[Bug 1458084] [NEW] puppet outdated: can't install ed25519 ssh-key
Hadmut Danisch
hadmut at danisch.de
Fri May 22 23:29:05 UTC 2015
Public bug reported:
Hi,
when using a ssh_authorized_key resource to install public keys in the
authorized_keys files, it works with rsa, but not with ed25519 keys:
Error: Failed to apply catalog: Parameter type failed on Ssh_authorized_key[root-hadmut-ed25519 at home]: Invalid value "ssh-ed25519". Valid values are ssh-dss, ssh-rsa, ecdsa-sha2-nistp256, ecdsa-sha2-nistp384, ecdsa-sha2-nistp521. at /etc/puppet/modules/hadmut/manifests/server/netzdienste/sshd.pp:141
Wrapped exception:
Invalid value "ssh-ed25519". Valid values are ssh-dss, ssh-rsa, ecdsa-sha2-nistp256, ecdsa-sha2-nistp384, ecdsa-sha2-nistp521.
The nist curves are considered insecure . Puppet should be able to install keys that are still seen as secure.
regards
ProblemType: Bug
DistroRelease: Ubuntu 14.04
Package: puppet (not installed)
ProcVersionSignature: Ubuntu 3.13.0-53.88-generic 3.13.11-ckt19
Uname: Linux 3.13.0-53-generic x86_64
NonfreeKernelModules: zfs zunicode zcommon znvpair zavl
ApportVersion: 2.14.1-0ubuntu3.10
Architecture: amd64
CurrentDesktop: XFCE
Date: Sat May 23 01:23:28 2015
InstallationDate: Installed on 2014-08-06 (289 days ago)
InstallationMedia: Ubuntu-Server 14.04.1 LTS "Trusty Tahr" - Release amd64 (20140722.3)
SourcePackage: puppet
UpgradeStatus: No upgrade log present (probably fresh install)
** Affects: puppet (Ubuntu)
Importance: Undecided
Status: New
** Tags: amd64 apport-bug trusty
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to puppet in Ubuntu.
https://bugs.launchpad.net/bugs/1458084
Title:
puppet outdated: can't install ed25519 ssh-key
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/puppet/+bug/1458084/+subscriptions
More information about the Ubuntu-server-bugs
mailing list