similar to: [Bug 1773] New: PKCS#11 authentication fails with "xmalloc: zero size" for some certificates.

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 --- Comment #6 from Sergey Ivanov <evasive.gyron at gmail.com> --- Error is exactly as described by original author. ssh -A -I /usr/lib/libeToken.so -p example.net -vvv OpenSSH_7.1p1, OpenSSL 1.0.2d 9 Jul 2015 debug1: Reading configuration data /etc/ssh/ssh_config debug2: ssh_connect: needpriv 0 debug1: Connecting to example.com

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 Sergey Ivanov <evasive.gyron at gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #1851|0 |1 is obsolete| | CC|

Guys, I am not able to get it run. I can not say where is the problem but it seams that the openssh client is not able to get list of rsa key from token. See two logs from pkcs11-spy. one is for "ssh -I" the second is for "pkcs11-tool -O" In the second log there is private_key visible or offered in the first one is not. I use openssh 6.4 version on Linux or Mac. Log from

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 Damien Miller <djm at mindrot.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED Status|REOPENED |RESOLVED --- Comment #10 from Damien Miller <djm at

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 Sergey Ivanov <evasive.gyron at gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|FIXED |--- Status|CLOSED |REOPENED --- Comment #4 from Sergey Ivanov

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 Sergey Ivanov <evasive.gyron at gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Version|5.5p1 |7.1p1 -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 Jakub Jelen <jjelen at redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |jjelen at redhat.com --- Comment #5 from Jakub Jelen <jjelen at redhat.com> --- This is related to the bug

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 Damien Miller <djm at mindrot.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #2713|0 |1 is obsolete| | --- Comment #7 from Damien Miller <djm at mindrot.org> ---

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 --- Comment #8 from Sergey Ivanov <evasive.gyron at gmail.com> --- Provided patch corrects the xmalloc error. Thanks. -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are watching the assignee of the bug.

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 --- Comment #9 from Sergey Ivanov <evasive.gyron at gmail.com> --- Any updates on status of this patch? Will it be included in next release? -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug.

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 Damien Miller <djm at mindrot.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks|1708 |2451 Referenced Bugs: https://bugzilla.mindrot.org/show_bug.cgi?id=1708 [Bug 1708] Bugs intended to be fixed in

https://bugzilla.mindrot.org/show_bug.cgi?id=3635 Bug ID: 3635 Summary: ssh-add -s always asks for PKCS#11 PIN Product: Portable OpenSSH Version: 9.0p1 Hardware: Other OS: Linux Status: NEW Severity: enhancement Priority: P5 Component: ssh-add Assignee: unassigned-bugs at

https://bugzilla.mindrot.org/show_bug.cgi?id=3613 Bug ID: 3613 Summary: Unable to sign using certificates and PKCS#11 Product: Portable OpenSSH Version: 8.9p1 Hardware: Other OS: Linux Status: NEW Severity: enhancement Priority: P5 Component: ssh-keygen Assignee:

does anyone know if any repositories have OpenSC built for EL4 ? I've been struggling with building this myself, trying to get an Aladdin eToken working with OpenSSL so we can use it for client authentication of an SSL session.

https://bugzilla.mindrot.org/show_bug.cgi?id=1736 Summary: OpenSSH doesn't seem to work with my MuscleCard PKCS#11 library Product: Portable OpenSSH Version: 5.4p1 Platform: ix86 OS/Version: Linux Status: NEW Severity: normal Priority: P2 Component: Smartcard AssignedTo:

Hello OpenSSH developers, A week ago I've posted a patch that enables openssh to work with PKCS#11 tokens. I didn't receive any comments regarding the patch or reply to my questions. In current software world, providing a security product that does not support standard interface for external cryptographic hardware makes the product obsolete. Please comment my patch, so I can know

Hi list, I have no idea if Damien Miller had the time to work on that. I have an initial patch to authenticate using PKCS#11 and ECDSA keys. This requires OpenSSL 1.0.2, prior OpenSSL versions do not expose the required interfaces to override the signature function pointer for ECDSA. The only limitation is that the OpenSSL API misses some cleanup function (finish, for instance), hence I have yet

anyone know anything about using openssl 0.9.7b in EL4 w/ pkcs#11 supported smartcard/etokens? I need to figure out how to set this up so a webclient application can use token based certificate with a https connection to the tomcat xmlrpc server with a minimum of fuss. the actual client app is in python but will be using m2Crypto which in turn uses openssl. i CAn find lots on login w/

https://bugzilla.mindrot.org/show_bug.cgi?id=2474 Bug ID: 2474 Summary: Enabling ECDSA in PKCS#11 support for ssh-agent Product: Portable OpenSSH Version: 7.1p1 Hardware: All OS: All Status: NEW Severity: enhancement Priority: P5 Component: ssh-agent Assignee: unassigned-bugs

Hi there, has anybody managed to get the eToken Pro Anywhere work with SSH? I'm using the latest SafeNetAuthentication drivers available for Ubuntu 64bit (8.3) and everything is working just fine except for ssh. I can use the eToken for logging in, openvpn, rdestkop, etc. but it seems ssh does not recognize the device properly. The command "ssh -I /usr/lib/libeToken.so.8 user at