From 0a423deff428677c096e6066afde20605328b85f Mon Sep 17 00:00:00 2001 From: Simone Gotti Date: Tue, 22 Mar 2022 14:16:21 +0100 Subject: [PATCH] runconfig: temporary enable ssh client ssh-rsa sha1 signature algorithm Newer versions of openssh client disables ssh-rsa sha1 public key signature algorithm. Unfortunately gitea ssh server requires this signature algorithm instead of using the stronger rsa-sha2-256/rsa-sha2-512 (see https://github.com/go-gitea/gitea/issues/17798) So, as a temporary workaround, force enable on the ssh client the ssh-rsa sha1 signature algorithm. --- internal/runconfig/runconfig.go | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/internal/runconfig/runconfig.go b/internal/runconfig/runconfig.go index 4856baf3a..bdbb7a796 100644 --- a/internal/runconfig/runconfig.go +++ b/internal/runconfig/runconfig.go @@ -109,6 +109,11 @@ Host $AGOLA_GIT_HOST Port $AGOLA_GIT_PORT StrictHostKeyChecking ${STRICT_HOST_KEY_CHECKING} PasswordAuthentication no + + IgnoreUnknown PubkeyAcceptedKeyTypes + IgnoreUnknown PubkeyAcceptedAlgorithms + PubkeyAcceptedKeyTypes +ssh-rsa + PubkeyAcceptedAlgorithms +ssh-rsa EOF )