Dockerfile: skip passphrase for private key

I’m using private keys for downloading my repository from Github in my Docker file. I have something like this:

RUN mkdir -p /root/.ssh && echo "$MY_PRIVATE_KEY" >/root/.ssh/id_rsa &&    chmod 0600 /root/.ssh/id_rsa &&    ssh-keyscan >> /root/.ssh/known_hosts &&    cat /root/.ssh/known_hosts &&    ssh -vvv &&    pip install git+ssh:// &&    rm /root/.ssh/id_rsa

Where MY_PRIVATE_KEY is an argument. I’m not able to re-create this key.
My issue is that during connection process I’m getting the following error:
key_load_private_type: incorrect passphrase supplied to decrypt private key

  • How to add initial users when starting a RabbitMQ Docker container?
  • docker: java based application resource duplication
  • docker-compose up leads to “client and server don't have same version (client : 1.14, server: 1.12)” error but client and server have the same version
  • How do I use a volume created by the docker volume command?
  • Docker killed by system when build
  • No docker-quickstart found on mac
  • Is it possible to skip passphrase somehow?

  • How do I copy a directory from one container to another container in Docker Compose?
  • Docker exec via rancher API
  • Can't build openjdk:8-jdk image directly
  • bundler installed gems not persisting in fig/docker
  • How to assign as static port to a container?
  • Install package png on Rstudio on Docker,but failed
  • 2 Solutions collect form web for “Dockerfile: skip passphrase for private key”

    The passphrase is required to decrypt the key. You can’t “skip” it. You could remove the passphrase on the key using ssh-keygen -p (see the man page for details).

    You may want to investigate the use of a GitHub Deploy Key, which is a per-repository ssh key that grants read-only access to the repository. These are meant to solve exactly the situation you find yourself in: needing to automaticaly deploy software from a GitHub repository that requires authentication.

    Your MY_PRIVATE_KEY seems to be passphrase-protected (a key with an empty passphrase is not the same as a non-encrypted key).

    The key in .ssh/id_rsa is normally not passphrase-protected, instead it is protected by permissions to allow only owner access (0600).

    You can remove the passphrase from your key using OpenSSL like this:

    set MY_PRIVATE_KEY = `echo $MY_PRIVATE_KEY | openssl rsa`

    The contents of id_rsa should look like:

    . . .
    -----END RSA PRIVATE KEY-----
    Docker will be the best open platform for developers and sysadmins to build, ship, and run distributed applications.