[PATCH] U2F support in OpenSSH

Damien Miller djm at mindrot.org
Fri Feb 27 03:44:00 AEDT 2015


On Thu, 26 Feb 2015, Michael Stapelberg wrote:

> At this point it should be obvious, but let me state that I don?t have
> motivation/time to spend on this right now, given that upstream shows
> 0 interest in this at all :(.

That's not how I recall it. When you approached me last year, I told
you then that I wouldn't have time to properly look at it for months -
I have limited time to work on OpenSSH so I have to chose my priorities
carefully. A new authentication mode for a nascent hardware standard
unfortunately had to take a back seat to a big refactoring that has been
almost-finished for two years.

When you posted your patches to bugzilla, I it took a while for you to
come up with a protocol spec to review which really should have been
starting point before diving in to write code.

Now it's great that the protocol spec is there to look at, but it still
requires more familiarity with the rest of U2F than I have at present.
The code as it stands also AFAIK requires an incompatibly-licensed
helper library. Neither of these problems are insumountable, but they do
make it harder to start.

-d


More information about the openssh-unix-dev mailing list