search

solokeys / solo1

Solo 1 firmware in C
https://solokeys.com/
Other
2.3k stars 274 forks source link

Unable to generate key ecdsa-sk/ed25519-sk in Cygwin #576

Open n1am opened 2 years ago

n1am commented 2 years ago

Hi, I'm trying to generate a key in Cygwin with OpenSSH (OpenSSH_8.7p1, OpenSSL 1.1.1f 31 Mar 2020) but my SoloKeys Somu are not detected by the ssh-sk-helper.

$ ssh-keygen.exe -v -t ecdsa-sk Generating public/private ecdsa-sk key pair. You may need to touch your authenticator to authorize key generation. debug1: start_helper: starting /usr/sbin/ssh-sk-helper debug1: sshsk_enroll: provider "internal", device "(null)", application "ssh:", userid "(null)", flags 0x01, challenge len 0 debug1: sshsk_enroll: using random challenge debug1: sk_probe: 0 device(s) detected debug1: ssh_sk_enroll: failed to find sk debug1: sshsk_enroll: provider "internal" failure -1 debug1: ssh-sk-helper: Enrollment failed: invalid format debug1: main: reply len 8 debug1: client_converse: helper returned error -4 Key enrollment failed: invalid format

Using solo cli tool the key is detected, (wink and verify works)

$ solo key version 4.1.2 locked

Unplugging the SoloKeys and using a Yubico the ssh-keygen generates the keys.

n1am commented 2 years ago

Same result with a SoloKeys Tap with:

solo key version
4.1.5 locked
grtwje commented 2 years ago

I see the same with

Solo 1 Tap USB-A 4.1.5
Git Bash 2.35.1.2
OpenSSH_8.8p1, OpenSSL 1.1.1m  14 Dec 2021
Windows 10 Home 21H2
$ ssh-keygen -v -t ed25519-sk
Generating public/private ed25519-sk key pair.
You may need to touch your authenticator to authorize key generation.
debug1: start_helper: starting /usr/lib/ssh/ssh-sk-helper
debug1: sshsk_enroll: provider "internal", device "(null)", application "ssh:", userid "(null)", flags 0x01, challenge len 0
debug1: sshsk_enroll: using random challenge
debug1: sk_probe: 0 device(s) detected
debug1: ssh_sk_enroll: failed to find sk
debug1: sshsk_enroll: provider "internal" failure -1
debug1: ssh-sk-helper: Enrollment failed: invalid format
debug1: main: reply len 8
debug1: client_converse: helper returned error -4
Key enrollment failed: invalid format
svn2208 commented 1 year ago

Generating public/private ecdsa-sk key pair. You may need to touch your authenticator to authorize key generation. debug1: start_helper: starting /usr/lib/openssh/ssh-sk-helper debug1: sshsk_enroll: provider "internal", device "(null)", application "ssh:", userid "(null)", flags 0x01, challenge len 0 debug1: sshsk_enroll: using random challenge debug1: sk_probe: 0 device(s) detected debug1: ssh_sk_enroll: failed to find sk debug1: sshsk_enroll: provider "internal" returned failure -1 debug1: ssh-sk-helper: Enrollment failed: invalid format debug1: ssh-sk-helper: reply len 8 debug1: client_converse: helper returned error -4 Key enrollment failed: invalid format

Same here.