Removing a node, ssh pub key left behind, offline migration fails

[mailinglists]

I destroyed and removed a node (pvecm delnode nodename).
Then I installed a new node, but used the same IP and name.

After doing operations like offline migrate I noticed, that ssh automatic login won't work because:

2019-06-24 17:06:55 # /usr/bin/ssh -e none -o 'BatchMode=yes' -o 'HostKeyAlias=XXX' root@XXX /bin/true
2019-06-24 17:06:55 @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
2019-06-24 17:06:55 @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
2019-06-24 17:06:55 @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
2019-06-24 17:06:55 IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!

so migration fails also.

I will investigate how to best solve this. I tried by removing the offendig keys on source, accepting new ones, but offline migration still fails.

 

[mailinglists]

I did investigate.
One has to accept default ssh keys for host and IP, then it works.
I just wonder why node name is used instead of IP.
example ssh@nodename instead of ssh@IPofnode

 

[Chris]

Hi, just for your information. A `pvecm updatecerts` might help in such situations. Further, the fingerprints are checked also for the nodenames, not only the IP, so this should make no difference.