On Sun, Jun 19, 2016 at 05:14:54PM +1000, Darren Tucker wrote: > On Sun, Jun 19, 2016 at 4:57 PM, Sebastien Marie <sema...@openbsd.org> wrote: > [...] > > Load key "/home/semarie/.ssh/id_bert": invalid format > > What format is that private key? >
debug1: Next authentication method: publickey debug1: Offering RSA public key: /home/semarie/.ssh/id_bert debug3: send_pubkey_test debug3: send packet: type 50 debug2: we sent a publickey packet, wait for reply debug3: receive packet: type 60 debug1: Server accepts key: pkalg rsa-sha2-512 blen 279 debug2: input_userauth_pk_ok: fp SHA256:GegVKvK6vujy48z9C9JcW9LlGRnO+Am6i2gzfcZ5mXM debug3: sign_and_send_pubkey: RSA SHA256:GegVKvK6vujy48z9C9JcW9LlGRnO+Am6i2gzfcZ5mXM Load key "/home/semarie/.ssh/id_bert": invalid format debug2: we did not send a packet, disable method The key format is a ssh-rsa. If I recall well, when generating it I used -o option for using the the new OpenSSH format (but I am unsure, and I don't find a way to check that from the key itself). Some elements for testing the error condition offline (using ssh-keygen): - not problem for fingerprint: $ ssh-keygen -l -f .ssh/id_bert 2048 SHA256:GegVKvK6vujy48z9C9JcW9LlGRnO+Am6i2gzfcZ5mXM semarie@clyde.local (RSA) - showing public key from private failed without reverting: $ ssh-keygen -y -f .ssh/id_bert -vvv Load key ".ssh/id_bert": invalid format $ obj/ssh-keygen -y -f .ssh/id_bert -vvv Enter passphrase: ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC/MlXFi5Uwk5NzXhRWzAf2lRNmuQHv4xlq91iEF1KV6GaY7OR2wbHGhEZuPL/dAGKxTDOqbCJ8NWoGaHe4m6LR6JdftzNe6+k4SnqMo4mb5um2OTKk3hKF178Oka6eZQOp/sERLuw9oiC38Oyyiue55eoWvpDOLEMP+4dwLHkzvnxlBlsJHBZOu9Mj/gme7Oop5XRqAT+WFbvC6dKpe9xLdsRAyaOaDZY3vlMRyaN19BY6cZRigO7yhKtj2/e7AgoVWQ1+o2m8ZWv2hxTTEglIyhu9y81JzV8V1MJ+myE8bltiMnzywjZdmLhBHXEyBe8FFY9WP/qdZGXQiJZQT9Sf > Sounds like we should revert that change until we figure out what's going on. > I am OK for reverting for now. -- Sebastien Marie