-
Bug
-
Resolution: Unresolved
-
Major
-
None
-
jenkins2.414.1
jsch 0.28
gerrit trigger 2.39.3
gerrit 2.11.3
Gerrit Trigger fails to connect Gerrit 2.11.3
Connection error : com.jcraft.jsch.JSchAlgoNegoFailException: Algorithm negotiation fail: algorithmName="kex" jschProposal="curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c" serverProposal="diffie-hellman-group14-sha1,diffie-hellman-group1-sha1"
[JENKINS-72372] Gerrit Trigger fails to connect Gerrit 2.11.3 - com.jcraft.jsch.JSchAlgoNegoFailException: Algorithm negotiation fail...serverProposal="diffie-hellman-group14-sha1,diffie-hellman-group1-sha1"
Markus Winter
added a comment - gerrit 2.11.3 is over 8 years old. It uses outdated algorithms that are considered insecure. You should look into upgrading gerrit to a recent version
Markus Winter
added a comment - gerrit 2.11.3 is over 8 years old. It uses outdated algorithms that are considered insecure. You should look into upgrading gerrit to a recent version This issue can probably be closed as duplicate of https://issues.jenkins.io/browse/JENKINS-71273.
I have added the following configuration to JAVA_OPT, but it seems to doesn't work.
-Djsch.client_pubkey="ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,rsa-sha2-512,rsa-sha2-256,ssh-rsa"-Djsch.server_host_key="ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,rsa-sha2-512,rsa-sha2-256,ssh-rsa"