head 1.2; access; symbols perseant-exfatfs-base-20250801:1.2 netbsd-10-1-RELEASE:1.1.1.2 perseant-exfatfs-base-20240630:1.1.1.2 perseant-exfatfs:1.1.1.2.0.4 perseant-exfatfs-base:1.1.1.2 netbsd-10-0-RELEASE:1.1.1.2 netbsd-10-0-RC6:1.1.1.2 netbsd-10-0-RC5:1.1.1.2 netbsd-10-0-RC4:1.1.1.2 netbsd-10-0-RC3:1.1.1.2 netbsd-10-0-RC2:1.1.1.2 netbsd-10-0-RC1:1.1.1.2 netbsd-10:1.1.1.2.0.2 netbsd-10-base:1.1.1.2 pam-u2f-1-2-0:1.1.1.2 cjep_sun2x-base1:1.1.1.1 cjep_sun2x:1.1.1.1.0.6 cjep_sun2x-base:1.1.1.1 cjep_staticlib_x-base1:1.1.1.1 cjep_staticlib_x:1.1.1.1.0.4 cjep_staticlib_x-base:1.1.1.1 phil-wifi-20200421:1.1.1.1 phil-wifi:1.1.1.1.0.2 phil-wifi-20200411:1.1.1.1 phil-wifi-20200406:1.1.1.1 pam-u2f-d10f84314c55f10d244bc275794e783dc408e45c:1.1.1.1 YUBICO:1.1.1; locks; strict; comment @# @; 1.2 date 2025.01.15.15.30.48; author christos; state dead; branches; next 1.1; commitid 1hz7jKNpgJUWXAFF; 1.1 date 2020.03.03.00.18.44; author christos; state Exp; branches 1.1.1.1; next ; commitid 1ZxyDahDc2Mm6TYB; 1.1.1.1 date 2020.03.03.00.18.44; author christos; state Exp; branches 1.1.1.1.2.1; next 1.1.1.2; commitid 1ZxyDahDc2Mm6TYB; 1.1.1.2 date 2021.09.24.12.51.20; author christos; state Exp; branches 1.1.1.2.4.1; next ; commitid svyYJBfNNtJzWcaD; 1.1.1.1.2.1 date 2020.03.03.00.18.44; author martin; state dead; branches; next 1.1.1.1.2.2; commitid X01YhRUPVUDaec4C; 1.1.1.1.2.2 date 2020.04.13.07.56.28; author martin; state Exp; branches; next ; commitid X01YhRUPVUDaec4C; 1.1.1.2.4.1 date 2025.08.02.05.23.11; author perseant; state dead; branches; next ; commitid 23j6GFaDws3O875G; desc @@ 1.2 log @merge changes between 1.2.0 and 1.3.1 @ text @# Copyright (C) 2014-2018 Yubico AB - See COPYING # purpose "Perform a U2F registration operation and print a configuration line that can be used with the pam_u2f module." defgroup "user" option "origin" o "Origin URL to use during registration. Defaults to pam://hostname" string optional option "appid" i "Application ID to use during registration. Defaults to pam://hostname" string optional option "type" t "COSE type to use during registration (ES256 or RS256). Defaults to ES256." string optional option "resident" r "Generate a resident credential" flag off option "no-user-presence" P "Allow the credential to be used without ensuring the user's presence" flag off option "pin-verification" N "Require PIN verification during authentication" flag off option "user-verification" V "Require user verification during authentication" flag off option "debug" d "Print debug information (highly verbose)" flag off option "verbose" v "Print information about chosen origin and appid" flag off groupoption "username" u "The name of the user registering the device. Defaults to the current user name" string group="user" groupoption "nouser" n "Print only registration information (keyHandle and public key). Useful for appending" group="user" @ 1.1 log @Initial revision @ text @@ 1.1.1.1 log @Import Yubico's pam-u2f from https://github.com/Yubico/pam-u2f.git @ text @@ 1.1.1.2 log @Import version 1.2.0 * Version 1.2.0 (released 2021-09-22) ** Added support for EdDSA keys. ** Added support for SSH ed25519-sk keys. ** Added authenticator filtering based on user verification options. ** Fixed an issue with privilege restoration on MacOS. ** Fixed an issue where credentials created with pamu2fcfg 1.0.8 or earlier were not handled correctly if their origin and appid differed. ** Miscellaneous improvements to the documentation. ** Miscellaneous minor bug fixes found by fuzzing. * Version 1.1.1 (released 2021-05-19) ** Fix an issue where PIN authentication could be bypassed (CVE-2021-31924). ** Fix an issue with nodetect and non-resident credentials. ** Fix build issues with musl libc. ** Add support for self-attestation in pamu2fcfg. ** Fix minor bugs found by fuzzing. * Version 1.1.0 (released 2020-09-17) ** Add support to FIDO2 (move from libu2f-host+libu2f-server to libfido2). ** Add support to User Verification ** Add support to PIN Verification ** Add support to Resident Credentials ** Add support to SSH credential format @ text @d4 1 a4 1 purpose "Perform a FIDO2/U2F registration operation and print a configuration line that can be used with the pam_u2f module." d8 3 a10 3 option "origin" o "Relying party ID to use during registration. Defaults to pam://hostname" string optional option "appid" i "Relying party name to use during registration. Defaults to the value of origin" string optional option "type" t "COSE type to use during registration (ES256, EDDSA, or RS256). Defaults to ES256." string optional @ 1.1.1.2.4.1 log @Sync with HEAD @ text @@ 1.1.1.1.2.1 log @file cmdline.ggo was added on branch phil-wifi on 2020-04-13 07:56:28 +0000 @ text @d1 18 @ 1.1.1.1.2.2 log @Mostly merge changes from HEAD upto 20200411 @ text @a0 18 # Copyright (C) 2014-2018 Yubico AB - See COPYING # purpose "Perform a U2F registration operation and print a configuration line that can be used with the pam_u2f module." defgroup "user" option "origin" o "Origin URL to use during registration. Defaults to pam://hostname" string optional option "appid" i "Application ID to use during registration. Defaults to pam://hostname" string optional option "type" t "COSE type to use during registration (ES256 or RS256). Defaults to ES256." string optional option "resident" r "Generate a resident credential" flag off option "no-user-presence" P "Allow the credential to be used without ensuring the user's presence" flag off option "pin-verification" N "Require PIN verification during authentication" flag off option "user-verification" V "Require user verification during authentication" flag off option "debug" d "Print debug information (highly verbose)" flag off option "verbose" v "Print information about chosen origin and appid" flag off groupoption "username" u "The name of the user registering the device. Defaults to the current user name" string group="user" groupoption "nouser" n "Print only registration information (keyHandle and public key). Useful for appending" group="user" @