[SOLVED] KeyError fix

az8 · January 17, 2019, 12:57pm

Having complained here about a CouldNotReadKey bug over a year ago I finally found the time to dive in and figure out what was going wrong.

My server has three keys. rsa , ecdsa and ed25519 . When connecting for the first time you are asked to confirm the identity of the ‘first key’ and ecdsa has precedence over ed25519, which is saved in your ~/.ssh/known_hosts file.

Then when pijul checks your known_hosts file it will find the ecdsa signature and bugs out with only the CouldNotReadKey msg.

My quick fix was to drop my ecdsa, but seeing how this stopped me from using pijul for over a year , something should probably be improved somewhere

flobec · January 17, 2019, 1:50pm

Thanks for the report.

pmeunier · February 23, 2019, 11:20pm

So, you’re not the first one to complain about the lack of support for ECDSA. There is a substantial cost, and possibly future technical debt, to implementing all possible crypto primitives in Thrussh.

What is the advantage of ECDSA over alternatives? Is there a good reason to use it?

Topic		Replies	Views
Request Nest support for ecdsa-sha2-nistp256 ssh keys Site Feedback	2	521	August 22, 2022
Problem Cloning via SSH Question	2	753	May 12, 2019
What are those keys about? Question	2	446	February 16, 2022
Using pijul on a private server Question	8	1431	September 26, 2017
Pijul fails to compile in Windows, error in ssh_auth_attempts.rs	0	574	June 29, 2019

[SOLVED] KeyError fix

Related topics