gnome-keyring doesn't support ecdsa or ed25519 keys
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GNOME Keyring |
Fix Released
|
Wishlist
|
|||
gnome-keyring (Debian) |
Fix Released
|
Unknown
|
|||
gnome-keyring (Ubuntu) |
Confirmed
|
Low
|
Unassigned |
Bug Description
Binary package hint: gnome-keyring
I'm not sure I have described it correctly in the summary, but this is what happens:
I run ssh-add in a new terminal and enter my passphrase, which is the same for my DSA and ECDSA key: the DSA identity is added, but the ECDSA gets the "Error reading response length from authentication socket. Could not add identity: /home/claudio/
I run ssh-agent, copy and paste the output in the terminal and re-run ssh-add. Both identities are correctly added:
=======
claudio@Chuck:~$ ssh-add
Enter passphrase for /home/claudio/
Identity added: /home/claudio/
Error reading response length from authentication socket.
Could not add identity: /home/claudio/
claudio@Chuck:~$ ssh-agent
SSH_AUTH_
SSH_AGENT_PID=3917; export SSH_AGENT_PID;
echo Agent pid 3917;
claudio@Chuck:~$ SSH_AUTH_
claudio@Chuck:~$ SSH_AGENT_PID=3917; export SSH_AGENT_PID;
claudio@Chuck:~$ echo Agent pid 3917;
Agent pid 3917
claudio@Chuck:~$ ssh-add
Enter passphrase for /home/claudio/
Identity added: /home/claudio/
Identity added: /home/claudio/
=======
Here is the content of my ~/.ssh/
claudio@Chuck:~$ ls -l .ssh
total 32
-rw-r--r-- 1 claudio claudio 726 2011-04-15 23:34 config
-r-------- 1 claudio claudio 751 2011-04-05 10:35 id_dsa
-rw-r--r-- 1 claudio claudio 603 2011-04-05 10:34 id_dsa.pub
-r-------- 1 claudio claudio 444 2011-04-05 10:29 id_ecdsa
-rw-r--r-- 1 claudio claudio 267 2011-04-05 10:23 id_ecdsa.pub
-rw------- 1 claudio claudio 6402 2011-04-19 18:04 known_hosts
-rw-r--r-- 1 claudio claudio 2760 2011-04-06 17:05 known_hosts.old
ProblemType: Bug
DistroRelease: Ubuntu 11.04
Package: gnome-keyring 2.92.92.
ProcVersionSign
Uname: Linux 2.6.38-8-generic x86_64
NonfreeKernelMo
Architecture: amd64
Date: Tue Apr 26 16:27:02 2011
ProcEnviron:
LANGUAGE=en_US:en
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: gnome-keyring
UpgradeStatus: Upgraded to natty on 2011-04-03 (23 days ago)
Changed in gnome-keyring: | |
importance: | Unknown → Wishlist |
status: | Unknown → Confirmed |
Changed in gnome-keyring (Ubuntu): | |
importance: | Undecided → Low |
status: | Confirmed → Triaged |
Changed in gnome-keyring (Debian): | |
status: | Unknown → New |
Changed in gnome-keyring (Debian): | |
status: | New → Confirmed |
summary: |
- ssh-add does not handle ECDSA keys until ssh-agent exports are manually - launched + gnome-keyring doesn't support ecdsa or ed25519 keys |
Changed in gnome-keyring: | |
status: | Confirmed → Fix Released |
Changed in gnome-keyring (Debian): | |
status: | Confirmed → Fix Released |
Changed in gnome-keyring (Ubuntu): | |
status: | Triaged → Confirmed |
Don't think it's that simple. The new agent is overriding the gnome authentication agent, and you've now lost any keys that were automagically loaded from the gnome keyring.
This is a very annoying bug, possibly in /usr/lib/ policykit- 1-gnome/ polkit- gnome-authentic ation-agent- 1.
Please can it be fixed soon.