artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: eeca08d) | patch
ssh-agent side of destination constraints
authordjm <djm@openbsd.org>
Sun, 19 Dec 2021 22:11:39 +0000 (22:11 +0000)
committerdjm <djm@openbsd.org>
Sun, 19 Dec 2021 22:11:39 +0000 (22:11 +0000)
commitc645c1546f6cfb739635b7b666ec1113f50e01a1
treeda3a0573aa1588fe1d6f56ce2350e66cf6c716c5tree | snapshot
parenteeca08d06b9f48d9532d37c3d43af4187927f194commit | diff
ssh-agent side of destination constraints

Gives ssh-agent the ability to parse restrict-destination-v00@openssh.com
constraints and to apply them to keys.

Check constraints against the hostkeys recorded for a SocketEntry when
attempting a signature, adding, listing or deleting keys. Note that
the "delete all keys" request will remove constrained keys regardless of
location.

feedback Jann Horn & markus@
ok markus@
usr.bin/ssh/ssh-agent.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim