woeisme
commented
2 years ago @ben-sedg Are you getting a message similar to this:
root@OpenWrt:~# ssh root@192.168.1.2
ssh: Connection to root@192.168.1.2:22 exited:
ssh-ed25519 host key mismatch for 192.168.1.2 !
Fingerprint is sha1!! **BLANKED**
Expected sha1!! 8
I also found this answer which may be relevant to users coming from OpenWRT.
Issue occurs in this situation: trusted hosts file contains a host key for a target, with format type: ecdsa-sha2-nistp256
new version of ssh now supports host key format: ssh-ed25519 when ssh tries to connect, it will use host key format ssh-ed25519, and will not find it in the known_hosts file, and proceed to say the target is not in the trusted hosts file.
However, the target is in fact in the trusted host file, just under a different key format.
Perhaps ssh should check the host key format used in the trusted hosts file, and try to verify host using that key/format.