Q: Date/Time this occurred (Provide your time zone also)
**A: 2/9/2022 - 2/10/2022 multiple times **
Q: DevKinsta Version
**A: 2.4.0 **
Q: OS Version
**A: Windows 11 Pro 22000.493 **
Q: Docker Desktop Version
**A: 4.4.4 (73704) **
Q: Were any error codes or messages observed? If so, what were they?
**A: DK0029 **
Q: Detailed Description of the Problem
Trying to import a site and getting the DK0029 error, but it seems to be different than the other issues people have had regarding that error. The Kinsta log:
[2022-02-10 10:51:54.131] [error] Error - DK0029: MYSQL_DUMP_COMMON: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ WARNING: UNPROTECTED PRIVATE KEY FILE! @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@Permissions 0755 for '/root/.ssh/id_rsa' are too open.It is required that your private key files are NOT accessible by others.This private key will be ignored.Load key "/root/.ssh/id_rsa": bad permissions
at file:///C:/Users/Matt/AppData/Local/Programs/DevKinsta/resources/app.asar/dist/renderer.prod.js:2:863746
at tryCatch (file:///C:/Users/Matt/AppData/Local/Programs/DevKinsta/resources/app.asar/dist/renderer.prod.js:8:2526220)
at Generator._invoke (file:///C:/Users/Matt/AppData/Local/Programs/DevKinsta/resources/app.asar/dist/renderer.prod.js:8:2525843)
at Generator.next (file:///C:/Users/Matt/AppData/Local/Programs/DevKinsta/resources/app.asar/dist/renderer.prod.js:8:2526986)
at asyncGeneratorStep (file:///C:/Users/Matt/AppData/Local/Programs/DevKinsta/resources/app.asar/dist/renderer.prod.js:2:1003)
at _next (file:///C:/Users/Matt/AppData/Local/Programs/DevKinsta/resources/app.asar/dist/renderer.prod.js:2:1302)
at processTicksAndRejections (node:internal/process/task_queues:96:5)
Iām not quite sure which id_rsa itās referring to though. The only container I could find with the file is devkinsta_fpm and I tried chmod 600 /root/.ssh/id_rsa but that didnāt fix it.
Iāve also tried deleting all sites in DevKinsta, all devkinsta_ containers, uninstalling DevKinsta and reinstalling and no dice either.
Hi @mattd, thanks for reaching out. Iām trying to figure out what would actually cause this as well. Is this happening with ANY site you try to import?
Are you able to create a new WordPress website within DevKinsta without issue? If you can share your main.log file after this failure, I can share it with our devs to hopefully get more insight.
Thanks for sharing that, @mattd! Iām going to have our Devs look into what might be happening there.
I also would recommend doing a factor reset of Docker before trying again. I checked your site within MyKinsta for abnormalities and nothing stood out to me, although there could be something that the Devs can spot.
Were you copying the Live site from MyKinsta or the Staging?
Please let me know if doing this still leads to the same private key error. Youāre not the only person to have this error on Windows but Iām still not sure what exactly is causing it.
Thanks for the suggestion @Kevin. Iām afraid it didnāt work though I followed the steps and the .ssh directory was recreated like you expected, but attempting to import a site still gives the same error.
Huh very odd. So can you open WSL console then navigate to the DevKinsta/.ssh directory and check the permissions that are being set for id_rsa?
Open a WSL console
cd /mnt/c/Users/username/DevKinsta/.ssh
āstat id_rsaā
āAccessā will tell you the permissions
Whatever WSL sees here seems to be what DevKinsta sees as the file permissions. I feel like the permissions arenāt being set correctly by your PC for some reason.
[2022-02-16 10:24:46.352] [error] Error - DK0029: MYSQL_DUMP_COMMON: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ WARNING: UNPROTECTED PRIVATE KEY FILE! @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@Permissions 0755 for '/root/.ssh/id_rsa' are too open.It is required that your private key files are NOT accessible by others.This private key will be ignored.Load key "/root/.ssh/id_rsa": bad permissions
So /root/.ssh maps to C:/Users/user/DevKinsta/.ssh, or is the error referring to a different location?
So I was looking at this based on a site Push; thatās where the id_rsa is in that case. Looking at your original error itās probably due to the id_rsa on Kinsta since youāre doing a Site Pull. Iām working on this right now/trying to reproduce the error exactly as itās showing for you.
Iāll see if any permissions on Kinsta need to be changed. Do you mind if I only look into your Staging site? Donāt want to do anything that affects the Live site.
Thanks @mattd;
So Iāve finally been able to reproduce the exact error you are having and I think my original conclusion is correct. For some reason the permissions for .ssh/id_rsa are not being set correctly. Are you logged in as the root/admin user? Looking back at your stat id_rsa, I notice that your Access/ Uid and Gid donāt match what I get as the root/main user on my computer:
Maybe you need to delete the .ssh directory again and make sure youāre running DevKinsta as the administrator when you log into your Kinsta account? Also if you have another PC that you can use to test, that would help, too.
The mysqldump command uses the SSH credentials on your computer to connect to the Kinsta site. Iāve spent a couple of hours trying to figure out how to manually set the file permissions from within Windows but for whatever reason nothing as simple as āchmodā and āchownā exists for Windows. It is interesting that your permissions arenāt being set the same way as mine on my computers, though.
I think if you install DevKinsta on the main/admin Windows account you can get past this. Iāll keep trying to reproduce this but admin privileges/permissions seems like the best thing to look into.
I did mention this to our devs and they may look into ignoring this permissions notice so that it doesnāt cause import/export to fail.
Hi @Kevin, I tried logging out of DevKinsta, exiting the app, deleted the .ssh directory, opened DevKinsta with admin privileges, and logged back inā¦ and no dice
The .ssh directory was re-created, but stat id_rsa is still showing my UID, not root.
I tried importing a site again anyways and still the same error.
FYI, Iām running Docker Desktop with the Hyper-V backend (vs WSL 2) as discussed here if that matters.
Thanks for trying @mattd; Iām still not sure whatās causing this for certain Windows users but the permissions on that file are definitely the issue. Iāve used this weekās troubleshooting to bring this up with the Devs. Iāll be sure to update you if they can think of a workaround or solution.
Thanks again for working with me on this one. Itās a very odd issue.
Hey @mattd, Iāve been discussing ways to resolve this in future versions with our devs but Iāve been looking into quick fixes. Using Hyper-V might be causing the difference in permissions when the file is created but I havenāt been able to reproduce your setup yet.
Can you see if running this in the DevKinsta/.ssh directory helps with the folder permissions? If you can stat the file again after that would be helpful:
Hi @Kevin, working from the office today (first time since the issue) and crazy enough, Iām getting the same exact error on my work machine. Totally different computer, network, etc. Similarities are that itās Windows 10 Pro and Hyper-V backend for Docker Desktop.
I tried running the command(s) you suggested but still no luck. (I think the 2nd command was supposed to be chown not chmod?)
Not sure if I mentioned this before, but both my work and home PCs ran DevKinsta just fine until recently when this error popped up. Honestly not sure if it was after a specific update thoughā¦
Thanks @mattd,
Yes, chown, sorry! Yes there have been a lot of updates lately but Iām not sure what would cause this. Thereās a small handful of people having the same issue but I donāt think everyone is using a Hyper-V backend setup.
I guess Iāll just try to emulate your setup sometime. By the way, did manually creating a new id_rsa still leave you with 644 permissions on that file?
