After upgrade to 10.0.1, Gitlab Shell Runner fails with connection reset by peer

How to Use GitLab Upgrade

gavares September 27, 2017, 2:21pm 1

After upgrading from 9.5.1, our gitlab shell runners can no longer clone remote repos. These failures occur with 9.x and 10.0 runners. The error messages look like:

fatal: unable to access 'https://gitlab-ci-token:xxxxxxxxxxxxxxxxxxxx@gitlab.myco.com/my-proj/orchestrator.git/': TCP connection reset by peer

We can manually curl the affected urls by forcing TLS 1.2 but are unsure how to convince the shell runner to also use TLS 1.2 when cloning repos.

The runners are currently execluted from and OEL 7.4 host.

gavares September 27, 2017, 8:19pm 2

This is was resolved by re-enabling tls 1.1 support in /etc/gitlab/gitlab.rb as documented here: https://about.gitlab.com/2017/09/22/gitlab-10-0-released/#tlsv1-no-longer-accepted-by-default

1 Like

Topic		Replies	Views	Activity
Fatal: unable to access 'https: after upgrade to 10.1 How to Use GitLab	4	5297	December 1, 2017
Error Gitlab-Runner: OpenSSL SSL_connect: Connection reset by peer in connection Infrastructure as Code & Cloud Native runner , ssl	4	16645	January 17, 2022
Upgrade 9.5.3 to 10.0.2: Reverse proxy does not work anymore Upgrade	3	1061	October 6, 2017
Unable to acces the repo when cloning repository during CI How to Use GitLab	0	574	October 24, 2017
Ssl issue when running runner on client host: /CI_SERVER_TLS_CA_FILE CRLfile: none GitLab CI/CD runner	0	601	June 28, 2022