Conditionally disable strict-host-key-checking

2024-11-10 01:25:21 +00:00 · 2022-09-28 11:22:41 +00:00 · 2022-09-28 11:22:41 +00:00 · 7265b47932
commit 7265b47932
parent c68ef2ff7f
1 changed files with 8 additions and 4 deletions
--- a/tests/jepsen.clickhouse-keeper/src/jepsen/clickhouse_keeper/main.clj
+++ b/tests/jepsen.clickhouse-keeper/src/jepsen/clickhouse_keeper/main.clj
@ -15,10 +15,14 @@
  (connect [this conn-spec]
    (if (:dummy conn-spec)
      (assoc this :conn-spec conn-spec)
-      (try+ (let [c (doto (SSHClient. (doto (DefaultConfig.) (.setVerifyHostKeyCertificates false)))
-                      (.addHostKeyVerifier (PromiscuousVerifier.))
-                      (.connect (:host conn-spec) (:port conn-spec))
-                      (auth! conn-spec))]
+      (try+ (let [c (as-> (SSHClient.) client
+                      (do
+                        (if (:strict-host-key-checking conn-spec)
+                          (.loadKnownHosts client)
+                          (.addHostKeyVerifier client (PromiscuousVerifier.)))
+                        (.connect client (:host conn-spec) (:port conn-spec))
+                        (auth! client conn-spec)
+                        client))]
              (assoc this
                     :conn-spec conn-spec
                     :client c