`wezterm-ssh`: support for public keys signed with certificates

[david-perez]

I'm a user of distant, which depends on wezterm-ssh.

Is there support for authentication with public keys signed with certificates?

libssh's docs are not clear on this aspect, but this function ("Authenticate with public/private key or certificate.") and this recent thread in the mailing list suggest that it is.

Currently wezterm-ssh offers public keys e.g. id_rsa.pub to the server when connecting, but I'd also like to provide the certificate with which they are signed e.g. id_rsa-cert.pub. Is it possible?

[wez]

My understanding is that distant currently uses the libssh2 backend, which doesn't support this. The version of wezterm-ssh in main uses libssh which does use the function you referenced.

@chipsenkbeil: can you confirm/deny my understanding?

[chipsenkbeil]

Yes, we're currently locked to the wezterm-ssh 0.2.0 release as I'm unable to compile the Lua module on top of wezterm-ssh main. See https://github.com/chipsenkbeil/distant/issues/72 for the error and a sample project demonstrating the compilation failure. https://github.com/chipsenkbeil/distant.nvim/issues/48 is tracking from neovim plugin.

[wez]

I'm closing this out as I don't think there is anything for wezterm-ssh to do here!

[github-actions[bot]]

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.