bugzilla-daemon at mindrot.org
2021-Jul-21 14:14 UTC
[Bug 3330] New: OpenSSH's ssh-keygen can't parse encrypted PKCS#8 private keys being built against openssl 3.0
https://bugzilla.mindrot.org/show_bug.cgi?id=3330
Bug ID: 3330
Summary: OpenSSH's ssh-keygen can't parse encrypted PKCS#8
private keys being built against openssl 3.0
Product: Portable OpenSSH
Version: 8.6p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component: ssh-keygen
Assignee: unassigned-bugs at mindrot.org
Reporter: dbelyavs at redhat.com
When openssh is built against OpenSSL 3.0, we get an error importing
encrypted PKCS#8 files:
openssl genrsa -aes128 -out my-test-private.key -passout
pass:RedHatEnterpriseLinux9.0 2048
ssh-keygen -y -f my-test-private.key > public.key.pub
Instead of requesting the passphrase, we get an error
`Load key "my-test-private.key": error in libcrypto`
--
You are receiving this mail because:
You are watching the assignee of the bug.
bugzilla-daemon at mindrot.org
2021-Jul-23 04:40 UTC
[Bug 3330] OpenSSH's ssh-keygen can't parse encrypted PKCS#8 private keys being built against openssl 3.0
https://bugzilla.mindrot.org/show_bug.cgi?id=3330
Darren Tucker <dtucker at dtucker.net> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |dtucker at dtucker.net
--- Comment #1 from Darren Tucker <dtucker at dtucker.net> ---
I can't reproduce the test case building against the 3.0.0 dev branch
as of right now:
$ ./ssh -V
OpenSSH_8.6p1, OpenSSL 3.0.0-beta2-dev
$ openssl genrsa -aes128 -out my-test-private.key -passout
pass:RedHatEnterpriseLinux9.0 2048
Generating RSA private key, 2048 bit long modulus (2 primes)
.+++++
...........................................+++++
e is 65537 (0x010001)
$ ssh-keygen -y -f my-test-private.key > public.key.pub
Enter passphrase:
Have OpenSSL rolled back the API change?
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at mindrot.org
2021-Jul-23 07:17 UTC
[Bug 3330] OpenSSH's ssh-keygen can't parse encrypted PKCS#8 private keys being built against openssl 3.0
https://bugzilla.mindrot.org/show_bug.cgi?id=3330 --- Comment #2 from Dmitry Belyavskiy <dbelyavs at redhat.com> --- I will recheck it against the current master, it may be fixed since the last alpha. Many thanks! -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are watching the assignee of the bug.
bugzilla-daemon at mindrot.org
2022-Jan-14 04:24 UTC
[Bug 3330] OpenSSH's ssh-keygen can't parse encrypted PKCS#8 private keys being built against openssl 3.0
https://bugzilla.mindrot.org/show_bug.cgi?id=3330
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution|--- |WORKSFORME
CC| |djm at mindrot.org
--- Comment #3 from Damien Miller <djm at mindrot.org> ---
Closing for lack of followup
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
bugzilla-daemon at mindrot.org
2022-Feb-25 02:58 UTC
[Bug 3330] OpenSSH's ssh-keygen can't parse encrypted PKCS#8 private keys being built against openssl 3.0
https://bugzilla.mindrot.org/show_bug.cgi?id=3330
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |CLOSED
--- Comment #4 from Damien Miller <djm at mindrot.org> ---
closing bugs resolved before openssh-8.9
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.