Skip to content

[8.17] (backport #20880) docs: add 8.14 TLS 1.2 RSA handshake breaking change#20891

Merged
mergify[bot] merged 1 commit into8.17from
mergify/bp/8.17/pr-20880
Apr 16, 2026
Merged

[8.17] (backport #20880) docs: add 8.14 TLS 1.2 RSA handshake breaking change#20891
mergify[bot] merged 1 commit into8.17from
mergify/bp/8.17/pr-20880

Conversation

@mergify
Copy link
Copy Markdown
Contributor

@mergify mergify bot commented Apr 14, 2026

Motivation/summary

This PR documents a TLS behavior change introduced with the Go 1.22 toolchain that first landed in APM Server 8.14.0.

It adds a user-facing breaking-change note in two places:

  • changelogs/8.14.asciidoc under the 8.14.0 release section (==== Breaking Changes)
  • changelogs/all-breaking-changes.asciidoc under the === 8.14 section

The note explains that TLS 1.2 handshakes with RSA key exchange ciphers can fail at runtime even when startup succeeds, and documents the temporary workaround: set GODEBUG=tlsrsakex=1 on the APM Server process.

Checklist

How to test these changes

  1. Inspect changelogs/8.14.asciidoc and verify APM version 8.14.0 includes a ==== Breaking Changes subsection describing this TLS behavior and workaround.
  2. Inspect changelogs/all-breaking-changes.asciidoc and verify the === 8.14 section exists in correct descending order before === 8.11.
  3. Confirm both entries mention the workaround GODEBUG=tlsrsakex=1 and reference issue #20879.
  4. (Validation context) Runtime repro details are captured in issue #20879.

Related issues

Fixes #20877
Related: #20879

This is an automatic backport of pull request #20880 done by Mergify.

@carsonip @mergify
docs: add 8.14 TLS 1.2 RSA handshake breaking change (#20880)
ba3626e 
* docs: add 8.14 TLS 1.2 RSA handshake breaking change note

Document that TLS 1.2 RSA key exchange cipher negotiation can fail at runtime in 8.14+ due to Go 1.22 defaults, and include the GODEBUG workaround.

Made-with: Cursor

* docs: add breaking change entry to 8.14 release notes

Add a dedicated Breaking Changes section to 8.14.0 release notes documenting TLS 1.2 RSA key exchange runtime handshake failures and the GODEBUG workaround.

Made-with: Cursor

* docs: reorder 8.14 breaking change section

Move the 8.14 breaking changes block ahead of 8.11 to keep release sections in descending version order.

Made-with: Cursor

* docs: align 8.14 breaking-change format with existing style

Reformat the 8.14 all-breaking-changes entry to use the standard bullet-and-details style used by nearby 8.x sections.

Made-with: Cursor
(cherry picked from commit 0605cf3)
@mergify mergify bot requested a review from a team as a code owner April 14, 2026 14:19
@mergify mergify bot added the backport label Apr 14, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Apr 14, 2026

🤖 GitHub comments

Just comment with:

  • run docs-build : Re-trigger the docs validation. (use unformatted text in the comment!)

@mergify mergify bot mentioned this pull request Apr 14, 2026
Merged
2 tasks
@mergify mergify bot added the queued label Apr 14, 2026
@mergify
Copy link
Copy Markdown
Contributor Author

mergify bot commented Apr 14, 2026
edited
Loading

Merge Queue Status

This pull request spent 14 minutes 43 seconds in the queue, including 14 minutes 25 seconds running CI.

Waiting for:

  • check-success=test (windows-2025)
  • any of:
    • check-neutral = buildkite/docs-build-pr
    • check-skipped = buildkite/docs-build-pr
    • check-success = buildkite/docs-build-pr
All conditions

Reason

The merge conditions cannot be satisfied due to failing checks

Failing checks:

Hint

You may have to fix your CI before adding the pull request to the queue again.
If you update this pull request, to fix the CI, it will automatically be requeued once the queue conditions match again.
If you think this was a flaky issue instead, you can requeue the pull request, without updating it, by posting a @mergifyio queue comment.

mergify bot added a commit that referenced this pull request Apr 14, 2026
@mergify
Merge of #20891
ef97910
@mergify mergify bot mentioned this pull request Apr 14, 2026
Closed
41 tasks
@mergify mergify bot added dequeued and removed queued labels Apr 14, 2026
@carsonip
Copy link
Copy Markdown
Member

carsonip commented Apr 14, 2026

@Mergifyio queue

@mergify
Copy link
Copy Markdown
Contributor Author

mergify bot commented Apr 14, 2026
edited
Loading

Merge Queue Status

This pull request spent 2 days 2 hours 58 minutes 16 seconds in the queue, including 2 days 2 hours 57 minutes 37 seconds running CI.

Required conditions to merge

@mergify mergify bot added the queued label Apr 14, 2026
mergify bot added a commit that referenced this pull request Apr 14, 2026
@mergify
Merge of #20891
14f6eac
@mergify mergify bot mentioned this pull request Apr 14, 2026
Closed
43 tasks
@mergify mergify bot removed the dequeued label Apr 14, 2026
@carsonip
Copy link
Copy Markdown
Member

carsonip commented Apr 15, 2026

@Mergifyio queue

@mergify
Copy link
Copy Markdown
Contributor Author

mergify bot commented Apr 15, 2026

queue

☑️ Command queue ignored because it is already running from a previous command.

@carsonip
Copy link
Copy Markdown
Member

carsonip commented Apr 15, 2026

@Mergifyio requeue

@mergify
Copy link
Copy Markdown
Contributor Author

mergify bot commented Apr 15, 2026

requeue

☑️ Command requeue ignored because it is already running from a previous command.

@carsonip
Copy link
Copy Markdown
Member

carsonip commented Apr 15, 2026

run docs-build

@carsonip carsonip closed this Apr 16, 2026
@carsonip carsonip reopened this Apr 16, 2026
@mergify mergify bot merged commit fb13a26 into 8.17 Apr 16, 2026
19 checks passed
@mergify mergify bot deleted the mergify/bp/8.17/pr-20880 branch April 16, 2026 18:29
@mergify mergify bot removed the queued label Apr 16, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@carsonip carsonip carsonip approved these changes

Assignees

@carsonip carsonip

Labels

backport

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@carsonip