Hey instance admins. Do you have SSH for your Gitea instance enabled via OpenSSH? Then be aware that you should add `AcceptEnv GIT_PROTOCOL` to your `/etc/ssh/sshd_config` file! This enables Git Wire Protocol v2 for Git over SSH.

If you're using Gitea's Internal SSH Server, this behavior will be enabled in v1.17.1

Boost are are welcome for awareness.

@emacsen you can run a SSH server without using OpenSSH, the Gitea binary comes included with one. You can enable it by setting `START_SSH_SERVER = true` under the `[server]` section . Using the internal SSH Server will automatically have this new behavior from 1.17.1(currently not released) and onwards.



What's the reason for using openssh with gitea then?

@emacsen Go's SSH code lacks certain new cryptographic algorithms and it lacks behind on certain SSH RFCs. This cause annoying bugs with OpenSSH clients, which uses up-to-date SSH protocol standards, the most notorious example is . It's usually used when the machine doesn't have the agility to use OpenSSH.

@Gusted for reference: is there some docs or changelog referencing this?

@uniporn Yes! however I'm afraid a lot of Gitea instance admins will never see this, which is a bummer.

@Gusted Is there an env var/app.ini value that enables this on 1.17.0? (containerised)

@michael Are you running Gitea in docker?

You don't need any changes in app.ini, if you're using the OpenSSH server(so the sshd daemon) then you need to append `AcceptEnv GIT_PROTOCOL` to your `/etc/ssh/sshd_config` file. But if you're using the SSH Internal Server, you just need to wait until 1.17.1 is released.

@michael Looking at your screenshot it seems you're using the OpenSSH server. Yes it does say that Git support the Wire V2 protocol, however currently when using Git over SSH the information that the Git client also support Wire V2 protocol isn't passed trough.

Ping @yunohost

I don't know who packages gitea for yunohost, nor how to really check this myself in the repo 😅

Sign in to participate in the conversation
Mastodon for Tech Folks

This Mastodon instance is for people interested in technology. Discussions aren't limited to technology, because tech folks shouldn't be limited to technology either!