Michael,
First of all, it was nice meeting you at Ansiblefest NY! So nice to
put a person an online persona. :D
As usual, you fixed me right up with your post. Since I'm using a
passphraseless key, it wasn't any of your first suggestions, but that
-c local
does the trick! Not sure why I need that though, never needed it
before *shrug*
Added a
connection: local
to my playbook, sall good! Many thanks! Ansible rocks!
/kl
On Wednesday, July 2, 2014 3:23:32 PM UTC-7, Michael DeHaan wrote:
>
> This seems like this error is in your generic communication path via
> Ansible and would also appear with:
>
> ansible local -m ping
>
> And in this case would have nothing to do with git.
>
> Please let us know, but I suspect you may not be using ssh-agent, may need
> to specify --ask-pass if you wish to use a password, or are using variables
> like ansible_ssh_pass (maybe) and the values are incorrect.
>
> In any case, I don't think it has anything to do with git.
>
> (BTW, if you want local mode for sure, use -c local)
>
> Thanks!
>
>
> On Wed, Jul 2, 2014 at 1:00 PM, Ken Lemoine <[email protected]
> <javascript:>> wrote:
>
>> Hello,
>>
>> I can run this command successfully on my ansible server -
>>
>> git clone [email protected]:path/repo.git
>>
>> However, this command fails (see verbose ssh output below). 'local' is a
>> host inventory group consisting of 'localhost'.
>>
>> ansible local -a "git clone [email protected]:patch/repo.git" -vvvv
>>
>> This is a new ansible install on a new server, so I'm stumped. The same
>> SSH keys and setup work on my older ansible server. Any assistn
>>
>> Verbose output:
>>
>> <localhost> ESTABLISH CONNECTION FOR USER: klemoine
>> <localhost> REMOTE_MODULE command git clone [email protected]:path/repo.git
>> <localhost> EXEC ['ssh', '-C', '-tt', '-vvv', '-o', 'ControlMaster=auto',
>> '-o', 'ControlPersist=60s', '-o',
>> 'ControlPath=/home/klemoine/.ansible/cp/ansible-ssh-%h-%p-%r', '-o',
>> 'StrictHostKeyChecking=no', '-o', 'Port=22', '-o',
>> 'KbdInteractiveAuthentication=no', '-o',
>> 'PreferredAuthentications=gssapi-with-mic,gssapi-keyex,hostbased,publickey',
>> '-o', 'PasswordAuthentication=no', '-o', 'ConnectTimeout=10', 'localhost',
>> "/bin/sh -c 'mkdir -p
>> $HOME/.ansible/tmp/ansible-tmp-1404319017.45-175813341407778 && chmod a+rx
>> $HOME/.ansible/tmp/ansible-tmp-1404319017.45-175813341407778 && echo
>> $HOME/.ansible/tmp/ansible-tmp-1404319017.45-175813341407778'"]
>> localhost | FAILED => SSH encountered an unknown error. The output was:
>> OpenSSH_5.9p1 Debian-5ubuntu1.4, OpenSSL 1.0.1 14 Mar 2012
>> debug1: Reading configuration data /etc/ssh/ssh_config
>> debug1: /etc/ssh/ssh_config line 19: Applying options for *
>> debug1: auto-mux: Trying existing master
>> debug1: Control socket
>> "/home/klemoine/.ansible/cp/ansible-ssh-localhost-22-klemoine" does not
>> exist
>> debug2: ssh_connect: needpriv 0
>> debug1: Connecting to localhost [127.0.0.1] port 22.
>> debug2: fd 3 setting O_NONBLOCK
>> debug1: fd 3 clearing O_NONBLOCK
>> debug1: Connection established.
>> debug3: timeout: 10000 ms remain after connect
>> debug3: Incorrect RSA1 identifier
>> debug3: Could not load "/home/klemoine/.ssh/id_rsa" as a RSA1 public key
>> debug1: identity file /home/klemoine/.ssh/id_rsa type -1
>> debug1: identity file /home/klemoine/.ssh/id_rsa-cert type -1
>> debug1: identity file /home/klemoine/.ssh/id_dsa type -1
>> debug1: identity file /home/klemoine/.ssh/id_dsa-cert type -1
>> debug1: identity file /home/klemoine/.ssh/id_ecdsa type -1
>> debug1: identity file /home/klemoine/.ssh/id_ecdsa-cert type -1
>> debug1: Remote protocol version 2.0, remote software version OpenSSH_6.6
>> debug1: match: OpenSSH_6.6 pat OpenSSH*
>> debug1: Enabling compatibility mode for protocol 2.0
>> debug1: Local version string SSH-2.0-OpenSSH_5.9p1 Debian-5ubuntu1.4
>> debug2: fd 3 setting O_NONBLOCK
>> debug3: load_hostkeys: loading entries for host "localhost" from file
>> "/home/klemoine/.ssh/known_hosts"
>> debug3: load_hostkeys: found key type ECDSA in file
>> /home/klemoine/.ssh/known_hosts:60
>> debug3: load_hostkeys: loaded 1 keys
>> debug3: order_hostkeyalgs: prefer hostkeyalgs:
>> [email protected] <javascript:>,
>> [email protected] <javascript:>,
>> [email protected] <javascript:>
>> ,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521
>> debug1: SSH2_MSG_KEXINIT sent
>> debug1: SSH2_MSG_KEXINIT received
>> debug2: kex_parse_kexinit:
>> ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
>> debug2: kex_parse_kexinit: [email protected] <javascript:>,
>> [email protected] <javascript:>,
>> [email protected] <javascript:>
>> ,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
>> [email protected] <javascript:>,[email protected]
>> <javascript:>,[email protected] <javascript:>,
>> [email protected] <javascript:>,ssh-rsa,ssh-dss
>> debug2: kex_parse_kexinit:
>> aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,
>> [email protected] <javascript:>
>> debug2: kex_parse_kexinit:
>> aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,
>> [email protected] <javascript:>
>> debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,[email protected]
>> <javascript:>
>> ,hmac-sha2-256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,
>> [email protected] <javascript:>,hmac-sha1-96,hmac-md5-96
>> debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,[email protected]
>> <javascript:>
>> ,hmac-sha2-256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,
>> [email protected] <javascript:>,hmac-sha1-96,hmac-md5-96
>> debug2: kex_parse_kexinit: [email protected] <javascript:>,zlib,none
>> debug2: kex_parse_kexinit: [email protected] <javascript:>,zlib,none
>> debug2: kex_parse_kexinit:
>> debug2: kex_parse_kexinit:
>> debug2: kex_parse_kexinit: first_kex_follows 0
>> debug2: kex_parse_kexinit: reserved 0
>> debug2: kex_parse_kexinit: [email protected] <javascript:>
>> ,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
>> debug2: kex_parse_kexinit: ssh-rsa,ssh-dss,ecdsa-sha2-nistp256
>> debug2: kex_parse_kexinit:
>> aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,
>> [email protected] <javascript:>,[email protected] <javascript:>,
>> [email protected] <javascript:>
>> ,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,
>> [email protected] <javascript:>
>> debug2: kex_parse_kexinit:
>> aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,
>> [email protected] <javascript:>,[email protected] <javascript:>,
>> [email protected] <javascript:>
>> ,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,
>> [email protected] <javascript:>
>> debug2: kex_parse_kexinit: [email protected] <javascript:>,
>> [email protected] <javascript:>,[email protected]
>> <javascript:>,[email protected] <javascript:>,[email protected]
>> <javascript:>,[email protected] <javascript:>,
>> [email protected] <javascript:>,[email protected]
>> <javascript:>,[email protected] <javascript:>
>> ,hmac-md5,hmac-sha1,[email protected] <javascript:>,[email protected]
>> <javascript:>,hmac-sha2-256,hmac-sha2-512,hmac-ripemd160,
>> [email protected] <javascript:>,hmac-sha1-96,hmac-md5-96
>> debug2: kex_parse_kexinit: [email protected] <javascript:>,
>> [email protected] <javascript:>,[email protected]
>> <javascript:>,[email protected] <javascript:>,[email protected]
>> <javascript:>,[email protected] <javascript:>,
>> [email protected] <javascript:>,[email protected]
>> <javascript:>,[email protected] <javascript:>
>> ,hmac-md5,hmac-sha1,[email protected] <javascript:>,[email protected]
>> <javascript:>,hmac-sha2-256,hmac-sha2-512,hmac-ripemd160,
>> [email protected] <javascript:>,hmac-sha1-96,hmac-md5-96
>> debug2: kex_parse_kexinit: none,[email protected] <javascript:>
>> debug2: kex_parse_kexinit: none,[email protected] <javascript:>
>> debug2: kex_parse_kexinit:
>> debug2: kex_parse_kexinit:
>> debug2: kex_parse_kexinit: first_kex_follows 0
>> debug2: kex_parse_kexinit: reserved 0
>> debug2: mac_setup: found hmac-md5
>> debug1: kex: server->client aes128-ctr hmac-md5 [email protected]
>> <javascript:>
>> debug2: mac_setup: found hmac-md5
>> debug1: kex: client->server aes128-ctr hmac-md5 [email protected]
>> <javascript:>
>> debug1: sending SSH2_MSG_KEX_ECDH_INIT
>> debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
>> debug1: Server host key: ECDSA
>> ca:9c:7a:11:09:18:01:07:e3:20:68:21:0a:03:8b:71
>> debug3: load_hostkeys: loading entries for host "localhost" from file
>> "/home/klemoine/.ssh/known_hosts"
>> debug3: load_hostkeys: found key type ECDSA in file
>> /home/klemoine/.ssh/known_hosts:60
>> debug3: load_hostkeys: loaded 1 keys
>> debug1: Host 'localhost' is known and matches the ECDSA host key.
>> debug1: Found key in /home/klemoine/.ssh/known_hosts:60
>> debug1: ssh_ecdsa_verify: signature correct
>> debug2: kex_derive_keys
>> debug2: set_newkeys: mode 1
>> debug1: SSH2_MSG_NEWKEYS sent
>> debug1: expecting SSH2_MSG_NEWKEYS
>> debug2: set_newkeys: mode 0
>> debug1: SSH2_MSG_NEWKEYS received
>> debug1: Roaming not allowed by server
>> debug1: SSH2_MSG_SERVICE_REQUEST sent
>> debug2: service_accept: ssh-userauth
>> debug1: SSH2_MSG_SERVICE_ACCEPT received
>> *debug2: key: /home/klemoine/.ssh/id_rsa ((nil))
>> << I wonder why it says nil*
>> debug2: key: /home/klemoine/.ssh/id_dsa ((nil))
>> debug2: key: /home/klemoine/.ssh/id_ecdsa ((nil))
>> debug1: Authentications that can continue: publickey,password
>> debug3: start over, passed a different list publickey,password
>> debug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey
>> debug3: authmethod_lookup publickey
>> debug3: remaining preferred: ,gssapi-keyex,hostbased,publickey
>> debug3: authmethod_is_enabled publickey
>> debug1: Next authentication method: publickey
>> *debug1: Trying private key: /home/klemoine/.ssh/id_rsa
>> << This should work, correct key here, proof is that it does work when I
>> run it manually*
>> debug1: read PEM private key done: type RSA
>> *debug3: sign_and_send_pubkey: RSA
>> a6:13:11:6f:4e:2c:03:a0:87:5a:52:65:50:97:f8:f2 <<
>> confirmed this key in github, again, works manually*
>> debug2: we sent a publickey packet, wait for reply
>> debug1: Authentications that can continue: *publickey*,password
>> *<< seems good here *
>> debug1: Trying private key: /home/klemoine/.ssh/id_dsa
>> debug3: no such identity: /home/klemoine/.ssh/id_dsa
>> debug1: Trying private key: /home/klemoine/.ssh/id_ecdsa
>> debug3: no such identity: /home/klemoine/.ssh/id_ecdsa
>> debug2: we did not send a packet, disable method
>> debug1: No more authentication methods to try.
>> Permission denied (publickey,password). * << whaa ?*
>>
>> --
>> You received this message because you are subscribed to the Google Groups
>> "Ansible Project" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to [email protected] <javascript:>.
>> To post to this group, send email to [email protected]
>> <javascript:>.
>> To view this discussion on the web visit
>> https://groups.google.com/d/msgid/ansible-project/17df8ce0-21a6-40c0-b890-5f38058fcad1%40googlegroups.com
>>
>> <https://groups.google.com/d/msgid/ansible-project/17df8ce0-21a6-40c0-b890-5f38058fcad1%40googlegroups.com?utm_medium=email&utm_source=footer>
>> .
>> For more options, visit https://groups.google.com/d/optout.
>>
>
>
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/ef2da929-aae9-4032-b5cf-ff464ab4f241%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
