[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Regarding id_25519 user certificate
[Thread Prev] | [Thread Next]
- Subject: Regarding id_25519 user certificate
- From: Chidanand Gangur <chidanand.gangur@xxxxxxxxx>
- Reply-to: libssh@xxxxxxxxxx
- Date: Mon, 22 Sep 2025 13:57:36 +0530
- To: libssh@xxxxxxxxxx
Hello Everyone,
I have created a user certificate using following commands.
ssh-keygen -t ed25519 -f id_ed25519 -N ""
ssh-keygen -s CA/ca_user_key_ed25519 -I test_user_cert -n user1,user2 -V
+4h id_ed25519.pub
In ssh_client I have set following options :
rc = ssh_pki_import_privkey_file(pvtkey, NULL, NULL, NULL, &privkey);
rc = ssh_pki_import_cert_file(usercert, &cert);
rc = ssh_pki_copy_cert_to_privkey(cert, privkey);
ssh_pki_import_privkey_file and ssh_pki_import_cert_file succeeds but the
last call ssh_pki_copy_cert_to_privkey fails.
I have also tried setting pvtkey and user certificate using ssh_options_set
using SSH_OPTIONS_IDENTITY, SSH_OPTIONS_CERTIFICATE. In this case also
ssh_options_set errors out when using SSH_OPTIONS_CERTIFICATE.
I am using libssh-0.11.2.
Is ED25519 supported to be used as a user certificate.
Are there any compilation options to be set ?
If any one encountered such an issue and has overcome it, revert back
please.
Thanks,
Chidanand
| Re: Regarding id_25519 user certificate | Chidanand Gangur <chidanand.gangur@xxxxxxxxx> |