Outage in Balena.io

old balenaOS fail to connect to balena API and download delta as it lacks support for elliptic curve encryption in openssl library.

Resolved Minor

April 03, 2024 - Started 8 months ago - Lasted 8 days
Official incident page

Need to monitor Balena.io outages?
Stay on top of outages with IsDown. Monitor the official status pages of all your vendors, SaaS, and tools, including Balena.io, and never miss an outage again.
Start Free Trial

Outage Details

Balena utilises automated TLS certificate updates to improve the security and trustworthy of our service landscape. This process has now updated to a certificate chain that enforces ECDSA (elliptic curve) instead of RSA encryption. From all known information, that affects balenaOS releases from around 2019 and older. We are currently investigating which balenaOS versions containing specific openssl libraries are affected. Moreover, we are assessing how this situation can be solved for such old balenaOS versions in a continuously changing security landscape.

Components affected

Balena.io API Balena.io Delta Image Downloads

Latest Updates ( sorted recent to last )

RESOLVED 7 months ago - at 04/11/2024 07:35PM

We've now switched to another certificate provider which offer certificates compatible with older devices.
Our our cache proxy back online and performance is now restored for everyone.

We're still working on a migration path for users running old balenaOS releases in anticipation for future technology deprecation.

MONITORING 7 months ago - at 04/09/2024 03:42PM

We found out that delta was also affected which prevents hostos upgrade on older devices.
We temporarily disabled our proxy for delta.

MONITORING 7 months ago - at 04/03/2024 10:25PM

We have temporarily bypassed our cache proxy to restore connectivity to older devices while we identify a migration path for users running affected balenaOS releases from 2019 and older.

IDENTIFIED 8 months ago - at 04/03/2024 04:48PM

Balena utilises automated TLS certificate updates to improve the security and trustworthy of our service landscape. This process has now updated to a certificate chain that enforces ECDSA (elliptic curve) instead of RSA encryption.

From all known information, that affects balenaOS releases from around 2019 and older.

We are currently investigating which balenaOS versions containing specific openssl libraries are affected. Moreover, we are assessing how this situation can be solved for such old balenaOS versions in a continuously changing security landscape.

Latest Balena.io outages

Elevated GIT/Application Builder Errors - 2 days ago

Elevated GIT/Application Builder Errors - 15 days ago

Elevated Device SSH Errors - 27 days ago

Elevated GIT/Application Builder Errors - about 2 months ago

Builder returns 403 error - 2 months ago

Vendor Downtime? Keep Your Team Informed with an Internal Status Page

With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.

Start free trial

No credit card required · Cancel anytime · 3265 services available

Integrations with Slack Microsoft Teams Google Chat Datadog PagerDuty Zapier Discord Webhook

Setup in 5 minutes or less

How much time you'll save your team, by having the outages information close to them?

14-day free trial · No credit card required · Cancel anytime

Start today for FREE