Displaying 2 results from an estimated 2 matches for "register_pkcs11_provider".
2020 Feb 22
3
Re-adding PKCS#11 key in ssh-agent produces "agent refused operation" error.
...mode) as an SSH key.
2. Add that key to ssh-agent.
3. Remove that key from ssh-agent.
4. Add that key to ssh-agent.
Expected results:
Key is successfully added to ssh-agent.
Actual results:
ssh-add fails with "agent refused operation".
I've looked at the code, and it appears that register_pkcs11_provider
(https://github.com/openssh/openssh-portable/blob/master/ssh-pkcs11.c#L1470)
fails if a PKCS#11 provider already exists. However, PKCS#11 providers
are never unloaded. There is a pkcs11_del_provider but it is never called.
That means that after deleting a key, there is no way to re-add it. Also, s...
2020 Feb 24
4
Re-adding PKCS#11 key in ssh-agent produces "agent refused operation" error.
...gent.
> >
> > Expected results:
> >
> > Key is successfully added to ssh-agent.
> >
> > Actual results:
> >
> > ssh-add fails with "agent refused operation".
> >
> > I've looked at the code, and it appears that
> > register_pkcs11_provider
> > (
> > https://github.com/openssh/openssh-portable/blob/master/ssh-pkcs11.c#L1470
> > )
> > fails if a PKCS#11 provider already exists. However, PKCS#11
> > providers
> > are never unloaded. There is a pkcs11_del_provider but it is never
> > called.
>...