thr3ads.net - openssh bugs - [Bug 589] scard-opensc.c: load only those keys for which there's a private key [Jun 2003]

If this information is useful, please help other people find it:
Share via:

bugzilla-daemon at mindrot.org

2003-Jun-05 09:02 UTC

[Bug 589] scard-opensc.c: load only those keys for which there's a private key

http://bugzilla.mindrot.org/show_bug.cgi?id=589

           Summary: scard-opensc.c: load only those keys for which there's a
                    private key
           Product: Portable OpenSSH
           Version: -current
          Platform: All
        OS/Version: Linux
            Status: NEW
          Severity: enhancement
          Priority: P2
         Component: Smartcard
        AssignedTo: openssh-bugs at mindrot.org
        ReportedBy: larsch at trustcenter.de


sc_get_keys loads the public keys from every certificate stored
on the smartcard. Therefore public keys of CA certificate (or other
certs for which there's no corresponding private key on the smartcard)
are loaded into the ssh-agent. This has (at least) two drawbacks:
a) loading certificates from a smartcard is slow and
b) the useless public keys might confuse the user (which keys of the
   'ssh-add -L' output are actually usable in .ssh/authorized_keys).

Regards,
Nils



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

bugzilla-daemon at mindrot.org

2003-Jun-05 09:04 UTC

head link

[Bug 589] scard-opensc.c: load only those keys for which there's a private key

http://bugzilla.mindrot.org/show_bug.cgi?id=589





------- Additional Comments From larsch at trustcenter.de  2003-06-05 19:04
-------
Created an attachment (id=324)
 --> (http://bugzilla.mindrot.org/attachment.cgi?id=324&action=view)
proposed fix




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

bugzilla-daemon at mindrot.org

2003-Jun-05 09:19 UTC

head link

[Bug 589] scard-opensc.c: load only those keys for which there's a private key

http://bugzilla.mindrot.org/show_bug.cgi?id=589

djm at mindrot.org changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |FIXED



------- Additional Comments From djm at mindrot.org  2003-06-05 19:19 -------
Fix applied - thanks.



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

bugzilla-daemon at mindrot.org

2003-Jun-05 11:10 UTC

head link

[Bug 589] scard-opensc.c: load only those keys for which there's a private key

http://bugzilla.mindrot.org/show_bug.cgi?id=589

larsch at trustcenter.de changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |VERIFIED





------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

Possibly Parallel Threads

Search for more reasonably related threads

openssh bugs - Jun 2003 - [Bug 589] scard-opensc.c: load only those keys for which there's a private key

[Bug 589] scard-opensc.c: load only those keys for which there's a private key

[Bug 589] scard-opensc.c: load only those keys for which there's a private key

[Bug 589] scard-opensc.c: load only those keys for which there's a private key

[Bug 589] scard-opensc.c: load only those keys for which there's a private key

Possibly Parallel Threads