OpenSSH 10.1p1 and ed25519 keys hosted on PKCS#11 tokens
Damien Miller
djm at mindrot.org
Thu Oct 9 08:39:18 AEDT 2025
On Wed, 8 Oct 2025, Joost van Dijk wrote:
> Apologies if I used the wrong version - I was convinced I used 10.1 installed using HomeBrew.
> But I also compiled different versions from source, and now I cannot reproduce so I must have screwed up at some point.
>
> But actually, I was struggling with some other issue involving the PIN that seems to have changed between 10.0 and 10.1.
Try this patch. You'll need to re-run configure (or at least
config.status) and make
diff --git a/Makefile.in b/Makefile.in
index 19a9e4dcf..ea38671f7 100644
--- a/Makefile.in
+++ b/Makefile.in
@@ -157,7 +157,7 @@ SSHADD_OBJS= ssh-add.o $(P11OBJS) $(SKOBJS)
SSHAGENT_OBJS= ssh-agent.o $(P11OBJS) $(SKOBJS)
-SSHKEYGEN_OBJS= ssh-keygen.o sshsig.o $(P11OBJS) $(SKOBJS)
+SSHKEYGEN_OBJS= ssh-keygen.o sshsig.o ssh-pkcs11.o $(SKOBJS)
SSHKEYSIGN_OBJS=ssh-keysign.o readconf.o uidswap.o $(P11OBJS) $(SKOBJS)
More information about the openssh-unix-dev
mailing list