• Type: Bug
• Resolution: Unresolved
• Priority: Major
• Component/s: ssh-steps-plugin
• Labels:

  None
• Environment:

  - Jenkins 2.277.3
  - SSH Pipeline Steps 2.0.0

1. stacktrace.log

   7 kB

   2021-05-03 10:45

[JENKINS-65533] New OpenSSH format and ed25519 keys not supported

ethorsa created issue - 2021-05-03 10:47

ethorsa made changes - 2021-05-03 10:48

Link

New: This issue relates to JENKINS-57495 [ JENKINS-57495 ]

ethorsa made changes - 2021-05-03 10:48

Remote Link

New: This issue links to "“Invalid privatekey” when using JSch (Web Link)" [ 26723 ]

ethorsa made changes - 2021-05-05 09:20

Description

Original: Using a ed25519 key, or one generated with OpenSSH 7.8+ fails: {code:java} invalid privatekey: [B@39b54f70 {code}   According to [this discussion|https://stackoverflow.com/questions/53134212/invalid-privatekey-when-using-jsch/53783283], this comes from JSch not supporting OpenSSH 7.8 and newer keys – incl. ed25519. h3. Minimal example: {code:java} def remote = [:] remote.name = "example-host-name" remote.host = remote.name remote.allowAnyHosts = true withCredentials([sshUserPrivateKey(credentialsId: 'example-key',             keyFileVariable: 'identity',             passphraseVariable: 'identityPass',             usernameVariable: 'userName')]) {     remote.user = userName     remote.identityFile = identity     remote.passphrase = identityPass     sshCommand(remote: remote, command: "ls -l") } {code}   h3. Exception: {noformat} com.jcraft.jsch.JSchException: invalid privatekey: [B@39b54f70 at com.jcraft.jsch.KeyPair.load(KeyPair.java:664) at com.jcraft.jsch.KeyPair.load(KeyPair.java:561) at com.jcraft.jsch.IdentityFile.newInstance(IdentityFile.java:40) at com.jcraft.jsch.JSch.addIdentity(JSch.java:406) at com.jcraft.jsch.JSch.addIdentity(JSch.java:387) at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [...]{noformat}   h3. Workaround Use RSA key of the old format instead (generate with {{-m pem}}).

New: Using an ed25519 key, or one generated with OpenSSH 7.8+ fails: {code:java} invalid privatekey: [B@39b54f70 {code}   According to [this discussion|https://stackoverflow.com/questions/53134212/invalid-privatekey-when-using-jsch/53783283], it comes from JSch not supporting OpenSSH 7.8 and newer keys – incl. ed25519. h3. Minimal example: {code:java} def remote = [:] remote.name = "example-host-name" remote.host = remote.name remote.allowAnyHosts = true withCredentials([sshUserPrivateKey(credentialsId: 'example-key',             keyFileVariable: 'identity',             passphraseVariable: 'identityPass',             usernameVariable: 'userName')]) {     remote.user = userName     remote.identityFile = identity     remote.passphrase = identityPass     sshCommand(remote: remote, command: "ls -l") } {code}   h3. Exception: {noformat} com.jcraft.jsch.JSchException: invalid privatekey: [B@39b54f70 at com.jcraft.jsch.KeyPair.load(KeyPair.java:664) at com.jcraft.jsch.KeyPair.load(KeyPair.java:561) at com.jcraft.jsch.IdentityFile.newInstance(IdentityFile.java:40) at com.jcraft.jsch.JSch.addIdentity(JSch.java:406) at com.jcraft.jsch.JSch.addIdentity(JSch.java:387) at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [...]{noformat}   h3. Workaround Use RSA key of the old format instead (generate with {{-m pem}}).