Developers Technical Tutorials

DevOps Tools – Troubleshooting Guide

By Mike Goh March 28, 2022

DevOps Tools – Troubleshooting Guide

Topic	Jenkins, From Zero To Hero Become a DevOps Jenkins Master
Source	jenkins/centos7/Dockerfile
Error	`Step 2/7 : RUN yum -y install openssh-server ---> Running in 7e18f84a2754 CentOS Linux 8 - AppStream 391 B/s \| 38 B 00:00 Error: Failed to download metadata for repo 'appstream': Cannot prepare internal mirrorlist: No URLs in mirrorlist ERROR: Service 'remote_host' failed to build: The command '/bin/sh -c yum -y install openssh-server' returned a non-zero code: 1`
Solution	`FROM centos:centos7`
Remark	Related to new CentOS 8 Stream

Topic	Jenkins, From Zero To Hero Become a DevOps Jenkins Master
Source	jenkins\docker-compose.yml `user: root`
Error	`jenkins \| touch: cannot touch '/var/jenkins_home/copy_reference_file.log': Permission denied`
Solution	`docker exec -it jenkins bash chown -R jenkins:root /var/jenkins_home/*`
Remark	docker-compose.yml `user:root to #user:root`

Topic	Jenkins, From Zero To Hero Become a DevOps Jenkins Master
Source	jenkins server > Build with Parameters > Console Output
Error	`[SSH] executing...` `ERROR: Failed to authenticate with public key` `com.jcraft.jsch.JSchException: invalid privatekey: [B@95a8cd7`
Solution	Add Credentials > Kind: Username with password
Remark	If Kind: SSH Username with private key does not work for you.

Topic	Jenkins, From Zero To Hero Become a DevOps Jenkins Master
Source	jenkins server > Build with Parameters > Console Output
Error	`/tmp/script.sh $MYSQL_HOST $MYSQL_PASSWORD $DATABASE_NAME $AWS_SECRET_KEY $BUCKET_NAME bash: line 6: /tmp/script.sh: Permission denied`
Solution	`volumes: - "$PWD/aws-s3.sh:/tmp/script.sh" chmod +x aws-s3.sh`
Remark	Make the script permanent outside of docker container by using `volumes` but remember to make it executable.

Topic	Jenkins, From Zero To Hero Become a DevOps Jenkins Master
Source	jenkins > docker-compose build
Error	`/bin/sh: 1: python: not found ERROR: Service 'jenkins' failed to build: The command '/bin/sh -c curl https://bootstrap.pypa.io/get-pip.py -o get-pip.py && python get-pip.py --user && python -m pip install --user ansible' returned a non-zero code: 127`
Solution	`# Dockerfile USER root RUN apt-get update && apt-get install -y python3 python3-pip RUN curl https://bootstrap.pypa.io/get-pip.py -o get-pip.py && \ python3 get-pip.py --user && \ python3 -m pip install ansible`
Remark	Tutorial videos based on Python 2 and outdated installing Ansible with pip commands.

Topic	GitLab, CI/CD Getting Started
Source	GitLab > (your project) > CI/CD > Pipelines
Error	`Preparing environment Running on devops… ERROR: Job failed: prepare environment: exit status 1. Check https://docs.gitlab.com/runner/shells/index.html#shell-profile-loading for more information`
Solution	Comment out last 3 lines /home/gitlab-runner/.bash_logout`# ~/.bash_logout: executed by bash(1) when login shell exits. # when leaving the console clear the screen to increase privacy #if [ "$SHLVL" = 1 ]; then #[ -x /usr/bin/clear_console ] && /usr/bin/clear_console -q #fi`
Remark	Delete the file works too.

Topic	GitLab, CI/CD chmod: unrecognized option ‘—–BEGIN’
Source	GitLab > (your project) > CI/CD > Pipelines > Deployment stage
Error	`$ chmod og= $ID_RSAchmod: unrecognized option '-----BEGIN' Try 'chmod --help' for more information. Cleaning up project directory and file based variablesERROR: Job failed: exit code 1`
Solution	CI/CD > Variables > Update variableChange Type drop-down to File
Remark	Apply chmod on a file instead of file content.

Topic	GitLab, CI/CD Load key “/builds/.username./my-proj.tmp/ID_RSA”: invalid format
Source	GitLab > (your project) > CI/CD > Pipelines > Deployment stage
Error	`$ ssh -p2288 -i $ID_RSA -o StrictHostKeyChecking=no $SERVER_USER@$SERVER_IP "docker login -u gitlab-ci-token -p $CI_BUILD_TOKEN $CI_REGISTRY"Warning: Permanently added '[[MASKED]]:2288' (ECDSA) to the list of known hosts. Load key "/builds/username/proj.tmp/ID_RSA": invalid format`
Solution	`user@server:~/.ssh$ ssh-keygen -p -m pem -f id_rsa`
Remark	Requires PEM format (`-----BEGIN RSA PRIVATE KEY-----`) instead of (`-----BEGIN OPENSSH PRIVATE KEY-----`)

Topic	GitLab, CI/CD Permission denied (publickey,password)
Source	GitLab > (your project) > CI/CD > Pipelines > Deployment stage
Error	`$ ssh -p2288 -i $ID_RSA -o StrictHostKeyChecking=no $SERVER_USER@$SERVER_IP "docker login -u gitlab-ci-token -p $CI_BUILD_TOKEN $CI_REGISTRY"Warning: Permanently added '[[MASKED]]:2288' (ECDSA) to the list of known hosts. Permission denied, please try again. Permission denied, please try again. user@[MASKED]: Permission denied (publickey,password).`
Solution	`user@server:~/.ssh$ cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys`
Remark	Add the public key (generated within) to the deployment server itself in order for it to accept the RSA private key from GitLab CI/CD variable.

Topic	GitLab, CI/CD stages: -publish (passed) but -deploy (did not happen)
Source	GitLab > (your project) > CI/CD > Pipelines > under Stages
Error	Subsequent stage – deploy did not process even after -publish stage passed
Solution	`only: #- master - main`
Remark	In March 2021, GitLab renamed the default ‘Master’ branch to ‘Main‘ for new projects.

Topic	GitLab, Install a runner in CentOS 7
Source	`$ gitlab-runner install --user=gitlab-runner --working-directory=/home/gitlab-runner`
Error	`FATAL: flag provided but not defined: -user`
Solution	`$ sudo yum install gitlab-runner`
Remark	Using GitLab runner installation instructions which works for Ubuntu but not for CentOS 7.

Topic	GitLab, Install a runner in CentOS 8 Stream
Source	`$ gitlab-runner install --user=gitlab-runner --working-directory=/home/gitlab-runner`
Error	`sudo: gitlab-runner: command not found`
Solution	`$ whereis gitlab-runner gitlab-runner: /usr/local/bin/gitlab-runner $ sudo visudo Modify: Defaults secure_path = /sbin:/bin:/usr/sbin:/usr/bin To: Defaults secure_path = /sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin`
Remark	`sudo visudo` is reserved for updating `/etc/sudoers`

Topic	Limited access (non-root) user: AWS API Error
Source	EC2 Dashboard
Error	[AWS EC2] Instances (running) x API Error \| Dedicated Hosts x API Error Instances x API Error \| Key pairs x API Error `$ terraform apply Error: Error launching source instance: UnauthorizedOperation: You are not authorized to perform this operation. Encoded authorization failure message: bgJ7KtftIXVield6dlQyqxtJ`
Solution	Delete and re-create the (non-root) user and re-assign required permissions policies.
Remark	stackoverflow.com mentioned keys got revoked because AWS detected access key/secret key was exposed/ compromised.

Topic	AWS Application Load Balancer – 503 Service Temporarily Unavailable
Source	Terraform (main.tf) > AWS (EC2/ALB) > Browser
Error	http://terraform-asg-example-15464xxxxx.us-east-2.elb.amazonaws.com/ 503 Service Temporarily Unavailable
Solution	`# Find aws_autoscaling_group resource and add this line in Terraform main.tf resource "aws_autoscaling_group" "example" { target_group_arns = [aws_lb_target_group.asg.arn] ... }` [Manual fix] Go AWS EC2 > click Target Groups > click affected group > Register targets > Check Instance ID (e.g. EC2) > Include as pending below > Register pending targets Go to browser and retry http://terraform-asg-example-15464xxxxx.us-east-2.elb.amazonaws.com/
Remark	The target group is created but contains no EC2 instances hence HTTP Error 503 is returned.

This post is not the end, for we will continue to add more troubleshooting guides as we continue our exploration with DevOps tools.

Last updated 20 May 2022

Related

Last updated on June 12, 2022

Leave a Comment

Comments

No comments yet. Why don’t you start the discussion?

Leave a Reply Cancel reply