Upgrade self-managed 16.11.2 --> 17.00.1 "detected dubious ownership in repository at"

Hello All,

Problem to solve

Self-hosted Gitlab Instance installed in Kubernetes via official Helm chart.

Upgrading from 16.11.2. → 17.00.1

Upgrading is going well , and everything is green but when i execute
git pull on my local machine or from anywhere
i am getting following error and cant use Gitlab at all . So i have to rollback to previous version (16.11.2) and everything is working as expected

git pull
fatal: detected dubious ownership in repository at '/home/git/repositories/@hashed/45/23/4523540f1504cd17100c4835e85b7eefd49911580f8efff0599a8f283be6b9e3.git'
To add an exception for this directory, call:

        git config --global --add safe.directory /home/git/repositories/@hashed/45/23/4523540f1504cd17100c4835e85b7eefd49911580f8efff0599a8f283be6b9e3.git
fatal: Could not read from remote repository.

Please make sure you have the correct access rights
and the repository exists.

Steps to reproduce

helm upgrade gitlab gitlab/gitlab -f values.yaml

values.yaml is attached at the end of the post

Configuration

  • [-] Self-managed
    vanilla installation , with external postgres ,

helm chart values.yaml

############ GLOBASL ###############
global:
  appConfig:
    omniauth:
        enabled: true
        autoLinkLdapUser: true
        blockAutoCreatedUsers: false
        allowSingleSignOn: true
        providers: 
        - secret: azure-provider
          key: azure-provider.yaml

  smtp:
    enabled: true
    address: "*****************"
    port: 25
    starttls_auto: true
    authentication: ""
  
  email:
    from: "gitlab@*************"
    display_name: **************
    reply_to: "noreply@****************"

  psql:
    database: gitlab
    host: gitgres.gitlab
    username: postgres
    password:
      secret: psql-pass
      key: password

  hosts:
    domain: ***************
    externalIP: 192.168.77.20
    https: true
    ssh: ssh.gitlab.********************

  kas:
    tls:
      enabled: true
      secretName: kas.**************-certificate
      caSecretName: secret-custom-ca-**********
      
    
  registry:
    enabled: true

  ingress:
    tls:
      enabled: true
    class: nginx
    configureCertmanager: false
    annotations:
      cert-manager.io/cluster-issuer: ***********-ca
      cert-manager.io/duration: "2190h" # 3 months
      cert-manager.io/renew-before: "72h" # 1 day

  certificates:
    customCAs:
    - secret: secret-custom-ca-****************

  redis:
    storageClass: "longhorn"

certmanager:
  install: false
nginx-ingress: &nginx-ingress
  enabled: false
prometheus:
  install: false
gitlab-runner:
  install: false
postgresql:
  install: false
 enabled: false

registry:
  ingress:
    annotations:
      cert-manager.io/common-name: registry.************
    tls:
      secretName: registry.***********-certificate

minio:
  persistence:
     storageClass: nfs-client
     size: 2000Gi
  ingress:
    annotations:
      cert-manager.io/common-name: minio.********************
    tls:
      secretName: minio.***************-certificate


gitlab:
  gitlab-shell:
    service:
      type: LoadBalancer
      externalPort: 22
      loadBalancerIP: 192.168.77.23
  gitaly:
    persistence:
      size: 2000Gi
  webservice:
    workhorse:
      metrics:
        serviceMonitor:
          enabled: "true"
          additionalLabels:
            release: monitoring-stack
    metrics:
      serviceMonitor:
        enabled: "true"
        additionalLabels:
          release: monitoring-stack
    ingress:
      annotations:
        cert-manager.io/common-name: gitlab.*************
      tls:
        secretName: gitlab.*************
  kas:
    ingress:
      annotations:
        cert-manager.io/common-name: kas.**********************
      tls:
        secretName: kas.*****************-certificate

  toolbox:
    backups:
      cron:
        enabled: true
        failedJobsHistoryLimit: 1
        schedule: "0 */6 * * *"
        persistence:
          enabled: true
          accessMode: ReadWriteOnce
          size: 1000Gi
    persistence:
      enabled: true
      accessMode: ReadWriteOnce
      size: 1000Gi

Any hint will be valuable . Thank you guys :slight_smile: :bowing_man: