[openssh-commits] [openssh] branch master updated (b52c0c2e -> d637c4ae)

git+noreply at mindrot.org git+noreply at mindrot.org
Tue Sep 3 18:40:35 AEST 2019 

This is an automated email from the git hooks/post-receive script.

djm pushed a change to branch master
in repository openssh.

      from  b52c0c2e  upstream: downgrade PKCS#11 "provider returned no slots" warning
       new  9a396e33  upstream: constify an argument
       new  85443f16  upstream: factor out confirm_overwrite(); ok markus@
       new  2ab5a846  upstream: fix memleak in ssh_free_identitylist(); ok markus@
       new  06af3583  upstream: authfd: add function to check if key is in agent
       new  c72d78cc  upstream: move skip_space() to misc.c and make it public; ok
       new  dd8002fb  upstream: move advance_past_options to authfile.c and make it
       new  f8df0413  upstream: make get_sigtype public as sshkey_get_sigtype(); ok
       new  5485f8d5  upstream: move authorized_keys option parsing helpsers to misc.c
       new  2a9c9f72  upstream: sshsig: lightweight signature and verification ability
       new  d637c4ae  upstream: sshsig tweaks and improvements from and suggested by

The 10 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Detailed log of new commits:

commit d637c4aee6f9b5280c13c020d7653444ac1fcaa5
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Tue Sep 3 08:35:27 2019 +0000

    upstream: sshsig tweaks and improvements from and suggested by
    
    Markus
    
    ok markus/me
    
    OpenBSD-Commit-ID: ea4f46ad5a16b27af96e08c4877423918c4253e9

commit 2a9c9f7272c1e8665155118fe6536bebdafb6166
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Tue Sep 3 08:34:19 2019 +0000

    upstream: sshsig: lightweight signature and verification ability
    
    for OpenSSH
    
    This adds a simple manual signature scheme to OpenSSH.
    Signatures can be made and verified using ssh-keygen -Y sign|verify
    
    Signatures embed the key used to make them. At verification time, this
    is matched via principal name against an authorized_keys-like list
    of allowed signers.
    
    Mostly by Sebastian Kinne w/ some tweaks by me
    
    ok markus@
    
    OpenBSD-Commit-ID: 2ab568e7114c933346616392579d72be65a4b8fb

commit 5485f8d50a5bc46aeed829075ebf5d9c617027ea
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Tue Sep 3 08:32:11 2019 +0000

    upstream: move authorized_keys option parsing helpsers to misc.c
    
    and make them public; ok markus@
    
    OpenBSD-Commit-ID: c18bcb2a687227b3478377c981c2d56af2638ea2

commit f8df0413f0a057b6a3d3dd7bd8bc7c5d80911d3a
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Tue Sep 3 08:31:20 2019 +0000

    upstream: make get_sigtype public as sshkey_get_sigtype(); ok
    
    markus@
    
    OpenBSD-Commit-ID: 01f8cdbec63350490d2249f41112c5780d1cfbb8

commit dd8002fbe63d903ffea5be7b7f5fc2714acab4a0
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Tue Sep 3 08:30:47 2019 +0000

    upstream: move advance_past_options to authfile.c and make it
    
    public; ok markus@
    
    OpenBSD-Commit-ID: edda2fbba2c5b1f48e60f857a2010479e80c5f3c

commit c72d78ccbe642e08591a626e5de18381489716e0
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Tue Sep 3 08:29:58 2019 +0000

    upstream: move skip_space() to misc.c and make it public; ok
    
    markus@
    
    OpenBSD-Commit-ID: caa77e8a3b210948e29ad3e28c5db00852961eae

commit 06af3583f46e2c327fdd44d8a95b8b4e8dfd8db5
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Tue Sep 3 08:29:15 2019 +0000

    upstream: authfd: add function to check if key is in agent
    
    This commit adds a helper function which allows the caller to
    check if a given public key is present in ssh-agent.
    
    work by Sebastian Kinne; ok markus@
    
    OpenBSD-Commit-ID: d43c5826353e1fdc1af71eb42961b30782c7bd13

commit 2ab5a8464870cc4b29ddbe849bbbc255729437bf
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Tue Sep 3 08:28:30 2019 +0000

    upstream: fix memleak in ssh_free_identitylist(); ok markus@
    
    OpenBSD-Commit-ID: aa51f77ae2c5330a1f61b2d22933f24a443f9abf

commit 85443f165b4169b2a448b3e24bc1d4dc5b3156a4
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Tue Sep 3 08:27:52 2019 +0000

    upstream: factor out confirm_overwrite(); ok markus@
    
    OpenBSD-Commit-ID: 304e95381b39c774c8fced7e5328b106a3ff0400

commit 9a396e33685633581c67d5ad9664570ef95281f2
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Mon Sep 2 23:46:46 2019 +0000

    upstream: constify an argument
    
    OpenBSD-Commit-ID: 724bafc9f993746ad4303e95bede2c030de6233b

Summary of changes:
 Makefile.in     |   2 +-
 PROTOCOL.sshsig |  99 +++++++
 auth-options.c  |  71 +----
 auth2-pubkey.c  |  36 +--
 authfd.c        |  30 ++-
 authfd.h        |   3 +-
 authfile.c      |  24 +-
 authfile.h      |   3 +-
 misc.c          |  84 +++++-
 misc.h          |   8 +-
 ssh-keygen.1    | 123 ++++++++-
 ssh-keygen.c    | 363 +++++++++++++++++++++++--
 sshkey.c        |  14 +-
 sshkey.h        |   3 +-
 sshsig.c        | 799 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 sshsig.h        |  84 ++++++
 16 files changed, 1610 insertions(+), 136 deletions(-)
 create mode 100644 PROTOCOL.sshsig
 create mode 100644 sshsig.c
 create mode 100644 sshsig.h

-- 
To stop receiving notification emails like this one, please contact
djm at mindrot.org.

More information about the openssh-commits mailing list