Using ssh-keygen -L -f $FILE to decode the cert in ./communicator/ssh/communicator_test.go line 57 shows the expiry of 2030-01-01T05:00
Type: ssh-rsa-cert-v01@openssh.com host certificate
Public key: RSA-CERT SHA256:NaCSsxvUtzC+lJK7JLwZ/8FojyAKpGXAJUs51ZqRnOE
Signing CA: RSA SHA256:6IVexLqB3lfZtvBUi29wV0Mw/R3Qk4YMSjCsTgtKM/c
Key ID: "ca-test"
Serial: 0
Valid: from 2018-02-13T20:21:56 to 2030-01-01T05:00:00
Principals:
127.0.0.1
This bug was found while working on reproducible builds for openSUSE.
Background:
As part of my work on reproducible builds for openSUSE, I check that software still gives identical build results in the future.
The usual offset is +15 years, because that is how long I expect some software will be used in some places.
This showed up failing tests in our package build.
See https://reproducible-builds.org/ for why this matters.
The text was updated successfully, but these errors were encountered:
If there is still a question, I recommend the the community forum, where there are far more people available to help. If there is a bug or you would like to make a feature request, please open a new issue and fill out the template.
Thanks!
I'm going to lock this issue because it has been closed for 30 days⏳. This helps our maintainers find and focus on the active issues.
If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.
Terraform Version
0.11.11
Expected Behavior
build+tests should succeed anytime in the future
Actual Behavior
build fails in 2030
Debug Output
Steps to Reproduce
in openSUSE or Debian do
Additional Context
Using
ssh-keygen -L -f $FILEto decode the cert in ./communicator/ssh/communicator_test.go line 57 shows the expiry of 2030-01-01T05:00This bug was found while working on reproducible builds for openSUSE.
Background:
As part of my work on reproducible builds for openSUSE, I check that software still gives identical build results in the future.
The usual offset is +15 years, because that is how long I expect some software will be used in some places.
This showed up failing tests in our package build.
See https://reproducible-builds.org/ for why this matters.
The text was updated successfully, but these errors were encountered: