tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

upstream: correct extension name "no-presence-required" => 

"no-touch-required"

document "verify-required" option

OpenBSD-Commit-ID: 1879ff4062cf61d79b515e433aff0bf49a6c55c5
This commit is contained in:
djm@openbsd.org 2021-06-04 04:02:21 +00:00 committed by Damien Miller
parent ecc186e46e
commit 60107677dc
1 changed files with 13 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
PROTOCOL.certkeys
View File

@ -260,6 +260,14 @@ source-address string Comma-separated list of source addresses
certificates may be presented from any
source address.
verify-required empty Flag indicating that signatures made
with this certificate must assert FIDO
user verification (e.g. PIN or
biometric). This option only make sense
for the U2F/FIDO security key types that
support this feature in their signature
formats.
Extensions
----------
@ -280,11 +288,11 @@ their data fields are:
Name Format Description
-----------------------------------------------------------------------------
no-presence-required empty Flag indicating that signatures made
no-touch-required empty Flag indicating that signatures made
with this certificate need not assert
user presence. This option only make
sense for the U2F/FIDO security key
types that support this feature in
FIDO user presence. This option only
make sense for the U2F/FIDO security
key types that support this feature in
their signature formats.
permit-X11-forwarding empty Flag indicating that X11 forwarding
@ -311,4 +319,4 @@ permit-user-rc empty Flag indicating that execution of
of this script will not be permitted if
this option is not present.
$OpenBSD: PROTOCOL.certkeys,v 1.17 2019/11/25 00:57:51 djm Exp $
$OpenBSD: PROTOCOL.certkeys,v 1.18 2021/06/04 04:02:21 djm Exp $