[Bug 261375] [NEW] ssh-add -l lists the fingerprint of ~/.ssh/id_rsa even if it's not loaded

Mon, 25 Aug 2008 22:05:32 -0700 

Public bug reported:

Binary package hint: gnome-keyring

Hardy 8.04.1
gnome-keyring-2.22.2-0ubuntu1
openssh-client-1:4.7p1-8ubuntu1.2

When gnome-keyring is used as the ssh-agent, "ssh-add -l" should only
list keys which are actually loaded.  Instead, it always lists the
fingerprint of ~/.ssh/id_rsa, in addition to any loaded keys.  If
~/.ssh/id_rsa is loaded, it is listed twice.

After logging in with no keys loaded:

    [EMAIL PROTECTED] ~/]$ ssh-add -l
    1024 9c:c3:8d:34:09:9e:4d:0f:ca:b5:aa:84:d8:6b:f7:8b  (RSA)

Adding the key:

    [EMAIL PROTECTED] ~]$ ssh-add   
    Enter passphrase for /home/johnc/.ssh/id_rsa: 
    Identity added: /home/johnc/.ssh/id_rsa (/home/johnc/.ssh/id_rsa)
    [EMAIL PROTECTED] ~/]$ ssh-add -l
    1024 9c:c3:8d:34:09:9e:4d:0f:ca:b5:aa:84:d8:6b:f7:8b  (RSA)
    1024 9c:c3:8d:34:09:9e:4d:0f:ca:b5:aa:84:d8:6b:f7:8b  (RSA)

Removing all keys:

    [EMAIL PROTECTED] ~]$ ssh-add -D
    All identities removed.
    [EMAIL PROTECTED] ~/]$ ssh-add -l
    1024 9c:c3:8d:34:09:9e:4d:0f:ca:b5:aa:84:d8:6b:f7:8b  (RSA)

Moving ~/.ssh/id_rsa away:

    [EMAIL PROTECTED] ~]$ mv .ssh/id_rsa .ssh/xxx
    [EMAIL PROTECTED] ~]$ ssh-add -l
    The agent has no identities.

OpenSSH's ssh-agent correctly lists only those keys which are actually
loaded:

    [EMAIL PROTECTED] ~]$ bash
    [EMAIL PROTECTED] ~]$ eval `ssh-agent`
    Agent pid 24398
    [EMAIL PROTECTED] ~]$ ssh-add -l
    The agent has no identities.
    [EMAIL PROTECTED] ~]$ ssh-add
    Enter passphrase for /home/johnc/.ssh/id_rsa: 
    Identity added: /home/johnc/.ssh/id_rsa (/home/johnc/.ssh/id_rsa)
    [EMAIL PROTECTED] ~]$ ssh-add -l
    1024 9c:c3:8d:34:09:9e:4d:0f:ca:b5:aa:84:d8:6b:f7:8b 
/home/johnc/.ssh/id_rsa (RSA)
    [EMAIL PROTECTED] ~]$ ssh-add -D
    All identities removed.
    [EMAIL PROTECTED] ~]$ ssh-add -l
    The agent has no identities.

** Affects: gnome-keyring (Ubuntu)
     Importance: Undecided
         Status: New

-- 
ssh-add -l lists the fingerprint of ~/.ssh/id_rsa even if it's not loaded
https://bugs.launchpad.net/bugs/261375
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to