Spring Cloud Config sshd-osgi 2.7.0 has bug for server key algorithm choose and fails SSH connect to Azure DevOps

Describe the bug 3.1.8 version of spring cloud config will depends on org.apache.sshd:sshd-osgi for version 2.7.0. This version of sshd-osgi has several bugs (list below), and (at least) failed to connect to Azure DevOps git repository. - SSHD 1163 - SSHD-1175 - SSHD-1210

Dependency example Run mvn dependency:tree for spring cloud config 3.1.8

[INFO] com.example:demo:jar:0.0.1-SNAPSHOT
[INFO] +- org.springframework.cloud:spring-cloud-starter-bootstrap:jar:3.1.7:compile
[INFO] |  \- org.springframework.cloud:spring-cloud-starter:jar:3.1.7:compile
[INFO] |     +- org.springframework.cloud:spring-cloud-context:jar:3.1.7:compile
[INFO] |     \- org.springframework.cloud:spring-cloud-commons:jar:3.1.7:compile
[INFO] +- org.springframework.cloud:spring-cloud-config-server:jar:3.1.8:compile
[INFO] |  +- org.springframework.cloud:spring-cloud-config-client:jar:3.1.8:compile
[INFO] |  |  +- org.springframework.boot:spring-boot-autoconfigure:jar:2.7.14:compile
[INFO] |  |  +- org.springframework:spring-web:jar:5.3.29:compile
[INFO] |  |  |  \- org.springframework:spring-beans:jar:5.3.29:compile
[INFO] |  |  +- com.fasterxml.jackson.core:jackson-annotations:jar:2.13.5:compile
[INFO] |  |  +- com.fasterxml.jackson.core:jackson-databind:jar:2.13.5:compile
[INFO] |  |  \- org.apache.httpcomponents:httpclient:jar:4.5.14:compile
[INFO] |  |     \- commons-codec:commons-codec:jar:1.15:compile
[INFO] |  +- org.springframework.boot:spring-boot-starter-web:jar:2.7.14:compile
[INFO] |  |  +- org.springframework.boot:spring-boot-starter-json:jar:2.7.14:compile
[INFO] |  |  |  +- com.fasterxml.jackson.datatype:jackson-datatype-jdk8:jar:2.13.5:compile
[INFO] |  |  |  +- com.fasterxml.jackson.datatype:jackson-datatype-jsr310:jar:2.13.5:compile
[INFO] |  |  |  \- com.fasterxml.jackson.module:jackson-module-parameter-names:jar:2.13.5:compile
[INFO] |  |  +- org.springframework.boot:spring-boot-starter-tomcat:jar:2.7.14:compile
[INFO] |  |  |  +- org.apache.tomcat.embed:tomcat-embed-core:jar:9.0.78:compile
[INFO] |  |  |  \- org.apache.tomcat.embed:tomcat-embed-websocket:jar:9.0.78:compile
[INFO] |  |  \- org.springframework:spring-webmvc:jar:5.3.29:compile
[INFO] |  |     +- org.springframework:spring-aop:jar:5.3.29:compile
[INFO] |  |     +- org.springframework:spring-context:jar:5.3.29:compile
[INFO] |  |     \- org.springframework:spring-expression:jar:5.3.29:compile
[INFO] |  +- org.springframework.boot:spring-boot-starter-validation:jar:2.7.14:compile
[INFO] |  |  +- org.apache.tomcat.embed:tomcat-embed-el:jar:9.0.78:compile
[INFO] |  |  \- org.hibernate.validator:hibernate-validator:jar:6.2.5.Final:compile
[INFO] |  |     +- jakarta.validation:jakarta.validation-api:jar:2.0.2:compile
[INFO] |  |     +- org.jboss.logging:jboss-logging:jar:3.4.3.Final:compile
[INFO] |  |     \- com.fasterxml:classmate:jar:1.5.1:compile
[INFO] |  +- org.springframework.security:spring-security-crypto:jar:5.7.10:compile
[INFO] |  +- org.springframework.security:spring-security-rsa:jar:1.0.11.RELEASE:compile
[INFO] |  |  \- org.bouncycastle:bcpkix-jdk15on:jar:1.69:compile
[INFO] |  |     +- org.bouncycastle:bcprov-jdk15on:jar:1.69:compile
[INFO] |  |     \- org.bouncycastle:bcutil-jdk15on:jar:1.69:compile
[INFO] |  +- org.eclipse.jgit:org.eclipse.jgit:jar:5.13.1.202206130422-r:compile
[INFO] |  |  +- com.googlecode.javaewah:JavaEWAH:jar:1.1.13:compile
[INFO] |  |  \- org.slf4j:slf4j-api:jar:1.7.36:compile
[INFO] |  +- org.eclipse.jgit:org.eclipse.jgit.http.apache:jar:5.13.1.202206130422-r:compile
[INFO] |  |  \- org.apache.httpcomponents:httpcore:jar:4.4.16:compile
[INFO] |  +- org.eclipse.jgit:org.eclipse.jgit.ssh.apache:jar:5.13.1.202206130422-r:compile
........................................  Look at below
................................................  |
................................................. V
[INFO] |  |  +- org.apache.sshd:sshd-osgi:jar:2.7.0:compile
[INFO] |  |  |  \- org.slf4j:jcl-over-slf4j:jar:1.7.36:compile
[INFO] |  |  +- org.apache.sshd:sshd-sftp:jar:2.7.0:compile
[INFO] |  |  |  \- org.apache.sshd:sshd-core:jar:2.7.0:compile
[INFO] |  |  |     \- org.apache.sshd:sshd-common:jar:2.7.0:compile

Sample I've created an Azure DevOps repo to re-produce this problem. The SSH private key is configured in the sample application: https://github.com/jiec-msft/config-server-issue-app

The files in Azure DevOps Repo: https://dev.azure.com/chenjieecnu/_git/config-server-ssh (You may not be able to access, but private key is provided in the sample code) - The only file application.yml

azure:
  spring:
    cloud:
      config-server:
        health: UP

The logs when start the sample application:

"C:\Program Files\Zulu\ms-open-jdk\jdk-11.0.20+8\bin\java.exe" -XX:TieredStopAtLevel=1 -noverify -Dspring.output.ansi.enabled=always -Dcom.sun.management.jmxremote -Dspring.jmx.enabled=true -Dspring.liveBeansView.mbeanDomain -Dspring.application.admin.enabled=true "-Dmanagement.endpoints.jmx.exposure.include=*" "-javaagent:C:\Program Files (x86)\JetBrains\IntelliJ IDEA 2023.1\lib\idea_rt.jar=8694:C:\Program Files (x86)\JetBrains\IntelliJ IDEA 2023.1\bin" -Dfile.encoding=UTF-8 -classpath C:\devops\projects\test-config-server\server-new\demo\target\classes;C:\Users\jiec\.m2\repository\org\springframework\cloud\spring-cloud-starter-bootstrap\3.1.7\spring-cloud-starter-bootstrap-3.1.7.jar;C:\Users\jiec\.m2\repository\org\springframework\cloud\spring-cloud-starter\3.1.7\spring-cloud-starter-3.1.7.jar;C:\Users\jiec\.m2\repository\org\springframework\cloud\spring-cloud-context\3.1.7\spring-cloud-context-3.1.7.jar;C:\Users\jiec\.m2\repository\org\springframework\cloud\spring-cloud-commons\3.1.7\spring-cloud-commons-3.1.7.jar;C:\Users\jiec\.m2\repository\org\springframework\cloud\spring-cloud-config-server\3.1.8\spring-cloud-config-server-3.1.8.jar;C:\Users\jiec\.m2\repository\org\springframework\cloud\spring-cloud-config-client\3.1.8\spring-cloud-config-client-3.1.8.jar;C:\Users\jiec\.m2\repository\org\springframework\boot\spring-boot-autoconfigure\2.7.14\spring-boot-autoconfigure-2.7.14.jar;C:\Users\jiec\.m2\repository\org\springframework\spring-web\5.3.29\spring-web-5.3.29.jar;C:\Users\jiec\.m2\repository\org\springframework\spring-beans\5.3.29\spring-beans-5.3.29.jar;C:\Users\jiec\.m2\repository\com\fasterxml\jackson\core\jackson-annotations\2.13.5\jackson-annotations-2.13.5.jar;C:\Users\jiec\.m2\repository\com\fasterxml\jackson\core\jackson-databind\2.13.5\jackson-databind-2.13.5.jar;C:\Users\jiec\.m2\repository\org\apache\httpcomponents\httpclient\4.5.14\httpclient-4.5.14.jar;C:\Users\jiec\.m2\repository\commons-codec\commons-codec\1.15\commons-codec-1.15.jar;C:\Users\jiec\.m2\repository\org\springframework\boot\spring-boot-starter-web\2.7.14\spring-boot-starter-web-2.7.14.jar;C:\Users\jiec\.m2\repository\org\springframework\boot\spring-boot-starter-json\2.7.14\spring-boot-starter-json-2.7.14.jar;C:\Users\jiec\.m2\repository\com\fasterxml\jackson\datatype\jackson-datatype-jdk8\2.13.5\jackson-datatype-jdk8-2.13.5.jar;C:\Users\jiec\.m2\repository\com\fasterxml\jackson\datatype\jackson-datatype-jsr310\2.13.5\jackson-datatype-jsr310-2.13.5.jar;C:\Users\jiec\.m2\repository\com\fasterxml\jackson\module\jackson-module-parameter-names\2.13.5\jackson-module-parameter-names-2.13.5.jar;C:\Users\jiec\.m2\repository\org\springframework\boot\spring-boot-starter-tomcat\2.7.14\spring-boot-starter-tomcat-2.7.14.jar;C:\Users\jiec\.m2\repository\org\apache\tomcat\embed\tomcat-embed-core\9.0.78\tomcat-embed-core-9.0.78.jar;C:\Users\jiec\.m2\repository\org\apache\tomcat\embed\tomcat-embed-websocket\9.0.78\tomcat-embed-websocket-9.0.78.jar;C:\Users\jiec\.m2\repository\org\springframework\spring-webmvc\5.3.29\spring-webmvc-5.3.29.jar;C:\Users\jiec\.m2\repository\org\springframework\spring-aop\5.3.29\spring-aop-5.3.29.jar;C:\Users\jiec\.m2\repository\org\springframework\spring-context\5.3.29\spring-context-5.3.29.jar;C:\Users\jiec\.m2\repository\org\springframework\spring-expression\5.3.29\spring-expression-5.3.29.jar;C:\Users\jiec\.m2\repository\org\springframework\boot\spring-boot-starter-validation\2.7.14\spring-boot-starter-validation-2.7.14.jar;C:\Users\jiec\.m2\repository\org\apache\tomcat\embed\tomcat-embed-el\9.0.78\tomcat-embed-el-9.0.78.jar;C:\Users\jiec\.m2\repository\org\hibernate\validator\hibernate-validator\6.2.5.Final\hibernate-validator-6.2.5.Final.jar;C:\Users\jiec\.m2\repository\jakarta\validation\jakarta.validation-api\2.0.2\jakarta.validation-api-2.0.2.jar;C:\Users\jiec\.m2\repository\org\jboss\logging\jboss-logging\3.4.3.Final\jboss-logging-3.4.3.Final.jar;C:\Users\jiec\.m2\repository\com\fasterxml\classmate\1.5.1\classmate-1.5.1.jar;C:\Users\jiec\.m2\repository\org\springframework\security\spring-security-crypto\5.7.10\spring-security-crypto-5.7.10.jar;C:\Users\jiec\.m2\repository\org\springframework\security\spring-security-rsa\1.0.11.RELEASE\spring-security-rsa-1.0.11.RELEASE.jar;C:\Users\jiec\.m2\repository\org\bouncycastle\bcpkix-jdk15on\1.69\bcpkix-jdk15on-1.69.jar;C:\Users\jiec\.m2\repository\org\bouncycastle\bcprov-jdk15on\1.69\bcprov-jdk15on-1.69.jar;C:\Users\jiec\.m2\repository\org\bouncycastle\bcutil-jdk15on\1.69\bcutil-jdk15on-1.69.jar;C:\Users\jiec\.m2\repository\org\eclipse\jgit\org.eclipse.jgit\5.13.1.202206130422-r\org.eclipse.jgit-5.13.1.202206130422-r.jar;C:\Users\jiec\.m2\repository\com\googlecode\javaewah\JavaEWAH\1.1.13\JavaEWAH-1.1.13.jar;C:\Users\jiec\.m2\repository\org\slf4j\slf4j-api\1.7.36\slf4j-api-1.7.36.jar;C:\Users\jiec\.m2\repository\org\eclipse\jgit\org.eclipse.jgit.http.apache\5.13.1.202206130422-r\org.eclipse.jgit.http.apache-5.13.1.202206130422-r.jar;C:\Users\jiec\.m2\repository\org\apache\httpcomponents\httpcore\4.4.16\httpcore-4.4.16.jar;C:\Users\jiec\.m2\repository\org\eclipse\jgit\org.eclipse.jgit.ssh.apache\5.13.1.202206130422-r\org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar;C:\Users\jiec\.m2\repository\org\apache\sshd\sshd-osgi\2.7.0\sshd-osgi-2.7.0.jar;C:\Users\jiec\.m2\repository\org\slf4j\jcl-over-slf4j\1.7.36\jcl-over-slf4j-1.7.36.jar;C:\Users\jiec\.m2\repository\org\apache\sshd\sshd-sftp\2.7.0\sshd-sftp-2.7.0.jar;C:\Users\jiec\.m2\repository\org\apache\sshd\sshd-core\2.7.0\sshd-core-2.7.0.jar;C:\Users\jiec\.m2\repository\org\apache\sshd\sshd-common\2.7.0\sshd-common-2.7.0.jar;C:\Users\jiec\.m2\repository\net\i2p\crypto\eddsa\0.3.0\eddsa-0.3.0.jar;C:\Users\jiec\.m2\repository\org\yaml\snakeyaml\1.30\snakeyaml-1.30.jar;C:\Users\jiec\.m2\repository\com\fasterxml\jackson\dataformat\jackson-dataformat-yaml\2.13.5\jackson-dataformat-yaml-2.13.5.jar;C:\Users\jiec\.m2\repository\com\fasterxml\jackson\core\jackson-core\2.13.5\jackson-core-2.13.5.jar;C:\Users\jiec\.m2\repository\org\springframework\boot\spring-boot-starter\2.7.14\spring-boot-starter-2.7.14.jar;C:\Users\jiec\.m2\repository\org\springframework\boot\spring-boot\2.7.14\spring-boot-2.7.14.jar;C:\Users\jiec\.m2\repository\org\springframework\boot\spring-boot-starter-logging\2.7.14\spring-boot-starter-logging-2.7.14.jar;C:\Users\jiec\.m2\repository\ch\qos\logback\logback-classic\1.2.12\logback-classic-1.2.12.jar;C:\Users\jiec\.m2\repository\ch\qos\logback\logback-core\1.2.12\logback-core-1.2.12.jar;C:\Users\jiec\.m2\repository\org\apache\logging\log4j\log4j-to-slf4j\2.17.2\log4j-to-slf4j-2.17.2.jar;C:\Users\jiec\.m2\repository\org\apache\logging\log4j\log4j-api\2.17.2\log4j-api-2.17.2.jar;C:\Users\jiec\.m2\repository\org\slf4j\jul-to-slf4j\1.7.36\jul-to-slf4j-1.7.36.jar;C:\Users\jiec\.m2\repository\jakarta\annotation\jakarta.annotation-api\1.3.5\jakarta.annotation-api-1.3.5.jar;C:\Users\jiec\.m2\repository\org\springframework\spring-core\5.3.29\spring-core-5.3.29.jar;C:\Users\jiec\.m2\repository\org\springframework\spring-jcl\5.3.29\spring-jcl-5.3.29.jar com.example.demo.ConfigServerApplication

  .   ____          _            __ _ _
 /\\ / ___'_ __ _ _(_)_ __  __ _ \ \ \ \
( ( )\___ | '_ | '_| | '_ \/ _` | \ \ \ \
 \\/  ___)| |_)| | | | | || (_| |  ) ) ) )
  '  |____| .__|_| |_|_| |_\__, | / / / /
 =========|_|==============|___/=/_/_/_/
 :: Spring Boot ::               (v2.7.14)

2023-08-14 16:17:48.437  INFO 25380 --- [           main] c.example.demo.ConfigServerApplication   : No active profile set, falling back to 1 default profile: "default"
2023-08-14 16:17:48.775  INFO 25380 --- [           main] o.s.cloud.context.scope.GenericScope     : BeanFactory id=cc1cb1a3-f430-36ca-be6d-9087d629a719
2023-08-14 16:17:48.919  INFO 25380 --- [           main] o.s.b.w.embedded.tomcat.TomcatWebServer  : Tomcat initialized with port(s): 8888 (http)
2023-08-14 16:17:48.923  INFO 25380 --- [           main] o.apache.catalina.core.StandardService   : Starting service [Tomcat]
2023-08-14 16:17:48.923  INFO 25380 --- [           main] org.apache.catalina.core.StandardEngine  : Starting Servlet engine: [Apache Tomcat/9.0.78]
2023-08-14 16:17:49.005  INFO 25380 --- [           main] o.a.c.c.C.[Tomcat].[localhost].[/]       : Initializing Spring embedded WebApplicationContext
2023-08-14 16:17:49.005  INFO 25380 --- [           main] w.s.c.ServletWebServerApplicationContext : Root WebApplicationContext: initialization completed in 560 ms
2023-08-14 16:17:49.810  INFO 25380 --- [           main] .b.BouncyCastleSecurityProviderRegistrar : getOrCreateProvider(BC) created instance of org.bouncycastle.jce.provider.BouncyCastleProvider
2023-08-14 16:17:49.812  INFO 25380 --- [           main] s.c.u.s.e.EdDSASecurityProviderRegistrar : getOrCreateProvider(EdDSA) created instance of net.i2p.crypto.eddsa.EdDSASecurityProvider
2023-08-14 16:17:49.882  INFO 25380 --- [           main] o.a.s.c.i.DefaultIoServiceFactoryFactory : No detected/configured IoServiceFactoryFactory using Nio2ServiceFactoryFactory
2023-08-14 16:17:50.553  WARN 25380 --- []-nio2-thread-9] o.e.j.i.t.sshd.JGitClientSession         : exceptionCaught(JGitClientSession[git@ssh.dev.azure.com/20.195.68.13:22])[state=Opened] SshException: KeyExchange signature verification failed for key type=ssh-rsa
2023-08-14 16:17:50.554  INFO 25380 --- []-nio2-thread-9] o.e.j.i.t.sshd.JGitClientSession         : Disconnecting(JGitClientSession[git@ssh.dev.azure.com/20.195.68.13:22]): SSH2_DISCONNECT_KEY_EXCHANGE_FAILED - KeyExchange signature verification failed for key type=ssh-rsa
2023-08-14 16:17:50.570  WARN 25380 --- [           main] .c.s.e.MultipleJGitEnvironmentRepository : Error occured cloning to base directory.

org.eclipse.jgit.api.errors.TransportException: git@ssh.dev.azure.com:v3/chenjieecnu/config-server-ssh/config-server-ssh: KeyExchange signature verification failed for key type=ssh-rsa
    at org.eclipse.jgit.api.FetchCommand.call(FetchCommand.java:224) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.api.CloneCommand.fetch(CloneCommand.java:311) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.api.CloneCommand.call(CloneCommand.java:182) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.springframework.cloud.config.server.environment.JGitEnvironmentRepository.cloneToBasedir(JGitEnvironmentRepository.java:651) ~[spring-cloud-config-server-3.1.8.jar:3.1.8]
    at org.springframework.cloud.config.server.environment.JGitEnvironmentRepository.initClonedRepository(JGitEnvironmentRepository.java:356) ~[spring-cloud-config-server-3.1.8.jar:3.1.8]
    at org.springframework.cloud.config.server.environment.JGitEnvironmentRepository.afterPropertiesSet(JGitEnvironmentRepository.java:277) ~[spring-cloud-config-server-3.1.8.jar:3.1.8]
    at org.springframework.cloud.config.server.environment.MultipleJGitEnvironmentRepository.afterPropertiesSet(MultipleJGitEnvironmentRepository.java:66) ~[spring-cloud-config-server-3.1.8.jar:3.1.8]
    at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.invokeInitMethods(AbstractAutowireCapableBeanFactory.java:1863) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.initializeBean(AbstractAutowireCapableBeanFactory.java:1800) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:620) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:542) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractBeanFactory.lambda$doGetBean$0(AbstractBeanFactory.java:335) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:234) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:333) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:208) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:955) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.context.support.AbstractApplicationContext.finishBeanFactoryInitialization(AbstractApplicationContext.java:921) ~[spring-context-5.3.29.jar:5.3.29]
    at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:583) ~[spring-context-5.3.29.jar:5.3.29]
    at org.springframework.boot.web.servlet.context.ServletWebServerApplicationContext.refresh(ServletWebServerApplicationContext.java:147) ~[spring-boot-2.7.14.jar:2.7.14]
    at org.springframework.boot.SpringApplication.refresh(SpringApplication.java:731) ~[spring-boot-2.7.14.jar:2.7.14]
    at org.springframework.boot.SpringApplication.refreshContext(SpringApplication.java:408) ~[spring-boot-2.7.14.jar:2.7.14]
    at org.springframework.boot.SpringApplication.run(SpringApplication.java:307) ~[spring-boot-2.7.14.jar:2.7.14]
    at org.springframework.boot.SpringApplication.run(SpringApplication.java:1303) ~[spring-boot-2.7.14.jar:2.7.14]
    at org.springframework.boot.SpringApplication.run(SpringApplication.java:1292) ~[spring-boot-2.7.14.jar:2.7.14]
    at com.example.demo.ConfigServerApplication.main(ConfigServerApplication.java:12) ~[classes/:na]
Caused by: org.eclipse.jgit.errors.TransportException: git@ssh.dev.azure.com:v3/chenjieecnu/config-server-ssh/config-server-ssh: KeyExchange signature verification failed for key type=ssh-rsa
    at org.eclipse.jgit.transport.sshd.SshdSessionFactory.getSession(SshdSessionFactory.java:248) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.sshd.SshdSessionFactory.getSession(SshdSessionFactory.java:1) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.SshTransport.getSession(SshTransport.java:107) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.TransportGitSsh$SshFetchConnection.<init>(TransportGitSsh.java:281) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.TransportGitSsh.openFetch(TransportGitSsh.java:153) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.FetchProcess.executeImp(FetchProcess.java:142) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.FetchProcess.execute(FetchProcess.java:94) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.Transport.fetch(Transport.java:1309) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.api.FetchCommand.call(FetchCommand.java:213) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    ... 24 common frames omitted
Caused by: org.apache.sshd.common.SshException: KeyExchange signature verification failed for key type=ssh-rsa
    at org.apache.sshd.common.future.AbstractSshFuture.verifyResult(AbstractSshFuture.java:126) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.client.future.DefaultAuthFuture.verify(DefaultAuthFuture.java:39) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.client.future.DefaultAuthFuture.verify(DefaultAuthFuture.java:32) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.future.VerifiableFuture.verify(VerifiableFuture.java:68) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.eclipse.jgit.transport.sshd.SshdSession.connect(SshdSession.java:164) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.sshd.SshdSession.connect(SshdSession.java:99) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.sshd.SshdSessionFactory.getSession(SshdSessionFactory.java:235) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    ... 32 common frames omitted
Caused by: org.apache.sshd.common.SshException: KeyExchange signature verification failed for key type=ssh-rsa
    at org.apache.sshd.client.kex.DHGEXClient.next(DHGEXClient.java:241) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.session.helpers.AbstractSession.handleKexMessage(AbstractSession.java:607) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.session.helpers.AbstractSession.doHandleMessage(AbstractSession.java:501) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.session.helpers.AbstractSession.handleMessage(AbstractSession.java:429) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.session.helpers.AbstractSession.decode(AbstractSession.java:1466) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.session.helpers.AbstractSession.messageReceived(AbstractSession.java:389) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.eclipse.jgit.internal.transport.sshd.JGitClientSession.messageReceived(JGitClientSession.java:198) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.apache.sshd.common.session.helpers.AbstractSessionIoHandler.messageReceived(AbstractSessionIoHandler.java:64) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.io.nio2.Nio2Session.handleReadCycleCompletion(Nio2Session.java:359) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.io.nio2.Nio2Session$1.onCompleted(Nio2Session.java:336) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.io.nio2.Nio2Session$1.onCompleted(Nio2Session.java:333) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.io.nio2.Nio2CompletionHandler.lambda$completed$0(Nio2CompletionHandler.java:38) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at java.base/java.security.AccessController.doPrivileged(Native Method) ~[na:na]
    at org.apache.sshd.common.io.nio2.Nio2CompletionHandler.completed(Nio2CompletionHandler.java:37) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at java.base/sun.nio.ch.Invoker.invokeUnchecked(Invoker.java:127) ~[na:na]
    at java.base/sun.nio.ch.Invoker$2.run(Invoker.java:219) ~[na:na]
    at java.base/sun.nio.ch.AsynchronousChannelGroupImpl$1.run(AsynchronousChannelGroupImpl.java:112) ~[na:na]
    at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) ~[na:na]
    at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) ~[na:na]
    at java.base/java.lang.Thread.run(Thread.java:829) ~[na:na]

2023-08-14 16:17:50.570  WARN 25380 --- [           main] ConfigServletWebServerApplicationContext : Exception encountered during context initialization - cancelling refresh attempt: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'defaultEnvironmentRepository' defined in class path resource [org/springframework/cloud/config/server/config/DefaultRepositoryConfiguration.class]: Invocation of init method failed; nested exception is org.eclipse.jgit.api.errors.TransportException: git@ssh.dev.azure.com:v3/chenjieecnu/config-server-ssh/config-server-ssh: KeyExchange signature verification failed for key type=ssh-rsa
2023-08-14 16:17:50.572  INFO 25380 --- [           main] o.apache.catalina.core.StandardService   : Stopping service [Tomcat]
2023-08-14 16:17:50.580  INFO 25380 --- [           main] ConditionEvaluationReportLoggingListener : 

Error starting ApplicationContext. To display the conditions report re-run your application with 'debug' enabled.
2023-08-14 16:17:50.596 ERROR 25380 --- [           main] o.s.boot.SpringApplication               : Application run failed

org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'defaultEnvironmentRepository' defined in class path resource [org/springframework/cloud/config/server/config/DefaultRepositoryConfiguration.class]: Invocation of init method failed; nested exception is org.eclipse.jgit.api.errors.TransportException: git@ssh.dev.azure.com:v3/chenjieecnu/config-server-ssh/config-server-ssh: KeyExchange signature verification failed for key type=ssh-rsa
    at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.initializeBean(AbstractAutowireCapableBeanFactory.java:1804) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:620) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:542) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractBeanFactory.lambda$doGetBean$0(AbstractBeanFactory.java:335) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:234) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:333) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:208) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:955) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.context.support.AbstractApplicationContext.finishBeanFactoryInitialization(AbstractApplicationContext.java:921) ~[spring-context-5.3.29.jar:5.3.29]
    at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:583) ~[spring-context-5.3.29.jar:5.3.29]
    at org.springframework.boot.web.servlet.context.ServletWebServerApplicationContext.refresh(ServletWebServerApplicationContext.java:147) ~[spring-boot-2.7.14.jar:2.7.14]
    at org.springframework.boot.SpringApplication.refresh(SpringApplication.java:731) ~[spring-boot-2.7.14.jar:2.7.14]
    at org.springframework.boot.SpringApplication.refreshContext(SpringApplication.java:408) ~[spring-boot-2.7.14.jar:2.7.14]
    at org.springframework.boot.SpringApplication.run(SpringApplication.java:307) ~[spring-boot-2.7.14.jar:2.7.14]
    at org.springframework.boot.SpringApplication.run(SpringApplication.java:1303) ~[spring-boot-2.7.14.jar:2.7.14]
    at org.springframework.boot.SpringApplication.run(SpringApplication.java:1292) ~[spring-boot-2.7.14.jar:2.7.14]
    at com.example.demo.ConfigServerApplication.main(ConfigServerApplication.java:12) ~[classes/:na]
Caused by: org.eclipse.jgit.api.errors.TransportException: git@ssh.dev.azure.com:v3/chenjieecnu/config-server-ssh/config-server-ssh: KeyExchange signature verification failed for key type=ssh-rsa
    at org.eclipse.jgit.api.FetchCommand.call(FetchCommand.java:224) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.api.CloneCommand.fetch(CloneCommand.java:311) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.api.CloneCommand.call(CloneCommand.java:182) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.springframework.cloud.config.server.environment.JGitEnvironmentRepository.cloneToBasedir(JGitEnvironmentRepository.java:651) ~[spring-cloud-config-server-3.1.8.jar:3.1.8]
    at org.springframework.cloud.config.server.environment.JGitEnvironmentRepository.initClonedRepository(JGitEnvironmentRepository.java:356) ~[spring-cloud-config-server-3.1.8.jar:3.1.8]
    at org.springframework.cloud.config.server.environment.JGitEnvironmentRepository.afterPropertiesSet(JGitEnvironmentRepository.java:277) ~[spring-cloud-config-server-3.1.8.jar:3.1.8]
    at org.springframework.cloud.config.server.environment.MultipleJGitEnvironmentRepository.afterPropertiesSet(MultipleJGitEnvironmentRepository.java:66) ~[spring-cloud-config-server-3.1.8.jar:3.1.8]
    at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.invokeInitMethods(AbstractAutowireCapableBeanFactory.java:1863) ~[spring-beans-5.3.29.jar:5.3.29]
    at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.initializeBean(AbstractAutowireCapableBeanFactory.java:1800) ~[spring-beans-5.3.29.jar:5.3.29]
    ... 16 common frames omitted
Caused by: org.eclipse.jgit.errors.TransportException: git@ssh.dev.azure.com:v3/chenjieecnu/config-server-ssh/config-server-ssh: KeyExchange signature verification failed for key type=ssh-rsa
    at org.eclipse.jgit.transport.sshd.SshdSessionFactory.getSession(SshdSessionFactory.java:248) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.sshd.SshdSessionFactory.getSession(SshdSessionFactory.java:1) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.SshTransport.getSession(SshTransport.java:107) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.TransportGitSsh$SshFetchConnection.<init>(TransportGitSsh.java:281) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.TransportGitSsh.openFetch(TransportGitSsh.java:153) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.FetchProcess.executeImp(FetchProcess.java:142) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.FetchProcess.execute(FetchProcess.java:94) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.Transport.fetch(Transport.java:1309) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.api.FetchCommand.call(FetchCommand.java:213) ~[org.eclipse.jgit-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    ... 24 common frames omitted
Caused by: org.apache.sshd.common.SshException: KeyExchange signature verification failed for key type=ssh-rsa
    at org.apache.sshd.common.future.AbstractSshFuture.verifyResult(AbstractSshFuture.java:126) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.client.future.DefaultAuthFuture.verify(DefaultAuthFuture.java:39) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.client.future.DefaultAuthFuture.verify(DefaultAuthFuture.java:32) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.future.VerifiableFuture.verify(VerifiableFuture.java:68) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.eclipse.jgit.transport.sshd.SshdSession.connect(SshdSession.java:164) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.sshd.SshdSession.connect(SshdSession.java:99) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.eclipse.jgit.transport.sshd.SshdSessionFactory.getSession(SshdSessionFactory.java:235) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    ... 32 common frames omitted
Caused by: org.apache.sshd.common.SshException: KeyExchange signature verification failed for key type=ssh-rsa
    at org.apache.sshd.client.kex.DHGEXClient.next(DHGEXClient.java:241) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.session.helpers.AbstractSession.handleKexMessage(AbstractSession.java:607) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.session.helpers.AbstractSession.doHandleMessage(AbstractSession.java:501) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.session.helpers.AbstractSession.handleMessage(AbstractSession.java:429) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.session.helpers.AbstractSession.decode(AbstractSession.java:1466) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.session.helpers.AbstractSession.messageReceived(AbstractSession.java:389) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.eclipse.jgit.internal.transport.sshd.JGitClientSession.messageReceived(JGitClientSession.java:198) ~[org.eclipse.jgit.ssh.apache-5.13.1.202206130422-r.jar:5.13.1.202206130422-r]
    at org.apache.sshd.common.session.helpers.AbstractSessionIoHandler.messageReceived(AbstractSessionIoHandler.java:64) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.io.nio2.Nio2Session.handleReadCycleCompletion(Nio2Session.java:359) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.io.nio2.Nio2Session$1.onCompleted(Nio2Session.java:336) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.io.nio2.Nio2Session$1.onCompleted(Nio2Session.java:333) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at org.apache.sshd.common.io.nio2.Nio2CompletionHandler.lambda$completed$0(Nio2CompletionHandler.java:38) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at java.base/java.security.AccessController.doPrivileged(Native Method) ~[na:na]
    at org.apache.sshd.common.io.nio2.Nio2CompletionHandler.completed(Nio2CompletionHandler.java:37) ~[sshd-osgi-2.7.0.jar:2.7.0]
    at java.base/sun.nio.ch.Invoker.invokeUnchecked(Invoker.java:127) ~[na:na]
    at java.base/sun.nio.ch.Invoker$2.run(Invoker.java:219) ~[na:na]
    at java.base/sun.nio.ch.AsynchronousChannelGroupImpl$1.run(AsynchronousChannelGroupImpl.java:112) ~[na:na]
    at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) ~[na:na]
    at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) ~[na:na]
    at java.base/java.lang.Thread.run(Thread.java:829) ~[na:na]


Process finished with exit code 1

Comment From: ryanjbaxter

The dependency is controlled by the version of jgit we use. We have to stick with the 5.13.x version of jgit or else that could be a breaking change in the 3.1.x branch. Even the latest 5.13.x release of jgit is still using sshd-osgi 2.7.0 https://git.eclipse.org/r/plugins/gitiles/jgit/jgit/+/refs/tags/v5.13.2.202306221912-r/pom.xml#155. You can always pull in whatever version of jgit or sshd-osgi you want in your own pom if you want or move to Spring Cloud Confix 2202.0.4 in which Spring Cloud Config is using jgit 6.x.