From patchwork Fri Nov 5 18:29:38 2021 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Ahmad Jarara X-Patchwork-Id: 34265 Return-Path: X-Original-To: patchwork@mira.cbaines.net Delivered-To: patchwork@mira.cbaines.net Received: by mira.cbaines.net (Postfix, from userid 113) id 6DFE727BBE3; Fri, 5 Nov 2021 18:31:27 +0000 (GMT) X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on mira.cbaines.net X-Spam-Level: X-Spam-Status: No, score=-2.4 required=5.0 tests=BAYES_00,DKIM_SIGNED, FREEMAIL_FROM,HTML_MESSAGE,MAILING_LIST_MULTI,MIME_HTML_MOSTLY, RCVD_IN_MSPIKE_H2,SPF_HELO_PASS,T_DKIM_INVALID,URIBL_BLOCKED autolearn=unavailable autolearn_force=no version=3.4.2 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) by mira.cbaines.net (Postfix) with ESMTPS id E666727BBE1 for ; Fri, 5 Nov 2021 18:31:26 +0000 (GMT) Received: from localhost ([::1]:50086 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1mj3zq-0005Ot-0i for patchwork@mira.cbaines.net; Fri, 05 Nov 2021 14:31:26 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:36114) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1mj3zT-0005O1-6B for guix-patches@gnu.org; Fri, 05 Nov 2021 14:31:04 -0400 Received: from debbugs.gnu.org ([209.51.188.43]:35660) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1mj3zS-0005I5-IJ for guix-patches@gnu.org; Fri, 05 Nov 2021 14:31:02 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1mj3zS-00083u-Fw for guix-patches@gnu.org; Fri, 05 Nov 2021 14:31:02 -0400 X-Loop: help-debbugs@gnu.org Subject: [bug#51618] [PATCH 3/3] gnu: Add support for ecdsa-sk, ed25519-sk ssh keys References: In-Reply-To: Resent-From: "Ahmad Jarara" Original-Sender: "Debbugs-submit" Resent-CC: guix-patches@gnu.org Resent-Date: Fri, 05 Nov 2021 18:31:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 51618 X-GNU-PR-Package: guix-patches X-GNU-PR-Keywords: patch To: 51618@debbugs.gnu.org Received: via spool by 51618-submit@debbugs.gnu.org id=B51618.163613700630856 (code B ref 51618); Fri, 05 Nov 2021 18:31:02 +0000 Received: (at 51618) by debbugs.gnu.org; 5 Nov 2021 18:30:06 +0000 Received: from localhost ([127.0.0.1]:47205 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1mj3yX-00081c-KR for submit@debbugs.gnu.org; Fri, 05 Nov 2021 14:30:05 -0400 Received: from out2-smtp.messagingengine.com ([66.111.4.26]:37619) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1mj3yV-00081U-JJ for 51618@debbugs.gnu.org; Fri, 05 Nov 2021 14:30:03 -0400 Received: from compute5.internal (compute5.nyi.internal [10.202.2.45]) by mailout.nyi.internal (Postfix) with ESMTP id 560C05C0152 for <51618@debbugs.gnu.org>; Fri, 5 Nov 2021 14:30:03 -0400 (EDT) Received: from imap46 ([10.202.2.96]) by compute5.internal (MEProxy); Fri, 05 Nov 2021 14:30:03 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fastmail.com; h= mime-version:message-id:date:from:to:subject:content-type; s= fm1; bh=U6S/JLsNNp0m+iEZbDhu64CnzuKT+1fWIXJmFLDENP4=; b=T/d2ILV4 658Asxm6WD7Yf9FITYRW0xVBeVqU8/dsrz+Fa19TnCUZmKMpN0Bt6c5ZEpCaxk1R NJ2wEQmiIKTdNUkA7MMU0p99GMuVxmOq1yyi3VXw81os9yGHfMRIgzGNh+EIEFOO zOYQYX9u/3upY88YOlqzyoasjto6aD7HjcKO3ctOrZU+18plIeTXM7gQrNpH6ibl OlpzrkBZgbPOQuCkBL1JXBqwsBA9r9ar2Go0mAJw7zig6SOjPQpooLelEuKsxpfL ENsMhE1U6z7x85fEK/7vUhyIVYf4cQ/4c0/v2QLMTySUmS95eIwOvmI9yMJh+z4G uB8fnNfVF8Grmw== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:message-id :mime-version:subject:to:x-me-proxy:x-me-proxy:x-me-sender :x-me-sender:x-sasl-enc; s=fm1; bh=U6S/JLsNNp0m+iEZbDhu64CnzuKT+ 1fWIXJmFLDENP4=; b=iZTvO/fHZYWHTsuW6DQfFej2P1vY8GVdykduSou89Z8Jg OEmxQKsvFuDlnSmhWHOq9HFuESXvIg0toM/VXlf3Qh79SJcgeXLytTOO6HSqs2Ut oWnddYeEN1KErBjNblNfTM1b9nCgIinO5mSLVm9HZ6Hv/53F/Az3kkt2ZPZs9Qus Hg7k8lxGDetpXHCzkQqC6xB4uuYH+6RGONyvECY4cO3ZljLVUkt8qUOp8g9MQgA8 kiEav9k79TGJC25UkHF5DWjUtjGPJSMURJlc2UZl665eNSEm4YZQfXIhFn1vccll ID9L5TKnEaffVRiGP1lzWQuaNhNP4QI3gDQaTjQrg== X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvuddrtdeigdduudduucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefofgggkfffhffvufgtsehmtderre erredtnecuhfhrohhmpedftehhmhgrugculfgrrhgrrhgrfdcuoegrjhgrrhgrrhgrsehf rghsthhmrghilhdrtghomheqnecuggftrfgrthhtvghrnhepfeekjedtvefgtdekteelve evfeehgfehgfekhfevvdfflefgheduueeugeeitdeinecuvehluhhsthgvrhfuihiivgep vdenucfrrghrrghmpehmrghilhhfrhhomheprghjrghrrghrrgesfhgrshhtmhgrihhlrd gtohhm X-ME-Proxy: Received: by mailuser.nyi.internal (Postfix, from userid 501) id 3487D1EE0076; Fri, 5 Nov 2021 14:30:03 -0400 (EDT) X-Mailer: MessagingEngine.com Webmail Interface User-Agent: Cyrus-JMAP/3.5.0-alpha0-1369-gd055fb5e7c-fm-20211018.002-gd055fb5e Mime-Version: 1.0 Message-Id: Date: Fri, 05 Nov 2021 14:29:38 -0400 From: "Ahmad Jarara" X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: guix-patches@gnu.org List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-patches-bounces+patchwork=mira.cbaines.net@gnu.org Sender: "Guix-patches" X-getmail-retrieved-from-mailbox: Patches From 461ade27b8dd175c175e333b8d11b6e8a9a70a19 Mon Sep 17 00:00:00 2001 From: Ahmad Jarara Date: Fri, 5 Nov 2021 14:12:56 -0400 Subject: [PATCH 3/3] gnu: Add support for ecdsa-sk, ed25519-sk ssh keys * gnu/packages/ssh.scm (openssh): Add support for ecdsa-sk, ed25519-sk ssh keys --- gnu/packages/ssh.scm | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/gnu/packages/ssh.scm b/gnu/packages/ssh.scm index 4e217888fd..c0d7a6debc 100644 --- a/gnu/packages/ssh.scm +++ b/gnu/packages/ssh.scm @@ -63,6 +63,7 @@ (define-module (gnu packages ssh) #:use-module (gnu packages python-web) #:use-module (gnu packages python-xyz) #:use-module (gnu packages readline) + #:use-module (gnu packages security-token) #:use-module (gnu packages texinfo) #:use-module (gnu packages tls) #:use-module (gnu packages xorg) @@ -199,6 +200,7 @@ (define-public openssh (native-inputs `(("groff" ,groff) ("pkg-config" ,pkg-config))) (inputs `(("libedit" ,libedit) + ("libfido2" ,libfido2) ("openssl" ,openssl) ,@(if (hurd-target?) '() @@ -229,6 +231,9 @@ (define-public openssh '() '("--with-pam")) + ;; supports creation and use of ecdsa-sk, ed25519-sk keys + "--with-security-key-builtin" + ;; "make install" runs "install -s" by default, ;; which doesn't work for cross-compiled binaries ;; because it invokes 'strip' instead of -- 2.33.1