Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug]: failed to decrypt JWK #1603

Open
BoxedBrain opened this issue Oct 27, 2023 · 2 comments
Open

[Bug]: failed to decrypt JWK #1603

BoxedBrain opened this issue Oct 27, 2023 · 2 comments
Assignees
@dopey
Labels
bug needs triage Waiting for discussion / prioritization by team
Milestone
v0.26.2

Comments

@BoxedBrain
Copy link

Steps to Reproduce

When trying to create a certificate, I need to enter the password.
This was generated before by step-ca and looks like this: OF'Wix)Z_Y1"Z'G[OL|vB9<X<doibdTz

Your Environment

  • step Version: Smallstep CLI/0.25.0 (windows/amd64) Release Date: 2023-09-27T05:35:24Z
  • step-ca Version: Smallstep CA/0.25.0 (linux/amd64) Release Date: 2023-09-27 06:17 UTC

Expected Behavior

Generated password should work

Actual Behavior

C:\dev\test>step ca certificate localhost srv.crt srv.key --provisioner=removed
✔ Provisioner: removed (JWK) [kid: ...removed...]
✔ Please enter the password to decrypt the provisioner key:
✔ Please enter the password to decrypt the provisioner key:
✔ Please enter the password to decrypt the provisioner key: █
failed to decrypt JWK: invalid password

Additional Context

Manually creating a 'simple' password e.g.: test123 works as expected.

Contributing

Vote on this issue by adding a 👍 reaction.
To contribute a fix for this issue, leave a comment (and link to your pull request, if you've opened one already).
@BoxedBrain BoxedBrain added bug needs triage Waiting for discussion / prioritization by team labels Oct 27, 2023
@hslatman
Copy link
Member

@BoxedBrain does the password work if you provide it using a file or while escaping it on the command line? I suspect some character is problematic while providing it interactively.

@BoxedBrain
Copy link
Author

BoxedBrain commented Oct 27, 2023
edited

@hslatman yes, providing it using --provisioner-password-file=pw.txt works as expected.
Also, I had the same problem with different generated passwords.

@dopey dopey self-assigned this Nov 7, 2023
@hslatman hslatman added this to the v0.25.1 milestone Nov 21, 2023
@hslatman hslatman modified the milestones: v0.25.1, v0.25.2 Nov 29, 2023
@hslatman hslatman modified the milestones: v0.26.0, v0.26.1 Mar 29, 2024
@hslatman hslatman modified the milestones: v0.26.1, v0.26.2 Apr 25, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dopey dopey

Labels
bug needs triage Waiting for discussion / prioritization by team
Projects
None yet
Milestone
v0.26.2
Development

No branches or pull requests
3 participants
@hslatman @dopey @BoxedBrain