What did I miss when building openssh? cannot generate ecdsa key

Damien Miller djm at mindrot.org
Thu Apr 2 13:30:55 AEDT 2015


Yes, your OpenSSL probably lacks EC support.

You shouldn't see the "Could not load host key" unless there is a Hostkey
line in sshd_config referencing that key.

On Wed, 1 Apr 2015, Michael Felt wrote:

> I am assuming this is a user error (and the bug, if any is in configure not
> telling me how to activate it).
> 
> I regularly see a message:
> Could not load host key: /etc/ssh/ssh_host_ecdsa_key
> 
> And, obviously, I have never made the key before.
> 
> I tried the following:
> ./ssh-keygen -t ecdsa -fssh_host_esdsa_key -N ""
> unknown key type ecdsa
> 
> However, the syntax says it is a known type
> 
> root at x064:[/data/prj/openbsd/openssh/openssh-6.8p1]./ssh-keygen -?
> unknown option -- ?
> usage: ssh-keygen [-q] [-b bits] [-t dsa | ecdsa | ed25519 | rsa | rsa1]
>                   [-N new_passphrase] [-C comment] [-f output_keyfile]
> ...
> 
> What did I miss?
> 
> regards,
> Michael Felt
> 
> p.s. make check|tests - they all passed.
> 
> p.p.s. - this is built against an ancient openssl, so maybe the problem is
> there.
> OpenSSH_6.8p1, OpenSSL 0.9.8k 25 Mar 2009
> 
> And, yes - I know I newer openssl is much better, but this is taking a
> system where it is at - i.e., I assume openssl is not yet upgraded. will be
> trying against openssl-1.something tomorrow.
> _______________________________________________
> openssh-unix-dev mailing list
> openssh-unix-dev at mindrot.org
> https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
> 


More information about the openssh-unix-dev mailing list