gitlab runner使用docker报错（x509: certificate signed by unknown authority）定位

如果gitlab runner使用docker，docker是普通配置，配置好后，runner就可以正常执行任务了。

 

另外一个环节Docker配置了tls加密连接，添加runner后，runner的配置tls_verify 字段值为true：

tls_verify = true

执行任务时则会报错：

ERROR: Preparation failed: error during connect: Get https://127.0.0.1:2376/v1.25/info: x509: certificate signed by unknown authority (executor_docker.go:979:0s)

 

搜索错误原因，提示是docker找不到tls相关的证书，但是git-runner的主机上已经配置好了证书，docker命令可以正常执行。

仔细阅读gitlab文档，在https://docs.gitlab.com/runner/configuration/advanced-configuration.html里发现了tls_cert_path这个参数，

用来配置tls证书的路径的。

 在gitlab-runner的配置文件路径下/etc/gitlab-runner/config.toml，打开文件，

在runner中配置runner.docker的tls_cert_path字段值为tls文件所在路径，然后重启gitlab-runner即可

[[runners]]

  name = "root_test2"

  url = "http://10.10.10.10/"

  token = "df6bcfdbb75332d19a7712ca23b130"

  executor = "docker"

  [runners.custom_build_dir]

  [runners.docker]

    host = "tcp://127.0.0.1:2376"

    tls_verify = true

    tls_cert_path = "/root/.docker/"

    image = "gitlab:lasted"

    privileged = false

    disable_entrypoint_overwrite = false

    oom_kill_disable = false

    disable_cache = false

    volumes = ["/root/.docker:/root/.docker","/cache"]

    shm_size = 0

  [runners.cache]

    [runners.cache.s3]

    [runners.cache.gcs]