From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from eggs.gnu.org ([2001:470:142:3::10]:41193) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1hzkjL-0004GC-Iy for guix-patches@gnu.org; Mon, 19 Aug 2019 12:42:04 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1hzkjK-0001x5-AX for guix-patches@gnu.org; Mon, 19 Aug 2019 12:42:03 -0400 Received: from debbugs.gnu.org ([209.51.188.43]:51644) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1hzkjK-0001wy-66 for guix-patches@gnu.org; Mon, 19 Aug 2019 12:42:02 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1hzkjK-0003fx-2e for guix-patches@gnu.org; Mon, 19 Aug 2019 12:42:02 -0400 Subject: [bug#37083] [PATCH 0/1] (Help needed!) machine: Implement 'digital-ocean-environment-type'. Resent-Message-ID: Received: from eggs.gnu.org ([2001:470:142:3::10]:41149) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1hzkix-0004EH-S3 for guix-patches@gnu.org; Mon, 19 Aug 2019 12:41:41 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1hzkiv-0001o9-89 for guix-patches@gnu.org; Mon, 19 Aug 2019 12:41:38 -0400 Received: from mx.sdf.org ([205.166.94.20]:65068) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1hzkiu-0001ni-RS for guix-patches@gnu.org; Mon, 19 Aug 2019 12:41:37 -0400 Received: from Upsilon (pool-173-76-53-40.bstnma.fios.verizon.net [173.76.53.40]) (authenticated (0 bits)) by mx.sdf.org (8.15.2/8.14.5) with ESMTPSA id x7JGfTQM011147 (using TLSv1.2 with cipher AES256-GCM-SHA384 (256 bits) verified NO) for ; Mon, 19 Aug 2019 16:41:35 GMT From: zerodaysfordays@sdf.lonestar.org (Jakob L. Kreuze) Date: Mon, 19 Aug 2019 12:41:24 -0400 Message-ID: <87ftlxf6q3.fsf@sdf.lonestar.org> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="==-=-="; micalg=pgp-sha256; protocol="application/pgp-signature" List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-patches-bounces+kyle=kyleam.com@gnu.org Sender: "Guix-patches" To: 37083@debbugs.gnu.org --==-=-= Content-Type: multipart/mixed; boundary="=-=-=" --=-=-= Content-Type: text/plain Hi all, I've spent the past couple of days attempting to add rudimentary support to 'guix deploy' for some more complicated use-cases. I think I've made some decent progress, but I've reached a point where I'm having an issue that's beyond my abilities. 'deploy-digital-ocean' gets to a point where there's a droplet running a "bootstrap" configuration of the Guix System, but I can't keep an open SSH channel for sending over the operating-system configuration specified for the deployment. --=-=-= Content-Type: text/plain; charset=utf-8 Content-Disposition: inline; filename=Error Content-Transfer-Encoding: quoted-printable sending 3 store items (0 MiB) to '167.71.253.223'... ;;; [2019/08/19 12:21:33.409456, 0] write_to_channel_port: [GSSH ERROR] Rem= ote channel is closed: # Backtrace: In ice-9/eval.scm: 619:8 19 (_ #(#(#))) In guix/ui.scm: 1692:12 18 (run-guix-command _ . _) In guix/store.scm: 623:10 17 (call-with-store _) In srfi/srfi-1.scm: 640:9 16 (for-each # =E2=80=A6) In guix/scripts/deploy.scm: 96:20 15 (_ _) In ice-9/boot-9.scm: 829:9 14 (catch _ _ # =E2=80=A6) In guix/store.scm: 1803:24 13 (run-with-store # _ # _ =E2= =80=A6) In unknown file: 12 (_ # #<=E2=80= =A6> =E2=80=A6) 11 (_ # #<=E2=80= =A6> =E2=80=A6) 10 (_ # #<=E2=80= =A6> =E2=80=A6) In guix/monads.scm: 482:9 9 (_ _) In unknown file: 8 (_ # #<=E2=80= =A6> =E2=80=A6) In guix/remote.scm: 134:10 7 (_ _) In guix/store.scm: 1696:38 6 (_ #) In guix/ssh.scm: 358:4 5 (send-files # _ _ # _ # =E2= =80=A6) In guix/store.scm: 1568:12 4 (export-paths # _ # =E2=80=A6) 1548:22 3 (export-path # _ # =E2=80=A6) 697:13 2 (process-stderr _ _) 660:10 1 (dump-port # # =E2=80=A6) In unknown file: 0 (put-bytevector # # =E2= =80=A6) ERROR: In procedure put-bytevector: Throw to key `guile-ssh-error' with args `("write_to_channel_port" "Remote = channel is closed" # #f)'. --=-=-= Content-Type: text/plain I can connect to the droplet over SSH, but trying to manually deploy to the droplet with 'managed-host-environment-type' fails with the same error. I am still able to deploy to my various Guix QEMU guests using 'managed-host-environment-type' without fail -- this seems to be specific to Digital Ocean droplets running this configuration. --=-=-= Content-Type: text/plain Content-Disposition: inline; filename=config.scm (use-modules (gnu)) (use-service-modules networking ssh) (operating-system (host-name "gnu-bootstrap") (timezone "Etc/UTC") (bootloader (bootloader-configuration (bootloader grub-bootloader) (target "/dev/vda") (terminal-outputs '(console)))) (file-systems (cons (file-system (mount-point "/") (device "/dev/vda1") (type "ext4")) %base-file-systems)) (services (append (list (static-networking-service "eth0" "~a" #:netmask "~a" #:gateway "~a" #:name-servers '("84.200.69.80" "84.200.70.40")) (service openssh-service-type (openssh-configuration (permit-root-login 'without-password)))) %base-services))) --=-=-= Content-Type: text/plain Content-Transfer-Encoding: quoted-printable I suspect there may an issue with the configuration of the bootstrap system's SSH daemon, but the logs are devoid of anything particularly telling. If anyone is willing to offer up their knowledge of SSH to suggest what could be going wrong, I would appreciate it greatly. Thank you, Jakob Jakob L. Kreuze (1): machine: Implement 'digital-ocean-environment-type'. doc/guix.texi | 21 +- gnu/local.mk | 1 + gnu/machine/digital-ocean.scm | 409 ++++++++++++++++++++++++++++++++++ 3 files changed, 428 insertions(+), 3 deletions(-) create mode 100644 gnu/machine/digital-ocean.scm =2D-=20 2.22.0 --=-=-=-- --==-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEa1VJLOiXAjQ2BGSm9Qb9Fp2P2VoFAl1a0TcACgkQ9Qb9Fp2P 2Vqh3w/+Lg+d2EBJNXk1PxvjxOfodzr2unuUTPsnVgLxvFrVG3zG+FGXzIKAHm5j E5pcsagV/URrSFcwQtfAAcvfXUG9j9EiNlAOEXSr6UkWu9Ue4DbOx6QqkIrxrhy5 I6KhKoVu9FqmOGfmWAp/kPYcOd9g6Nf/A0A0kLcYQFPCLC8rHEcVPbZB4f8BKj0a 6RMPtD/oK/uN6lDzISLc6H7USSsL2xUcQDHGUw0JC32Rtd1PQVE2eXD8dsD5XTxr wd10H0tJzviOe2G7pcWxaCTG8potNv87R8EznErw6hYnNFVPXxBmOQCYTXjYdOqa D4jOgY2HYkzW37qNq+SgYJWL8Zv8j6zwexgIEtizbyEKrVMbj/+2iTkq3iR91yzb 8fDcdo2ijayaLKVE59q7NW28PIizBq87Rln3Rw/HVivCVw8DO25K5noetZvGw95M PsrlsIL/GJ/2AHrk7ZznYLhd5kGiQ4M9fx91/LPiOma9/yJPY+CvvGa6RMPKKRAC rQRoGossMe5qu3OEmnflgSv1WxkgmDQvf+aPuFC75Qd7bC1cSTBNKG9kqKNvPNka ht4xwu9dCMexD3DSp8gp+XFn9il6GiGVo44zzkU+RiRWMQpC7s0qgnaRCJ7GP+4n u2dfg7yejBuX613g/5P/cuU5oLxC6UybP9sdGOdzdu2sOOEv1lE= =rdXT -----END PGP SIGNATURE----- --==-=-=--