Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

2.12 breaking change with project scoped secrets #19587

Closed
meyerpeter opened this issue Aug 19, 2024 · 18 comments
Closed

2.12 breaking change with project scoped secrets #19587

meyerpeter opened this issue Aug 19, 2024 · 18 comments
Labels
component:multi-source-apps component:repo-server regression Bug is a regression, should be handled with high priority

Comments

@meyerpeter
Copy link

meyerpeter commented Aug 19, 2024
edited
Loading

Describe the bug

I am using the app of apps approach to deploy an application to a Kubernetes 1.30 cluster.
The configuration for the app is applied by using multiple sources. Example given below.
Currently I am running argocd 2.11.7. Everything works fine!

I was interested in the ability to use argocd's rollback feature for multiple-source approaches which was released in 2.12.

apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
  labels:
    argocd.argoproj.io/instance: XXXXXX-staging
  name: XXXXXX-api
  namespace: argocd
spec:
  destination:
    namespace: XXXXXX
    server: 'https://kubernetes.default.svc'
  project: XXXXXX
  sources:
    - helm:
        valueFiles:
          - $values/XXXXXX.values.yaml
      path: .
      repoURL: '[email protected]: XXXXXX/app-of-apps.git'
      targetRevision: main
    - ref: values
      repoURL: '[email protected]: XXXXXX/values-yaml.git'
      targetRevision: main
  syncPolicy:
    automated: {}

Two repositories, of which one describes the application, and the other provides the configuration values.
Both are hosted on GitHub and are using different ssh keys to be fetched by argocd.

Once I upgrade to argocd 2.12, the app-of-apps approach seems to be failing and I can no longer synchronise the application.
Downgrading makes everything working again.

To Reproduce

  • Have an app of apps using multiple sources with different ssh keys
  • Update or run argocd at 2.12.
  • Try syncing your app-of-apps

Expected behavior

I expect argocd, to sill be able to sync my application.

Screenshots

image

Version

v2.12.1+26b2039

Logs

Logs of repo-server:

time="2024-08-19T12:24:37Z" level=info msg="ArgoCD Repository Server is starting" built="2024-08-16T16:42:13Z" commit=26b2039a55b9bdf807a70d344af8ade5171d3d39 port=8081 version=v2.12.1+26b2039
time="2024-08-19T12:24:37Z" level=info msg="Generating self-signed TLS certificate for this session"
time="2024-08-19T12:24:39Z" level=info msg="Initializing GnuPG keyring at /app/config/gpg/keys"
time="2024-08-19T12:24:39Z" level=info msg="gpg --no-permission-warning --logger-fd 1 --batch --gen-key /tmp/gpg-key-recipe1486929500" dir= execID=8bd05
time="2024-08-19T12:24:39Z" level=info msg=Trace args="[gpg --no-permission-warning --logger-fd 1 --batch --gen-key /tmp/gpg-key-recipe1486929500]" dir= operation_name="exec gpg" time_ms=277.122647
time="2024-08-19T12:24:39Z" level=info msg="Populating GnuPG keyring with keys from /app/config/gpg/source"
time="2024-08-19T12:24:39Z" level=info msg="gpg --no-permission-warning --list-public-keys" dir= execID=5b83b
time="2024-08-19T12:24:39Z" level=info msg=Trace args="[gpg --no-permission-warning --list-public-keys]" dir= operation_name="exec gpg" time_ms=6.943806
time="2024-08-19T12:24:39Z" level=info msg="gpg --no-permission-warning -a --export 8D4723199896C78D" dir= execID=48d43
time="2024-08-19T12:24:39Z" level=info msg=Trace args="[gpg --no-permission-warning -a --export 8D4723199896C78D]" dir= operation_name="exec gpg" time_ms=3.858158
time="2024-08-19T12:24:39Z" level=info msg="gpg-wrapper.sh --no-permission-warning --list-secret-keys 8D4723199896C78D" dir= execID=7804a
time="2024-08-19T12:24:39Z" level=info msg=Trace args="[gpg-wrapper.sh --no-permission-warning --list-secret-keys 8D4723199896C78D]" dir= operation_name="exec gpg-wrapper.sh" time_ms=7.194604
time="2024-08-19T12:24:39Z" level=info msg="Loaded 0 (and removed 0) keys from keyring"
time="2024-08-19T12:24:39Z" level=info msg="argocd-repo-server is listening on [::]:8081"
time="2024-08-19T12:24:39Z" level=info msg="Starting GPG sync watcher on directory '/app/config/gpg/source'"
time="2024-08-19T12:24:54Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:24:54Z" grpc.time_ms=0.03 span.kind=server system=grpc
time="2024-08-19T12:25:04Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:25:04Z" grpc.time_ms=0.017 span.kind=server system=grpc
time="2024-08-19T12:25:14Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:25:14Z" grpc.time_ms=0.021 span.kind=server system=grpc
time="2024-08-19T12:25:17Z" level=info msg="revision metadata cache miss: [email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:25:17Z" level=info msg="Initializing [email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git to /tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937"
time="2024-08-19T12:25:17Z" level=info msg="git cat-file -t 82d154772364dc042a946e176de598d38a6aabad" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=3b8bc
time="2024-08-19T12:25:17Z" level=info msg="revision metadata cache miss: [email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git/7add05cec93b62474406b680b384f02f7adcab3f"
time="2024-08-19T12:25:17Z" level=info msg=Trace args="[git cat-file -t 82d154772364dc042a946e176de598d38a6aabad]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=2.467763
time="2024-08-19T12:25:17Z" level=info msg="git fetch origin --tags --force --prune" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=634d2
time="2024-08-19T12:25:18Z" level=info msg="manifest cache miss: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:25:19Z" level=info msg=Trace args="[git fetch origin --tags --force --prune]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=1891.02762
time="2024-08-19T12:25:19Z" level=info msg="git checkout --force 82d154772364dc042a946e176de598d38a6aabad" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=e10ff
time="2024-08-19T12:25:19Z" level=info msg=Trace args="[git checkout --force 82d154772364dc042a946e176de598d38a6aabad]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=3.510802
time="2024-08-19T12:25:19Z" level=info msg="git clean -ffdx" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=aca4b
time="2024-08-19T12:25:19Z" level=info msg=Trace args="[git clean -ffdx]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=1.366916
time="2024-08-19T12:25:19Z" level=info msg="git show -s --format=%an <%ae>|%at|%B 82d154772364dc042a946e176de598d38a6aabad" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=082f8
time="2024-08-19T12:25:19Z" level=info msg="git rev-parse HEAD" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=d5076
time="2024-08-19T12:25:19Z" level=info msg=Trace args="[git rev-parse HEAD]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=1.623848
time="2024-08-19T12:25:19Z" level=info msg=Trace args="[git show -s --format=%an <%ae>|%at|%B 82d154772364dc042a946e176de598d38a6aabad]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=2.690666
time="2024-08-19T12:25:19Z" level=info msg="git tag --points-at 82d154772364dc042a946e176de598d38a6aabad" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=263cf
time="2024-08-19T12:25:19Z" level=info msg="manifest cache miss: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:25:19Z" level=info msg=Trace args="[git tag --points-at 82d154772364dc042a946e176de598d38a6aabad]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=9.470805
time="2024-08-19T12:25:19Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GetRevisionMetadata grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:25:17Z" grpc.time_ms=1918.803 span.kind=server system=grpc
time="2024-08-19T12:25:19Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:25:17Z" grpc.time_ms=1917.465 span.kind=server system=grpc
time="2024-08-19T12:25:19Z" level=info msg="git cat-file -t 7add05cec93b62474406b680b384f02f7adcab3f" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=a88f9
time="2024-08-19T12:25:19Z" level=info msg=Trace args="[git cat-file -t 7add05cec93b62474406b680b384f02f7adcab3f]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=6.808321
time="2024-08-19T12:25:19Z" level=info msg="git checkout --force 7add05cec93b62474406b680b384f02f7adcab3f" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=17bbd
time="2024-08-19T12:25:19Z" level=info msg=Trace args="[git checkout --force 7add05cec93b62474406b680b384f02f7adcab3f]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=8.972045
time="2024-08-19T12:25:19Z" level=info msg="git clean -ffdx" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=b1f1c
time="2024-08-19T12:25:19Z" level=info msg=Trace args="[git clean -ffdx]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=1.891785
time="2024-08-19T12:25:19Z" level=info msg="git show -s --format=%an <%ae>|%at|%B 7add05cec93b62474406b680b384f02f7adcab3f" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=a5fdb
time="2024-08-19T12:25:19Z" level=info msg=Trace args="[git show -s --format=%an <%ae>|%at|%B 7add05cec93b62474406b680b384f02f7adcab3f]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=2.0476180000000004
time="2024-08-19T12:25:19Z" level=info msg="git tag --points-at 7add05cec93b62474406b680b384f02f7adcab3f" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 execID=6e189
time="2024-08-19T12:25:19Z" level=info msg=Trace args="[git tag --points-at 7add05cec93b62474406b680b384f02f7adcab3f]" dir=/tmp/_argocd-repo/1b050ab9-7983-4e6d-919d-33e70cd83937 operation_name="exec git" time_ms=1.709674
time="2024-08-19T12:25:19Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GetRevisionMetadata grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:25:17Z" grpc.time_ms=1943.584 span.kind=server system=grpc
time="2024-08-19T12:25:24Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:25:24Z" grpc.time_ms=0.022 span.kind=server system=grpc
time="2024-08-19T12:25:29Z" level=info msg="revision metadata cache miss: [email protected]:XXXXX-YYY/XXXXX-app-helm.git/b1eb2db224496c5dbf20ca35f9afb892441c2caa"
time="2024-08-19T12:25:29Z" level=info msg="Initializing [email protected]:XXXXX-YYY/XXXXX-app-helm.git to /tmp/_argocd-repo/98f71a8c-f514-4ee3-9b59-b5bc5eae3389"
time="2024-08-19T12:25:29Z" level=info msg="git cat-file -t b1eb2db224496c5dbf20ca35f9afb892441c2caa" dir=/tmp/_argocd-repo/98f71a8c-f514-4ee3-9b59-b5bc5eae3389 execID=29194
time="2024-08-19T12:25:29Z" level=info msg=Trace args="[git cat-file -t b1eb2db224496c5dbf20ca35f9afb892441c2caa]" dir=/tmp/_argocd-repo/98f71a8c-f514-4ee3-9b59-b5bc5eae3389 operation_name="exec git" time_ms=1.771787
time="2024-08-19T12:25:29Z" level=info msg="git fetch origin --tags --force --prune" dir=/tmp/_argocd-repo/98f71a8c-f514-4ee3-9b59-b5bc5eae3389 execID=6d28d
time="2024-08-19T12:25:29Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:25:29Z" grpc.time_ms=0.175 span.kind=server system=grpc
time="2024-08-19T12:25:29Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:25:29Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:25:29Z" grpc.time_ms=2.815 span.kind=server system=grpc
time="2024-08-19T12:25:29Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:25:29Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:25:29Z" grpc.time_ms=2.573 span.kind=server system=grpc
time="2024-08-19T12:25:29Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:25:29Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:25:29Z" grpc.time_ms=0.545 span.kind=server system=grpc
time="2024-08-19T12:25:30Z" level=error msg="`git fetch origin --tags --force --prune` failed exit status 128: [email protected]: Permission denied (publickey).\r\nfatal: Could not read from remote repository.\n\nPlease make sure you have the correct access rights\nand the repository exists." execID=6d28d
time="2024-08-19T12:25:30Z" level=info msg=Trace args="[git fetch origin --tags --force --prune]" dir=/tmp/_argocd-repo/98f71a8c-f514-4ee3-9b59-b5bc5eae3389 operation_name="exec git" time_ms=467.16279199999997
time="2024-08-19T12:25:30Z" level=error msg="finished unary call with code Unknown" error="error acquiring repo lock: failed to initialize repository resources: rpc error: code = Internal desc = Failed to fetch default: `git fetch origin --tags --force --prune` failed exit status 128: [email protected]: Permission denied (publickey).\r\nfatal: Could not read from remote repository.\n\nPlease make sure you have the correct access rights\nand the repository exists." grpc.code=Unknown grpc.method=GetRevisionMetadata grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:25:29Z" grpc.time_ms=470.976 span.kind=server system=grpc
time="2024-08-19T12:25:34Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:25:34Z" grpc.time_ms=0.016 span.kind=server system=grpc
time="2024-08-19T12:25:44Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:25:44Z" grpc.time_ms=0.03 span.kind=server system=grpc
time="2024-08-19T12:25:54Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:25:54Z" grpc.time_ms=0.031 span.kind=server system=grpc
time="2024-08-19T12:26:04Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:26:04Z" grpc.time_ms=0.021 span.kind=server system=grpc
time="2024-08-19T12:26:14Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:26:14Z" grpc.time_ms=0.024 span.kind=server system=grpc
time="2024-08-19T12:26:24Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:26:24Z" grpc.time_ms=0.017 span.kind=server system=grpc
time="2024-08-19T12:26:34Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:26:34Z" grpc.time_ms=0.018 span.kind=server system=grpc
time="2024-08-19T12:26:44Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:26:44Z" grpc.time_ms=0.022 span.kind=server system=grpc
time="2024-08-19T12:26:54Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:26:54Z" grpc.time_ms=0.035 span.kind=server system=grpc
time="2024-08-19T12:27:04Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:27:04Z" grpc.time_ms=0.02 span.kind=server system=grpc
time="2024-08-19T12:27:14Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:27:14Z" grpc.time_ms=0.017 span.kind=server system=grpc
time="2024-08-19T12:27:24Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:27:24Z" grpc.time_ms=0.019 span.kind=server system=grpc
time="2024-08-19T12:27:34Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:27:34Z" grpc.time_ms=0.022 span.kind=server system=grpc
time="2024-08-19T12:27:38Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:27:38Z" grpc.time_ms=11.184 span.kind=server system=grpc
time="2024-08-19T12:27:38Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:27:38Z" grpc.time_ms=4.924 span.kind=server system=grpc
time="2024-08-19T12:27:39Z" level=info msg="manifest cache miss: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-eks-cloudwatch-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/b3e3ef30d9403df51024cb2f8df151ca16d36a7a"
time="2024-08-19T12:27:39Z" level=info msg="Initializing [email protected]:XXXXX-YYY/ZZZZZ-eks-cloudwatch-staging.git to /tmp/_argocd-repo/b618c0d0-4826-4f7f-bef6-6141324f281e"
time="2024-08-19T12:27:39Z" level=info msg="git cat-file -t b3e3ef30d9403df51024cb2f8df151ca16d36a7a" dir=/tmp/_argocd-repo/b618c0d0-4826-4f7f-bef6-6141324f281e execID=c5f9a
time="2024-08-19T12:27:39Z" level=info msg=Trace args="[git cat-file -t b3e3ef30d9403df51024cb2f8df151ca16d36a7a]" dir=/tmp/_argocd-repo/b618c0d0-4826-4f7f-bef6-6141324f281e operation_name="exec git" time_ms=1.97148
time="2024-08-19T12:27:39Z" level=info msg="git fetch origin --tags --force --prune" dir=/tmp/_argocd-repo/b618c0d0-4826-4f7f-bef6-6141324f281e execID=37dad
time="2024-08-19T12:27:39Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:27:38Z" grpc.time_ms=1004.173 span.kind=server system=grpc
time="2024-08-19T12:27:39Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:27:38Z" grpc.time_ms=1013.08 span.kind=server system=grpc
time="2024-08-19T12:27:39Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:27:38Z" grpc.time_ms=1008.195 span.kind=server system=grpc
time="2024-08-19T12:27:39Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:27:38Z" grpc.time_ms=1004.885 span.kind=server system=grpc
time="2024-08-19T12:27:40Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:27:38Z" grpc.time_ms=2011.334 span.kind=server system=grpc
time="2024-08-19T12:27:40Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:27:38Z" grpc.time_ms=2009.205 span.kind=server system=grpc
time="2024-08-19T12:27:40Z" level=info msg=Trace args="[git fetch origin --tags --force --prune]" dir=/tmp/_argocd-repo/b618c0d0-4826-4f7f-bef6-6141324f281e operation_name="exec git" time_ms=1261.5232409999999
time="2024-08-19T12:27:40Z" level=info msg="git checkout --force b3e3ef30d9403df51024cb2f8df151ca16d36a7a" dir=/tmp/_argocd-repo/b618c0d0-4826-4f7f-bef6-6141324f281e execID=c282a
time="2024-08-19T12:27:40Z" level=info msg=Trace args="[git checkout --force b3e3ef30d9403df51024cb2f8df151ca16d36a7a]" dir=/tmp/_argocd-repo/b618c0d0-4826-4f7f-bef6-6141324f281e operation_name="exec git" time_ms=2.705804
time="2024-08-19T12:27:40Z" level=info msg="git clean -ffdx" dir=/tmp/_argocd-repo/b618c0d0-4826-4f7f-bef6-6141324f281e execID=447bd
time="2024-08-19T12:27:40Z" level=info msg=Trace args="[git clean -ffdx]" dir=/tmp/_argocd-repo/b618c0d0-4826-4f7f-bef6-6141324f281e operation_name="exec git" time_ms=1.364857
time="2024-08-19T12:27:40Z" level=info msg="git rev-parse HEAD" dir=/tmp/_argocd-repo/b618c0d0-4826-4f7f-bef6-6141324f281e execID=f3f22
time="2024-08-19T12:27:40Z" level=info msg=Trace args="[git rev-parse HEAD]" dir=/tmp/_argocd-repo/b618c0d0-4826-4f7f-bef6-6141324f281e operation_name="exec git" time_ms=1.197203
time="2024-08-19T12:27:40Z" level=info msg="manifest cache miss: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-eks-cloudwatch-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/b3e3ef30d9403df51024cb2f8df151ca16d36a7a"
time="2024-08-19T12:27:40Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:27:38Z" grpc.time_ms=2149.798 span.kind=server system=grpc
time="2024-08-19T12:27:40Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:27:40Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:27:40Z" grpc.time_ms=0.537 span.kind=server system=grpc
time="2024-08-19T12:27:41Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:27:38Z" grpc.time_ms=3012.574 span.kind=server system=grpc
time="2024-08-19T12:27:44Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:27:44Z" grpc.time_ms=0.023 span.kind=server system=grpc
time="2024-08-19T12:27:54Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:27:54Z" grpc.time_ms=0.021 span.kind=server system=grpc
time="2024-08-19T12:28:04Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:28:04Z" grpc.time_ms=0.018 span.kind=server system=grpc
time="2024-08-19T12:28:14Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:28:14Z" grpc.time_ms=0.016 span.kind=server system=grpc
time="2024-08-19T12:28:24Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:28:24Z" grpc.time_ms=0.023 span.kind=server system=grpc
time="2024-08-19T12:28:34Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:28:34Z" grpc.time_ms=0.024 span.kind=server system=grpc
time="2024-08-19T12:28:44Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:28:44Z" grpc.time_ms=0.023 span.kind=server system=grpc
time="2024-08-19T12:28:54Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:28:54Z" grpc.time_ms=0.022 span.kind=server system=grpc
time="2024-08-19T12:29:04Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:29:04Z" grpc.time_ms=0.022 span.kind=server system=grpc
time="2024-08-19T12:29:14Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:29:14Z" grpc.time_ms=0.016 span.kind=server system=grpc
time="2024-08-19T12:29:24Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:29:24Z" grpc.time_ms=0.022 span.kind=server system=grpc
time="2024-08-19T12:29:34Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:29:34Z" grpc.time_ms=0.017 span.kind=server system=grpc
time="2024-08-19T12:29:44Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:29:44Z" grpc.time_ms=0.021 span.kind=server system=grpc
time="2024-08-19T12:29:54Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:29:54Z" grpc.time_ms=0.022 span.kind=server system=grpc
time="2024-08-19T12:30:00Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:00Z" grpc.time_ms=1.508 span.kind=server system=grpc
time="2024-08-19T12:30:00Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:00Z" grpc.time_ms=1.202 span.kind=server system=grpc
time="2024-08-19T12:30:00Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:00Z" grpc.time_ms=9.444 span.kind=server system=grpc
time="2024-08-19T12:30:00Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:00Z" grpc.time_ms=1.177 span.kind=server system=grpc
time="2024-08-19T12:30:00Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:00Z" grpc.time_ms=1.083 span.kind=server system=grpc
time="2024-08-19T12:30:01Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:00Z" grpc.time_ms=1005.37 span.kind=server system=grpc
time="2024-08-19T12:30:01Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:01Z" grpc.time_ms=1.771 span.kind=server system=grpc
time="2024-08-19T12:30:01Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:01Z" grpc.time_ms=6.466 span.kind=server system=grpc
time="2024-08-19T12:30:01Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:01Z" grpc.time_ms=2.431 span.kind=server system=grpc
time="2024-08-19T12:30:02Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:02Z" grpc.time_ms=11.589 span.kind=server system=grpc
time="2024-08-19T12:30:02Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:02Z" grpc.time_ms=1.491 span.kind=server system=grpc
time="2024-08-19T12:30:04Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:30:04Z" grpc.time_ms=0.021 span.kind=server system=grpc
time="2024-08-19T12:30:08Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:08Z" grpc.time_ms=0.9 span.kind=server system=grpc
time="2024-08-19T12:30:09Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:09Z" grpc.time_ms=1.134 span.kind=server system=grpc
time="2024-08-19T12:30:10Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:10Z" grpc.time_ms=1.477 span.kind=server system=grpc
time="2024-08-19T12:30:10Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:10Z" grpc.time_ms=0.947 span.kind=server system=grpc
time="2024-08-19T12:30:10Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:10Z" grpc.time_ms=7.201 span.kind=server system=grpc
time="2024-08-19T12:30:10Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:10Z" grpc.time_ms=5.163 span.kind=server system=grpc
time="2024-08-19T12:30:10Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:10Z" grpc.time_ms=1.387 span.kind=server system=grpc
time="2024-08-19T12:30:10Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:10Z" grpc.time_ms=6.171 span.kind=server system=grpc
time="2024-08-19T12:30:14Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:30:14Z" grpc.time_ms=0.022 span.kind=server system=grpc
time="2024-08-19T12:30:16Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:16Z" grpc.time_ms=6.02 span.kind=server system=grpc
time="2024-08-19T12:30:17Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:17Z" grpc.time_ms=1.402 span.kind=server system=grpc
time="2024-08-19T12:30:18Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:18Z" grpc.time_ms=0.848 span.kind=server system=grpc
time="2024-08-19T12:30:18Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:18Z" grpc.time_ms=1.327 span.kind=server system=grpc
time="2024-08-19T12:30:18Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:18Z" grpc.time_ms=0.802 span.kind=server system=grpc
time="2024-08-19T12:30:18Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:18Z" grpc.time_ms=0.882 span.kind=server system=grpc
time="2024-08-19T12:30:18Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:18Z" grpc.time_ms=0.803 span.kind=server system=grpc
time="2024-08-19T12:30:18Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:18Z" grpc.time_ms=0.852 span.kind=server system=grpc
time="2024-08-19T12:30:18Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:18Z" grpc.time_ms=0.861 span.kind=server system=grpc
time="2024-08-19T12:30:19Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:19Z" grpc.time_ms=0.821 span.kind=server system=grpc
time="2024-08-19T12:30:24Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:30:24Z" grpc.time_ms=0.016 span.kind=server system=grpc
time="2024-08-19T12:30:34Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:30:34Z" grpc.time_ms=0.021 span.kind=server system=grpc
time="2024-08-19T12:30:38Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-eks-cloudwatch-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/b3e3ef30d9403df51024cb2f8df151ca16d36a7a"
time="2024-08-19T12:30:38Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=13.311 span.kind=server system=grpc
time="2024-08-19T12:30:38Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=19.313 span.kind=server system=grpc
time="2024-08-19T12:30:38Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=4.064 span.kind=server system=grpc
time="2024-08-19T12:30:38Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=4.977 span.kind=server system=grpc
time="2024-08-19T12:30:39Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=1016.435 span.kind=server system=grpc
time="2024-08-19T12:30:39Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=1008.119 span.kind=server system=grpc
time="2024-08-19T12:30:39Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=1022.816 span.kind=server system=grpc
time="2024-08-19T12:30:39Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:30:39Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=1069.263 span.kind=server system=grpc
time="2024-08-19T12:30:39Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:39Z" grpc.time_ms=0.864 span.kind=server system=grpc
time="2024-08-19T12:30:39Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:30:39Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:39Z" grpc.time_ms=0.895 span.kind=server system=grpc
time="2024-08-19T12:30:40Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=2013.742 span.kind=server system=grpc
time="2024-08-19T12:30:40Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=2010.144 span.kind=server system=grpc
time="2024-08-19T12:30:40Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=2024.217 span.kind=server system=grpc
time="2024-08-19T12:30:40Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:30:40Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:40Z" grpc.time_ms=0.454 span.kind=server system=grpc
time="2024-08-19T12:30:40Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:30:40Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:40Z" grpc.time_ms=0.544 span.kind=server system=grpc
time="2024-08-19T12:30:40Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:40Z" grpc.time_ms=0.907 span.kind=server system=grpc
time="2024-08-19T12:30:40Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:30:40Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:40Z" grpc.time_ms=0.976 span.kind=server system=grpc
time="2024-08-19T12:30:41Z" level=error msg="finished unary call with code Unknown" error="error creating SSH agent: \"SSH agent requested but SSH_AUTH_SOCK not-specified\"" grpc.code=Unknown grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:38Z" grpc.time_ms=3019.649 span.kind=server system=grpc
time="2024-08-19T12:30:41Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:30:41Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:41Z" grpc.time_ms=0.507 span.kind=server system=grpc
time="2024-08-19T12:30:41Z" level=info msg="manifest cache hit: &ApplicationSource{RepoURL:[email protected]:XXXXX-YYY/ZZZZZ-yaml-staging.git,Path:.,TargetRevision:main,Helm:nil,Kustomize:nil,Directory:nil,Plugin:nil,Chart:,Ref:,}/82d154772364dc042a946e176de598d38a6aabad"
time="2024-08-19T12:30:41Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=GenerateManifest grpc.service=repository.RepoServerService grpc.start_time="2024-08-19T12:30:41Z" grpc.time_ms=0.518 span.kind=server system=grpc
time="2024-08-19T12:30:44Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:30:44Z" grpc.time_ms=0.019 span.kind=server system=grpc
time="2024-08-19T12:30:54Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:30:54Z" grpc.time_ms=0.02 span.kind=server system=grpc
time="2024-08-19T12:31:04Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:31:04Z" grpc.time_ms=0.017 span.kind=server system=grpc
time="2024-08-19T12:31:14Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:31:14Z" grpc.time_ms=0.023 span.kind=server system=grpc
time="2024-08-19T12:31:24Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:31:24Z" grpc.time_ms=0.023 span.kind=server system=grpc
time="2024-08-19T12:31:34Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:31:34Z" grpc.time_ms=0.021 span.kind=server system=grpc
time="2024-08-19T12:31:44Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:31:44Z" grpc.time_ms=0.022 span.kind=server system=grpc
time="2024-08-19T12:31:54Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:31:54Z" grpc.time_ms=0.015 span.kind=server system=grpc
time="2024-08-19T12:32:04Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:32:04Z" grpc.time_ms=0.016 span.kind=server system=grpc
time="2024-08-19T12:32:14Z" level=info msg="finished unary call with code OK" grpc.code=OK grpc.method=Check grpc.service=grpc.health.v1.Health grpc.start_time="2024-08-19T12:32:14Z" grpc.time_ms=0.015 span.kind=server system=grpc
@meyerpeter meyerpeter added the bug Something isn't working label Aug 19, 2024
@meyerpeter meyerpeter changed the title 2.12. 2.12. multiple sources stop working Aug 19, 2024
@vitaliyf
Copy link

We also see this SSH agent requested but SSH_AUTH_SOCK not-specified after 2.11.7 to 2.12.0 (and 2.12.1) upgrade. Rollback of argo-cd helm chart 7.4.4 to 7.3.11 resolves the problem.

Worth mentioning that the repository is listed under Settings->Repositories with Connection Status: ✅ Successful, but syncing is failing with the above error message in repo-server logs.

@crenshaw-dev crenshaw-dev added the regression Bug is a regression, should be handled with high priority label Aug 19, 2024
@gravufo
Copy link

gravufo commented Aug 20, 2024

We seem to have the same issue, the only difference is we target our repos in HTTPS instead of SSH.

@blakepettersson
Copy link
Member

@gravufo, @vitaliyf and @meyerpeter can you give the specs of the applications which are failing, and the (redacted) specs of the repo credentials that are expected to work with these applications? I suspect shenanigans from #18388. I'd like to specifically see what project the application belongs to, as well as the project the repository credential belongs to.

@vitaliyf
Copy link

vitaliyf commented Aug 21, 2024
edited
Loading

You might be right, since we have many apps in many projects, all using same repo (which seem to be in "default" project)

apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
  finalizers:
  - resources-finalizer.argocd.argoproj.io
  labels:
    app.kubernetes.io/instance: redacted-argocd-prod
    app.kubernetes.io/managed-by: Helm
    app.kubernetes.io/name: argo-cd
    app.kubernetes.io/version: 1.0.0
    argocd.argoproj.io/instance: redacted-argocd-prod
    helm.sh/chart: argo-cd-1.0.0
  name: our-app-prod
  namespace: argocd
spec:
  destination:
    namespace: our-prod
    server: https://kubernetes.default.svc
  project: our-prod
  source:
    path: helm/our-app-name/
    plugin:
      name: redacted-template
      parameters:
      - name: release-name
        string: our-app-name
      - array:
        - prod.yaml
        name: values-files
    repoURL: [email protected]:redacted-org/redacted-repo-name.git
    targetRevision: master
  syncPolicy:
    automated:
      prune: true
      selfHeal: true
    syncOptions:
    - CreateNamespace=true
    - Validate=true
    - ServerSideApply

and

apiVersion: v1
data:
  name: redacted-base64("redacted-repo-name")
  project: redacted-base64("default")
  sshPrivateKey: redacted-base64("-----BEGIN OPENSSH PRIVATE KEY----- ...")
  type: redacted-base64("git")
  url: redacted-base64("[email protected]:redacted-org/redacted-repo-name.git")
kind: Secret
metadata:
  annotations:
    managed-by: argocd.argoproj.io
  labels:
    argocd.argoproj.io/secret-type: repository
  name: repo-1111138409
  namespace: argocd
type: Opaque

Some items worth mentioning:

  • we saw this problem on two separate Argo clusters, one of which uses basic app-of-app and the other uses GitHub PR AppSet generator. Both have apps spread across multiple AppProjects that are using same repoURL
  • we aren't using multiple sources anywhere, so the title of this issue may be incorrect
  • we aren't using "apps in any namespace"
  • this repo secret is almost 2 years old, created when we first began using ArgoCD

@blakepettersson
Copy link
Member

@vitaliyf that confirms my hypothesis - it's due to a change in how project-scoped repo creds are loaded. Previously cluster secrets previously matched by matching the url only, but now matches on url and project (if a project exists on the cluster secret). I'd argue that the way it is in 2.12 is in fact the correct behavior (a cluster-credential scoped to a certain project should not work for another project, and may pose a security issue), but sadly this is an inadvertently breaking change 😞

To fix your issue you can remove the project key from your cluster secret.

cc @jessesuen

@vitaliyf
Copy link

Confirmed - removing project: default from repo-1111138409 Secret fixed the problem.

@blakepettersson conceptually that makes sense, though in some situations (like ours, where projects are simply used to logically group apps and there is no real security scoping necessary across them) it would be nice to keep ability to have cluster-wide repo configured, so we don't need to add a bunch of identical ones for each project.

@blakepettersson
Copy link
Member

@vitaliyf if the repo cred is only used by our-prod applications, you can also set the project to be our-prod on the repo cred.

@todaywasawesome
Copy link
Contributor

After discussion in the contributor's experience meeting the conclusion is that we need to add a note to release docs for 2.12.0 noting the breaking change and the scoped repositories documentation to describe the expected behavior.

@gravufo
Copy link

gravufo commented Aug 22, 2024

@vitaliyf that confirms my hypothesis - it's due to a change in how project-scoped repo creds are loaded. Previously cluster secrets previously matched by matching the url only, but now matches on url and project (if a project exists on the cluster secret). I'd argue that the way it is in 2.12 is in fact the correct behavior (a cluster-credential scoped to a certain project should not work for another project, and may pose a security issue), but sadly this is an inadvertently breaking change 😞

To fix your issue you can remove the project key from your cluster secret.

cc @jessesuen

I also confirm it fixes the issue for me too. Thanks a lot for the workaround.
I agree that the new behavior makes more sense and would consider the previous one as a bug, so I think it's fine to not consider this a breaking change, but the documentation/release note update is definitely welcome!

@vitaliyf
Copy link

@vitaliyf if the repo cred is only used by our-prod applications, you can also set the project to be our-prod on the repo cred.

No, we actually do have multiple apps, across multiple projects, all using the same repo.

We also have a use-case where we dynamically create projects + apps inside of them, all pointed at the same repository (this is done by GitHub PR generator, one project per open PR), so managing permission entry for each one would be slightly cumbersome.

Could repositories allow project: * scoping that would mean "all projects"?

@blakepettersson
Copy link
Member

blakepettersson commented Aug 22, 2024
edited
Loading

Could repositories allow project: * scoping that would mean "all projects"?

@vitaliy, not having a project set on a repository credential is the same as "all projects".

@vitaliyf
Copy link

@vitaliy, not having a project set on a repository credential is the same as "all projects".

Sounds good to me, as long as this functionality isn't removed. :)

In that case, I agree that it was "user's fault" that we had a repo configured for project "default" but expected it to work everywhere, and just documenting this as a change in behavior starting with 2.12 is sufficient.

@crenshaw-dev
Copy link
Member

@blakepettersson I wonder if this is the underlying cause of #19585 and #18748. If so, the impact may be larger than I'd hoped. :-(

@mozemke mozemke mentioned this issue Aug 23, 2024
Open
3 tasks
@blakepettersson blakepettersson mentioned this issue Aug 23, 2024
Open
3 tasks
@argo1984
Copy link

Hi,

i double checked to give the requested informations and found out that we also had "project = default" from the example in the Secret. After removing it it worked.

@meyerpeter
Copy link
Author

In my case, both secrets and application yamls are using the same non-default project.

blakepettersson added a commit to blakepettersson/argo-cd that referenced this issue Aug 26, 2024
@blakepettersson
docs: note cluster scoping changes in 2.12x
ae8ef7b 
Related to argoproj#18748,argoproj#19585 and argoproj#19587.

Signed-off-by: Blake Pettersson <[email protected]>
@blakepettersson blakepettersson mentioned this issue Aug 26, 2024
Merged
14 tasks
blakepettersson added a commit that referenced this issue Aug 27, 2024
@blakepettersson
docs: note cluster scoping changes in 2.12x (#19684)
4ec26ce 
* docs: note cluster scoping changes in 2.12x

Related to #18748,#19585 and #19587.

Signed-off-by: Blake Pettersson <[email protected]>

* docs: add note in projects doc.

Signed-off-by: Blake Pettersson <[email protected]>

---------

Signed-off-by: Blake Pettersson <[email protected]>
gcp-cherry-pick-bot bot pushed a commit that referenced this issue Aug 27, 2024
@blakepettersson
docs: note cluster scoping changes in 2.12x (#19684)
a44d7ea 
* docs: note cluster scoping changes in 2.12x

Related to #18748,#19585 and #19587.

Signed-off-by: Blake Pettersson <[email protected]>

* docs: add note in projects doc.

Signed-off-by: Blake Pettersson <[email protected]>

---------

Signed-off-by: Blake Pettersson <[email protected]>
@gcp-cherry-pick-bot gcp-cherry-pick-bot bot mentioned this issue Aug 27, 2024
Merged
gdsoumya pushed a commit that referenced this issue Aug 28, 2024
@gcp-cherry-pick-bot @blakepettersson
docs: note cluster scoping changes in 2.12x (#19684) (#19702)
02b8336 
* docs: note cluster scoping changes in 2.12x

Related to #18748,#19585 and #19587.



* docs: add note in projects doc.



---------

Signed-off-by: Blake Pettersson <[email protected]>
Co-authored-by: Blake Pettersson <[email protected]>
@blakepettersson
Copy link
Member

blakepettersson commented Aug 28, 2024
edited
Loading

@meyerpeter perhaps this can be remedied by doing a hard-refresh of the app as in #19585?

@meyerpeter
Copy link
Author

Sorry, I had a single repository indeed using project: default.
Moved that to my applications project and everything is now synced :-)

ashutosh16 pushed a commit that referenced this issue Aug 28, 2024
@blakepettersson
docs: note cluster scoping changes in 2.12x (#19684)
b1ad7eb 
* docs: note cluster scoping changes in 2.12x

Related to #18748,#19585 and #19587.

Signed-off-by: Blake Pettersson <[email protected]>

* docs: add note in projects doc.

Signed-off-by: Blake Pettersson <[email protected]>

---------

Signed-off-by: Blake Pettersson <[email protected]>
This was referenced Sep 16, 2024
Open
Closed
@blakepettersson blakepettersson removed the bug Something isn't working label Sep 20, 2024
@blakepettersson blakepettersson changed the title 2.12. multiple sources stop working 2.12 breaking change with project scoped secrets Sep 20, 2024
@blakepettersson
Copy link
Member

I'll close this since this duplicates #19585

@blakepettersson blakepettersson closed this as not planned Won't fix, can't repro, duplicate, stale Sep 20, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
component:multi-source-apps component:repo-server regression Bug is a regression, should be handled with high priority
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
8 participants
@vitaliyf @crenshaw-dev @gravufo @blakepettersson @todaywasawesome @argo1984 @reggie-k @meyerpeter