[ https://issues.apache.org/jira/browse/NIFI-5816?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Laurenceau Julien updated NIFI-5816: ------------------------------------ Description: Hi, The JSch library used for SFTP does not support HostKeyAlgorithms=ed25519 whereas it is the current standard. This make SFTP / SSH unusable when dealing with recent openssh config. On dbeaver project they switched to sshj. [https://github.com/dbeaver/dbeaver/issues/2202] [https://community.hortonworks.com/answers/226377/view.html] One more argument against JSch is that it does not support rsa key length other than default (2048). ssh-keygen -o -t rsa -b 4096 -f id_rsa -> does not work with nifi ssh-keygen -t rsa -f id_rsa -> works with nifi Thanks and regards JL PS : sorry but I do not know nifi deep enough to fill all fields. was: Hi, The JSch library used for SFTP does not support HostKeyAlgorithms=ed25519 whereas it is the current standard. This make SFTP / SSH unusable when dealing with recent openssh config. On dbeaver project they switched to sshj. https://github.com/dbeaver/dbeaver/issues/2202 [https://community.hortonworks.com/answers/226377/view.html] Thanks and regards JL PS : sorry but I do not know nifi deep enough to fill all fields. Summary: SFTP cannot connect due to JSch limitations (was: SFTP cannot connect using ed25519-based key) > SFTP cannot connect due to JSch limitations > ------------------------------------------- > > Key: NIFI-5816 > URL: https://issues.apache.org/jira/browse/NIFI-5816 > Project: Apache NiFi > Issue Type: Improvement > Components: Extensions > Affects Versions: 1.8.0 > Reporter: Laurenceau Julien > Priority: Minor > > Hi, > The JSch library used for SFTP does not support HostKeyAlgorithms=ed25519 > whereas it is the current standard. This make SFTP / SSH unusable when > dealing with recent openssh config. > On dbeaver project they switched to sshj. > [https://github.com/dbeaver/dbeaver/issues/2202] > [https://community.hortonworks.com/answers/226377/view.html] > > One more argument against JSch is that it does not support rsa key length > other than default (2048). > ssh-keygen -o -t rsa -b 4096 -f id_rsa -> does not work with nifi > ssh-keygen -t rsa -f id_rsa -> works with nifi > Thanks and regards > JL > PS : sorry but I do not know nifi deep enough to fill all fields. > > -- This message was sent by Atlassian JIRA (v7.6.3#76005)