bugzilla-daemon at bugzilla.mindrot.org
2009-Nov-27 13:54 UTC
[Bug 1676] New: Add NSS keys support
https://bugzilla.mindrot.org/show_bug.cgi?id=1676
Summary: Add NSS keys support
Product: Portable OpenSSH
Version: 5.3p1
Platform: Other
OS/Version: Linux
Status: NEW
Severity: normal
Priority: P2
Component: Smartcard
AssignedTo: unassigned-bugs at mindrot.org
ReportedBy: jchadima at redhat.com
The netscape security suite is an implementation of the crypto card
framework. This patch introduces the possibility to use it with
openssh.
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2009-Nov-27 13:55 UTC
[Bug 1676] Add NSS keys support
https://bugzilla.mindrot.org/show_bug.cgi?id=1676 --- Comment #1 from jchadima at redhat.com 2009-11-28 00:55:31 EST --- Created an attachment (id=1734) --> (https://bugzilla.mindrot.org/attachment.cgi?id=1734) patch adding the functionality -- Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2009-Nov-27 22:20 UTC
[Bug 1676] Add NSS keys support
https://bugzilla.mindrot.org/show_bug.cgi?id=1676
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |djm at mindrot.org
--- Comment #2 from Damien Miller <djm at mindrot.org> 2009-11-28 09:20:45
EST ---
NSS seems like a nicer API than using PKCS#11 directly, but it is still
incompatibly licensed. I'd rather see alternate key providers
implemented as standalone agents than patches to OpenSSH, but we might
need to do some plumbing to make this usable (e.g. multiple agent
support).
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2009-Nov-30 07:41 UTC
[Bug 1676] Add NSS keys support
https://bugzilla.mindrot.org/show_bug.cgi?id=1676
Tomas Mraz <t8m at centrum.cz> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |t8m at centrum.cz
--- Comment #3 from Tomas Mraz <t8m at centrum.cz> 2009-11-30 18:41:06 EST
---
Why is it incompatibly licensed? The NSS is tri-licensed - MPL, LGPL,
and GPL licensed. Both LGPL and MPL should not be incompatible with
licenses that apply to OpenSSH code. Of course I'd expect that the NSS
support in OpenSSH would always be compiled in only optionally.
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2010-Feb-15 13:16 UTC
[Bug 1676] Add NSS keys support
https://bugzilla.mindrot.org/show_bug.cgi?id=1676 --- Comment #4 from jchadima at redhat.com 2010-02-16 00:16:25 EST --- Created an attachment (id=1793) --> (https://bugzilla.mindrot.org/attachment.cgi?id=1793) new version of the patch This patch add library libplc4 to ld to avoid implicit dso linking -- Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching the assignee of the bug. You are watching someone on the CC list of the bug.
Reasonably Related Threads
- [Bug 1641] New: Add SELinux roles
- [Bug 1643] New: Set FD_CLOEXEC on client socket
- [Bug 1701] New: FIPS-140-2 requires call to RAND_cleanup() before the program using RAND exits
- [Bug 1671] New: Openssh does not run with the openssl 1.0.0-beta4
- [Bug 1663] New: Allow to use agent for distribution of public keys.