upstream: add valid-before="[time]" authorized_keys option. A

simple way of giving a key an expiry date. ok markus@ OpenBSD-Commit-ID: 1793b4dd5184fa87f42ed33c7b0f4f02bc877947
author: djm@openbsd.org <djm@openbsd.org> 2018-03-12 00:52:01 +0000
committer: Damien Miller <djm@mindrot.org> 2018-03-14 18:55:32 +1100
commit: bf0fbf2b11a44f06a64b620af7d01ff171c28e13 (patch)
tree: bebb13975a12e80a295cafeec72417a6911ea750 /auth-options.h
parent: fbd733ab7adc907118a6cf56c08ed90c7000043f (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/auth-options.h b/auth-options.h
index 16871d75..bf59b30b 100644
--- a/auth-options.h
+++ b/auth-options.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth-options.h,v 1.25 2018/03/03 03:15:51 djm Exp $ */
+/* $OpenBSD: auth-options.h,v 1.26 2018/03/12 00:52:01 djm Exp $ */
 
 /*
  * Copyright (c) 2018 Damien Miller <djm@mindrot.org>
@@ -37,6 +37,9 @@ struct sshauthopt {
 	/* "restrict" keyword was invoked */
 	int restricted;
 
+	/* key/principal expiry date */
+	uint64_t valid_before;
+
 	/* Certificate-related options */
 	int cert_authority;
 	char *cert_principals;
author	djm@openbsd.org <djm@openbsd.org>	2018-03-12 00:52:01 +0000
committer	Damien Miller <djm@mindrot.org>	2018-03-14 18:55:32 +1100
commit	bf0fbf2b11a44f06a64b620af7d01ff171c28e13 (patch)
tree	bebb13975a12e80a295cafeec72417a6911ea750 /auth-options.h
parent	fbd733ab7adc907118a6cf56c08ed90c7000043f (diff)