rpms/openssh/devel openssh-5.3p1-nss-keys.patch, 1.1, 1.2 openssh.spec, 1.174, 1.175

Tue Oct 27 13:48:50 UTC 2009

Author: jfch2222

Update of /cvs/pkgs/rpms/openssh/devel
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv13450

Modified Files:
	openssh-5.3p1-nss-keys.patch openssh.spec 
Log Message:
Add README.nss


openssh-5.3p1-nss-keys.patch:
 openssh-5.2p1/README.nss   |   36 ++++
 openssh-5.3p1/Makefile.in  |    2 
 openssh-5.3p1/authfd.c     |   39 +++++
 openssh-5.3p1/authfd.h     |    8 +
 openssh-5.3p1/configure.ac |   15 ++
 openssh-5.3p1/key.c        |   61 ++++++++
 openssh-5.3p1/key.h        |   20 ++
 openssh-5.3p1/nsskeys.c    |  327 +++++++++++++++++++++++++++++++++++++++++++++
 openssh-5.3p1/nsskeys.h    |   39 +++++
 openssh-5.3p1/readconf.c   |   20 ++
 openssh-5.3p1/readconf.h   |    2 
 openssh-5.3p1/ssh-add.c    |  181 ++++++++++++++++++++++++
 openssh-5.3p1/ssh-agent.c  |  121 ++++++++++++++++
 openssh-5.3p1/ssh-dss.c    |   36 ++++
 openssh-5.3p1/ssh-keygen.c |   51 ++++++-
 openssh-5.3p1/ssh-rsa.c    |   42 +++++
 openssh-5.3p1/ssh.c        |   28 +++
 17 files changed, 1016 insertions(+), 12 deletions(-)

Index: openssh-5.3p1-nss-keys.patch
===================================================================
RCS file: /cvs/pkgs/rpms/openssh/devel/openssh-5.3p1-nss-keys.patch,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -p -r1.1 -r1.2

--- openssh-5.3p1-nss-keys.patch	2 Oct 2009 13:17:07 -0000	1.1
+++ openssh-5.3p1-nss-keys.patch	27 Oct 2009 13:48:48 -0000	1.2
@@ -1366,3 +1366,43 @@ diff -up openssh-5.3p1/ssh-rsa.c.nss-key
  	/* encode signature */
  	buffer_init(&b);
  	buffer_put_cstring(&b, "ssh-rsa");
+diff -up /dev/null openssh-5.2p1/README.nss
+--- /dev/null	2008-11-17 17:51:52.160001870 +0100
++++ openssh-5.2p1/README.nss	2008-11-18 19:11:41.000000000 +0100
+@@ -0,0 +1,36 @@
++How to use NSS tokens with OpenSSH?
++
++This version of OpenSSH contains experimental support for authentication using
++keys stored in tokens stored in NSS database. This for example includes any
++PKCS#11 tokens which are installed in your NSS database.
++
++As the code is experimental and preliminary only SSH protocol 2 is supported.
++The NSS certificate and token databases are looked for in the ~/.ssh
++directory or in a directory specified by environment variable NSS_DB_PATH.
++
++Common operations:
++
++(1) tell the ssh client to use the NSS keys:
++
++	$ ssh -o 'UseNSS yes' otherhost
++	
++	if you want to use a specific token:
++	
++	$ ssh -o 'UseNSS yes' -o 'NSS Token My PKCS11 Token' otherhost
++
++(2) or tell the agent to use the NSS keys:
++
++	$ ssh-add -n
++	
++	if you want to use a specific token:
++	
++	$ ssh-add -n -T 'My PKCS11 Token'
++
++(3) extract the public key from token so it can be added to the
++server:
++
++	$ ssh-keygen -n
++	
++	if you want to use a specific token and/or key:
++	
++	$ ssh-keygen -n -D 'My PKCS11 Token' 'My Key ID'


Index: openssh.spec
===================================================================
RCS file: /cvs/pkgs/rpms/openssh/devel/openssh.spec,v
retrieving revision 1.174
retrieving revision 1.175
diff -u -p -r1.174 -r1.175
--- openssh.spec	19 Oct 2009 07:32:33 -0000	1.174
+++ openssh.spec	27 Oct 2009 13:48:48 -0000	1.175
@@ -69,8 +69,9 @@
 Summary: An open source implementation of SSH protocol versions 1 and 2
 Name: openssh
 Version: 5.3p1
-Release: 4%{?dist}%{?rescue_rel}
+Release: 5%{?dist}%{?rescue_rel}
 URL: http://www.openssh.com/portable.html
+#URL1: http://pamsshauth.sourceforge.net
 #Source0: ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-%{version}.tar.gz
 #Source1: ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-%{version}.tar.gz.asc
 # This package differs from the upstream OpenSSH tarball in that
@@ -520,6 +521,9 @@ fi
 %endif
 
 %changelog
+* Tue Oct 27 2009 Jan F. Chadima <jchadima at redhat.com> - 5.3p1-5
+- Add README.nss
+
 * Mon Oct 19 2009 Tomas Mraz <tmraz at redhat.com> - 5.3p1-4
 - Add pam_ssh_agent_auth module to a subpackage.
 


