You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This would appear to require a patch to the golang ssh codebase to take into account the DEK-Info header that's included in the PEM block for encrypted SSH keys. Investigating a patch - would love to contribute such a thing into the golang project.
Yeah it's more effort than I'm willing to expend currently, especially as the signing key can be stored unencrypted in a reasonably safe medium (e.g. a Hashicorp vault or on S3 encrypted with kms).
Also usual annoyances of requirement to either set the passphrase in the config or be present to decrypt the key manually.
Right now trying to use a private key with a passphrase will produce errors like:
ecdsa key:
rsa or ed25519 key:
The text was updated successfully, but these errors were encountered: