Unable to generate key ecdsa-sk/ed25519-sk in Cygwin

Question

Unable to generate key ecdsa-sk/ed25519-sk in Cygwin

n1am opened this issue 3 years ago · 3 comments

Hi,
I'm trying to generate a key in Cygwin with OpenSSH (OpenSSH_8.7p1, OpenSSL 1.1.1f 31 Mar 2020) but my SoloKeys Somu are not detected by the ssh-sk-helper.

$ ssh-keygen.exe -v -t ecdsa-sk
Generating public/private ecdsa-sk key pair.
You may need to touch your authenticator to authorize key generation.
debug1: start_helper: starting /usr/sbin/ssh-sk-helper
debug1: sshsk_enroll: provider "internal", device "(null)", application "ssh:", userid "(null)", flags 0x01, challenge len 0
debug1: sshsk_enroll: using random challenge
debug1: sk_probe: 0 device(s) detected
debug1: ssh_sk_enroll: failed to find sk
debug1: sshsk_enroll: provider "internal" failure -1
debug1: ssh-sk-helper: Enrollment failed: invalid format
debug1: main: reply len 8
debug1: client_converse: helper returned error -4
Key enrollment failed: invalid format

Using solo cli tool the key is detected, (wink and verify works)

$ solo key version
4.1.2 locked

Unplugging the SoloKeys and using a Yubico the ssh-keygen generates the keys.

Answer 1 · 2021-10-13T18:17:23.000Z

Same result with a SoloKeys Tap with:

solo key version
4.1.5 locked

Answer 2 · 2022-04-11T20:49:48.000Z

I see the same with

Solo 1 Tap USB-A 4.1.5
Git Bash 2.35.1.2
OpenSSH_8.8p1, OpenSSL 1.1.1m  14 Dec 2021
Windows 10 Home 21H2

$ ssh-keygen -v -t ed25519-sk
Generating public/private ed25519-sk key pair.
You may need to touch your authenticator to authorize key generation.
debug1: start_helper: starting /usr/lib/ssh/ssh-sk-helper
debug1: sshsk_enroll: provider "internal", device "(null)", application "ssh:", userid "(null)", flags 0x01, challenge len 0
debug1: sshsk_enroll: using random challenge
debug1: sk_probe: 0 device(s) detected
debug1: ssh_sk_enroll: failed to find sk
debug1: sshsk_enroll: provider "internal" failure -1
debug1: ssh-sk-helper: Enrollment failed: invalid format
debug1: main: reply len 8
debug1: client_converse: helper returned error -4
Key enrollment failed: invalid format

Answer 3 · 2022-11-25T09:53:43.000Z

Generating public/private ecdsa-sk key pair.
You may need to touch your authenticator to authorize key generation.
debug1: start_helper: starting /usr/lib/openssh/ssh-sk-helper
debug1: sshsk_enroll: provider "internal", device "(null)", application "ssh:", userid "(null)", flags 0x01, challenge len 0
debug1: sshsk_enroll: using random challenge
debug1: sk_probe: 0 device(s) detected
debug1: ssh_sk_enroll: failed to find sk
debug1: sshsk_enroll: provider "internal" returned failure -1
debug1: ssh-sk-helper: Enrollment failed: invalid format
debug1: ssh-sk-helper: reply len 8
debug1: client_converse: helper returned error -4
Key enrollment failed: invalid format

Same here.