wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

	Commit message (Collapse)	Author	Age	Files	Lines
*	Back-out USB data toggle fix for HID devices, since we received multiple	mglocker	2021-02-15	1	-0/+66
\| \| \| \| \| \|	reports about broken devices, e.g. for ukbd(4) and fido(4). ok mpi@
*	Remove the terrible_ping_kludge() workaround. We have committed a fix to	mglocker	2021-02-05	1	-66/+0
\| \| \| \| \| \| \|	the USB stack in the meantime for uhidev(4) and ugen(4) to resolve the data toggle issue in relation to xhci(4). ok gnezdo@, djm@
*	sync a couple of minor fixes (no API/ABI change) to bring libfido2	djm	2020-09-07	2	-2/+2
\| \| \| \|	in line with upstream 1.5.0
*	check errno against EINTR; not return value from poll()	djm	2020-08-23	1	-1/+1
\| \| \| \|	spotted by Pedro Martelletto
*	update to libfido2 46710ac06, picking up a few API changes	djm	2020-08-23	5	-32/+29
\| \| \| \| \| \|	ok tb@ deraadt@ NB. major crank
*	sync with upstream libfido2 rev 2fa20b889, picking up ~7 months	djm	2020-08-11	28	-183/+748
\| \| \| \| \| \|	of fixes and a few new APIs that we'd like to use in OpenSSH ok deraadt@
*	It appears we have come full-circle, where source code starts to use	deraadt	2020-02-07	1	-4/+2
\| \| \| \| \| \|	clang / "super new gcc" ism's, in particular ones which are totally pointless as far as language goes. Delete them.
*	update to upstream libfido2 780ad3c25 (20120123)	djm	2020-02-07	35	-1021/+1713
\| \| \| \| \| \| \| \|	install manual pages crank major feedback & ok jmc@ and naddy@
*	Add fido(4), a HID driver for FIDO/U2F security keys	reyk	2019-12-17	1	-74/+10
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	While FIDO/U2F keys were already supported by the generic uhid(4) driver, this driver adds the first step to tighten the security of FIDO/U2F access. Specifically, users don't need read/write access to all USB/HID devices anymore and the driver also improves integration with pledge(2) and unveil(2): It is pledge-friendly because it doesn't require any ioctls to discover the device and unveil-friendly because it uses a single /dev/fido/* directory for its device nodes. It also allows to support FIDO/U2F in firefox without further weakening the "sandbox" of the browser. Firefox does not have a proper privsep design and many operations, such as U2F access, are handled directly by the main process. This means that the browser's "fat" main process needs direct read/write access to all USB HID devices, at least on other operating systems. With fido(4) we can support security keys in Firefox under OpenBSD without such a compromise. With this change, libfido2 stops using the ioctl to query the device vendor/product and just assumes "OpenBSD" "fido(4)" instead. The ioctl is still supported but there was no benefit in obtaining the vendor product or name; it also allows to use libfido2 under pledge. With feedback from deraadt@ and many others OK kettenis@ djm@ and jmc@ for the manpage bits
*	import libfido2 (git HEAD). This library allows communication with	djm	2019-11-14	38	-0/+10429
	U2F/FIDO2 devices over USB. feedback and "start the churn" deraadt@