when multiple SSH host key certificates are defined, only one HostCertificate is referenced in sshd_config
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
cloud-init |
Fix Released
|
High
|
Alberto Contreras |
Bug Description
I'm not using a cloud provider; I'm installing Ubuntu 20.04 using autoinstall and the bug is triggered during cloud-init with user-data ( cloud-init 22.4.2-
I defined 3 types of SSH host keys and certs in user-data. All 3 keys and certs ended up in /etc/ssh/, but in sshd_config, there is only one HostCertificate line for the RSA key.
user-data excerpt:
#cloud-config
autoinstall:
version: 1
[...]
user-data:
timezone: UTC
disable_root: false
ssh_deletekeys: false
ssh_
ssh_keys:
rsa_private: |
[REDACTED]
rsa_public: |
[REDACTED]
rsa_
[REDACTED]
ecdsa_
[REDACTED]
ecdsa_public: |
[REDACTED]
ecdsa_
[REDACTED]
ed25519_
[REDACTED]
ed25519_
[REDACTED]
ed25519_
[REDACTED]
Result:
in /etc/sshd/
Changed in cloud-init: | |
status: | In Progress → Fix Committed |
Reproduced on LXD using the cloud-config (minus the autoinstall). Triaging as high since it's ssh-related.