SSL error when with git submodules on windows runner

When running a job with gitlab runner under Windows with selfhosted gitlab, I got the error:

fatal: unable to access 'https://gitlab/repo.git/': SSL peer certificate or SSH remote key was not OK

How can this be fixed?

Solution

This error happens, when the git tries to download a submodule with curl and it cannot find the root certificate in its cert store. To find the location where curl searches for certificates, add

  variables:
    GIT_CURL_VERBOSE: "1"

to the job which fails into the gitlab-ci.yml.

You'll see output like:

09:06:48.181569 http.c:938              == Info:  CAfile: C:/Program Files/Git/mingw64/etc/ssl/certs/ca-bundle.crt
09:06:48.181569 http.c:938              == Info:  CApath: none

In this case the certificate was added to C:/Program Files/Git/mingw64/etc/ssl/certs/ca-bundle.crt and the job runs now successfully.

Windows Task Scheduler Doesn't Run VBScript
How can I get mod_rewrite and mod_alias to work together?
Difference between 'strcpy' and 'strcpy_s'?
Is there any way to create an shortcut desktop to a Node.js (npm) application?
Windows Form Foreach remove only removes half Form.Control elements
command line tool text output
Authenticate from Linux to Windows SQL Server with pyodbc
How assign the current day to a batch file variable and change the date?
Select many files for installation using wildcard in Inno Setup and install/rename them with an extension appended
Windows Powershell policy execution bypass
Why is "MINGW64" appearing on my Git bash?
Echoing a variable with a greater than sign (>) in a Windows command prompt causes a file creation, even after using the escape caret (^)
Unrecognized command after poetry's installation on Windows 11
Poetry installation with Windows WSL not working, ignoring $HOME
Why does my compiler not accept fork(), despite my inclusion of <unistd.h>?
Start menu folder created by Inno Setup is not showing
Why isn't git bash transforming the path to *nix notation for my python installation?
vlc python bindings - how to receive keyboard input?
How to update a GitHub access token via command line
How to automate "Retry" on error when copying a file with the Windows Explorer COM model?
Task manager - c/c++ application - address space allocated vs used memory
Where is the private key stored for an IIS CSR request?
How to run multiple Python versions on Windows
NVM for Windows not working?
Converting the physical RT dose to EQD2
Why is git showing line endings change although there should be none?
Is environ available on Windows?
SSL error when with git submodules on windows runner
How to register electron app for 'tel' protocol at the time of installation?
Windows Command Line History