-
Notifications
You must be signed in to change notification settings - Fork 584
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update net-ssh to support RHEL 9 / AlmaLinux 9 / RockyLinux 9 #1904
Comments
Adding Oracle Linux 9 to the list as well. |
When is this expected to be fixed/released? |
@vkarve-chef This should be a quick and easy one to fix RHEL 9 support. Simply need to update the dependency version of net-ssh. |
looks like it actually is an issue with net-scp forcing dependency to be less than 7 for net-ssh. #1905 |
So the main gemspec has the updated versions, just hasn't been cut in a new release from what I can make of it.. but out of curiousity, if you take a look at Vagrant's gemspec, they are not using net-ssh > 7 and yet I can vagrant ssh into a RHEL9 distro no problem.. I may be overlooking it though. just a thought |
a workaround for test kitchen is to set the transport to ssh and set the username and password opttions. This bypasses the ssh key and the issue with old algorithm being dropped till the new net-ssh which supports the latest algorithms can be integrated into the build. |
RHEL9 systems (Cent/Rocky/Alma etc) with fully updated ChefWS VirtualBox Vagrant
Versions: running on Windows 10 Adding transport under platforms - in the below format (cause I had to go find a correct format) ;)
This does allow for a kitchen create/converge to complete without the SSH service error. OR if this is forgotten and you're watching SSH retry every 3 seconds and just want it to work.... Thought I'd help those that may be pulling their hair out... |
🗣️ Foreword
Thank for taking the time to fill this bug report fully. Without it we may not be able to fix the bug, and the issue may be closed without resolution.
👻 Brief Description
The current version of net-ssh that's used by test-kitchen doesn't support SHA2 signatures.
The older SHA1 signatures have been deprecated and are not enabled in EL9 distributions.
The most recent net-ssh release 7.0 is the first version that supports the required signatures.
net-ssh/net-ssh@a45f54f
net-ssh/net-ssh@d9b2f09
OpenSSH deprecation notice: https://www.openssh.com/txt/release-8.7
Version
3.3.1
Environment
[Details about the environment such as the Operating System, cookbook details, etc...]
Scenario
I'm trying to run 'kitchen converge' on an AlmaLinux 9 host.
Steps to Reproduce
Run a kitchen test on an Almalinux 9 instance with the default sshd config.
Expected Result
SSH connections to newer OpenSSH work.
Actual Result
The SSH connection fails:
➕ Additional context
Backporting the following two commits resolves the issue:
net-ssh/net-ssh@a45f54f
net-ssh/net-ssh@d9b2f09
The text was updated successfully, but these errors were encountered: