[Bug 3748] "webauthn-sk-ecdsa-sha2-nistp256 at openssh.com" signature type not supported from ssh agent

[bugzilla-daemon at mindrot.org]

https://bugzilla.mindrot.org/show_bug.cgi?id=3748

--- Comment #13 from Jó Ágila Bitsch <jgilab at gmail.com> ---
I added regression tests for the webauthn signature for the use cases:

* create sshsig using webauthn-dummy-agent and verify
* sign a certificate via webauthn-dummy-agent and verify
* connect to a server with a key in webauthn-dummy-agent
* connect to a server with a cert signed by webauthn-dummy-agent

Right now, the webauthn dummy agent is a copy of the ssh-agent.c code
where I extend the data to be signed and reformat the resulting
signature, if the key is a sk-ecdsa key.

The reason for this is to ensure that the changes to already existing
code are minimal and localized. However, I'm very open to guidance, if
you think another way is better.

The code is over on github:
https://github.com/openssh/openssh-portable/pull/571

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.