[SOLVED] KeyError fix

az8 · January 17, 2019, 12:57pm

Having complained here about a CouldNotReadKey bug over a year ago I finally found the time to dive in and figure out what was going wrong.

My server has three keys. rsa , ecdsa and ed25519 . When connecting for the first time you are asked to confirm the identity of the ‘first key’ and ecdsa has precedence over ed25519, which is saved in your ~/.ssh/known_hosts file.

Then when pijul checks your known_hosts file it will find the ecdsa signature and bugs out with only the CouldNotReadKey msg.

My quick fix was to drop my ecdsa, but seeing how this stopped me from using pijul for over a year , something should probably be improved somewhere

flobec · January 17, 2019, 1:50pm

Thanks for the report.

pmeunier · February 23, 2019, 11:20pm

So, you’re not the first one to complain about the lack of support for ECDSA. There is a substantial cost, and possibly future technical debt, to implementing all possible crypto primitives in Thrussh.

What is the advantage of ECDSA over alternatives? Is there a good reason to use it?

Topic		Replies	Views
Request Nest support for ecdsa-sha2-nistp256 ssh keys Site Feedback	2	453	August 22, 2022
What are those keys about? Question	2	414	February 16, 2022
How to make ssh/auth work with pijul Question	7	1835	November 29, 2017
Cannot push to nest Question	20	2528	December 16, 2018
Connection reset by peer (os error 104) Question	11	462	June 6, 2023

[SOLVED] KeyError fix

Related Topics