From 528ee6c15ca79bf0e6a2b7cee26b6f36bdb011b8 Mon Sep 17 00:00:00 2001 From: forbes Date: Tue, 27 Jan 2026 14:36:19 -0600 Subject: [PATCH] Override SSSD KnownHostsCommand in CI SSH config - Add SSH config to bypass sss_ssh_knownhosts command - Set StrictHostKeyChecking no for gitea.kindred.internal - Use local known_hosts file instead of SSSD lookup --- .gitea/workflows/build.yml | 9 ++++++++- .gitea/workflows/release.yml | 9 ++++++++- 2 files changed, 16 insertions(+), 2 deletions(-) diff --git a/.gitea/workflows/build.yml b/.gitea/workflows/build.yml index a3b2d42d8d..0edb738f85 100644 --- a/.gitea/workflows/build.yml +++ b/.gitea/workflows/build.yml @@ -28,12 +28,19 @@ jobs: fi node --version - - name: Setup SSH known hosts + - name: Setup SSH for Gitea shell: bash run: | mkdir -p ~/.ssh ssh-keyscan -H gitea.kindred.internal >> ~/.ssh/known_hosts 2>/dev/null chmod 600 ~/.ssh/known_hosts + # Override SSSD KnownHostsCommand that interferes with SSH + cat >> ~/.ssh/config << 'EOF' + Host gitea.kindred.internal + StrictHostKeyChecking no + UserKnownHostsFile ~/.ssh/known_hosts + EOF + chmod 600 ~/.ssh/config - name: Checkout repository uses: https://code.forgejo.org/actions/checkout@v4 diff --git a/.gitea/workflows/release.yml b/.gitea/workflows/release.yml index 0685b87472..fd2f4fb6ba 100644 --- a/.gitea/workflows/release.yml +++ b/.gitea/workflows/release.yml @@ -36,12 +36,19 @@ jobs: fi node --version - - name: Setup SSH known hosts + - name: Setup SSH for Gitea shell: bash run: | mkdir -p ~/.ssh ssh-keyscan -H gitea.kindred.internal >> ~/.ssh/known_hosts 2>/dev/null chmod 600 ~/.ssh/known_hosts + # Override SSSD KnownHostsCommand that interferes with SSH + cat >> ~/.ssh/config << 'EOF' + Host gitea.kindred.internal + StrictHostKeyChecking no + UserKnownHostsFile ~/.ssh/known_hosts + EOF + chmod 600 ~/.ssh/config - name: Checkout repository uses: https://code.forgejo.org/actions/checkout@v4