[arch-general] gpg-agent: SSH_AGENT_FAILURE when adding an ECDSA key
According to what I've found gpg-agent's ssh-agent should, as of version 2.0.21, support ECDSA keys, but still I can't add such a key: ~~~~ % ssh-add ~/.ssh/id_ecdsa_gitlab Enter passphrase for /home/magnus/.ssh/id_ecdsa_gitlab: SSH_AGENT_FAILURE Could not add identity: /home/magnus/.ssh/id_ecdsa_gitlab ~~~~ I've verified that gpg-agent is properly set up by adding an RSA key: ~~~~ % ssh-add .ssh/id_rsa_test Enter passphrase for .ssh/id_rsa_test: Identity added: .ssh/id_rsa_test (.ssh/id_rsa_test) % ssh-add -l 2048 5a:5f:b5:ca:0c:d5:ba:dc:1d:4f:d8:13:5a:91:4e:69 .ssh/id_rsa_test (RSA) ~~~~ Am I doing something wrong here, or should I just use ssh-agent from OpenSSH instead (or stop using ECDSA keys)? /M -- Magnus Therning OpenPGP: 0xAB4DFBA4 email: magnus@therning.org jabber: magnus@therning.org twitter: magthe http://therning.org/magnus In a hierarchy, every employee tends to rise to his level of incompetence. -- The Peter Principle
On Thu, Jun 12, 2014 at 11:34 PM, Magnus Therning <magnus@therning.org> wrote:
According to what I've found gpg-agent's ssh-agent should, as of version 2.0.21, support ECDSA keys, but still I can't add such a key:
Am I doing something wrong here, or should I just use ssh-agent from OpenSSH instead (or stop using ECDSA keys)?
ECDSA SSH keys in gpg-agent broke with libgcrypt 1.6+. You can get them working again by building gnupg from git. Regards, ~Celti
Hi On Fri, Jun 13, 2014 at 12:03 AM, Patrick Burroughs (Celti) <celticmadman@gmail.com> wrote:
On Thu, Jun 12, 2014 at 11:34 PM, Magnus Therning <magnus@therning.org> wrote:
According to what I've found gpg-agent's ssh-agent should, as of version 2.0.21, support ECDSA keys, but still I can't add such a key:
Am I doing something wrong here, or should I just use ssh-agent from OpenSSH instead (or stop using ECDSA keys)?
ECDSA SSH keys in gpg-agent broke with libgcrypt 1.6+. You can get them working again by building gnupg from git.
I hit the same issue. Do you know what gnupg upstream commit fixes this problem?
On Thu, Jun 19, 2014 at 3:43 PM, Anatol Pomozov <anatol.pomozov@gmail.com> wrote:
ECDSA SSH keys in gpg-agent broke with libgcrypt 1.6+. You can get them working again by building gnupg from git.
I hit the same issue. Do you know what gnupg upstream commit fixes this problem?
I'm afraid I don't, sorry; I haven't had the time or inclination to go digging for it, I just know that it worked when I tested it with the git version a few weeks ago after running into the issue myself. Regards, ~Celti
participants (3)
-
Anatol Pomozov
-
Magnus Therning
-
Patrick Burroughs (Celti)