svn: E215003: Host key can not be verified

Platform Notice: Data Center Only - This article only applies to Atlassian products on the Data Center platform.

Note that this KB was created for the Data Center version of the product. Data Center KBs for non-Data-Center-specific features may also work for Server versions of the product, however they have not been tested. Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.

*Except Fisheye and Crucible

Symptoms

In Fisheye 2.8, when attempting to connect (index) to an SVN repository using svn+ssh protocol, the following exception occurs:

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 2012-08-30 10:30:40,706 WARN [IncrementalPinger1 acme] fisheye.app SvnRepositoryTester-getServerRootURL - Unable to get info for the repository root for acme com.cenqua.fisheye.rep.RepositoryClientException: org.tigris.subversion.javahl.ClientException: svn: E210002: There was a problem while connecting to svn.code.sf.net:22 at com.cenqua.fisheye.svn.SvnThrottledClient.info2(SvnThrottledClient.java:115) at com.cenqua.fisheye.svn.SvnRepositoryTester.getServerRootURL(SvnRepositoryTester.java:90) […] Caused by: org.tigris.subversion.javahl.ClientException: svn: E210002: There was a problem while connecting to svn.code.sf.net:22 at org.tigris.subversion.javahl.JavaHLObjectFactory.throwException(JavaHLObjectFactory.java:785) at org.tmatesoft.svn.core.javahl.SVNClientImpl.throwException(SVNClientImpl.java:1887) […] Caused by: org.tmatesoft.svn.core.SVNException: svn: E210002: There was a problem while connecting to svn.code.sf.net:22 at org.tmatesoft.svn.core.internal.wc.SVNErrorManager.error(SVNErrorManager.java:64) […] Caused by: java.io.IOException: There was a problem while connecting to svn.code.sf.net:22 at com.trilead.ssh2.Connection.connect(Connection.java:792) at org.tmatesoft.svn.core.internal.io.svn.ssh.SshHost.openConnection(SshHost.java:205) […] ... 33 more Caused by: java.io.IOException: Key exchange was not finished, connection is closed. at com.trilead.ssh2.transport.KexManager.getOrWaitForConnectionInfo(KexManager.java:92) at com.trilead.ssh2.transport.TransportManager.getConnectionInfo(TransportManager.java:231) at com.trilead.ssh2.Connection.connect(Connection.java:744) ... 37 more Caused by: java.io.IOException: The server hostkey was not accepted by the verifier callback. at com.trilead.ssh2.transport.KexManager.handleMessage(KexManager.java:538) at com.trilead.ssh2.transport.TransportManager.receiveLoop(TransportManager.java:760) at com.trilead.ssh2.transport.TransportManager$1.run(TransportManager.java:475) ... 1 more Caused by: org.tmatesoft.svn.core.SVNAuthenticationException: svn: E215003: Host key ('svn.code.sf.net:22 <ssh-rsa>') can not be verified. at org.tmatesoft.svn.core.internal.wc.DefaultSVNAuthenticationManager.verifyHostKey(DefaultSVNAuthenticationManager.java:563) at org.tmatesoft.svn.core.internal.io.svn.SVNSSHConnector$1.verifyServerHostKey(SVNSSHConnector.java:124)

Cause

The new version of SVNKit introduced in Fisheye 2.8 requires extra checks on the stored SSH keys. FE-4433 - svnkit svn+ssh handling

Resolution

Run the following command with the same user running Fisheye in order to add permanently ('p') the key to the SVN cache:

1  <FishEye Installation Directory>/lib/svn/jsvn --username USER --password PASS info svn+ssh://svn.code.sf.net/acme

This should lead to the following output:

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 Authentication realm: svn+ssh://svn.code.sf.net Username: Password for 'svn.code.sf.net' (leave blank if you are going to use private key): Port number for 'svn.code.sf.net' [22]: The 'svn.code.sf.net' server's key fingerprint is: 86:7b:1b:12:85:35:8a:b7:98:b6:d2:97:5e:96:58:1d If you trust this host, enter 'p' to add the key to the SVN cache and carry on connecting. If you want to carry on connecting just once, without adding the key to the cache, type 't'.If you do not trust this host, type 'R' to abandon the connection. (R)eject, accept (t)emporarily or accept (p)ermanently? p ----------------------------------------------------------------------- ATTENTION! Your password for authentication realm: bbunny@svn+ssh://svn.code.sf.net can only be stored to disk unencrypted! You are advised to configure your system so that Subversion can store passwords encrypted, if possible. See the documentation for details. You can avoid future appearances of this warning by setting the value of the 'store-plaintext-passwords' option to either 'yes' or 'no' in '/Users/bbunny/.subversion/servers'. ----------------------------------------------------------------------- Store password unencrypted (yes/no)? no Path: code URL: svn+ssh://svn.code.sf.net/acme Repository Root: svn+ssh://svn.code.sf.net/acme Repository UUID: 76719130-f504-4f65-a476-78dc41affe4c Revision: 1 Node Kind: directory Last Changed Author: dduck Last Changed Rev: 1 Last Changed Date: 2012-08-29 14:44:49 +0200 (Wed, 29 Aug 2012)

For more information on JSVN usage, please refer to this page.

Updated on April 8, 2025
Platform
Data Center only
Products
Fisheye Data Center
Crucible Data Center
On this pageSymptomsCauseResolution

Still need help?

The Atlassian Community is here for you.
Ask the Community