[pkgsrc/trunk]: pkgsrc/security/openssh security/openssh: New fido option.

[riastradh <riastradh%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/d3f10221b184
branches:  trunk
changeset: 437324:d3f10221b184
user:      riastradh <riastradh%pkgsrc.org@localhost>
date:      Fri Aug 21 01:49:24 2020 +0000

description:
security/openssh: New fido option.

This enables built-in U2F/FIDO security key support, without any
SSH_SK_PROVIDER middleware library needed.  Works only on platforms
with working libfido2, so not enabled by default yet.  We should
enable it by default in NetBSD>=10 and maybe some other platforms.

diffstat:

 security/openssh/options.mk |  9 +++++++--
 1 files changed, 7 insertions(+), 2 deletions(-)

diffs (22 lines):

diff -r 89412a6e030f -r d3f10221b184 security/openssh/options.mk
--- a/security/openssh/options.mk       Fri Aug 21 00:44:55 2020 +0000
+++ b/security/openssh/options.mk       Fri Aug 21 01:49:24 2020 +0000
@@ -1,7 +1,7 @@
-# $NetBSD: options.mk,v 1.38 2019/11/04 21:12:56 rillig Exp $
+# $NetBSD: options.mk,v 1.39 2020/08/21 01:49:24 riastradh Exp $
 
 PKG_OPTIONS_VAR=       PKG_OPTIONS.openssh
-PKG_SUPPORTED_OPTIONS= editline kerberos openssl pam legacymodsz
+PKG_SUPPORTED_OPTIONS= editline fido kerberos openssl pam legacymodsz
 PKG_SUGGESTED_OPTIONS= editline openssl
 
 .include "../../mk/bsd.prefs.mk"
@@ -53,3 +53,8 @@
 .include "../../devel/editline/buildlink3.mk"
 CONFIGURE_ARGS+=       --with-libedit=${BUILDLINK_PREFIX.editline}
 .endif
+
+.if !empty(PKG_OPTIONS:Mfido)
+.include "../../security/libfido2/buildlink3.mk"
+CONFIGURE_ARGS+=       --with-security-key-builtin
+.endif