[Bug 2430] ssh-keygen should allow to login before reading public key from smart card

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Fri Jul 17 17:16:11 AEST 2015


--- Comment #2 from Jakub Jelen <jjelen at redhat.com> ---
Yes. ssh-add would require same change. I forgot.

I didn't get so far with ssh. But it does Login, because it requires to
unlock the private key to sign challenge. I'm not familiar with the
pkcs11 code in ssh yet, but I don't think it opens session twice, once
for public key and then for signing challenge.

> Is this behaviour common in real tokens?
I was told that it is not uncommon, but I also don't have experience
about this. I will ask collegue if he can estimate or provide some

You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.

More information about the openssh-bugs mailing list