| 4 Dec 2023 |
 Lily Foster | or am i misunderstanding what you're saying | 15:03:24 |
 Ilan Joselevich (Kranzes) | Yeah | 15:03:28 |
| Ilan Joselevich (Kranzes) | If you can help figure this out | 15:03:35 |
| Ilan Joselevich (Kranzes) |
replacing ssh with Homebrew's will break integrations with keychain etc, so that's why I'm not doing it.
| 15:04:21 |
| Ilan Joselevich (Kranzes) | replacing it completely can have some problems with launchctl and keychain | 15:04:44 |
| Ilan Joselevich (Kranzes) | Oh someone says that this entire problem was fixed in MacOS Venture | 15:06:05 |
| Ilan Joselevich (Kranzes) | * Oh someone says that this entire problem was fixed in MacOS Ventura | 15:06:07 |
| Lily Foster | looks like support would need to be added to nix-darwin, yeah: https://github.com/LnL7/nix-darwin/issues/627 | 15:06:15 |
| Ilan Joselevich (Kranzes) | Do you know what version we're running on? | 15:06:16 |
| Lily Foster | lily@darwin03> sw_vers ~
ProductName: macOS
ProductVersion: 13.6.1
BuildVersion: 22G313
``
| 15:06:56 |
| Lily Foster | * lily@darwin03> sw_vers
ProductName: macOS
ProductVersion: 13.6.1
BuildVersion: 22G313
| 15:07:06 |
| Ilan Joselevich (Kranzes) | That's ventura | 15:07:29 |
| Ilan Joselevich (Kranzes) | hmmm | 15:07:32 |
| Ilan Joselevich (Kranzes) | Well you got access now the the machine, can you check supported keys and such | 15:07:59 |
| Ilan Joselevich (Kranzes) | I have no way of fixing this myself without access | 15:08:08 |
| Ilan Joselevich (Kranzes) | 
Download image.png | 15:10:05 |
| Ilan Joselevich (Kranzes) | Ok nvm | 15:10:06 |
| Ilan Joselevich (Kranzes) | 
Download image.png | 15:12:12 |
| Ilan Joselevich (Kranzes) | durrr | 15:12:13 |
| Lily Foster | In reply to @kranzes:matrix.org
sent an image. "fixed" | 15:12:28 |
| Ilan Joselevich (Kranzes) | "Fixed" | 15:12:35 |
| Ilan Joselevich (Kranzes) | lol | 15:12:48 |
| Lily Foster | so yeah i guess nix-darwin is gonna need support for running our openssh if we really wanted to support -sk keys. but the more i read, the more that sounds non-trivial..... | 15:13:42 |
| Ilan Joselevich (Kranzes) | can't find libsk-libfido2.dylib in nixpkgs | 15:13:58 |
| Lily Foster | does it not just need libfido2.dylib or is the libsk-libfido2 some special shared lib that's only needed on macos? | 15:15:14 |
| Lily Foster | our openssh is built with --with-security-key-builtin=yes and i can confirm that it does use libfido2.dylib | 15:15:37 |
| Lily Foster | or at least references it | 15:15:41 |
| Ilan Joselevich (Kranzes) | 
Download image.png | 15:16:28 |
| Lily Foster | ssh-sk-helper in the darwin openssh package from nixpkgs has /nix/store/16ccmy0kylpjgnplh0rkyx4az3gzy5rj-openssl-3.0.12/lib/libcrypto.3.dylib as LC_LOAD_DYLIB on the mach-o | 15:16:55 |
| Ilan Joselevich (Kranzes) | i tried using nix-locate | 15:17:25 |
