-
-
Notifications
You must be signed in to change notification settings - Fork 39
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
My key generated with default settings is incompatible with this extension #244
Comments
Now with that error, this is probably the same issue as in #162 which points to mscdex/ssh2-streams#164. Can you list the command you use to produce an incompatible key? I've tried the following:
All these generated keys worked for me. For good measure I also tried The only key that I could find (not generate though) that had this issue is from mscdex/ssh2-streams#163. I'll see if there's an easy quick fix. I might have to end up forking |
The incompatible key was created a few months ago when I converted this computer to Linux (it ran Windows for a while out of necessity) by running I tried creating a new key this afternoon in the same manner, only providing a new filename of So it seems I can only reproduce the issue with my main key that is several months old and that I use for virtually everything (SSH shells, SFTP, Git, etc.), and that a freshly created key doesn't exhibit this problem. Yet that main key works perfectly fine on all of those other things; this extension is the only thing it doesn't work with. So I'm not sure what's wrong here. Obviously I can't give you that key right now, but I probably ought to upgrade it to 4,096 bits and maybe a passphrase anyway, so if I have some time soon I may replace the key everywhere I have it and if I can confirm with certainty that it's no longer an authorized key anywhere, I may be able to give it to you then so you can test with it. I don't have a lot of places to find it; I just have to triple-check that I haven't missed a server. |
In v1.20.0 of the extension, I switched from the official |
I can confirm that it is indeed fixed and my main key is now working with this extension. Thanks for looking into it. :) |
Hi,
Earlier this afternoon I posted a negative review on the Marketplace that the extension only seemed to work with *.pem keys. However, after some debugging with a friend who's nerdier than me I was able to get an RSA key to work only by creating a new 4,096-bit key.
It turns out that something in the chain (either this extension, VSCode, or Electron; my friend suspects Electron) has dropped support for RSA keys smaller than 4,096 bits. (For the record, the latest version of VSCode is using Electron 11.3.0.) Unfortunately, the default bits for
ssh-keygen
on my system (Debian testing) is 3,072 bits, meaning that keys generated with default settings produce this cryptic error:Couldn't start a terminal for bender: Error while signing data with privateKey: error:06000066:public key routines:OPENSSL_internal:DECODE_ERROR
(bender is the system I'm connecting to)I've updated my review to be neutral and reflect the new discoveries, but since generating a key with default settings produces a key incompatible with this extension, then either the documentation should explain what the error means and the proper options to
ssh-keygen
to generate a compatible key, or the extension should be fixed to support these default-settings keys. (FWIW, Microsoft's own Remote Development - SSH extension does not have this limitation.)The text was updated successfully, but these errors were encountered: