-
Type:
Suggestion
-
Resolution: Fixed
-
Component/s: Bitbucket Server integration, Infrastructure, Security
-
None
-
0
-
1
When cloning from a Bitbucket Server instance (which supports ECDSA), we see this error:
Warning: Permanently added '[127.0.0.1]:51671' (RSA) to the list of known hosts. BAMBOO-SSH-PROXY: [While connecting to [git@stash.dev.internal.atlassian.com/172.25.1.158:7999]: I/O exception during authentication of the remote session: Error performing public key authentication] fatal: Could not read from remote repository. Please make sure you have the correct access rights and the repository exists. at com.atlassian.bamboo.plugins.git.GitCommandProcessor.runCommand(GitCommandProcessor.java:555) at com.atlassian.bamboo.plugins.git.GitCommandProcessor.getRemoteRefs(GitCommandProcessor.java:419) at com.atlassian.bamboo.plugins.git.NativeGitOperationHelper$1.call(NativeGitOperationHelper.java:491) at com.atlassian.bamboo.plugins.git.NativeGitOperationHelper$1.call(NativeGitOperationHelper.java:482) at com.atlassian.bamboo.util.CallableResultCache$1.load(CallableResultCache.java:52) at com.atlassian.bamboo.util.CallableResultCache$1.load(CallableResultCache.java:48) at com.google.common.cache.LocalCache$LoadingValueReference.loadFuture(LocalCache.java:3568) at com.google.common.cache.LocalCache$Segment.loadSync(LocalCache.java:2350) at com.google.common.cache.LocalCache$Segment.lockedGetOrLoad(LocalCache.java:2313) at com.google.common.cache.LocalCache$Segment.get(LocalCache.java:2228) at com.google.common.cache.LocalCache.get(LocalCache.java:3965) at com.google.common.cache.LocalCache.getOrLoad(LocalCache.java:3969) at com.google.common.cache.LocalCache$LocalManualCache.get(LocalCache.java:4829) at com.atlassian.bamboo.collections.AlwaysInvalidatingCacheDecorator.get(AlwaysInvalidatingCacheDecorator.java:81) at com.atlassian.bamboo.collections.AlwaysInvalidatingCacheDecorator.getUnchecked(AlwaysInvalidatingCacheDecorator.java:135) ... 54 more Caused by: java.io.IOException: Error performing public key authentication at org.apache.sshd.client.auth.deprecated.UserAuthPublicKey.next(UserAuthPublicKey.java:89) at org.apache.sshd.client.session.ClientUserAuthServiceOld.processUserAuth(ClientUserAuthServiceOld.java:150) at org.apache.sshd.client.session.ClientUserAuthServiceOld.auth(ClientUserAuthServiceOld.java:183) at org.apache.sshd.client.session.ClientUserAuthService.auth(ClientUserAuthService.java:109) at org.apache.sshd.client.session.ClientSessionImpl.tryAuth(ClientSessionImpl.java:159) at org.apache.sshd.client.session.ClientSessionImpl.authPublicKey(ClientSessionImpl.java:153) at com.atlassian.bamboo.plugins.ssh.SshProxyCommand.connectSession(SshProxyCommand.java:212) at com.atlassian.bamboo.plugins.ssh.SshProxyCommand.startRemoteConnection(SshProxyCommand.java:193) at com.atlassian.bamboo.plugins.ssh.SshProxyCommand.access$000(SshProxyCommand.java:31) at com.atlassian.bamboo.plugins.ssh.SshProxyCommand$2$1.call(SshProxyCommand.java:134) at com.atlassian.bamboo.executor.RetryingTaskExecutor.rerun(RetryingTaskExecutor.java:108) at com.atlassian.bamboo.executor.RetryingTaskExecutor.runTask(RetryingTaskExecutor.java:88) at com.atlassian.bamboo.executor.RetryingTaskExecutor.retry(RetryingTaskExecutor.java:191) at com.atlassian.bamboo.plugins.ssh.SshProxyCommand$2.run(SshProxyCommand.java:144) Caused by: java.security.InvalidKeyException: can't recognise key type in DSA based signer at org.bouncycastle.jcajce.provider.asymmetric.dsa.DSASigner.engineInitVerify(Unknown Source) at java.security.Signature$Delegate.engineInitVerify(Signature.java:1165) at java.security.Signature.initVerify(Signature.java:457) at org.apache.sshd.common.signature.AbstractSignature.init(AbstractSignature.java:44) at org.apache.sshd.client.auth.deprecated.UserAuthPublicKey.next(UserAuthPublicKey.java:66) ... 13 more
From the stack trace, this appears to be because Bamboo does not support ECDSA