-
Notifications
You must be signed in to change notification settings - Fork 2.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ssh config with pubkeys does not load keys from ssh-agent #3819
Comments
In particular on Windows, where Unix sockets are not generally available and therefore have to be emulated in one way or another, you cannot mix and match |
Note that I'm still on Win10 build 1709, so the only version of Also, the setup that I described had been working as intended for years until the last git-for-windows update (which I performed last week). Hence my question: what changed? The only clue I got from the release notes is the bump from |
Assuming that you didn't kill your ssh-agent process after that update, the comment from above about running two different versions of openssh still applies IMHO. The change of behaviour might had been introduced with that new OpenSSH version, so it would be useful to know if still works after using a clean setup (ex: after a reboot) |
Do you mean just rebooting after the git-for-windows update and seeing if the problem persists? Yes, I've rebooted several times already. I haven't messed with the openssh installation, so afaik the only version of ssh and ssh-agent on my machine are the ones that came with the git-for-windows installation/update. |
It appears that the What's weird is that |
Just tried downgrading back to |
I'm having the same problem. Downgrading to |
KeeAgent 0.12.1 is apparently incompatible with OpenSSH 8.9, see: dlech/KeeAgent#341 |
I have exactly the same issue. I tested the current version 2.39.1 and it still cannot work. I downgraded to 2.34.1 and this version works fine. |
This is still true. I simply forgot to close the ticket, sorry. |
Setup
defaults?
to the issue you're seeing?
I use KeePass2 with the KeeAgent plugin to keep my private keys inside the password manager. In my .ssh folder I only keep the corresponding pubkey files, and an ssh config with hosts that look like this:
The public keys are in the following format:
Then, in my
.bash_profile
, I have the following line:In case they might be relevant:
Details
Git Bash
Minimal, Complete, and Verifiable example
this will help us understand the issue.
ssh looks up the settings for github.com in the
.ssh/config
file, finds the pubkey, requests the corresponding private key to ssh-agent, and then connects.I've tried looking into #3468 and Openssh's release notes, but I can't seem to find anything relevant.
This setup used to work fine up to the previous upate (version 2.35.2.windows.2 I believe? The one with the security update). It seems however that version 2.36.0 broke something, because ssh does not fetch the private keys from the agent anymore.
Note that the agent still seems to have all the keys loaded:
ssh-add -l
returns the expected list of keys loaded from KeePass.However, if I point my ssh config to an actual private key file and manually provide the passphrase to unlock it, I am able to connect to my hosts as usual. So I'm guessing something broke down in the communication between ssh and ssh-agent?
The text was updated successfully, but these errors were encountered: