Re: [PATCH] Enabling ECDSA in PKCS#11 support for ssh-agent

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 



On Mon, Sep 28, 2015 at 1:17 AM, Mathias Brossard <mathias@xxxxxxxxxxxx>
wrote:

> I have made a patch for enabling the use of ECDSA keys in the PKCS#11
> support of ssh-agent which will be of interest to other users.
>
> I have tested it with P-256 keys. P-384 and P-521 should work
> out-of-the box. The code is ready for non-FIPS curves (named or
> explicit), but OpenSSH currently limits ECDSA to those 3 curves.
>

I've now been able to test the patch with 2 different smart-cards with
P-256 and a software token with P-256, P-384 and P-521.


> I added this patch and text as
> https://bugzilla.mindrot.org/show_bug.cgi?id=2474
>

The patch has been updated in the ticket with two bugs fixed.

Sincerely,
-- 
Mathias Brossard
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev



[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux