crypto/ssh: allow identities to be constrained.

The ssh-agent protocol allows the usage of keys and certs added to a given agent to be constrained in certain ways. The only constraints currently supported are lifetime (keys expire after some number of seconds) and confirmation (the agent requires user confirmation before performing any operations with the private key). Change-Id: Idba5760db929805bf3da43fdcaca53ae6c479ca4 Reviewed-on: https://go-review.googlesource.com/12260 Reviewed-by: Adam Langley <agl@golang.org> Run-TryBot: Adam Langley <agl@golang.org> Reviewed-by: Peter Moody <pmoody@uber.com>
author: Peter Moody <pmoody@uber.com> 2015-07-08 15:14:43 -0700
committer: Adam Langley <agl@golang.org> 2015-07-16 17:35:58 +0000
commit: 7d5b0be716b9d6d4269afdaae10032bb296d3cdf (patch)
tree: 2e752dfc5a8457db88236673dcb0d0abec7c3048 /ssh/agent/server.go
parent: 4d8f0cfeca8290cfc0091edf678a138ce669b1bb (diff)
download: go-x-crypto-7d5b0be716b9d6d4269afdaae10032bb296d3cdf.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/ssh/agent/server.go b/ssh/agent/server.go
index be9df0e..b21a201 100644
--- a/ssh/agent/server.go
+++ b/ssh/agent/server.go
@@ -167,7 +167,7 @@ func (s *server) insertIdentity(req []byte) error {
 		}
 		priv.Precompute()
 
-		return s.agent.Add(&priv, nil, k.Comments)
+		return s.agent.Add(AddedKey{PrivateKey: &priv, Comment: k.Comments})
 	}
 	return fmt.Errorf("not implemented: %s", record.Type)
 }
author	Peter Moody <pmoody@uber.com>	2015-07-08 15:14:43 -0700
committer	Adam Langley <agl@golang.org>	2015-07-16 17:35:58 +0000
commit	7d5b0be716b9d6d4269afdaae10032bb296d3cdf (patch)
tree	2e752dfc5a8457db88236673dcb0d0abec7c3048 /ssh/agent/server.go
parent	4d8f0cfeca8290cfc0091edf678a138ce669b1bb (diff)
download	go-x-crypto-7d5b0be716b9d6d4269afdaae10032bb296d3cdf.tar.xz