yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1506244] Re: [SRU] support SSH key value over fingerprint for Azure

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <1506244@xxxxxxxxxxxxxxxxxx>
Date: Wed, 02 Dec 2015 18:45:07 -0000
Reply-to: Bug 1506244 <1506244@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package cloud-init - 0.7.7~bzr1091-0ubuntu12

---------------
cloud-init (0.7.7~bzr1091-0ubuntu12) vivid; urgency=medium

  * d/patches/lp-1506244-azure-ssh-key-values.patch: AZURE: Add support
    and preference for fabric provided public SSH public key values over
    fingerprints (LP: #1506244).

 -- Ben Howard <ben.howard@xxxxxxxxxx>  Tue, 17 Nov 2015 10:02:41 -0700

** Changed in: cloud-init (Ubuntu Vivid)
       Status: Fix Committed => Fix Released

** Changed in: cloud-init (Ubuntu Precise)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to cloud-init.
https://bugs.launchpad.net/bugs/1506244

Title:
  [SRU] support SSH key value over fingerprint for Azure

Status in cloud-init:
  Fix Released
Status in cloud-init package in Ubuntu:
  Fix Released
Status in cloud-init source package in Precise:
  Fix Released
Status in cloud-init source package in Trusty:
  Fix Released
Status in cloud-init source package in Vivid:
  Fix Released
Status in cloud-init source package in Wily:
  Fix Released
Status in cloud-init source package in Xenial:
  Fix Released

Bug description:
  SRU JUSTIFICATION

  [BACKGROUND] Azure's meta-data source now supports the use of SSH key
  values in addition to fingerprints.

  [IMPACT] Instances booted with out cloud-init support for SSH public
  key values will be inaccessable on boot via SSH.

  [FIX] Backport of 15.10 SSH public key support. Starting with 15.10,
  cloud-init supports both values (preferred) or generating the SSH
  public key from a fingerprint.

  [TEST CASE]
  - Update cloud-init from proposed
  - Capture instance
  - Create instance using SSH fingerprint, confirm instance is accessible via SSH. 
  - Create instance using SSH public key value, confirm instance is accessible via SSH.
  - Create instance using both SSH fingerprint and a different SSH public key value. Confirm that the instance is accessible via SSH only with SSH public key value (i.e. the fingerprint is ignored).

  
  [ORIGINAL REPORT]
  Azure is changing the ovf-env.xml file. Instead of passing a fingerprint to the key and obtaining it separately, the SSH public key itself is passed via a new "<Value>" parameters:

          <SSH>
            <PublicKeys>
              <PublicKey>
                <Fingerprint>EB0C0AB4B2D5FC35F2F0658D19F44C8283E2DD62</Fingerprint>
                <Path>$HOME/UserName/.ssh/authorized_keys</Path>
                <Value>ssh-rsa AAAANOTAREALKEY== foo@bar.local</Value>
              </PublicKey>
            </PublicKeys>

To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-init/+bug/1506244/+subscriptions

References

[Bug 1506244] [NEW] support SSH key value over fingerprint for Azure
From: Ben Howard, 2015-10-14