Managing SSH keys within Jenkins for Git

git ssh jenkins continuous-integration

I'm trying to get Jenkins up and running with a GitHub hosted repository (using the Jenkins Git plugin). The repository has multiple git submodules, so I'm not sure I want to try and manage multiple deploy keys.

My personal GitHub user account is a collaborator of each of the projects I wish to pull in with Jenkins, so I've generated an SSH key within /var/lib/jenkins/.ssh and added it to my personal GitHub account.

However, when I try and add the repository URL to my Jenkins project configuration, I get:

Failed to connect to repository : Command "git ls-remote -h [email protected]:***/***.git HEAD" returned status code 128:
stdout: 
stderr: Host key verification failed. 
fatal: The remote end hung up unexpectedly

Likewise, when I schedule a build I get:

stderr: Host key verification failed.
fatal: The remote end hung up unexpectedly

I've also tried setting up an SSH config file as outlined here, but to no avail.

Can anyone shed any light? Thanks

EDIT

I should add that I'm running CentOS 5.8


It looks like the github.com host which jenkins tries to connect to is not listed under the Jenkins user's $HOME/.ssh/known_hosts. Jenkins runs on most distros as the user jenkins and hence has its own .ssh directory to store the list of public keys and known_hosts.

The easiest solution I can think of to fix this problem is:

# Login as the jenkins user and specify shell explicity,
# since the default shell is /bin/false for most
# jenkins installations.
sudo su jenkins -s /bin/bash

cd SOME_TMP_DIR
# git clone YOUR_GITHUB_URL

# Allow adding the SSH host key to your known_hosts

# Exit from su
exit

Have you tried logging in as the jenkins user?

Try this:

sudo -i -u jenkins #For RedHat you might have to do 'su' instead.
git clone [email protected]:your/repo.git

Often times you see failure if the host has not been added or authorized (hence I always manually login as hudson/jenkins for the first connection to github/bitbucket) but that link you included supposedly fixes that.

If the above doesn't work try recopying the key. Make sure its the pub key (ie id_rsa.pub). Maybe you missed some characters?


According to this article, you may try following command:

   ssh-add -l

If your key isn't in the list, then 

   ssh-add /var/lib/jenkins/.ssh/id_rsa_project

Related

VS Info Message: "Package restore on project open is disabled. Change the npm package management settings in Project Properties ..."
MySQL Trigger - Storing a SELECT in a variable
Which encoding uses the \x (backslash x) prefix?
Disable the text-highlighting magnifier on touch-hold on Mobile Safari / Webkit
Carriage Return\Line feed in Java
How secure would github hosting be for private repositories? [closed]
Razor: No overload for method 'Write' takes 0 arguments
What's the "dot" for when registering an Activity
How to globally replace strings in lines NOT starting with a certain pattern
What does header('P3P: CP="CAO PSA OUR"'); do?
How to select multiple elements that are children of given element?
"Cannot GET /" with Connect on Node.js