[openssh 0005173]: Bug in sshd when using ed25519 keys

Mantis Bug Tracker via bug-notifications bug-notifications at lists.opencsw.org
Wed Jun 11 10:58:55 CEST 2014


A NOTE has been added to this issue. 
====================================================================== 
https://www.opencsw.org/mantis/view.php?id=5173 
====================================================================== 
Reported By:                schwindt
Assigned To:                yann
====================================================================== 
Project:                    openssh
Issue ID:                   5173
Category:                   other
Reproducibility:            always
Severity:                   major
Priority:                   normal
Status:                     feedback
====================================================================== 
Date Submitted:             2014-05-22 15:11 CEST
Last Modified:              2014-06-11 10:58 CEST
====================================================================== 
Summary:                    Bug in sshd when using ed25519 keys
Description: 
Remember me reporting ed25519 keys not being generated ? 
If only I had kept my mouth shut .)

The keys get generated but they can't be used.
On setting up a fresh machine, which consequently did not have the rsa host
key,
I was not able to connect to a machine having an ed25519 hostkey.

Removing the key from the server and knownhosts, modifying
/opt/csw/sbin/sshd.smf_wrapper not to generate keys,
restarting sshd -> everything changes back to normal.

This happens for solaris clients as well as e.g. archlinux clients.

====================================================================== 

---------------------------------------------------------------------- 
 (0010859) schwindt (developer) - 2014-06-11 10:58
 https://www.opencsw.org/mantis/view.php?id=5173#c10859 
---------------------------------------------------------------------- 
I will try to do that later on this day.

Did you remove the original rsa-pubkey of the target server from your
.ssh/known_hosts ?  As long as this old key is in place, no new pubkey is
requested and everything will work.



More information about the bug-notifications mailing list