Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Problem connection via SSH bastion host with passphrase protected ed25519 key #544

Closed
christos opened this issue May 24, 2018 · 5 comments
Closed

Problem connection via SSH bastion host with passphrase protected ed25519 key #544

christos opened this issue May 24, 2018 · 5 comments

Comments

@christos
Copy link

Maybe related to #532

What did you do?

  • I set up a connection for connecting to my AWS RDS database at db.XXXXX.com that is only accessible from a bastion host bastion.YYYYYY.com

screen shot 2018-05-23 at 23 27 25

What did you expect to happen?

  • I clicked on Connect and I expected to connect to the database.

What actually happened?

I got this error:

screen shot 2018-05-24 at 07 58 17

What software versions are you using?

Postico version: Version 1.4beta2 (2737)
(I know, it should say Beta3, but it says Beta2)
macOS version: 10.13.4
PostgreSQL version: (never connected)

Extra information

I can ssh to the bastion host from the command line without issue: ssh -v ec2-user@bastion.YYYYYY.com and the debug output verifies that the ~/.ssh/id_ed25519 key is the one offered and accepted. The key has a passphrase but it is saved in the keychain. Postico never prompts me for the passphrase.

I've also tried the same connection setup with another GUI client and it works correctly. Another thing that works in the other client but not in Postico is that I can use the following .ssh/config shortcut and only specify Bastion as the host (no need for FQDN, user, key specification).

Host Bastion
  Hostname bastion.YYYYYY.com
  User ec2-user

Postico doesn't resolve the connections details from .ssh/config
@jakob
Copy link
Owner

jakob commented May 24, 2018

Thanks a lot for the info. I was able to reproduce this. It appears that there is an issue with passphrase-protected ecdsa and ed25519 in libssh2 (Postico 1.4 beta is using an unstable branch of libssh2).

As for the lack of support for .ssh/config, that's a known limitation.

@jakob
Copy link
Owner

jakob commented May 24, 2018

PS: If you want to claim your free license (we are currently running a bug bounty for Postico 1.4 beta), please send me the name/email you want on your license to jakob@eggerapps.at

@postico-bot
Copy link

We have been working on this issue!

jakob: libssh2: Fix issue where Postico did not prompt for passphrase of private key #544

Download Build B2750, or check out the list of recent builds.

@martinjankoehler martinjankoehler mentioned this issue May 24, 2018
Closed
@martinjankoehler
Copy link
Collaborator

Hi,

thanks for reporting, we hope this is fixed with Postico 1.4 Beta 4, please download Build 2755.

Please let us know if you still encounter problems!

Best regards,
Martin

@christos
Copy link
Author

I can confirm this issue has been fixed! 💯

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@christos @jakob @martinjankoehler @postico-bot