opentelemetry-collector icon indicating copy to clipboard operation
opentelemetry-collector copied to clipboard

Published 20 hours ago verified publisher icon open-telemetry

[security] disable the X25519Kyber768Draft00 key exchange mechanism in artifacts

Open songy23 opened this issue 8 months ago • 2 comments
trafficstars

Component(s)

No response

Describe the issue you're reporting

X25519Kyber768Draft00 key exchange mechanism is an experimental tls algorithm and is enabled by default in Go 1.23. It has a bug with AWS Network Firewalls to drop packets. This terraform provider issue details it further

Consider disabling it in the collector artifacts. An example fix: https://github.com/DataDog/datadog-agent/pull/34481

songy23 avatar Feb 27 '25 16:02 songy23