[Bug 2187] New: ssh-add unnecessarily prompts for PKCS#11 pin when removing key

Wed Dec 18 09:21:35 EST 2013

https://bugzilla.mindrot.org/show_bug.cgi?id=2187

            Bug ID: 2187
           Summary: ssh-add unnecessarily prompts for PKCS#11 pin when
                    removing key
           Product: Portable OpenSSH
           Version: 6.3p1
          Hardware: All
                OS: All
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: ssh-add
          Assignee: unassigned-bugs at mindrot.org
          Reporter: jay at slushpupie.com

Created attachment 2392
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2392&action=edit
openssh-6.3p1-ssh-add.patch

Although PROTOCOL.agent specifies that when performing
SSH_AGENTC_REMOVE_SMARTCARD_KEY the pin is used to determine which
smartcards to remove, in implementation the pin is never used.  I think
this is due to the fact the pin is never stored, so there is nothing to
compare to.  Although the pin is never used during the remove
operation, ssh-add prompts for the pin, which is frustrating to some
users

The attached patch causes ssh-add to not prompt for a pin while
removing a PKCS#11 library.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.