-
-
Notifications
You must be signed in to change notification settings - Fork 12.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
git: Bad configuration option: gssapikexalgorithms (on Fedora) #160527
Comments
i grepped the source of git and openssh but found nothing so i grepped the fedora openssh rpm and found that there's couple of patches that add also searched the issues for
|
The problem is probably that our openssh reads /etc for configuration. Maybe it shouldn't do that? |
In Nixpkgs we have Currently we use https://github.com/NixOS/nixpkgs/blob/85d5d37f7c98c13b14a810377f16ecd692129979/pkgs/applications/version-management/git-and-tools/git/ssh-path.patch and nixpkgs/pkgs/applications/version-management/git-and-tools/git/default.nix Lines 60 to 63 in 85d5d37
That part was added in 6579acd (cc @zimbatm). @kfajdsl for your case one of the following workarounds should work:
|
I tried this and it fails because the package is insecure. Any clues on how to fix that (I'm on a nix flake, so exported variables don't work):
|
#166334 partially solves this issue (except for |
I still have the problem when using Morph. Had to edit |
FYI this issue still occurs for me when I use Problem is, I do occasionally need |
Describe the bug
On Fedora 35, the
nixpkgs
git fails trying to clone git repositories with SSH with the following error:The config line in question (in
/etc/crypto-policies/back-ends/openssh.config
):This is a Fedora default (I believe). When this line is commented out,
git clone git@gitlab.com:my_org/my_repo.git
works as expected. The git packaged in the Fedora repos works without the line commented out.p.s.
I found this issue when trying to use vcstool from nix (inside
nix develop
). vcstool from the Fedora repos works fine. As a workaround, I've commented out vcstool from mynativeBuildInputs
and am using my system vcstool.p.p.s
Somewhat interesting behavior:
If git is in my
flake.nix
(which git
returns a/nix/store
path), my system vcstool also breaks. The nixpkgs vcstool doesn't work regardless.Steps To Reproduce
Steps to reproduce the behavior:
nix-shell '<nixpkgs>' -p git
git clone git@gitlab.com/my_org/my_repo.git
Expected behavior
The repository is successfully cloned.
Notify maintainers
@primeos
@wmertens
@globin
Metadata
The text was updated successfully, but these errors were encountered: