[Bug 1371] Add PKCS#11 (Smartcards) support into OpenSSH
bugzilla-daemon at bugzilla.mindrot.org
bugzilla-daemon at bugzilla.mindrot.org
Sun Jun 29 15:06:05 EST 2008
https://bugzilla.mindrot.org/show_bug.cgi?id=1371
--- Comment #49 from Alon Bar-Lev <alon.barlev at gmail.com> 2008-06-29 15:06:00 ---
Hello,
I expected that part of the work of multiple agents and formalizing the
protocol is reviewing the protocol in order to make it suitable for
external implementations, not just documenting what you have, as this
was not written in order to be external protocol. Take for example the
tty issue, until agent only solution may be used in console only mode
properly, there will be a need to patch the tools anyway.
For agent to work properly with ssh, only the following command may be
used (ssh2):
SSH2_AGENTC_REQUEST_IDENTITIES (add tty field)
SSH2_AGENTC_SIGN_REQUEST (add tty field)
SSH2_AGENTC_REMOVE_IDENTITY
SSH2_AGENTC_REMOVE_ALL_IDENTITIES
SSH_AGENTC_GET_PROPERTY (new)
SSH_AGENTC_SET_PROPERTY (new)
All the other (add, delete) are implementation specific. All
implementation specific can go into the get/set property messages. If
you do this, then people may write external agents as there will be no
dependencies between the client implementation and new agent features.
Please review the implementation at attachment#1495 and see the
messages I use:
SSH_AGENTC_PKCS11_ADD_PROVIDER
SSH_AGENTC_PKCS11_ADD_ID
SSH_AGENTC_PKCS11_REMOVE_ID
The remove id may be shared, but the format of the other two is
different than current messages, please tell me where I am wrong.
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
More information about the openssh-bugs
mailing list