-
Bug
-
Resolution: Fixed
-
Blocker
-
Jenkins 1.640 running on docker from onesysadmin/jenkins-docker-executors
All plugins up to date
When running a local build (on the master), the build fails to load the ssh-agent:
Started by an SCM change Building in workspace /var/jenkins_home/workspace/production - client (prod3) [ssh-agent] Looking for ssh-agent implementation... [ssh-agent] Java/JNR ssh-agent [ssh-agent] Started. [ssh-agent] Using credentials git (Bitbucket checkout) [ssh-agent] Unable to read key: Unable to create OpenSSL PBDKF: PBKDF-OpenSSL SecretKeyFactory not available org.bouncycastle.openssl.PEMException: Unable to create OpenSSL PBDKF: PBKDF-OpenSSL SecretKeyFactory not available at org.bouncycastle.openssl.jcajce.PEMUtilities.getKey(Unknown Source) at org.bouncycastle.openssl.jcajce.PEMUtilities.getKey(Unknown Source) at org.bouncycastle.openssl.jcajce.PEMUtilities.crypt(Unknown Source) at org.bouncycastle.openssl.jcajce.JcePEMDecryptorProviderBuilder$1$1.decrypt(Unknown Source) at org.bouncycastle.openssl.PEMEncryptedKeyPair.decryptKeyPair(Unknown Source) at com.cloudbees.jenkins.plugins.sshagent.jna.JNRRemoteAgent.addIdentity(JNRRemoteAgent.java:98) at com.cloudbees.jenkins.plugins.sshagent.SSHAgentBuildWrapper$SSHAgentEnvironment.add(SSHAgentBuildWrapper.java:388) at com.cloudbees.jenkins.plugins.sshagent.SSHAgentBuildWrapper.preCheckout(SSHAgentBuildWrapper.java:227) at jenkins.scm.SCMCheckoutStrategy.preCheckout(SCMCheckoutStrategy.java:76) at hudson.model.AbstractBuild$AbstractBuildExecution.run(AbstractBuild.java:528) at hudson.model.Run.execute(Run.java:1738) at hudson.model.FreeStyleBuild.run(FreeStyleBuild.java:43) at hudson.model.ResourceController.execute(ResourceController.java:98) at hudson.model.Executor.run(Executor.java:410) Caused by: java.security.NoSuchAlgorithmException: PBKDF-OpenSSL SecretKeyFactory not available at javax.crypto.SecretKeyFactory.<init>(SecretKeyFactory.java:121) at javax.crypto.SecretKeyFactory.getInstance(SecretKeyFactory.java:159) at org.bouncycastle.jcajce.util.DefaultJcaJceHelper.createSecretKeyFactory(Unknown Source) ... 14 more [ssh-agent] Using credentials deploy (Deployment key to work with Minion Master)
Then the build looks like its continuing normally, but the ssh key was not actually loaded and as a result the build fails:
+ ssh -o StrictHostKeyChecking=no deploy@xxx.xxx.xxx some command
Permission denied (publickey).
+ ...
+ exit 5
+ exit 5
Build step 'Execute shell' marked build as failure
[ssh-agent] Stopped.
Running the same job on a slave works fine:
Started by user Oded Arbel
Building remotely on trusty (i-5827fe82) (trusty docker) in workspace /srv/build/workspace/production - client (prod3)
[ssh-agent] Looking for ssh-agent implementation...
[ssh-agent] Java/JNR ssh-agent
[ssh-agent] Started.
[ssh-agent] Using credentials git (Bitbucket checkout)
[ssh-agent] Using credentials deploy (Deployment key to work with Minion Master)
Downgrading the ssh-agent plugin to version 1.8 worked around the problem. After downgrade:
Started by user Oded Arbel Building in workspace /var/jenkins_home/workspace/production - client (prodhk) [ssh-agent] Using credentials git (Bitbucket checkout) [ssh-agent] Using credentials deploy (Deployment key to work with Minion Master) [ssh-agent] Looking for ssh-agent implementation... [ssh-agent] Java/JNR ssh-agent [ssh-agent] Started.
Also see here: https://www.botbot.me/freenode/jenkins/2015-12-16/?msg=56268453&page=4
- links to
