ssh-add -l lists the fingerprint of ~/.ssh/id_rsa even if it's not loaded
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GNOME Keyring |
Confirmed
|
Medium
|
|||
gnome-keyring (Ubuntu) |
Triaged
|
Low
|
Ubuntu Desktop Bugs |
Bug Description
Binary package hint: gnome-keyring
Hardy 8.04.1
gnome-keyring-
openssh-
When gnome-keyring is used as the ssh-agent, "ssh-add -l" should only list keys which are actually loaded. Instead, it always lists the fingerprint of ~/.ssh/id_rsa, in addition to any loaded keys. If ~/.ssh/id_rsa is loaded, it is listed twice.
After logging in with no keys loaded:
[johnc@loki ~/]$ ssh-add -l
1024 9c:c3:8d:
Adding the key:
[johnc@loki ~]$ ssh-add
Enter passphrase for /home/johnc/
Identity added: /home/johnc/
[johnc@loki ~/]$ ssh-add -l
1024 9c:c3:8d:
1024 9c:c3:8d:
Removing all keys:
[johnc@loki ~]$ ssh-add -D
All identities removed.
[johnc@loki ~/]$ ssh-add -l
1024 9c:c3:8d:
Moving ~/.ssh/id_rsa away:
[johnc@loki ~]$ mv .ssh/id_rsa .ssh/xxx
[johnc@loki ~]$ ssh-add -l
The agent has no identities.
OpenSSH's ssh-agent correctly lists only those keys which are actually loaded:
[johnc@loki ~]$ bash
[johnc@loki ~]$ eval `ssh-agent`
Agent pid 24398
[johnc@loki ~]$ ssh-add -l
The agent has no identities.
[johnc@loki ~]$ ssh-add
Enter passphrase for /home/johnc/
Identity added: /home/johnc/
[johnc@loki ~]$ ssh-add -l
1024 9c:c3:8d:
[johnc@loki ~]$ ssh-add -D
All identities removed.
[johnc@loki ~]$ ssh-add -l
The agent has no identities.
Changed in gnome-keyring: | |
status: | Unknown → New |
Changed in gnome-keyring: | |
status: | New → Confirmed |
Changed in gnome-keyring: | |
importance: | Unknown → Medium |
thank you for your bug report, that's an upstream behaviour and should be sent on bugzilla.gnome.org