[bitbake-devel] Can't clone password protected git repo

Daniel Lazzari dlazzari at leapfrog.com
Mon Apr 14 17:39:24 UTC 2014 

Thanks Anders! This definitely gets me past the issue I was having and I agree, much nicer than leaving my login credentials in a recipe, so I'm going to go ahead with the ssh solution.

That said, I did some digging late last night and found the cause of the issue in bitbake. It appears that the fetcher does parse the password out of the url, but then doesn't include the password when calling git ls-remote or git clone. I tried out a patch I made against our version of bitbake and it seems to have resolved the issue so that bitbake behaves as expected. I will probably have time to submit a patch against master later today, but I have some questions.

1) Since placing your password in the recipe bleeds the password out into the log files, should bitbake log a warning to the user?

2) Since I'm not using the latest bitbake and I don't have time to set up a machine to use it, would anyone be able to test my patch against master?

Thanks again for the help!
Daniel

> -----Original Message-----
> From: Anders Darander [mailto:anders at chargestorm.se]
> Sent: Monday, April 14, 2014 12:33 AM
> To: Daniel Lazzari; g at ad.chargestorm.se
> Cc: bitbake-devel at lists.openembedded.org
> Subject: Re: [bitbake-devel] Can't clone password protected git repo
> 
> Hi,
> 
> * Daniel Lazzari <dlazzari at leapfrog.com> [140414 01:19]:
> > There's a project we are trying to pull from a private BitBucket repo.
> > I tried setting the SRC_URI to something like:
> > SRC_URI = "git://user:pass@bitbucket.org/path/project;protocol=https"
> 
> > but bitbake hangs waiting for the password. Am I missing something?
> > I'm stuck on the ancient bitbake 1.15.2 in case this has been fixed in a later
> release.
> 
> Maybe not the answer you're looking for. When I'm using private repos, I use
> ssh keys for authentication, which works without any issues with bitbake.
> 
> If you need a buildserver to access the private repos, I'd guess that using ssh-
> agent together with keys with an empty passphrase will be just as secure as
> adding the password to the SRC_URI.
> 
> Cheers,
> Anders
> 
> --
> Anders Darander
> ChargeStorm AB / eStorm AB

More information about the bitbake-devel mailing list