[openssh-commits] [openssh] branch master updated (dc91ceea -> b5601202)

git+noreply at mindrot.org git+noreply at mindrot.org
Fri Dec 3 10:27:53 AEDT 2021 

This is an automated email from the git hooks/post-receive script.

djm pushed a change to branch master
in repository openssh.

      from  dc91ceea  upstream: don't put the tty into raw mode when SessionType=none, avoids
       new  b711bc01  upstream: ssh-rsa is no longer in the default for
       new  ca709e27  upstream: move check_sk_options() up so we can use it earlier
       new  b5601202  upstream: improve the testing of credentials against inserted FIDO

The 3 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Detailed log of new commits:

commit b5601202145a03106012c22cb8980bcac2949f0b
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Thu Dec 2 23:23:13 2021 +0000

    upstream: improve the testing of credentials against inserted FIDO
    
    keys a little more: ask the token whether a particular key belongs to it in
    cases where the token support on-token user- verification (e.g. biometrics)
    rather than just assuming that it will accept it.
    
    Will reduce spurious "Confirm user presence" notifications for key
    handles that relate to FIDO keys that are not currently inserted in at
    least some cases.
    
    Motivated by bz3366; by Pedro Martelletto
    
    OpenBSD-Commit-ID: ffac7f3215842397800e1ae2e20229671a55a63d

commit ca709e27c41c90f4565b17282c48dca7756e083c
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Thu Dec 2 22:40:05 2021 +0000

    upstream: move check_sk_options() up so we can use it earlier
    
    OpenBSD-Commit-ID: 67fe98ba1c846d22035279782c4664c1865763b4

commit b711bc01a7ec76bb6a285730990cbce9b8ca5773
Author: dtucker at openbsd.org <dtucker at openbsd.org>
Date:   Thu Dec 2 22:35:05 2021 +0000

    upstream: ssh-rsa is no longer in the default for
    
    PubkeyAcceptedAlgorithms.
    
    OpenBSD-Commit-ID: 34a9e1bc30966fdcc922934ae00f09f2596cd73c

Summary of changes:
 sk-usbhid.c   | 90 ++++++++++++++++++++++++++++++-----------------------------
 sshd_config.5 |  6 ++--
 2 files changed, 49 insertions(+), 47 deletions(-)

-- 
To stop receiving notification emails like this one, please contact
djm at mindrot.org.

More information about the openssh-commits mailing list