b7dd998 cloud vagrant: continue to support vagrant insecure rsa key

Authored and Committed by dustymabe 3 years ago
    cloud vagrant: continue to support vagrant insecure rsa key
    
    Upstream SSH has been claiming [1] for a few releases now that:
    
    ```
    It is now possible to perform chosen-prefix attacks against the
    SHA-1 algorithm for less than USD$50K. For this reason, we will be
    disabling the "ssh-rsa" public key signature algorithm by default in a
    near-future release.
    ```
    
    In Fedora we switched recently [2] to disallow ssh-rsa. I filed a bug
    upstream [3] for Vagrant to stop using an rsa key. For now let's workaround
    the issue.
    
    [1] https://www.openssh.com/txt/release-8.3
    [2] https://gitlab.com/redhat-crypto/fedora-crypto-policies/-/commit/b298a9e107b7e9699b36879eca031d1900ded1c4
    [3] https://github.com/hashicorp/vagrant/issues/11783
    
        
file modified
+6 -0