运行以下命令解决此问题。

这对我很管用。

chmod 600 ~/.ssh/id_rsa

注意如何命名ssh密钥文件

如果您有多个密钥对，您可以使用ssh-keygen和-f <密钥名称>来命名输出文件。在我的例子中，我将密钥命名为username@organization和username@organization.pub，这有助于保持多个密钥对的组织。

问题是ssh代理不喜欢@字符。

在我的例子中，这导致了sign_and_send_pubkey: signing failed: agent refused操作错误，并阻止会话密匙环与ssh代理交互。

将密钥文件重命名为username_at_organization解决了这个问题。

另一个原因是OpenSSH v9.0新默认的NTRU primes + x25519密钥交换，结合gpg-agent(至少在v2.2.32)。

为了解决问题，禁用新的密钥交换算法(因此它的安全效益)，如下:

ssh -o 'KexAlgorithm -sntrup761x25519-sha512@openssh.com' [...]

(SSH配置也一样)

参见https://unix.stackexchange.com/questions/701131/use-ntrux25519-key-exchange-with-gpg-agent

Eval "$(ssh-agent -s)" 首先启动ssh代理

ssh-add ，然后添加ssh密钥

In my case the problem was that GNOME keyring was holding an invalid passphrase for the ssh key to be used. After spending indecent amount of time troubleshooting this issue I ran seahorse and found the entry to hold empty string. I can only guess that it was caused by mistyping the passphrase at first use some time earlier, and then probably cancelling the requester or so in order to fall back to command line. Updating the entry with correct passphrase immediately solved the problem. Deleting that entry (from "login" keyring) and reentering passphrase at that first prompt (and checking the appropriate checkbox) solves this too. Now agent gets the correct passphrase from the unlocked at login keyring named "login" and neither asks for passphrase nor "refuses operation" anymore. Of course YMMV.

我需要分享，因为我花了太多时间寻找解决方案

这就是解决方案:https://unix.stackexchange.com/a/351742/215375

我正在使用这个命令:

ssh-keygen -o -t rsa -b 4096 -C "email@example.com"

Gnome-keyring不支持生成的密钥。

删除-o参数解决了这个问题。