Karaf ssh regression (bug?) in 4.2.0

Upon upgrade from 3.4.2 to 4.2.0 karaf console stopped accepting ssh key of type “ecdsa-sha2-nistp256”.

Configuration files:

  • /srv/openhab-userdata/etc/org.apache.karaf.shell.cfg
  • /srv/openhab-userdata/etc/keys.properties

were not changed, yet ssh into karaf stopped working.

The not working key is in keys.properties and was not removed upon upgrade.

If I use (a new) rsa2048 key (adding it to keys.properties in addition to not working one), I can log in.

Please advise.

p.s. there is 1% chance that my memory is playing tricks with me, and it never worked with ecdsa-sha2-nistp256 keys, yet it should and I remember it worked :slight_smile:

Afaik karaf console is restricted to rsa.

BUT the karaf version 4.4.6 should indeed support ecdsa keys as mentioned in Apache Karaf - News.

Maybe there is still some configuration missing.