[Development] IMPORTANT: Gerrit host keys have changed

David Skoland david.skoland at qt.io
Tue Nov 8 15:00:15 CET 2022


Hi,

This information was already published on this list, but it seems to have been missed by a handful of key players (possibly because it was only included in the Maintenance break email). Risking informing you all twice, I’ll reiterate the memo here.

—

IMPORTANT: Server host keys have been updated.
When doing  a git command you might get warning like:
  @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
  @    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
  @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
  IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
  Someone could be eavesdropping on you right now (man-in-the-middle attack)!
  It is also possible that a host key has just been changed.
  The fingerprint for the RSA key sent by the remote host is
  SHA256:EPuL0PAbNuXXoye7X93ARF7/XALxA5XNAaE3p6M/L3g.
  Please contact your system administrator.

— Jukka Jokiniva, Gerrit Admin (original email: https://lists.qt-project.org/pipermail/development/2022-November/043215.html)

—

IMPORTANT:
Server host keys on port 29419 [corrected to 28418 in a later email] will be updated to support modern algorithms. Also the existing RSA key will be updated to a longer key size.
After the change the git commands may fail with errors about mismatched or changed host keys or host identification.
To fix this remove locally the old known host key (on Linux based remove the corresponding line in ~/.ssh/known_hosts -file)
and verify the new one (git will prompt for verification).

Here are the finger prints of the keys that will applied on 7-Nov:

ssh_host_ecdsa_384_key
384 SHA256:yMnqjnsJU0y6kfiyQQu8pYNGPFE7av5QxbeLdjTKNmk (ECDSA)

ssh_host_ecdsa_521_key
521 SHA256:kytLsqmLdG1KXLO/s3OxOajTYqf1+n7+YqqbOUzNbtE (ECDSA)

ssh_host_ecdsa_key
256 SHA256:El3+EYlXAGylCVo/Y/WYzPg7tS4fjejkepO1JVXUkb0 (ECDSA)

ssh_host_ed25519_key
256 SHA256:DwwqNluQyJVkOk+3bFMK6NwWYIGjMnqGP+R0k59e3CY (ED25519)

ssh_host_rsa_key
4096 SHA256:EPuL0PAbNuXXoye7X93ARF7/XALxA5XNAaE3p6M/L3g (RSA)

— Jukka Jokiniva, Gerrit Admin (original email: https://lists.qt-project.org/pipermail/development/2022-November/043213.html)

Cheers,
David Skoland

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.qt-project.org/pipermail/development/attachments/20221108/b8bdab4f/attachment-0001.htm>


More information about the Development mailing list