Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

#13 - Update SSH_SK_VERSION_MAJOR from 7 to 9 #16

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

#13 - Update SSH_SK_VERSION_MAJOR from 7 to 9 #16

wants to merge 3 commits into from

Conversation

madaster97
Copy link

@madaster97 madaster97 commented Aug 9, 2022
edited

Addressing issue 13, I copied this version of sk-api.h and changed a couple variables to match the names within (from message to data).

After that, I was able to create a key against Openssh_9.0p1, OpenSSL 1.1.1q Jul 5 2022 using my yubikey + windows hello.

By bumping from 7 to 9, we'll notably be missing support for 8 and a. See mentions of SSH_SK_VERSION_MAJOR in the OpenSSH release notes, and these commits that edit the sk-api.h file.

@tavrez
Copy link
Owner

tavrez commented Aug 9, 2022 via email

@tavrez tavrez linked an issue Aug 9, 2022 that may be closed by this pull request
OpenSSH 8.9 breaks version 2.0.0 #13
Open
@ivan
Copy link

ivan commented Aug 27, 2022

This is also working for me. I tested with OpenSSH_9.0p1 in cygwin (64-bit).

@ivan
Copy link

ivan commented Dec 27, 2022

With OpenSSH_9.1p1, this is broken again:

Provider "/usr/lib/winhello.dll" implements unsupported version 0x00090000 (supported: 0x000a0000)
sign_and_send_pubkey: signing failed for ED25519-SK "/cygdrive/c/home/.ssh/id_ed25519_sk": invalid format

but it can be fixed with:

diff --git a/src/sk-api.h b/src/sk-api.h
index 2445438..ca2015e 100644
--- a/src/sk-api.h
+++ b/src/sk-api.h
@@ -77,7 +77,7 @@ struct sk_option {
    uint8_t required;
 };

-#define SSH_SK_VERSION_MAJOR       0x00090000 /* current API version */
+#define SSH_SK_VERSION_MAJOR       0x000a0000 /* current API version */
 #define SSH_SK_VERSION_MAJOR_MASK  0xffff0000

 /* Return the version of the middleware API */

@madaster97
Copy link
Author

@tavrez , how do you think we should handle these frequent version bumps in OpenSSH-portable? Should we tag a release for major version 9, and then make a new one for major version a?

@ivan , it looks like this commit did more than just update the version number, and may have introduced other changes we need to make. Did you take a look at/test that?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

OpenSSH 8.9 breaks version 2.0.0
3 participants
@madaster97 @tavrez @ivan