Corinna Vinschen
Corinna Vinschen
> I have merged most of this, but added a couple of comments to the remaining part Hi Damien @djmdjm, I changed the pending two patches per your and @martelletto's...
> I think that just leaves the `Defer FIDO token PIN prompt when signing the credentials` change to go; please see my last comments on that. Hi Damien, thanks for...
Hmm, what are those failures on Ubuntu 22.04? I can't see the error log, unfortunately. I built and tested this on Fedora 36, so I'm pretty sure it works on...
> I've pushed a slightly-tweaked version of that last commit as [f964809](https://github.com/openssh/openssh-portable/commit/f96480906893ed93665df8cdf9065865c51c1475), so I think that is everything. Please take a look and close the PR if you're happy Hi...
> > I can't see the error log, unfortunately. > > There's nothing sensitive in the logs, but I don't know if it's possible to make the logs world readable....
One of my patches from the start of this endeavor got lost on the way, apparently. I pushed it again and the commit message tries to explain the problem it...
> Won't [c842d35](https://github.com/openssh/openssh-portable/commit/c842d3568c811bd5cb29404606c2456f1a680542) cause ssh(1) to prompt for the PIN on tokens capable of built-in UV, like the Yubikey Bio? That was the reason the flag was dropped. I don't...
> Won't [c842d35](https://github.com/openssh/openssh-portable/commit/c842d3568c811bd5cb29404606c2456f1a680542) cause ssh(1) to prompt for the PIN on tokens capable of built-in UV, like the Yubikey Bio? That was the reason the flag was dropped. Actually, would...
> > I don't have such a device for testing. I only have a device called "Yubico.com Yubikey 4/5 OTP+U2F+CCID" in lsusb output. > > If you would like one,...
I force-pushed a less intrusive version of the previous patch. This patch now only drops the SSH_SK_USER_VERIFICATION_REQD flag if the device used for enrolling the key is WinHello. Edit: Sorry!...