* FIDO/U2F middleware libraries
@ 2021-11-14 15:53 Achim Gratz
2021-11-14 17:05 ` Achim Gratz
0 siblings, 1 reply; 2+ messages in thread
From: Achim Gratz @ 2021-11-14 15:53 UTC (permalink / raw)
To: cygwin-apps
So I've got myself some FIDO2 tokens to eventually use with OpenSSH and
that works. However, you need to be administrator to access the HID
interface on Win10 past 1909 or so or else go through their
"WindowsHello" API. I've found two middleware libraries that almost
build out of the box on Cygwin:
https://github.com/tavrez/openssh-sk-winhello
https://github.com/mgbowen/windows-fido-bridge
They both work on 64bit only (the first one builds on 32bit, but
crashes, the second one doesn'tr even build). If anybody wants to have
a look, here are the package sources on playground:
https://cygwin.com/git-cygwin-packages?p=git/cygwin-packages/playground.git;a=shortlog;h=refs/heads/libwinhello
https://cygwin.com/git-cygwin-packages?p=git/cygwin-packages/playground.git;a=shortlog;h=refs/heads/libwindowsfidobridge
The build artefacts are on AppVeyor.
There is a newer version of libfido (which OpenSSH uses) that should be
able to use the WindowsHello. Corinna has patched it up to the point
were it actually builds and OpenSSH tries to use it, but fails. I have
no idea yet if the fail is triggered by something OpenSSH does or
seomthing in libfido not lining up with WindowsHello. I have to get up
to speed on how to use the fido-tools provided with libfido in order to
see where things go sideways.
Regards,
Achim.
--
+<[Q+ Matrix-12 WAVE#46+305 Neuron microQkb Andromeda XTk Blofeld]>+
SD adaptation for Waldorf Blofeld V1.15B11:
http://Synth.Stromeko.net/Downloads.html#WaldorfSDada
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: FIDO/U2F middleware libraries
2021-11-14 15:53 FIDO/U2F middleware libraries Achim Gratz
@ 2021-11-14 17:05 ` Achim Gratz
0 siblings, 0 replies; 2+ messages in thread
From: Achim Gratz @ 2021-11-14 17:05 UTC (permalink / raw)
To: cygwin-apps
Achim Gratz writes:
> There is a newer version of libfido (which OpenSSH uses) that should be
> able to use the WindowsHello. Corinna has patched it up to the point
> were it actually builds and OpenSSH tries to use it, but fails. I have
> no idea yet if the fail is triggered by something OpenSSH does or
> seomthing in libfido not lining up with WindowsHello. I have to get up
> to speed on how to use the fido-tools provided with libfido in order to
> see where things go sideways.
Now also available on playground (build artifacts on AppVeyor):
https://cygwin.com/git-cygwin-packages?p=git/cygwin-packages/playground.git;a=shortlog;h=refs/heads/libfido2
Regards,
Achim.
--
+<[Q+ Matrix-12 WAVE#46+305 Neuron microQkb Andromeda XTk Blofeld]>+
Wavetables for the Waldorf Blofeld:
http://Synth.Stromeko.net/Downloads.html#BlofeldUserWavetables
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2021-11-14 17:06 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-11-14 15:53 FIDO/U2F middleware libraries Achim Gratz
2021-11-14 17:05 ` Achim Gratz
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).