Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

PHP + composer + RSA key + Docker + Bitbucket Pipeline

Carlex Crespo
Carlex Crespo October 25, 2016

I am trying the sample Pipeline build configuration  on our PHP project repo:

 

# This is a sample build configuration for PHP.
# Check our guides at https://confluence.atlassian.com/x/VYk8Lw for more examples.
# Only use spaces to indent your .yml configuration.
# -----
# You can specify a custom docker image from Docker Hub as your build environment.
image: phpunit/phpunit:5.0.3

pipelines:
  default:
    - step:
        script: # Modify the commands below to build your repository.
          - composer install

 

But when the pipeline build runs, I am experiencing this problem:

You are running composer with xdebug enabled. This has a major impact on runtime performance. See https://getcomposer.org/xdebug
Warning: This development build of composer is over 60 days old. It is recommended to update it by running "/usr/local/bin/composer self-update" to get the latest version.
Loading composer repositories with package information
The authenticity of host 'bitbucket.org (104.192.143.3)' can't be established.
RSA key fingerprint is 97:8c:1b:f2:6f:14:6b:5c:3b:ec:aa:46:46:74:7c:40.
Are you sure you want to continue connecting (yes/no)?

[Symfony\Component\Process\Exception\ProcessTimedOutException]
 The process "git clone --mirror 'git@bitbucket.org:xxxxxx/xxxxx.git' '/root/composer/cache/vcs/git-bitbucket.org-xxxxxxxxxx-xxxxxx.git/'" exceeded the timeout of 300 seconds.

 

What is the possible fix to this?

TIA

Answer
Watch
Like Steven Vaccarella likes this
2070 views

3 answers

1 vote
Carlex Crespo
Carlex Crespo October 26, 2016
I have figured out the fix, so I am sharing this to the community.
...snip...
script:
  - mkdir -p ~/.ssh; touch ~/.ssh/id_rsa.tmp ~/.ssh/known_hosts
  - echo $DEVOPS_PRIVATE_KEY > ~/.ssh/id_rsa.tmp
  - ssh-keyscan -t rsa bitbucket.org > ~/.ssh/known_hosts
  - touch ~/.ssh/id_rsa
  - base64 -d ~/.ssh/id_rsa.tmp -i > ~/.ssh/id_rsa
  - chmod 600 ~/.ssh/id_rsa
...snip...
View More Comments
Steven Vaccarella
Steven Vaccarella
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
October 26, 2016

I'm glad you got it working but please note that using ssh-keyscan within the script is not ideal because it's effectively bypassing host key verification. It's better to do the keyscan once locally and include the full host key in the script (as described here) or add a known_hosts file to your repo (as described here). That way if the host ever provides the wrong key your configuration will detect that fact and refuse to communicate with the server (as it should).

Like
Reply
0 votes
Carlex Crespo
Carlex Crespo October 26, 2016

Hi Steven, thank you for answering my question. I have tried doing the fix to my problem using the links you sent but I am experiencing a problem with my environment variable. I saved the encoded copy of my SSH private key to a Bitbucket Environment Variable but when I called it inside my Pipeline script, the variable is empty.

Reply
0 votes
Steven Vaccarella
Steven Vaccarella
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
October 26, 2016

I'm not very familiar with PHP or composer but it looks like you're trying to clone additional git repositories over ssh and failing because ssh is not configured. Have a look at these guides for configuring ssh in your pipeline:

https://answers.atlassian.com/questions/39429257

https://answers.atlassian.com/questions/39243415

 

Reply

Suggest an answer

Log in or Sign up to answer
Bitbucket
Bitbucket
TAGS
AUG Leaders

Atlassian Community Events

    See all events