CLOUDSTACK-10213: Allow specify SSH key lengh (#2389)

Dmytro Shevchenko · yadvr · commit 0d0fa5e30663 · 2018-01-09T12:16:37.000+05:30
SSH keys generated by the ACS are only 1024 bit (RSA). The common standard is now at least 2048 bit.
diff --git a/server/src/com/cloud/server/ManagementServerImpl.java b/server/src/com/cloud/server/ManagementServerImpl.java
@@ -696,6 +696,8 @@ public class ManagementServerImpl extends ManagerBase implements ManagementServe
 
     static final ConfigKey<Integer> vmPasswordLength = new ConfigKey<Integer>("Advanced", Integer.class, "vm.password.length", "6",
                                                                                       "Specifies the length of a randomly generated password", false);
+    static final ConfigKey<Integer> sshKeyLength = new ConfigKey<Integer>("Advanced", Integer.class, "ssh.key.length",
+            "2048", "Specifies custom SSH key length (bit)", true, ConfigKey.Scope.Global);
     @Inject
     public AccountManager _accountMgr;
     @Inject
@@ -3051,7 +3053,7 @@ public String getConfigComponentName() {
 
     @Override
     public ConfigKey<?>[] getConfigKeys() {
-        return new ConfigKey<?>[] {vmPasswordLength};
+        return new ConfigKey<?>[] {vmPasswordLength, sshKeyLength};
     }
 
     protected class EventPurgeTask extends ManagedContextRunnable {
@@ -3583,7 +3585,7 @@ public SSHKeyPair createSSHKeyPair(final CreateSSHKeyPairCmd cmd) {
             throw new InvalidParameterValueException("A key pair with name '" + cmd.getName() + "' already exists.");
         }
 
-        final SSHKeysHelper keys = new SSHKeysHelper();
+        final SSHKeysHelper keys = new SSHKeysHelper(sshKeyLength.value());
 
         final String name = cmd.getName();
         final String publicKey = keys.getPublicKey();
diff --git a/utils/src/main/java/com/cloud/utils/ssh/SSHKeysHelper.java b/utils/src/main/java/com/cloud/utils/ssh/SSHKeysHelper.java
@@ -43,9 +43,9 @@ private static String toHexString(byte[] b) {
         return sb.toString();
     }
 
-    public SSHKeysHelper() {
+    public SSHKeysHelper(Integer keyLength) {
         try {
-            keyPair = KeyPair.genKeyPair(new JSch(), KeyPair.RSA);
+            keyPair = KeyPair.genKeyPair(new JSch(), KeyPair.RSA, keyLength);
         } catch (JSchException e) {
             e.printStackTrace();
         }

Original file line number	Diff line number	Diff line change
`@@ -43,9 +43,9 @@ private static String toHexString(byte[] b) {`
`43`	`43`	`return sb.toString();`
`44`	`44`	`}`
`45`	`45`
`46`		`- public SSHKeysHelper() {`
	`46`	`+ public SSHKeysHelper(Integer keyLength) {`
`47`	`47`	`try {`
`48`		`- keyPair = KeyPair.genKeyPair(new JSch(), KeyPair.RSA);`
	`48`	`+ keyPair = KeyPair.genKeyPair(new JSch(), KeyPair.RSA, keyLength);`
`49`	`49`	`} catch (JSchException e) {`
`50`	`50`	`e.printStackTrace();`
`51`	`51`	`}`