Bug#888205: openssh-client: ssh-keygen -t rsa1 fails very late
On Tue, Jan 23, 2018 at 09:52:42PM +0000, Ian Jackson wrote:
> $ ssh-keygen -t rsa1 -b 2048 -f t
> Generating public/private rsa1 key pair.
> t already exists.
> Overwrite (y/n)? y
> Enter passphrase (empty for no passphrase):
> Enter same passphrase again:
> Saving key "t" failed: unknown or unsupported key type
> $
>
> I guess this is a consequence of dropping SSH v1 protocol support.
>
> This is inconvenient for me as I have a program which uses RSA, relies
> on an external key generator, and understands the ssh v1 key format.
> So ideally I would like this facility to be restored.
You'll need to install openssh-client-ssh1 and use ssh-keygen1, which
I've preserved for this kind of purpose. I'm afraid that the
probability of this facility being reintroduced in modern OpenSSH
approaches zero.
> Failing that, I would like ssh-keygen to say "never heard of that key
> type" rather than going ahead and generating a perfectly good RSA key
> before failing to marshal it up into a key file.
I agree that this would be a good idea. If you have time then it would
speed things up if you could file this upstream at bugzilla.mindrot.org.
--
Colin Watson [cjwatson@debian.org]
Reply to: