karaf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Johannes Utzig (JIRA)" <j...@apache.org>
Subject [jira] [Created] (KARAF-5809) 'simple' host.key files no longer work
Date Tue, 10 Jul 2018 15:05:00 GMT
Johannes Utzig created KARAF-5809:

             Summary: 'simple' host.key files no longer work
                 Key: KARAF-5809
                 URL: https://issues.apache.org/jira/browse/KARAF-5809
             Project: Karaf
          Issue Type: Bug
          Components: karaf-shell
    Affects Versions: 4.2.0
            Reporter: Johannes Utzig

It seemsĀ  that with KARAF-5286 support for the 'simple' host key format was removed.

If one tries to connect to a karaf instance that still has a 'simple' host.key, it produces
this exception:

org.apache.commons.ssl.ProbablyNotPKCS8Exception: asn1 parse failure: java.io.IOException:
DER length more than 4 bytes

It seems that in this case the SSH server generates a new key in memory without persisting
it which means that on each start the client will see a new SSH fingerprint.

I would like to submit a pull request that falls back to the old format in case the file is
not a valid PEM. If that's successful it would replace the host.key with a PEM version of
that keypair.

This message was sent by Atlassian JIRA

View raw message