[Bug 3429] Confusing error message from `ssh-keygen -Y sign` when private key is not in agent

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Mon May 9 13:13:00 AEST 2022


Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
             Blocks|                            |3418

--- Comment #4 from Damien Miller <djm at mindrot.org> ---
These have all be committed and should be in OpenSSH 9.1, due in a few

It should be safe to use -U even for older versions. It won't require
the agent (as openssh-9.1 will) but it won't cause an error.

Thanks again for the report and suggestions.

commit 0086a286ea6bbd11ca9b664ac3bb12b27443d6eb (HEAD -> master,
origin/master, origin/HEAD)
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Mon May 9 03:09:53 2022 +0000

    upstream: Allow existing -U (use agent) flag to work with "-Y sign"

    operations, where it will be interpreted to require that the
private keys is
    hosted in an agent; bz3429, suggested by Adam Szkoda; ok dtucker@

    OpenBSD-Commit-ID: a7bc69873b99c32c42c7628ed9ea91565ba08c2f

commit cb010744cc98f651b1029bb09efa986eb54e4ccf
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Sun May 8 22:58:35 2022 +0000

    upstream: improve error message when 'ssh-keygen -Y sign' is unable

    load a private key; bz3429, reported by Adam Szkoda ok dtucker@

    OpenBSD-Commit-ID: bb57b285e67bea536ef81b1055467be2fc380e74

Referenced Bugs:

[Bug 3418] tracking bug for openssh-9.1
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.

More information about the openssh-bugs mailing list