[PATCH] Enabling ECDSA in PKCS#11 support for ssh-agent

Simon Josefsson simon at josefsson.org
Thu Oct 8 20:49:43 AEDT 2015


Mathias Brossard <mathias at brossard.org> writes:

> Hi,
>
> I have made a patch for enabling the use of ECDSA keys in the PKCS#11
> support of ssh-agent which will be of interest to other users.

Nice!  What would it take to add support for Ed25519 too?  Do we need to
allocate any new PKCS#11 identifiers?  The Gnuk smartcard supports
Ed25519 but I don't know if it is common to use it with OpenSSH through
PKCS#11 (I would expect it to be used with OpenSSH through GnuPG's
gpg-agent).  At least it might be useful as a test case.

/Simon
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 472 bytes
Desc: not available
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20151008/011a5f2c/attachment.bin>


More information about the openssh-unix-dev mailing list