Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 1.12.2, 1.10.5, 1.11.4
Affects Version/s: 1.10.1
Component/s: ArgoCD
Labels:

Story Points:
8
Blocked:
False
Blocked Reason:
None
Ready:
False
Release Note Text:

Hide
Before this fix, Argo CD would report errors when attempting to connect to Azure DevOps Repos, due to the Azure DevOps Repos service recently (May 2024) deprecating rsa-ssh host key algorithms using <= 256 bits in the signature. This fix ensures that Argo CD correctly reports support for these host key algorithms during the handshake process, allowing the pull from Azure DevOps Repos to succeed.

Show
Before this fix, Argo CD would report errors when attempting to connect to Azure DevOps Repos, due to the Azure DevOps Repos service recently (May 2024) deprecating rsa-ssh host key algorithms using <= 256 bits in the signature. This fix ensures that Argo CD correctly reports support for these host key algorithms during the handshake process, allowing the pull from Azure DevOps Repos to succeed.
Release Note Type:
Bug Fix
Release Note Status:
Done
Intelligence Requested:
Market:

Sprint:
GitOps Scarlet - Sprint 3256

SFDC Cases Counter:
SFDC Cases Links:

Description of problem:

See upstream Argo CD issue for details: https://github.com/argoproj/argo-cd/issues/17634

SSH RSA Deprecation notice
https://devblogs.microsoft.com/devops/ssh-rsa-deprecation/

Steps to Reproduce

As mentioned on the upstream issue, users of Azure Repos may encounter temporary failure when using Azure Repos with a non RSA-SHA2-256 or RSA-SHA2-512 key.

This will become a permanent failure later in Q2 2024, when Azure Repos fully disables support for these deprecated ciphers.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

image (22).png
49 kB
2024/04/29 8:33 AM
Screenshot from 2024-04-30 02-59-54.png
105 kB
2024/04/30 7:03 AM

is depended on by

GITOPS-4645 ArgoCD Repo Server stops pulling git repositories due to Azure Devops Repos current sunset SSH-RSA strategy

Release Pending

links to

RHSA-2024:130830 Openshift GitOps 1.12.2 - Bug Fixes and Argo CD UI security update

RHSA-2024:130841 Openshift GitOps 1.11.4 - Bug Fixes and Argo CD UI security update

RHSA-2024:130842 Openshift GitOps 1.10.5 - Bug Fixes and Argo CD UI security update

Assignee:: Jonathan West

Reporter:: Jonathan West

Votes:: 2 Vote for this issue

Watchers:: 9 Start watching this issue

Created:: 2024/04/19 7:28 PM

Updated:: 2024/05/02 2:23 PM

Resolved:: 2024/05/01 9:15 AM

Details

Description

Description of problem:

Steps to Reproduce

Attachments

Attachments

Issue Links

Activity

People

Dates