[openssh-commits] [openssh] branch master updated (eb679e29 -> c46f6fed)

git+noreply at mindrot.org git+noreply at mindrot.org
Wed Jul 20 13:39:28 AEST 2022 

This is an automated email from the git hooks/post-receive script.

djm pushed a change to branch master
in repository openssh.

      from  eb679e29  Move vmshutdown to first step.
       new  5bcfc788  upstream: pull passphrase reading and confirmation into a separate
       new  9ab929ca  upstream: when enrolling a resident key on a security token, check
       new  8638a2ce  upstream: sk-usbhid: preserve error code returned by key_lookup()
       new  f208e3b9  upstream: ssh-keygen: fix touch prompt, pin retries;
       new  c46f6fed  crank SSH_SK_VERSION_MAJOR in sk-dummy.so

The 5 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Detailed log of new commits:

commit c46f6fed419167c1671e4227459e108036c760f8
Author: Damien Miller <djm at mindrot.org>
Date:   Wed Jul 20 13:39:14 2022 +1000

    crank SSH_SK_VERSION_MAJOR in sk-dummy.so

commit f208e3b9ffb5ee76cf9c95df7ff967adc7f51c7d
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Wed Jul 20 03:33:22 2022 +0000

    upstream: ssh-keygen: fix touch prompt, pin retries;
    
    part of GHPR329 from Pedro Martelletto
    
    OpenBSD-Commit-ID: 75d1005bd2ef8f29fa834c90d2684e73556fffe8

commit 8638a2ce7e90c8a51d9af3143404282126c524f8
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Wed Jul 20 03:31:42 2022 +0000

    upstream: sk-usbhid: preserve error code returned by key_lookup()
    
    it conveys useful information, such as the supplied pin being wrong.
    
    Part of GHPR329 from Pedro Martelletto
    
    OpenBSD-Commit-ID: c0647eb9290f793add363d81378439b273756c1b

commit 9ab929ca2d820520327b41929372bcb9e261534c
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Wed Jul 20 03:29:14 2022 +0000

    upstream: when enrolling a resident key on a security token, check
    
    if a credential with matching application and user ID strings already exists.
    if so, prompt the user for confirmation before overwriting the credential.
    
    patch from Pedro Martelletto via GHPR329
    
    NB. cranks SSH_SK_VERSION_MAJOR, so any third-party FIDO middleware
    implementations will need to adjust
    
    OpenBSD-Commit-ID: e45e9f1bf2b2f32d9850669e7a8dbd64acc5fca4

commit 5bcfc788b38d5b64e4c347bdc04bd9a01bbc36da
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Wed Jul 20 03:13:04 2022 +0000

    upstream: pull passphrase reading and confirmation into a separate
    
    function so it can be used for FIDO2 PINs; no functional change
    
    OpenBSD-Commit-ID: bf34f76b8283cc1d3f54633e0d4f13613d87bb2f

Summary of changes:
 regress/misc/sk-dummy/sk-dummy.c |   2 +-
 sk-api.h                         |   6 ++-
 sk-usbhid.c                      |  71 ++++++++++++++++++++++++-
 ssh-keygen.c                     | 109 +++++++++++++++++++++++++--------------
 ssh-sk.c                         |   4 +-
 5 files changed, 147 insertions(+), 45 deletions(-)

-- 
To stop receiving notification emails like this one, please contact
djm at mindrot.org.

More information about the openssh-commits mailing list