From de4ff5ebaf7ad19d42eed5ce9b995180afd121e9 Mon Sep 17 00:00:00 2001
From: admin <admin@c5ai.ch>
Date: Sat, 25 Apr 2026 20:09:17 +0200
Subject: [PATCH] Debug pipeline

---
 .gitea/workflows/build.yml | 64 ++------------------------------------
 1 file changed, 3 insertions(+), 61 deletions(-)

diff --git a/.gitea/workflows/build.yml b/.gitea/workflows/build.yml
index 6d6b92d..2b6904e 100644
--- a/.gitea/workflows/build.yml
+++ b/.gitea/workflows/build.yml
@@ -61,68 +61,10 @@ jobs:
           fi
           echo "version=${next}" >> "$GITHUB_OUTPUT"
 
-      - name: Diagnose push failure
-        env:
-          REG_USER: ${{ secrets.REGISTRY_USERNAME }}
-          REG_PASS: ${{ secrets.REGISTRY_PASSWORD }}
-          VERSION: ${{ steps.version.outputs.version }}
+      - name: Debug DNS
         run: |
-          set +e
-          
-          echo "=== 1. Auth value lengths ==="
-          echo "USER length: ${#REG_USER}"
-          echo "PASS length: ${#REG_PASS}"
-          echo
-          
-          echo "=== 2. Test creds with curl POST blobs/uploads ==="
-          curl_resp=$(curl -s -o /dev/null -w 'http_code=%{http_code}' \
-            -u "$REG_USER:$REG_PASS" -X POST \
-            "https://${REGISTRY}/v2/${IMAGE}/blobs/uploads/")
-          echo "$curl_resp"
-          echo
-          
-          echo "=== 3. Docker login (verbose) ==="
-          printf '%s' "$REG_PASS" | docker login "${REGISTRY}" -u "$REG_USER" --password-stdin
-          echo "Exit code: $?"
-          echo
-          
-          echo "=== 4. Decoded auth from docker config ==="
-          if [ -f "$HOME/.docker/config.json" ]; then
-            decoded=$(jq -r '.auths["registry.c5ai.ch"].auth // empty' "$HOME/.docker/config.json" | base64 -d 2>/dev/null)
-            echo "Decoded length: ${#decoded}"
-            # Verify it equals USER:PASS
-            expected="${REG_USER}:${REG_PASS}"
-            if [ "$decoded" = "$expected" ]; then
-              echo "Stored auth matches expected USER:PASS"
-            else
-              echo "MISMATCH between stored auth and expected"
-              echo "Expected length: ${#expected}, stored length: ${#decoded}"
-            fi
-          fi
-          echo
-          
-          echo "=== 5. Pull tiny image (proves daemon connectivity) ==="
-          docker pull alpine:3.20 2>&1 | tail -3
-          echo
-          
-          echo "=== 6. Push tiny image ==="
-          docker tag alpine:3.20 "${REGISTRY}/${IMAGE}:debug-tiny"
-          docker push "${REGISTRY}/${IMAGE}:debug-tiny" 2>&1 | tail -10
-          echo "Exit code: $?"
-          echo
-          
-          echo "=== 7. Direct PUT manifest using curl (manifest endpoint) ==="
-          # If a layer exists already in the registry, we can test manifest auth alone
-          curl -s -o /dev/null -w 'http_code=%{http_code}\n' \
-            -u "$REG_USER:$REG_PASS" \
-            "https://${REGISTRY}/v2/${IMAGE}/manifests/0.1.4"
-          echo
-          
-          echo "=== 8. PATCH endpoint test (the operation that fails during push) ==="
-          # First initiate an upload to get a session URL
-          loc=$(curl -s -i -u "$REG_USER:$REG_PASS" -X POST \
-            "https://${REGISTRY}/v2/${IMAGE}/blobs/uploads/" | grep -i '^location:' | tr -d '\r' | awk '{print $2}')
-          echo "Upload location: $loc"
+          getent hosts registry.c5ai.ch
+          curl -v https://registry.c5ai.ch/v2/ 2>&1 | grep -E "Connected to|HTTP/|server"
 
       - name: Build and push image
         # Combine login + build + push in a single run block. act_runner can