karaf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF subversion and git services (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (KARAF-5809) 'simple' host.key files no longer work
Date Thu, 12 Jul 2018 04:27:01 GMT

    [ https://issues.apache.org/jira/browse/KARAF-5809?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16541114#comment-16541114

ASF subversion and git services commented on KARAF-5809:

Commit 21c2a935cd1a6b5d762f2fb9b39e21b3eae91c00 in karaf's branch refs/heads/master from [~jb@nanthrax.net]
[ https://gitbox.apache.org/repos/asf?p=karaf.git;h=21c2a93 ]

Merge pull request #543 from seeburger-ag/topic/KARAF-5809

[KARAF-5809] fallback for 'simple' host.key

> 'simple' host.key files no longer work
> --------------------------------------
>                 Key: KARAF-5809
>                 URL: https://issues.apache.org/jira/browse/KARAF-5809
>             Project: Karaf
>          Issue Type: Bug
>          Components: karaf-shell
>    Affects Versions: 4.2.0
>            Reporter: Johannes Utzig
>            Assignee: Jean-Baptiste Onofré
>            Priority: Major
>             Fix For: 4.2.1
> It seems  that with KARAF-5286 support for the 'simple' host key format was removed.
> If one tries to connect to a karaf instance that still has a 'simple' host.key, it produces
this exception:
> org.apache.commons.ssl.ProbablyNotPKCS8Exception: asn1 parse failure: java.io.IOException:
DER length more than 4 bytes
> It seems that in this case the SSH server generates a new key in memory without persisting
it which means that on each start the client will see a new SSH fingerprint.
> I would like to submit a pull request that falls back to the old format in case the file
is not a valid PEM. If that's successful it would replace the host.key with a PEM version
of that keypair.

This message was sent by Atlassian JIRA

View raw message