[Bug 3748] "webauthn-sk-ecdsa-sha2-nistp256 at openssh.com" signature type not supported from ssh agent

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Wed Oct 30 17:31:10 AEDT 2024


https://bugzilla.mindrot.org/show_bug.cgi?id=3748

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |djm at mindrot.org

--- Comment #1 from Damien Miller <djm at mindrot.org> ---
Unfortunately the status of webauthn signatures is largely untested.
The basic support is there for signature verification, but nothing in
OpenSSH generates webauthn signatures so some of the other plumbing
might be missing.

It might be this check that is causing your error:
https://github.com/openssh/openssh-portable/blob/88b35cbdc1500efece65cd6a9a20a72cf7e46eaa/authfd.c#L440-L442
 - does removing it help?

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list