YubiKey 5.7 with ED25519 key added returns invalid object error

[phiekl]

Environment

• OS: Debian 13/testing
• age-plugin-yubikey version: 0.5.0 (via age-plugin-yubikey_0.5.0-1_amd64.deb)

What were you trying to do

Using age-plugin-yubikey with YubiKey 5.7.1 where slot 9a contains a ED25519 key (which is a new feature with 5.7.x).

What happened

$ age-plugin-yubikey
✨ Let's get your YubiKey set up for age! ✨

This tool can create a new age identity in a free slot of your YubiKey.
It will generate an identity file that you can use with an age client,
along with the corresponding recipient. You can also do this directly
with:
    age-plugin-yubikey --generate

If you are already using a YubiKey with age, you can select an existing
slot to recreate its corresponding identity file and recipient.

When asked below to select an option, use the up/down arrow keys to
make your choice, or press [Esc] or [q] to quit.

🔑 Select a YubiKey: Yubico YubiKey OTP+FIDO+CCID 00 00 (Serial: ...)
Error: Error while communicating with YubiKey: invalid object

$ age-plugin-yubikey -g --slot 1
Error: Error while communicating with YubiKey: invalid object

$ ykman piv info
PIV version:              5.7.1
PIN tries remaining:      3/3
PUK tries remaining:      3/3
Management key algorithm: TDES
Management key is stored on the YubiKey, protected by PIN.
CHUID: ...
CCC:   No data available
Slot 9A (AUTHENTICATION):
  Private key type: ED25519
  Public key type:  ED25519
  Subject DN:       CN=ssh
  Issuer DN:        CN=ssh
  Serial:           ...
  Fingerprint:      ...
  Not before:       2024-08-25T17:11:14+00:00
  Not after:        2044-08-20T17:11:14+00:00

Everything works like usual if I add a ECCP384 key to slot 9A instead.

EDIT: Same thing happens also if one of the slots contains a X25519 key (with a corresponding certificate).

[str4d]

I expect this to be blocked on iqlusioninc/yubikey.rs#577 as the parsing is done there, but I'll see if there's a better way I can detect and handle this kind of error.