[Bug 3195] New: ssh-keygen unable to convert ED25519 public keys

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Sun Jul 19 03:54:21 AEST 2020


https://bugzilla.mindrot.org/show_bug.cgi?id=3195

            Bug ID: 3195
           Summary: ssh-keygen unable to convert ED25519 public keys
           Product: Portable OpenSSH
           Version: 8.2p1
          Hardware: amd64
                OS: Linux
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: ssh-keygen
          Assignee: unassigned-bugs at mindrot.org
          Reporter: marcoshalano at gmail.com

I generate a ED25519 key using OpenSSL:
openssl genpkey -algorithm ED25519 -out key_ed25519.pem
After that I extracted the public key:
openssl pkey -in key_ed25519.pem -pubout -out public_ed25519.pem
And then I try to get the SSH public key to put on authorized_keys:
ssh-keygen -i -m PKCS8 -f public_ed25519.pem
The error was:
do_convert_from_pkcs8: unsupported pubkey type 1087
So I think ssh-keygen can't convert a ED25519 public key. The expected
result was something like:
ssh-ed25519 AAAA...
I found a tool called sshpk (https://www.npmjs.com/package/sshpk) which
converts correctly:
sshpk-conv public_ed25519.pem -t ssh
The output is what I should expect.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list