upstream: Refactor signing - use sshkey_sign for everything,

including the new U2F signatures. Don't use sshsk_ecdsa_sign() directly, instead make it reachable via sshkey_sign() like all other signature operations. This means that we need to add a provider argument to sshkey_sign(), so most of this change is mechanically adding that. Suggested by / ok markus@ OpenBSD-Commit-ID: d5193a03fcfa895085d91b2b83d984a9fde76c8c
author: djm@openbsd.org <djm@openbsd.org> 2019-10-31 21:23:19 +0000
committer: Damien Miller <djm@mindrot.org> 2019-11-01 09:46:10 +1100
commit: 9a14c64c38fc14d0029f1c7bc70cf62cc7f0fdf9 (patch)
tree: d79bb8d66eeba8e353f18dac919cb65d0ad896c7 /ssh-keysign.c
parent: 07da39f71d36fb547749a5b16aa8892e621a7e4a (diff)
download: openssh-git-9a14c64c38fc14d0029f1c7bc70cf62cc7f0fdf9.tar.gz
1 files changed, 3 insertions, 3 deletions
diff --git a/ssh-keysign.c b/ssh-keysign.c
index 6cfd5b46..d6aa6361 100644
--- a/ssh-keysign.c
+++ b/ssh-keysign.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssh-keysign.c,v 1.61 2019/10/02 00:42:30 djm Exp $ */
+/* $OpenBSD: ssh-keysign.c,v 1.62 2019/10/31 21:23:19 djm Exp $ */
 /*
  * Copyright (c) 2002 Markus Friedl.  All rights reserved.
  *
@@ -277,8 +277,8 @@ main(int argc, char **argv)
 		    sshkey_type(key), fp ? fp : "");
 	}
 
-	if ((r = sshkey_sign(keys[i], &signature, &slen, data, dlen, NULL, 0))
-	    != 0)
+	if ((r = sshkey_sign(keys[i], &signature, &slen, data, dlen,
+	    NULL, NULL, 0)) != 0)
 		fatal("sshkey_sign failed: %s", ssh_err(r));
 	free(data);
author	djm@openbsd.org <djm@openbsd.org>	2019-10-31 21:23:19 +0000
committer	Damien Miller <djm@mindrot.org>	2019-11-01 09:46:10 +1100
commit	9a14c64c38fc14d0029f1c7bc70cf62cc7f0fdf9 (patch)
tree	d79bb8d66eeba8e353f18dac919cb65d0ad896c7 /ssh-keysign.c
parent	07da39f71d36fb547749a5b16aa8892e621a7e4a (diff)
download	openssh-git-9a14c64c38fc14d0029f1c7bc70cf62cc7f0fdf9.tar.gz