Feature Request: Support new SK type keys (ecdsa-sk / ed25519-sk) #300
Labels
Projects
Comments
|
Actually, this issue more than enhancement. If ssh-agent have already loaded SK keys, then KeeAgent unable to show list of keys and also unable to unload keys marked with 'remove on lock' flag. |
|
Interesting. I've been playing with yubikeys for a few years, but didn't know that ssh has direct support them. |
dlech
added a commit
to dlech/SshAgentLib
that referenced
this issue
May 24, 2022
This adds partial support for "sk" keys that are associated with a hardware key. We can only read keys but can't use them for signing. Reference: https://api.libssh.org/rfc/PROTOCOL.u2f Issue: dlech/KeeAgent#300
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
With openssh 8.2 new key types (using Fido/U2F hardware devices) are available:
s. https://lists.mindrot.org/pipermail/openssh-unix-announce/2020-February/000138.html
New types are:
"ecdsa-sk"
"ed25519-sk"
It'd be great to support them in keeagent.
The text was updated successfully, but these errors were encountered: