meta data for this page
  •  

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
git:gitlab:ci:issues [2023/06/15 12:40] niziakgit:gitlab:ci:issues [2025/03/12 09:07] (current) niziak
Line 1: Line 1:
 ====== CI Issues ====== ====== CI Issues ======
 +
 +===== Connection closed by remote host =====
 +
 +On 22 CPU machine, when Buildroot is in parallel download mode (''BR2_PER_PACKAGE_DIRECTORIES=y''):
 +
 +<code>
 +kex_exchange_identification: Connection closed by remote host
 +Connection closed by 192.168.64.240 port 22
 +</code>
 +
 +In Gitlab server logs:
 +<code>
 +gitlab sshd[1800758]: error: beginning MaxStartups throttling
 +gitlab sshd[1800758]: drop connection #10 from [192.168.65.128]:37112 on [192.168.64.240]:22 past MaxStartups
 +</code>
 +
 +Solution: [[https://docs.gitlab.com/topics/git/troubleshooting_git/#ssh_exchange_identification-error|ssh_exchange_identification]]
 +
 +
 +===== remote: You are not allowed to download code from this project. =====
 +
 +<code>
 +Cloning into '/builds/group/project/buildroot/src/maginc-submodule'...
 +remote: You are not allowed to download code from this project.
 +fatal: unable to access 'https://gitlab.example.com/groups/project/magic-submodule.git': The requested URL returned error: 403
 +fatal: clone of 'https://gitlab-ci-token:[MASKED]@gitlab.example.com/groups/project/magic-submodule.git' into submodule path '/builds/group/project/buildroot/src/maginc-submodule' failed
 +</code>
 +
 +Reason:
 +[[https://docs.gitlab.com/ee/update/deprecations.html#default-cicd-job-token-ci_job_token-scope-changed|Default CI/CD job token (CI_JOB_TOKEN) scope changed]]
 +
 +More:
 +[[https://gitlab.grinndev.ovh/help/ci/jobs/ci_job_token#allow-access-to-your-project-with-a-job-token|Allow access to your project with a job token]]
 +
 +Solution:
 +  * Go to ''Submodule to be cloned'' in Gitlab UI
 +  * Settings --> CI/CD --> Token Access 
 +
 +===== fatal: No names found, cannot describe anything =====
 +
 +<code>fatal: No names found, cannot describe anything.</code>
 +
 +When ''git describe --tags'' is used to detect version name but repository doesn't contain tags.
 +
 +Possible reasons of failure:
 +  * shallow clone, to unshallow run ''sudo git fetch --unshallow''
 +  * gitlab ???
  
  
Line 13: Line 60:
 Looks like SSH client is not installed in Job image (install ''openssh-clients''). Looks like SSH client is not installed in Job image (install ''openssh-clients'').
  
-Workarounduse relative submodules as described in [[https://docs.gitlab.com/ee/ci/git_submodules.html#using-relative-urls|Using relative URLs]]. Gitlab runner will use https to clone submodules.+**Reason:** During clone operation Gitlab Runner is using small helper (around 66MB) image where ssh client is not installed: 
 +<code bash> 
 +docker run --rm -it registry.gitlab.com/gitlab-org/gitlab-runner/gitlab-runner-helper:alpine-latest-x86_64-000bc602 ssh 
 +</code>
  
 +It is possible to chose flavour of helper image: [[https://docs.gitlab.com/runner/configuration/advanced-configuration.html#helper-image|helper-image]]
  
 +Images source: [[https://gitlab.com/gitlab-org/gitlab-runner/-/tree/main/dockerfiles/runner-helper|runner-helper]]
  
-===== fatalunsafe repository =====+Ubuntu helper flavour contains ssh client: 
 +<code bash> 
 +docker run --rm -it gitlab/gitlab-runner-helper:ubuntu-x86_64-bleeding ssh 
 +docker run --rm -it gitlab/gitlab-runner-helper:ubuntu-x86_64-v15.11.1 ssh 
 +</code>
  
-Error: 
  
-<code>fataldetected dubious ownership in repository at</code>+**Solution**: use Ubuntu based helper image: 
 +<file toml config.toml> 
 +  [runners.docker] 
 +    helper_image = "gitlab/gitlab-runner-helper:ubuntu-x86_64-v16.0.2" 
 +    helper_image_flavor = "ubuntu" 
 +</file>
  
-<code> +**Workaround 1:** use relative submodules as described in [[https://docs.gitlab.com/ee/ci/git_submodules.html#using-relative-urls|Using relative URLs]]. Gitlab runner will use https to clone submodules.
-fatalunsafe repository ('/builds/rPrca3qv/0/group/project' is owned by someone else) +
-To add an exception for this directory, call: +
- git config --global --add safe.directory /builds/rPrca3qv/0/group/project +
-</code> +
- +
-Workaround:+
  
-<code bash> +**Workaround 2:** [[https://docs.gitlab.com/ee/ci/runners/configure_runners.html#rewrite-submodule-urls-to-https|Rewrite submodule URLs to HTTPS]]
-git config --global --add safe.directory ${CI_PROJECT_DIR} +
-</code>+
  
-[[https://gitlab.com/gitlab-org/gitlab-runner/-/merge_requests/3538|Mark project working directory as safe for Git ]] 
  
 ===== CAfile: none ===== ===== CAfile: none =====