196f90ff2d7e11
commit a76b5d26c2a51d7dd7a5164e683ab3f4419be215
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Mar 12 00:54:04 2018 +0000
upstream: explicitly specify RSA/SHA-2 keytype here too
OpenBSD-Regress-ID: 74d7b24e8c72c27af6b481198344eb077e993a62
commit 3a43297ce29d37c64e37c7e21282cb219e28d3d1
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Mar 12 00:52:57 2018 +0000
upstream: exlicitly include RSA/SHA-2 keytypes in
PubkeyAcceptedKeyTypes here
OpenBSD-Regress-ID: 954d19e0032a74e31697fb1dc7e7d3d1b2d65fe9
commit 037fdc1dc2d68e1d43f9c9e2586c02cabc8f7cc8
Author: jmc at openbsd.org <jmc at openbsd.org>
Date: Wed Mar 14 06:56:20 2018 +0000
upstream: sort expiry-time;
OpenBSD-Commit-ID: 8c7d82ee1e63e26ceb2b3d3a16514019f984f6bf
commit abc0fa38c9bc136871f28e452c3465c3051fc785
Author: djm at openbsd.org <djm at openbsd.org>
Date: Wed Mar 14 05:35:40 2018 +0000
upstream: rename recently-added "valid-before" key restriction to
"expiry-time" as the former is confusing wrt similar terminology in X.509;
pointed out by jsing@
OpenBSD-Commit-ID: 376939466a1f562f3950a22314bc6505733aaae6
commit bf0fbf2b11a44f06a64b620af7d01ff171c28e13
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Mar 12 00:52:01 2018 +0000
upstream: add valid-before="[time]" authorized_keys option. A
simple way of giving a key an expiry date. ok markus@
OpenBSD-Commit-ID: 1793b4dd5184fa87f42ed33c7b0f4f02bc877947
Summary of changes:
auth-options.c | 32 +++++++++++++++++++++++++---
auth-options.h | 5 ++++-
auth.c | 28 +++++++++++++++++++-----
misc.c | 55 +++++++++++++++++++++++++++++++++++++++++++++++-
misc.h | 4 +++-
regress/cert-userkey.sh | 5 +++--
regress/key-options.sh | 21 ++++++++++++++++--
regress/keytype.sh | 4 ++--
regress/limit-keytype.sh | 9 ++++----
ssh-keygen.1 | 8 +++----
ssh-keygen.c | 44 +++++---------------------------------
sshd.8 | 8 +++++--
12 files changed, 157 insertions(+), 66 deletions(-)
--
To stop receiving notification emails like this one, please contact
djm at mindrot.org.
More information about the openssh-commits
mailing list