Menu
▾
▴
Re: [xcat-user] [External] Ansible and Confluent
|
From: David M. <dma...@ee...> - 2024-02-06 18:25:37
|
[Sorry for the delay.] "/etc/ssh/ssh_known_hosts” does not initially exist. Running that command creates it. Re-running "nodeapply -F dm-boot1” after that gives the same results. > On Jan 29, 2024, at 14:31, Jarrod Johnson <jjo...@le...> wrote: > > Oh, how does /etc/ssh/ssh_known_hosts look on the management node? > > Does osdeploy initialize -k > > Make it work? > > From: David Magda <dma...@ee...> > Sent: Monday, January 29, 2024 2:07 PM > To: xCAT Users Mailing list <xca...@li...> > Subject: Re: [xcat-user] [External] Ansible and Confluent > >> Yes, I was able to SSH in as root: >> >> """ >> # sudo -u confluent bash >> bash-4.2$ eval $(ssh-agent) >> Agent pid 216756 >> bash-4.2$ ssh-add /etc/confluent/ssh/automation >> Identity added: /etc/confluent/ssh/automation (Confluent Automation by mp01.example.com) >> bash-4.2$ ssh root@172.17.15.222 >> The authenticity of host '172.17.15.222 (172.17.15.222)' can't be established. >> ECDSA key fingerprint is SHA256:5Q4YF3R0Zd1uT9vtXvLdkI1BDn7gvqz9djMaeubezAU. >> ECDSA key fingerprint is MD5:c8:1d:85:bf:7f:51:29:95:48:79:94:6e:5a:99:45:83. >> Are you sure you want to continue connecting (yes/no)? yes >> Warning: Permanently added '172.17.15.222' (ECDSA) to the list of known hosts. >> Welcome to Ubuntu 22.04.3 LTS (GNU/Linux 5.15.0-92-generic x86_64) >> […] >> root@dm-boot1:~# >> """ >> >> Trying to re-run 'nodeapply' didn't work (after the SSH host key is now known): >> >> """ >> # nodeapply -F dm-boot1 >> dm-boot1: >> dm-boot1: --------------------------------------------------------------------------- >> dm-boot1: Running python script 'syncfileclient' from https://[fe80::[EUI-64]%2]/confluent-public/os/ubuntu-22.04.3-x86_64-test1/scripts/ >> dm-boot1: Executing in /tmp/confluentscripts.ZSMiTTzcr >> dm-boot1: Traceback (most recent call last): >> dm-boot1: File "/usr/lib/python3.10/http/client.py", line 566, in _get_chunk_left >> dm-boot1: chunk_left = self._read_next_chunk_size() >> dm-boot1: File "/usr/lib/python3.10/http/client.py", line 533, in _read_next_chunk_size >> dm-boot1: return int(line, 16) >> dm-boot1: ValueError: invalid literal for int() with base 16: b'' >> dm-boot1: >> dm-boot1: During handling of the above exception, another exception occurred: >> dm-boot1: >> dm-boot1: Traceback (most recent call last): >> dm-boot1: File "/usr/lib/python3.10/http/client.py", line 583, in _read_chunked >> dm-boot1: chunk_left = self._get_chunk_left() >> dm-boot1: File "/usr/lib/python3.10/http/client.py", line 568, in _get_chunk_left >> dm-boot1: raise IncompleteRead(b'') >> dm-boot1: http.client.IncompleteRead: IncompleteRead(0 bytes read) >> dm-boot1: >> dm-boot1: During handling of the above exception, another exception occurred: >> dm-boot1: >> dm-boot1: Traceback (most recent call last): >> dm-boot1: File "/tmp/confluentscripts.ZSMiTTzcr/syncfileclient", line 286, in <module> >> dm-boot1: synchronize() >> dm-boot1: File "/tmp/confluentscripts.ZSMiTTzcr/syncfileclient", line 233, in synchronize >> dm-boot1: status, rsp = ac.grab_url_with_status('/confluent-api/self/remotesyncfiles') >> dm-boot1: File "/opt/confluent/bin/apiclient", line 405, in grab_url_with_status >> dm-boot1: return rsp.status, rsp.read() >> dm-boot1: File "/usr/lib/python3.10/http/client.py", line 460, in read >> dm-boot1: return self._read_chunked(amt) >> dm-boot1: File "/usr/lib/python3.10/http/client.py", line 598, in _read_chunked >> dm-boot1: raise IncompleteRead(b''.join(value)) >> dm-boot1: http.client.IncompleteRead: IncompleteRead(0 bytes read) >> dm-boot1: 'syncfileclient' exited with code 1 >> """ >> >> >> > On Jan 26, 2024, at 16:26, Jarrod Johnson <jjo...@le...> wrote: >> > >> > create the following as a python script: >> > import confluent.sshutil as ssh >> > print(ssh.get_passphrase()) >> > >> > >> > Then: >> > export PYTHONPATH=/opt/confluent/lib/python >> > python thatscript.py >> > >> > Then: >> > sudo -u confluent bash >> > eval $(ssh-agent) >> > ssh-add /etc/confluent/ssh/automation >> > >> > Then paste in the passphrase from above. >> > >> > Does that let confluent user ssh into the node? >> >> >> >> From: David Magda <dma...@ee...> >> >> Sent: Friday, January 26, 2024 4:22 PM >> >> To: xCAT Users Mailing list <xca...@li...> >> >> Subject: Re: [xcat-user] [External] Ansible and Confluent >> >> >> >> Yup: >> >> >> >> """ >> >> # sha1sum /var/lib/confluent/public/site/ssh/*pubkey /etc/confluent/ssh/automation.pub >> >> b88168467bf2920011f4a769d7cbd7aab0de0b35 /var/lib/confluent/public/site/ssh/mp01.example.com.automationpubkey >> >> 27574dd33ad3781bb588d7fcef2b8a6dd189d3cb /var/lib/confluent/public/site/ssh/mp01.example.com.rootpubkey >> >> b88168467bf2920011f4a769d7cbd7aab0de0b35 /etc/confluent/ssh/automation.pub >> >> “"” >> > […] >> >> >> _______________________________________________ >> xCAT-user mailing list >> xCA...@li... >> https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.sourceforge.net%2Flists%2Flistinfo%2Fxcat-user&data=05%7C02%7Cjjohnson2%40lenovo.com%7C8365bb20b4914654c1e808dc20fdad3d%7C5c7d0b28bdf8410caa934df372b16203%7C0%7C0%7C638421525842478994%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=9hRC51204bYCXe3ufH1IqpPjpwaj4mtdAEKJotVvL0c%3D&reserved=0 >> _______________________________________________ >> xCAT-user mailing list >> xCA...@li... >> https://lists.sourceforge.net/lists/listinfo/xcat-user > |