[Bug 3299] New: Fails to verify ED25519 server key
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Fri Apr 16 00:11:39 AEST 2021
https://bugzilla.mindrot.org/show_bug.cgi?id=3299
Bug ID: 3299
Summary: Fails to verify ED25519 server key
Product: Portable OpenSSH
Version: 8.5p1
Hardware: amd64
OS: Linux
Status: NEW
Severity: normal
Priority: P5
Component: ssh
Assignee: unassigned-bugs at mindrot.org
Reporter: bvoigt at hugendubel-digital.de
It suddenly fails to connect to my server:
debug1: Host '[gerrit01.buchhandlung.de]:29418' is known and matches
the ED25519 host key.
debug1: Found key in /home/bvoigt/.ssh/known_hosts:1
debug2: ssh_ed25519_verify: crypto_sign_ed25519_open failed: -1
ssh_dispatch_run_fatal: Connection to 10.10.17.160 port 29418:
incorrect signature
I have absolutely no idea what causes this misbehaviour, and Google
does not know about it seemingly.
I have tried the following already:
- regenerated SSH key pair and reupload public key to the gerrit server
- delete ~/.ssh/known_hosts
- rebooted the client machine several times
After deleting ~/.ssh/known_hosts the debug output looks like this:
The authenticity of host '[gerrit01.buchhandlung.de]:29418
([10.10.17.160]:29418)' can't be established.
ED25519 key fingerprint is
SHA256:KA/Q41ad8fdDtDJFQIhkLzYgIoKMluW1JkFs6dOrJ/o.
This key is not known by any other names
Are you sure you want to continue connecting (yes/no/[fingerprint])?
yes
Warning: Permanently added '[gerrit01.buchhandlung.de]:29418' (ED25519)
to the list of known hosts.
debug2: ssh_ed25519_verify: crypto_sign_ed25519_open failed: -1
ssh_dispatch_run_fatal: Connection to 10.10.17.160 port 29418:
incorrect signature
--
You are receiving this mail because:
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list