Skip to content

Commit 10efe47

Browse files
authored
Merge branch 'main' into CVE-2026-42035
2 parents 74c86fe + 8dbc10d commit 10efe47

4 files changed

Lines changed: 16 additions & 14 deletions

File tree

build/scripts/code-sshd-page/server.js

Lines changed: 5 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -37,7 +37,7 @@ const server = http.createServer((req, res) => {
3737

3838
let genKey = "PRIVATE KEY NOT FOUND";
3939
try {
40-
genKey = fs.readFileSync(`/sshd/ssh_client_ed25519_key`, 'utf8');
40+
genKey = fs.readFileSync(`/sshd/ssh_client_key`, 'utf8');
4141
} catch (err) {
4242
// continue
4343
}
@@ -113,8 +113,9 @@ const server = http.createServer((req, res) => {
113113
HostName 127.0.0.1
114114
User ${username}
115115
Port 2022
116-
IdentityFile "$\{HOME\}/.ssh/ssh_client_ed25519_key"
117-
UserKnownHostsFile /dev/null</pre>
116+
IdentityFile "$\{HOME\}/.ssh/ssh_client_key"
117+
UserKnownHostsFile /dev/null
118+
StrictHostKeyChecking no</pre>
118119
</div>
119120
<div class="clipboard">
120121
<a href="#">
@@ -126,7 +127,7 @@ const server = http.createServer((req, res) => {
126127
</div>
127128
</div>
128129
<p>
129-
Where <code class="path">$\{HOME\}/.ssh/ssh_client_ed25519_key</code> should be replaced by the absolute path to the private key file on your local system.
130+
Where <code class="path">$\{HOME\}/.ssh/ssh_client_key</code> should be replaced by the absolute path to the private key file on your local system.
130131
</p>
131132
</li>
132133
</ol>

build/scripts/sshd.start

Lines changed: 8 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -79,11 +79,10 @@ fi
7979
mkdir /var/tmp/ssh
8080
chmod 755 /var/tmp/ssh
8181

82-
# Generate SSH Host keys
83-
$sshd_libdir/ssh-keygen -q -N "" -t dsa -f /var/tmp/ssh/ssh_host_dsa_key && \
84-
$sshd_libdir/ssh-keygen -q -N "" -t rsa -b 4096 -f /var/tmp/ssh/ssh_host_rsa_key && \
85-
$sshd_libdir/ssh-keygen -q -N "" -t ecdsa -f /var/tmp/ssh/ssh_host_ecdsa_key && \
86-
$sshd_libdir/ssh-keygen -q -N "" -t ed25519 -f /var/tmp/ssh/ssh_host_ed25519_key
82+
echo 'Generating SSH host keys ..'
83+
$sshd_libdir/ssh-keygen -q -N "" -t rsa -b 4096 -f /var/tmp/ssh/ssh_host_rsa_key || true
84+
$sshd_libdir/ssh-keygen -q -N "" -t ecdsa -f /var/tmp/ssh/ssh_host_ecdsa_key || true
85+
$sshd_libdir/ssh-keygen -q -N "" -t ed25519 -f /var/tmp/ssh/ssh_host_ed25519_key || true
8786

8887
# Ensure appropriate permissions
8988
chmod 600 /var/tmp/ssh/ssh_host_* /sshd/sshd_config
@@ -107,10 +106,12 @@ sed -i \
107106
# Use keys that have been configured, and generate them otherwise
108107
mkdir -p $HOME/.ssh
109108
if [ -f /etc/ssh/dwo_ssh_key.pub ]; then
109+
echo 'Using pre-configured SSH client key.'
110110
cp /etc/ssh/dwo_ssh_key.pub $HOME/.ssh/authorized_keys
111111
else
112-
$sshd_libdir/ssh-keygen -q -N '' -t ed25519 -f /sshd/ssh_client_ed25519_key
113-
cp /sshd/ssh_client_ed25519_key.pub $HOME/.ssh/authorized_keys
112+
echo 'Generating SSH client key..'
113+
$sshd_libdir/ssh-keygen -q -N '' -t ecdsa -f /sshd/ssh_client_key
114+
cp /sshd/ssh_client_key.pub $HOME/.ssh/authorized_keys
114115
fi
115116

116117
cp /sshd/sshd_config /var/tmp/ssh/

package-lock.json

Lines changed: 2 additions & 2 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "che-code",
3-
"version": "7.117.0-next",
3+
"version": "7.118.0-next",
44
"description": "Run Code-OSS on kubernetes",
55
"scripts": {
66
"prepare": "cd code && npm install && npm run download-builtin-extensions",

0 commit comments

Comments
 (0)