search

semaphoreui / semaphore

Modern UI and powerful API for Ansible, Terraform, OpenTofu, PowerShell and other DevOps tools.
https://semaphoreui.com
MIT License
10.48k stars 1.06k forks source link

Docker installation: No SSH connection #1697

Open e36Alex opened 9 months ago

e36Alex commented 9 months ago

Hello,

i am trying Semaphore in an docker installation and get the following error, when i run an playbook:

--- see post below ---

Any ideas, what i am doing wrong? My ansible user is "ansible" and i stored the ssh-key to keystore.

Thanks in advance, Alex

e36Alex commented 9 months ago

no idea?

andreas-marschke commented 8 months ago

please restructure your paste in a legible format using triple backtick code blocks. This is not adequate to expect anyone to help you if we can't read the log. Furthermore please verify the issue is with semaphore and not your SSH client configuration. Describe your setup.

e36Alex commented 8 months ago

Thanks for your reply and sorry for the formatting issue:

7:09:15 PM
Task 63 added to queue
7:09:18 PM
Started: 63
7:09:18 PM
Run TaskRunner with template: APT Update
7:09:18 PM
Preparing: 63
7:09:18 PM
Cloning Repository git@gitlab.domain.de:home/semaphore-ansible.git
7:09:18 PM
Cloning into 'repository_1_1'...
7:09:18 PM
Warning: Permanently added 'gitlab.domain.de' (ED25519) to the list of known hosts.
7:09:19 PM
No collections/requirements.yml file found. Skip galaxy install process.
7:09:19 PM
No roles/requirements.yml file found. Skip galaxy install process.
7:09:20 PM
ansible-playbook [core 2.14.5]
7:09:20 PM
config file = None
7:09:20 PM
configured module search path = ['/tmp/semaphore/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules']
7:09:20 PM
ansible python module location = /usr/lib/python3.11/site-packages/ansible
7:09:20 PM
ansible collection location = /tmp/semaphore/.ansible/collections:/usr/share/ansible/collections
7:09:20 PM
executable location = /usr/bin/ansible-playbook
7:09:20 PM
python version = 3.11.6 (main, Oct 4 2023, 06:22:18) [GCC 12.2.1 20220924] (/usr/bin/python3)
7:09:20 PM
jinja version = 3.1.2
7:09:20 PM
libyaml = True
7:09:20 PM
No config file found; using defaults
7:09:20 PM
setting up inventory plugins
7:09:20 PM
host_list declined parsing /tmp/semaphore/repository_1_1/inventory/hosts as it did not pass its verify_file() method
7:09:20 PM
script declined parsing /tmp/semaphore/repository_1_1/inventory/hosts as it did not pass its verify_file() method
7:09:20 PM
auto declined parsing /tmp/semaphore/repository_1_1/inventory/hosts as it did not pass its verify_file() method
7:09:20 PM
Parsed /tmp/semaphore/repository_1_1/inventory/hosts inventory source with ini plugin
7:09:21 PM
Loading collection community.general from /usr/lib/python3.11/site-packages/ansible_collections/community/general
7:09:21 PM
Loading callback plugin default of type stdout, v2.0 from /usr/lib/python3.11/site-packages/ansible/plugins/callback/default.py
7:09:21 PM
Skipping callback 'default', as we already have a stdout callback.
7:09:21 PM
Skipping callback 'minimal', as we already have a stdout callback.
7:09:21 PM
Skipping callback 'oneline', as we already have a stdout callback.
7:09:21 PM
7:09:21 PM
PLAYBOOK: apt_update_list.yml **************************************************
7:09:21 PM
Positional arguments: playbooks/apt_update_list.yml
7:09:21 PM
verbosity: 4
7:09:21 PM
connection: smart
7:09:21 PM
timeout: 10
7:09:21 PM
become_method: sudo
7:09:21 PM
tags: ('all',)
7:09:21 PM
inventory: ('/tmp/semaphore/repository_1_1/inventory/hosts',)
7:09:21 PM
extra_vars: ('{"ANSIBLE_HOST_KEY_CHECKING":"False","ANSIBLE_USER":"ansible","semaphore_vars":{"task_details":{"id":63,"username":"admin"}}}',)
7:09:21 PM
forks: 5
7:09:21 PM
1 plays in playbooks/apt_update_list.yml
7:09:21 PM
7:09:21 PM
PLAY [APT update and send Mail with upgradeable packages] **********************
7:09:21 PM
7:09:21 PM
TASK [Gathering Facts] *********************************************************
7:09:21 PM
task path: /tmp/semaphore/repository_1_1/playbooks/apt_update_list.yml:2
7:09:21 PM
ESTABLISH SSH CONNECTION FOR USER: None
7:09:21 PM
SSH: EXEC ssh -vvv -C -o ControlMaster=auto -o ControlPersist=60s -o StrictHostKeyChecking=no -o KbdInteractiveAuthentication=no -o PreferredAuthentications=gssapi-with-mic,gssapi-keyex,hostbased,publickey -o PasswordAuthentication=no -o ConnectTimeout=10 -o 'ControlPath="/tmp/semaphore/.ansible/cp/cb4e6be749"' icinga2.domain.de '/bin/sh -c '"'"'echo ~ && sleep 0'"'"''
7:09:21 PM
ESTABLISH SSH CONNECTION FOR USER: None
7:09:21 PM
SSH: EXEC ssh -vvv -C -o ControlMaster=auto -o ControlPersist=60s -o StrictHostKeyChecking=no -o KbdInteractiveAuthentication=no -o PreferredAuthentications=gssapi-with-mic,gssapi-keyex,hostbased,publickey -o PasswordAuthentication=no -o ConnectTimeout=10 -o 'ControlPath="/tmp/semaphore/.ansible/cp/251fbbcf1d"' gitlab.domain.de '/bin/sh -c '"'"'echo ~ && sleep 0'"'"''
7:09:21 PM
ESTABLISH SSH CONNECTION FOR USER: None
7:09:21 PM
SSH: EXEC ssh -vvv -C -o ControlMaster=auto -o ControlPersist=60s -o StrictHostKeyChecking=no -o KbdInteractiveAuthentication=no -o PreferredAuthentications=gssapi-with-mic,gssapi-keyex,hostbased,publickey -o PasswordAuthentication=no -o ConnectTimeout=10 -o 'ControlPath="/tmp/semaphore/.ansible/cp/89725728d9"' docker01.domain.de '/bin/sh -c '"'"'echo ~ && sleep 0'"'"''
7:09:21 PM
ESTABLISH SSH CONNECTION FOR USER: None
7:09:21 PM
SSH: EXEC ssh -vvv -C -o ControlMaster=auto -o ControlPersist=60s -o StrictHostKeyChecking=no -o KbdInteractiveAuthentication=no -o PreferredAuthentications=gssapi-with-mic,gssapi-keyex,hostbased,publickey -o PasswordAuthentication=no -o ConnectTimeout=10 -o 'ControlPath="/tmp/semaphore/.ansible/cp/f7b0f4efca"' docker02.domain.de '/bin/sh -c '"'"'echo ~ && sleep 0'"'"''
7:09:21 PM
<192.168.10.165> ESTABLISH SSH CONNECTION FOR USER: None
7:09:21 PM
<192.168.10.165> SSH: EXEC ssh -vvv -C -o ControlMaster=auto -o ControlPersist=60s -o StrictHostKeyChecking=no -o KbdInteractiveAuthentication=no -o PreferredAuthentications=gssapi-with-mic,gssapi-keyex,hostbased,publickey -o PasswordAuthentication=no -o ConnectTimeout=10 -o 'ControlPath="/tmp/semaphore/.ansible/cp/1a71f451e2"' 192.168.10.165 '/bin/sh -c '"'"'echo ~ && sleep 0'"'"''
7:09:21 PM
(255, b'', b'OpenSSH_9.3p2, OpenSSL 3.1.4 24 Oct 2023\r\ndebug1: Reading configuration data /etc/ssh/ssh_config\r\ndebug3: expanded UserKnownHostsFile \'~/.ssh/known_hosts\' -> \'/home/semaphore/.ssh/known_hosts\'\r\ndebug3: expanded UserKnownHostsFile \'~/.ssh/known_hosts2\' -> \'/home/semaphore/.ssh/known_hosts2\'\r\ndebug1: auto-mux: Trying existing master\r\ndebug1: Control socket "/tmp/semaphore/.ansible/cp/251fbbcf1d" does not exist\r\ndebug2: resolving "gitlab.domain.de" port 22\r\ndebug3: resolve_host: lookup gitlab.domain.de:22\r\ndebug3: ssh_connect_direct: entering\r\ndebug1: Connecting to gitlab.domain.de [192.168.10.240] port 22.\r\ndebug3: set_sock_tos: set socket 3 IP_TOS 0x48\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: fd 3 clearing O_NONBLOCK\r\ndebug1: Connection established.\r\ndebug3: timeout: 10000 ms remain after connect\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519 type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa-cert type -1\r\ndebug1: Local version string SSH-2.0-OpenSSH_9.3\r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_8.4p1 Debian-5+deb11u3\r\ndebug1: compat_banner: match: OpenSSH_8.4p1 Debian-5+deb11u3 pat OpenSSH* compat 0x04000000\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: Authenticating to gitlab.domain.de:22 as \'semaphore\'\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\ndebug3: order_hostkeyalgs: no algorithms matched; accept original\r\ndebug3: send packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT sent\r\ndebug3: receive packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT received\r\ndebug2: local client KEXINIT proposal\r\ndebug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c,kex-strict-c-v00@openssh.com\r\ndebug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: zlib@openssh.com,zlib,none\r\ndebug2: compression stoc: zlib@openssh.com,zlib,none\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal\r\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com\r\ndebug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: none,zlib@openssh.com\r\ndebug2: compression stoc: none,zlib@openssh.com\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug3: kex_choose_conf: will use strict KEX ordering\r\ndebug1: kex: algorithm: curve25519-sha256\r\ndebug1: kex: host key algorithm: ssh-ed25519\r\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug3: send packet: type 30\r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY\r\ndebug3: receive packet: type 31\r\ndebug1: SSH2_MSG_KEX_ECDH_REPLY received\r\ndebug1: Server host key: ssh-ed25519 SHA256:92zlqYBrh/RUfsawatpoQp3LIXuBKMbcGf7mHegdXxQ\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\nWarning: Permanently added \'gitlab.domain.de\' (ED25519) to the list of known hosts.\r\ndebug1: check_host_key: hostkey not known or explicitly trusted: disabling UpdateHostkeys\r\ndebug3: send packet: type 21\r\ndebug1: ssh_packet_send2_wrapped: resetting send seqnr 3\r\ndebug2: ssh_set_newkeys: mode 1\r\ndebug1: rekey out after 134217728 blocks\r\ndebug1: SSH2_MSG_NEWKEYS sent\r\ndebug1: expecting SSH2_MSG_NEWKEYS\r\ndebug3: receive packet: type 21\r\ndebug1: ssh_packet_read_poll2: resetting read seqnr 3\r\ndebug1: SSH2_MSG_NEWKEYS received\r\ndebug2: ssh_set_newkeys: mode 0\r\ndebug1: rekey in after 134217728 blocks\r\ndebug3: ssh_get_authentication_socket_path: path \'/tmp/semaphore/ssh-agent-2-1707156559.sock\'\r\ndebug2: get_agent_identities: ssh_agent_bind_hostkey: agent refused operation\r\ndebug1: get_agent_identities: agent returned 1 keys\r\ndebug1: Will attempt key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_rsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519 \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_xmss \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_dsa \r\ndebug2: pubkey_prepare: done\r\ndebug3: send packet: type 5\r\ndebug3: receive packet: type 7\r\ndebug1: SSH2_MSG_EXT_INFO received\r\ndebug1: kex_input_ext_info: server-sig-algs=\r\ndebug3: receive packet: type 6\r\ndebug2: service_accept: ssh-userauth\r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received\r\ndebug3: send packet: type 50\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-with-mic\r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-with-mic\r\ndebug3: authmethod_lookup gssapi-keyex\r\ndebug3: remaining preferred: hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-keyex\r\ndebug3: authmethod_lookup publickey\r\ndebug3: remaining preferred: ,publickey\r\ndebug3: authmethod_is_enabled publickey\r\ndebug1: Next authentication method: publickey\r\ndebug1: Offering public key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug3: send packet: type 50\r\ndebug2: we sent a publickey packet, wait for reply\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_rsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_xmss\r\ndebug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_dsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory\r\ndebug2: we did not send a packet, disable method\r\ndebug1: No more authentication methods to try.\r\nsemaphore@gitlab.domain.de: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).\r\n')
7:09:21 PM
fatal: [gitlab.domain.de]: UNREACHABLE! => {
7:09:21 PM
"changed": false,
7:09:21 PM
"msg": "Failed to connect to the host via ssh: OpenSSH_9.3p2, OpenSSL 3.1.4 24 Oct 2023\r\ndebug1: Reading configuration data /etc/ssh/ssh_config\r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> '/home/semaphore/.ssh/known_hosts'\r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> '/home/semaphore/.ssh/known_hosts2'\r\ndebug1: auto-mux: Trying existing master\r\ndebug1: Control socket \"/tmp/semaphore/.ansible/cp/251fbbcf1d\" does not exist\r\ndebug2: resolving \"gitlab.domain.de\" port 22\r\ndebug3: resolve_host: lookup gitlab.domain.de:22\r\ndebug3: ssh_connect_direct: entering\r\ndebug1: Connecting to gitlab.domain.de [192.168.10.240] port 22.\r\ndebug3: set_sock_tos: set socket 3 IP_TOS 0x48\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: fd 3 clearing O_NONBLOCK\r\ndebug1: Connection established.\r\ndebug3: timeout: 10000 ms remain after connect\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519 type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa-cert type -1\r\ndebug1: Local version string SSH-2.0-OpenSSH_9.3\r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_8.4p1 Debian-5+deb11u3\r\ndebug1: compat_banner: match: OpenSSH_8.4p1 Debian-5+deb11u3 pat OpenSSH* compat 0x04000000\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: Authenticating to gitlab.domain.de:22 as 'semaphore'\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\ndebug3: order_hostkeyalgs: no algorithms matched; accept original\r\ndebug3: send packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT sent\r\ndebug3: receive packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT received\r\ndebug2: local client KEXINIT proposal\r\ndebug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c,kex-strict-c-v00@openssh.com\r\ndebug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: zlib@openssh.com,zlib,none\r\ndebug2: compression stoc: zlib@openssh.com,zlib,none\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal\r\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com\r\ndebug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: none,zlib@openssh.com\r\ndebug2: compression stoc: none,zlib@openssh.com\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug3: kex_choose_conf: will use strict KEX ordering\r\ndebug1: kex: algorithm: curve25519-sha256\r\ndebug1: kex: host key algorithm: ssh-ed25519\r\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug3: send packet: type 30\r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY\r\ndebug3: receive packet: type 31\r\ndebug1: SSH2_MSG_KEX_ECDH_REPLY received\r\ndebug1: Server host key: ssh-ed25519 SHA256:92zlqYBrh/RUfsawatpoQp3LIXuBKMbcGf7mHegdXxQ\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\nWarning: Permanently added 'gitlab.domain.de' (ED25519) to the list of known hosts.\r\ndebug1: check_host_key: hostkey not known or explicitly trusted: disabling UpdateHostkeys\r\ndebug3: send packet: type 21\r\ndebug1: ssh_packet_send2_wrapped: resetting send seqnr 3\r\ndebug2: ssh_set_newkeys: mode 1\r\ndebug1: rekey out after 134217728 blocks\r\ndebug1: SSH2_MSG_NEWKEYS sent\r\ndebug1: expecting SSH2_MSG_NEWKEYS\r\ndebug3: receive packet: type 21\r\ndebug1: ssh_packet_read_poll2: resetting read seqnr 3\r\ndebug1: SSH2_MSG_NEWKEYS received\r\ndebug2: ssh_set_newkeys: mode 0\r\ndebug1: rekey in after 134217728 blocks\r\ndebug3: ssh_get_authentication_socket_path: path '/tmp/semaphore/ssh-agent-2-1707156559.sock'\r\ndebug2: get_agent_identities: ssh_agent_bind_hostkey: agent refused operation\r\ndebug1: get_agent_identities: agent returned 1 keys\r\ndebug1: Will attempt key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_rsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519 \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_xmss \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_dsa \r\ndebug2: pubkey_prepare: done\r\ndebug3: send packet: type 5\r\ndebug3: receive packet: type 7\r\ndebug1: SSH2_MSG_EXT_INFO received\r\ndebug1: kex_input_ext_info: server-sig-algs=\r\ndebug3: receive packet: type 6\r\ndebug2: service_accept: ssh-userauth\r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received\r\ndebug3: send packet: type 50\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-with-mic\r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-with-mic\r\ndebug3: authmethod_lookup gssapi-keyex\r\ndebug3: remaining preferred: hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-keyex\r\ndebug3: authmethod_lookup publickey\r\ndebug3: remaining preferred: ,publickey\r\ndebug3: authmethod_is_enabled publickey\r\ndebug1: Next authentication method: publickey\r\ndebug1: Offering public key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug3: send packet: type 50\r\ndebug2: we sent a publickey packet, wait for reply\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_rsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_xmss\r\ndebug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_dsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory\r\ndebug2: we did not send a packet, disable method\r\ndebug1: No more authentication methods to try.\r\nsemaphore@gitlab.domain.de: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).",
7:09:21 PM
"unreachable": true
7:09:21 PM
}
7:09:21 PM
(255, b'', b'OpenSSH_9.3p2, OpenSSL 3.1.4 24 Oct 2023\r\ndebug1: Reading configuration data /etc/ssh/ssh_config\r\ndebug3: expanded UserKnownHostsFile \'~/.ssh/known_hosts\' -> \'/home/semaphore/.ssh/known_hosts\'\r\ndebug3: expanded UserKnownHostsFile \'~/.ssh/known_hosts2\' -> \'/home/semaphore/.ssh/known_hosts2\'\r\ndebug1: auto-mux: Trying existing master\r\ndebug1: Control socket "/tmp/semaphore/.ansible/cp/f7b0f4efca" does not exist\r\ndebug2: resolving "docker02.domain.de" port 22\r\ndebug3: resolve_host: lookup docker02.domain.de:22\r\ndebug3: ssh_connect_direct: entering\r\ndebug1: Connecting to docker02.domain.de [10.0.0.10] port 22.\r\ndebug3: set_sock_tos: set socket 3 IP_TOS 0x48\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: fd 3 clearing O_NONBLOCK\r\ndebug1: Connection established.\r\ndebug3: timeout: 10000 ms remain after connect\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519 type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa-cert type -1\r\ndebug1: Local version string SSH-2.0-OpenSSH_9.3\r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_8.4p1 Debian-5+deb11u3\r\ndebug1: compat_banner: match: OpenSSH_8.4p1 Debian-5+deb11u3 pat OpenSSH* compat 0x04000000\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: Authenticating to docker02.domain.de:22 as \'semaphore\'\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\ndebug3: order_hostkeyalgs: no algorithms matched; accept original\r\ndebug3: send packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT sent\r\ndebug3: receive packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT received\r\ndebug2: local client KEXINIT proposal\r\ndebug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c,kex-strict-c-v00@openssh.com\r\ndebug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: zlib@openssh.com,zlib,none\r\ndebug2: compression stoc: zlib@openssh.com,zlib,none\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal\r\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com\r\ndebug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: none,zlib@openssh.com\r\ndebug2: compression stoc: none,zlib@openssh.com\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug3: kex_choose_conf: will use strict KEX ordering\r\ndebug1: kex: algorithm: curve25519-sha256\r\ndebug1: kex: host key algorithm: ssh-ed25519\r\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug3: send packet: type 30\r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY\r\ndebug3: receive packet: type 31\r\ndebug1: SSH2_MSG_KEX_ECDH_REPLY received\r\ndebug1: Server host key: ssh-ed25519 SHA256:HVgLy40Wavcfgv/dvJ5SVfucfh1CjYrgce5iay7rpig\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\nWarning: Permanently added \'docker02.domain.de\' (ED25519) to the list of known hosts.\r\ndebug1: check_host_key: hostkey not known or explicitly trusted: disabling UpdateHostkeys\r\ndebug3: send packet: type 21\r\ndebug1: ssh_packet_send2_wrapped: resetting send seqnr 3\r\ndebug2: ssh_set_newkeys: mode 1\r\ndebug1: rekey out after 134217728 blocks\r\ndebug1: SSH2_MSG_NEWKEYS sent\r\ndebug1: expecting SSH2_MSG_NEWKEYS\r\ndebug3: receive packet: type 21\r\ndebug1: ssh_packet_read_poll2: resetting read seqnr 3\r\ndebug1: SSH2_MSG_NEWKEYS received\r\ndebug2: ssh_set_newkeys: mode 0\r\ndebug1: rekey in after 134217728 blocks\r\ndebug3: ssh_get_authentication_socket_path: path \'/tmp/semaphore/ssh-agent-2-1707156559.sock\'\r\ndebug2: get_agent_identities: ssh_agent_bind_hostkey: agent refused operation\r\ndebug1: get_agent_identities: agent returned 1 keys\r\ndebug1: Will attempt key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_rsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519 \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_xmss \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_dsa \r\ndebug2: pubkey_prepare: done\r\ndebug3: send packet: type 5\r\ndebug3: receive packet: type 7\r\ndebug1: SSH2_MSG_EXT_INFO received\r\ndebug1: kex_input_ext_info: server-sig-algs=\r\ndebug3: receive packet: type 6\r\ndebug2: service_accept: ssh-userauth\r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received\r\ndebug3: send packet: type 50\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-with-mic\r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-with-mic\r\ndebug3: authmethod_lookup gssapi-keyex\r\ndebug3: remaining preferred: hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-keyex\r\ndebug3: authmethod_lookup publickey\r\ndebug3: remaining preferred: ,publickey\r\ndebug3: authmethod_is_enabled publickey\r\ndebug1: Next authentication method: publickey\r\ndebug1: Offering public key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug3: send packet: type 50\r\ndebug2: we sent a publickey packet, wait for reply\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_rsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_xmss\r\ndebug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_dsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory\r\ndebug2: we did not send a packet, disable method\r\ndebug1: No more authentication methods to try.\r\nsemaphore@docker02.domain.de: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).\r\n')
7:09:21 PM
fatal: [docker02.domain.de]: UNREACHABLE! => {
7:09:21 PM
"changed": false,
7:09:21 PM
"msg": "Failed to connect to the host via ssh: OpenSSH_9.3p2, OpenSSL 3.1.4 24 Oct 2023\r\ndebug1: Reading configuration data /etc/ssh/ssh_config\r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> '/home/semaphore/.ssh/known_hosts'\r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> '/home/semaphore/.ssh/known_hosts2'\r\ndebug1: auto-mux: Trying existing master\r\ndebug1: Control socket \"/tmp/semaphore/.ansible/cp/f7b0f4efca\" does not exist\r\ndebug2: resolving \"docker02.domain.de\" port 22\r\ndebug3: resolve_host: lookup docker02.domain.de:22\r\ndebug3: ssh_connect_direct: entering\r\ndebug1: Connecting to docker02.domain.de [10.0.0.10] port 22.\r\ndebug3: set_sock_tos: set socket 3 IP_TOS 0x48\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: fd 3 clearing O_NONBLOCK\r\ndebug1: Connection established.\r\ndebug3: timeout: 10000 ms remain after connect\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519 type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa-cert type -1\r\ndebug1: Local version string SSH-2.0-OpenSSH_9.3\r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_8.4p1 Debian-5+deb11u3\r\ndebug1: compat_banner: match: OpenSSH_8.4p1 Debian-5+deb11u3 pat OpenSSH* compat 0x04000000\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: Authenticating to docker02.domain.de:22 as 'semaphore'\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\ndebug3: order_hostkeyalgs: no algorithms matched; accept original\r\ndebug3: send packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT sent\r\ndebug3: receive packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT received\r\ndebug2: local client KEXINIT proposal\r\ndebug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c,kex-strict-c-v00@openssh.com\r\ndebug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: zlib@openssh.com,zlib,none\r\ndebug2: compression stoc: zlib@openssh.com,zlib,none\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal\r\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com\r\ndebug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: none,zlib@openssh.com\r\ndebug2: compression stoc: none,zlib@openssh.com\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug3: kex_choose_conf: will use strict KEX ordering\r\ndebug1: kex: algorithm: curve25519-sha256\r\ndebug1: kex: host key algorithm: ssh-ed25519\r\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug3: send packet: type 30\r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY\r\ndebug3: receive packet: type 31\r\ndebug1: SSH2_MSG_KEX_ECDH_REPLY received\r\ndebug1: Server host key: ssh-ed25519 SHA256:HVgLy40Wavcfgv/dvJ5SVfucfh1CjYrgce5iay7rpig\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\nWarning: Permanently added 'docker02.domain.de' (ED25519) to the list of known hosts.\r\ndebug1: check_host_key: hostkey not known or explicitly trusted: disabling UpdateHostkeys\r\ndebug3: send packet: type 21\r\ndebug1: ssh_packet_send2_wrapped: resetting send seqnr 3\r\ndebug2: ssh_set_newkeys: mode 1\r\ndebug1: rekey out after 134217728 blocks\r\ndebug1: SSH2_MSG_NEWKEYS sent\r\ndebug1: expecting SSH2_MSG_NEWKEYS\r\ndebug3: receive packet: type 21\r\ndebug1: ssh_packet_read_poll2: resetting read seqnr 3\r\ndebug1: SSH2_MSG_NEWKEYS received\r\ndebug2: ssh_set_newkeys: mode 0\r\ndebug1: rekey in after 134217728 blocks\r\ndebug3: ssh_get_authentication_socket_path: path '/tmp/semaphore/ssh-agent-2-1707156559.sock'\r\ndebug2: get_agent_identities: ssh_agent_bind_hostkey: agent refused operation\r\ndebug1: get_agent_identities: agent returned 1 keys\r\ndebug1: Will attempt key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_rsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519 \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_xmss \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_dsa \r\ndebug2: pubkey_prepare: done\r\ndebug3: send packet: type 5\r\ndebug3: receive packet: type 7\r\ndebug1: SSH2_MSG_EXT_INFO received\r\ndebug1: kex_input_ext_info: server-sig-algs=\r\ndebug3: receive packet: type 6\r\ndebug2: service_accept: ssh-userauth\r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received\r\ndebug3: send packet: type 50\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-with-mic\r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-with-mic\r\ndebug3: authmethod_lookup gssapi-keyex\r\ndebug3: remaining preferred: hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-keyex\r\ndebug3: authmethod_lookup publickey\r\ndebug3: remaining preferred: ,publickey\r\ndebug3: authmethod_is_enabled publickey\r\ndebug1: Next authentication method: publickey\r\ndebug1: Offering public key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug3: send packet: type 50\r\ndebug2: we sent a publickey packet, wait for reply\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_rsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_xmss\r\ndebug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_dsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory\r\ndebug2: we did not send a packet, disable method\r\ndebug1: No more authentication methods to try.\r\nsemaphore@docker02.domain.de: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).",
7:09:21 PM
"unreachable": true
7:09:21 PM
}
7:09:21 PM
(255, b'', b'OpenSSH_9.3p2, OpenSSL 3.1.4 24 Oct 2023\r\ndebug1: Reading configuration data /etc/ssh/ssh_config\r\ndebug3: expanded UserKnownHostsFile \'~/.ssh/known_hosts\' -> \'/home/semaphore/.ssh/known_hosts\'\r\ndebug3: expanded UserKnownHostsFile \'~/.ssh/known_hosts2\' -> \'/home/semaphore/.ssh/known_hosts2\'\r\ndebug1: auto-mux: Trying existing master\r\ndebug1: Control socket "/tmp/semaphore/.ansible/cp/89725728d9" does not exist\r\ndebug2: resolving "docker01.domain.de" port 22\r\ndebug3: resolve_host: lookup docker01.domain.de:22\r\ndebug3: ssh_connect_direct: entering\r\ndebug1: Connecting to docker01.domain.de [192.168.10.165] port 22.\r\ndebug3: set_sock_tos: set socket 3 IP_TOS 0x48\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: fd 3 clearing O_NONBLOCK\r\ndebug1: Connection established.\r\ndebug3: timeout: 10000 ms remain after connect\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519 type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa-cert type -1\r\ndebug1: Local version string SSH-2.0-OpenSSH_9.3\r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_8.4p1 Debian-5+deb11u3\r\ndebug1: compat_banner: match: OpenSSH_8.4p1 Debian-5+deb11u3 pat OpenSSH* compat 0x04000000\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: Authenticating to docker01.domain.de:22 as \'semaphore\'\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\ndebug3: order_hostkeyalgs: no algorithms matched; accept original\r\ndebug3: send packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT sent\r\ndebug3: receive packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT received\r\ndebug2: local client KEXINIT proposal\r\ndebug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c,kex-strict-c-v00@openssh.com\r\ndebug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: zlib@openssh.com,zlib,none\r\ndebug2: compression stoc: zlib@openssh.com,zlib,none\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal\r\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com\r\ndebug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: none,zlib@openssh.com\r\ndebug2: compression stoc: none,zlib@openssh.com\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug3: kex_choose_conf: will use strict KEX ordering\r\ndebug1: kex: algorithm: curve25519-sha256\r\ndebug1: kex: host key algorithm: ssh-ed25519\r\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug3: send packet: type 30\r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY\r\ndebug3: receive packet: type 31\r\ndebug1: SSH2_MSG_KEX_ECDH_REPLY received\r\ndebug1: Server host key: ssh-ed25519 SHA256:VYg5Khtns9w7VFKv9j4ciCvVpPzYIkwbzVfR2vtTWhg\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\nWarning: Permanently added \'docker01.domain.de\' (ED25519) to the list of known hosts.\r\ndebug1: check_host_key: hostkey not known or explicitly trusted: disabling UpdateHostkeys\r\ndebug3: send packet: type 21\r\ndebug1: ssh_packet_send2_wrapped: resetting send seqnr 3\r\ndebug2: ssh_set_newkeys: mode 1\r\ndebug1: rekey out after 134217728 blocks\r\ndebug1: SSH2_MSG_NEWKEYS sent\r\ndebug1: expecting SSH2_MSG_NEWKEYS\r\ndebug3: receive packet: type 21\r\ndebug1: ssh_packet_read_poll2: resetting read seqnr 3\r\ndebug1: SSH2_MSG_NEWKEYS received\r\ndebug2: ssh_set_newkeys: mode 0\r\ndebug1: rekey in after 134217728 blocks\r\ndebug3: ssh_get_authentication_socket_path: path \'/tmp/semaphore/ssh-agent-2-1707156559.sock\'\r\ndebug2: get_agent_identities: ssh_agent_bind_hostkey: agent refused operation\r\ndebug1: get_agent_identities: agent returned 1 keys\r\ndebug1: Will attempt key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_rsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519 \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_xmss \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_dsa \r\ndebug2: pubkey_prepare: done\r\ndebug3: send packet: type 5\r\ndebug3: receive packet: type 7\r\ndebug1: SSH2_MSG_EXT_INFO received\r\ndebug1: kex_input_ext_info: server-sig-algs=\r\ndebug3: receive packet: type 6\r\ndebug2: service_accept: ssh-userauth\r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received\r\ndebug3: send packet: type 50\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-with-mic\r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-with-mic\r\ndebug3: authmethod_lookup gssapi-keyex\r\ndebug3: remaining preferred: hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-keyex\r\ndebug3: authmethod_lookup publickey\r\ndebug3: remaining preferred: ,publickey\r\ndebug3: authmethod_is_enabled publickey\r\ndebug1: Next authentication method: publickey\r\ndebug1: Offering public key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug3: send packet: type 50\r\ndebug2: we sent a publickey packet, wait for reply\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_rsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_xmss\r\ndebug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_dsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory\r\ndebug2: we did not send a packet, disable method\r\ndebug1: No more authentication methods to try.\r\nsemaphore@docker01.domain.de: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).\r\n')
7:09:21 PM
(255, b'', b'OpenSSH_9.3p2, OpenSSL 3.1.4 24 Oct 2023\r\ndebug1: Reading configuration data /etc/ssh/ssh_config\r\ndebug3: expanded UserKnownHostsFile \'~/.ssh/known_hosts\' -> \'/home/semaphore/.ssh/known_hosts\'\r\ndebug3: expanded UserKnownHostsFile \'~/.ssh/known_hosts2\' -> \'/home/semaphore/.ssh/known_hosts2\'\r\ndebug1: auto-mux: Trying existing master\r\ndebug1: Control socket "/tmp/semaphore/.ansible/cp/cb4e6be749" does not exist\r\ndebug2: resolving "icinga2.domain.de" port 22\r\ndebug3: resolve_host: lookup icinga2.domain.de:22\r\ndebug3: ssh_connect_direct: entering\r\ndebug1: Connecting to icinga2.domain.de [192.168.10.161] port 22.\r\ndebug3: set_sock_tos: set socket 3 IP_TOS 0x48\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: fd 3 clearing O_NONBLOCK\r\ndebug1: Connection established.\r\ndebug3: timeout: 10000 ms remain after connect\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519 type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa-cert type -1\r\ndebug1: Local version string SSH-2.0-OpenSSH_9.3\r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_8.4p1 Debian-5+deb11u3\r\ndebug1: compat_banner: match: OpenSSH_8.4p1 Debian-5+deb11u3 pat OpenSSH* compat 0x04000000\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: Authenticating to icinga2.domain.de:22 as \'semaphore\'\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\ndebug3: order_hostkeyalgs: no algorithms matched; accept original\r\ndebug3: send packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT sent\r\ndebug3: receive packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT received\r\ndebug2: local client KEXINIT proposal\r\ndebug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c,kex-strict-c-v00@openssh.com\r\ndebug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: zlib@openssh.com,zlib,none\r\ndebug2: compression stoc: zlib@openssh.com,zlib,none\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal\r\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com\r\ndebug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: none,zlib@openssh.com\r\ndebug2: compression stoc: none,zlib@openssh.com\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug3: kex_choose_conf: will use strict KEX ordering\r\ndebug1: kex: algorithm: curve25519-sha256\r\ndebug1: kex: host key algorithm: ssh-ed25519\r\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug3: send packet: type 30\r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY\r\ndebug3: receive packet: type 31\r\ndebug1: SSH2_MSG_KEX_ECDH_REPLY received\r\ndebug1: Server host key: ssh-ed25519 SHA256:92zlqYBrh/RUfsawatpoQp3LIXuBKMbcGf7mHegdXxQ\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\nWarning: Permanently added \'icinga2.domain.de\' (ED25519) to the list of known hosts.\r\ndebug1: check_host_key: hostkey not known or explicitly trusted: disabling UpdateHostkeys\r\ndebug3: send packet: type 21\r\ndebug1: ssh_packet_send2_wrapped: resetting send seqnr 3\r\ndebug2: ssh_set_newkeys: mode 1\r\ndebug1: rekey out after 134217728 blocks\r\ndebug1: SSH2_MSG_NEWKEYS sent\r\ndebug1: expecting SSH2_MSG_NEWKEYS\r\ndebug3: receive packet: type 21\r\ndebug1: ssh_packet_read_poll2: resetting read seqnr 3\r\ndebug1: SSH2_MSG_NEWKEYS received\r\ndebug2: ssh_set_newkeys: mode 0\r\ndebug1: rekey in after 134217728 blocks\r\ndebug3: ssh_get_authentication_socket_path: path \'/tmp/semaphore/ssh-agent-2-1707156559.sock\'\r\ndebug2: get_agent_identities: ssh_agent_bind_hostkey: agent refused operation\r\ndebug1: get_agent_identities: agent returned 1 keys\r\ndebug1: Will attempt key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_rsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519 \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_xmss \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_dsa \r\ndebug2: pubkey_prepare: done\r\ndebug3: send packet: type 5\r\ndebug3: receive packet: type 7\r\ndebug1: SSH2_MSG_EXT_INFO received\r\ndebug1: kex_input_ext_info: server-sig-algs=\r\ndebug3: receive packet: type 6\r\ndebug2: service_accept: ssh-userauth\r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received\r\ndebug3: send packet: type 50\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-with-mic\r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-with-mic\r\ndebug3: authmethod_lookup gssapi-keyex\r\ndebug3: remaining preferred: hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-keyex\r\ndebug3: authmethod_lookup publickey\r\ndebug3: remaining preferred: ,publickey\r\ndebug3: authmethod_is_enabled publickey\r\ndebug1: Next authentication method: publickey\r\ndebug1: Offering public key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug3: send packet: type 50\r\ndebug2: we sent a publickey packet, wait for reply\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_rsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_xmss\r\ndebug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_dsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory\r\ndebug2: we did not send a packet, disable method\r\ndebug1: No more authentication methods to try.\r\nsemaphore@icinga2.domain.de: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).\r\n')
7:09:21 PM
fatal: [docker01.domain.de]: UNREACHABLE! => {
7:09:21 PM
"changed": false,
7:09:21 PM
"msg": "Failed to connect to the host via ssh: OpenSSH_9.3p2, OpenSSL 3.1.4 24 Oct 2023\r\ndebug1: Reading configuration data /etc/ssh/ssh_config\r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> '/home/semaphore/.ssh/known_hosts'\r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> '/home/semaphore/.ssh/known_hosts2'\r\ndebug1: auto-mux: Trying existing master\r\ndebug1: Control socket \"/tmp/semaphore/.ansible/cp/89725728d9\" does not exist\r\ndebug2: resolving \"docker01.domain.de\" port 22\r\ndebug3: resolve_host: lookup docker01.domain.de:22\r\ndebug3: ssh_connect_direct: entering\r\ndebug1: Connecting to docker01.domain.de [192.168.10.165] port 22.\r\ndebug3: set_sock_tos: set socket 3 IP_TOS 0x48\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: fd 3 clearing O_NONBLOCK\r\ndebug1: Connection established.\r\ndebug3: timeout: 10000 ms remain after connect\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519 type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa-cert type -1\r\ndebug1: Local version string SSH-2.0-OpenSSH_9.3\r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_8.4p1 Debian-5+deb11u3\r\ndebug1: compat_banner: match: OpenSSH_8.4p1 Debian-5+deb11u3 pat OpenSSH* compat 0x04000000\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: Authenticating to docker01.domain.de:22 as 'semaphore'\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\ndebug3: order_hostkeyalgs: no algorithms matched; accept original\r\ndebug3: send packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT sent\r\ndebug3: receive packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT received\r\ndebug2: local client KEXINIT proposal\r\ndebug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c,kex-strict-c-v00@openssh.com\r\ndebug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: zlib@openssh.com,zlib,none\r\ndebug2: compression stoc: zlib@openssh.com,zlib,none\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal\r\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com\r\ndebug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: none,zlib@openssh.com\r\ndebug2: compression stoc: none,zlib@openssh.com\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug3: kex_choose_conf: will use strict KEX ordering\r\ndebug1: kex: algorithm: curve25519-sha256\r\ndebug1: kex: host key algorithm: ssh-ed25519\r\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug3: send packet: type 30\r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY\r\ndebug3: receive packet: type 31\r\ndebug1: SSH2_MSG_KEX_ECDH_REPLY received\r\ndebug1: Server host key: ssh-ed25519 SHA256:VYg5Khtns9w7VFKv9j4ciCvVpPzYIkwbzVfR2vtTWhg\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\nWarning: Permanently added 'docker01.domain.de' (ED25519) to the list of known hosts.\r\ndebug1: check_host_key: hostkey not known or explicitly trusted: disabling UpdateHostkeys\r\ndebug3: send packet: type 21\r\ndebug1: ssh_packet_send2_wrapped: resetting send seqnr 3\r\ndebug2: ssh_set_newkeys: mode 1\r\ndebug1: rekey out after 134217728 blocks\r\ndebug1: SSH2_MSG_NEWKEYS sent\r\ndebug1: expecting SSH2_MSG_NEWKEYS\r\ndebug3: receive packet: type 21\r\ndebug1: ssh_packet_read_poll2: resetting read seqnr 3\r\ndebug1: SSH2_MSG_NEWKEYS received\r\ndebug2: ssh_set_newkeys: mode 0\r\ndebug1: rekey in after 134217728 blocks\r\ndebug3: ssh_get_authentication_socket_path: path '/tmp/semaphore/ssh-agent-2-1707156559.sock'\r\ndebug2: get_agent_identities: ssh_agent_bind_hostkey: agent refused operation\r\ndebug1: get_agent_identities: agent returned 1 keys\r\ndebug1: Will attempt key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_rsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519 \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_xmss \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_dsa \r\ndebug2: pubkey_prepare: done\r\ndebug3: send packet: type 5\r\ndebug3: receive packet: type 7\r\ndebug1: SSH2_MSG_EXT_INFO received\r\ndebug1: kex_input_ext_info: server-sig-algs=\r\ndebug3: receive packet: type 6\r\ndebug2: service_accept: ssh-userauth\r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received\r\ndebug3: send packet: type 50\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-with-mic\r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-with-mic\r\ndebug3: authmethod_lookup gssapi-keyex\r\ndebug3: remaining preferred: hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-keyex\r\ndebug3: authmethod_lookup publickey\r\ndebug3: remaining preferred: ,publickey\r\ndebug3: authmethod_is_enabled publickey\r\ndebug1: Next authentication method: publickey\r\ndebug1: Offering public key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug3: send packet: type 50\r\ndebug2: we sent a publickey packet, wait for reply\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_rsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_xmss\r\ndebug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_dsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory\r\ndebug2: we did not send a packet, disable method\r\ndebug1: No more authentication methods to try.\r\nsemaphore@docker01.domain.de: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).",
7:09:21 PM
"unreachable": true
7:09:21 PM
}
7:09:21 PM
fatal: [icinga2.domain.de]: UNREACHABLE! => {
7:09:21 PM
"changed": false,
7:09:21 PM
"msg": "Failed to connect to the host via ssh: OpenSSH_9.3p2, OpenSSL 3.1.4 24 Oct 2023\r\ndebug1: Reading configuration data /etc/ssh/ssh_config\r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> '/home/semaphore/.ssh/known_hosts'\r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> '/home/semaphore/.ssh/known_hosts2'\r\ndebug1: auto-mux: Trying existing master\r\ndebug1: Control socket \"/tmp/semaphore/.ansible/cp/cb4e6be749\" does not exist\r\ndebug2: resolving \"icinga2.domain.de\" port 22\r\ndebug3: resolve_host: lookup icinga2.domain.de:22\r\ndebug3: ssh_connect_direct: entering\r\ndebug1: Connecting to icinga2.domain.de [192.168.10.161] port 22.\r\ndebug3: set_sock_tos: set socket 3 IP_TOS 0x48\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: fd 3 clearing O_NONBLOCK\r\ndebug1: Connection established.\r\ndebug3: timeout: 10000 ms remain after connect\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519 type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa-cert type -1\r\ndebug1: Local version string SSH-2.0-OpenSSH_9.3\r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_8.4p1 Debian-5+deb11u3\r\ndebug1: compat_banner: match: OpenSSH_8.4p1 Debian-5+deb11u3 pat OpenSSH* compat 0x04000000\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: Authenticating to icinga2.domain.de:22 as 'semaphore'\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\ndebug3: order_hostkeyalgs: no algorithms matched; accept original\r\ndebug3: send packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT sent\r\ndebug3: receive packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT received\r\ndebug2: local client KEXINIT proposal\r\ndebug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c,kex-strict-c-v00@openssh.com\r\ndebug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: zlib@openssh.com,zlib,none\r\ndebug2: compression stoc: zlib@openssh.com,zlib,none\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal\r\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com\r\ndebug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: none,zlib@openssh.com\r\ndebug2: compression stoc: none,zlib@openssh.com\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug3: kex_choose_conf: will use strict KEX ordering\r\ndebug1: kex: algorithm: curve25519-sha256\r\ndebug1: kex: host key algorithm: ssh-ed25519\r\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug3: send packet: type 30\r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY\r\ndebug3: receive packet: type 31\r\ndebug1: SSH2_MSG_KEX_ECDH_REPLY received\r\ndebug1: Server host key: ssh-ed25519 SHA256:92zlqYBrh/RUfsawatpoQp3LIXuBKMbcGf7mHegdXxQ\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\nWarning: Permanently added 'icinga2.domain.de' (ED25519) to the list of known hosts.\r\ndebug1: check_host_key: hostkey not known or explicitly trusted: disabling UpdateHostkeys\r\ndebug3: send packet: type 21\r\ndebug1: ssh_packet_send2_wrapped: resetting send seqnr 3\r\ndebug2: ssh_set_newkeys: mode 1\r\ndebug1: rekey out after 134217728 blocks\r\ndebug1: SSH2_MSG_NEWKEYS sent\r\ndebug1: expecting SSH2_MSG_NEWKEYS\r\ndebug3: receive packet: type 21\r\ndebug1: ssh_packet_read_poll2: resetting read seqnr 3\r\ndebug1: SSH2_MSG_NEWKEYS received\r\ndebug2: ssh_set_newkeys: mode 0\r\ndebug1: rekey in after 134217728 blocks\r\ndebug3: ssh_get_authentication_socket_path: path '/tmp/semaphore/ssh-agent-2-1707156559.sock'\r\ndebug2: get_agent_identities: ssh_agent_bind_hostkey: agent refused operation\r\ndebug1: get_agent_identities: agent returned 1 keys\r\ndebug1: Will attempt key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_rsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519 \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_xmss \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_dsa \r\ndebug2: pubkey_prepare: done\r\ndebug3: send packet: type 5\r\ndebug3: receive packet: type 7\r\ndebug1: SSH2_MSG_EXT_INFO received\r\ndebug1: kex_input_ext_info: server-sig-algs=\r\ndebug3: receive packet: type 6\r\ndebug2: service_accept: ssh-userauth\r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received\r\ndebug3: send packet: type 50\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-with-mic\r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-with-mic\r\ndebug3: authmethod_lookup gssapi-keyex\r\ndebug3: remaining preferred: hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-keyex\r\ndebug3: authmethod_lookup publickey\r\ndebug3: remaining preferred: ,publickey\r\ndebug3: authmethod_is_enabled publickey\r\ndebug1: Next authentication method: publickey\r\ndebug1: Offering public key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug3: send packet: type 50\r\ndebug2: we sent a publickey packet, wait for reply\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_rsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_xmss\r\ndebug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_dsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory\r\ndebug2: we did not send a packet, disable method\r\ndebug1: No more authentication methods to try.\r\nsemaphore@icinga2.domain.de: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).",
7:09:21 PM
"unreachable": true
7:09:21 PM
}
7:09:21 PM
<192.168.10.165> (255, b'', b'OpenSSH_9.3p2, OpenSSL 3.1.4 24 Oct 2023\r\ndebug1: Reading configuration data /etc/ssh/ssh_config\r\ndebug2: resolve_canonicalize: hostname 192.168.10.165 is address\r\ndebug3: expanded UserKnownHostsFile \'~/.ssh/known_hosts\' -> \'/home/semaphore/.ssh/known_hosts\'\r\ndebug3: expanded UserKnownHostsFile \'~/.ssh/known_hosts2\' -> \'/home/semaphore/.ssh/known_hosts2\'\r\ndebug1: auto-mux: Trying existing master\r\ndebug1: Control socket "/tmp/semaphore/.ansible/cp/1a71f451e2" does not exist\r\ndebug3: ssh_connect_direct: entering\r\ndebug1: Connecting to 192.168.10.165 [192.168.10.165] port 22.\r\ndebug3: set_sock_tos: set socket 3 IP_TOS 0x48\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: fd 3 clearing O_NONBLOCK\r\ndebug1: Connection established.\r\ndebug3: timeout: 10000 ms remain after connect\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519 type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa-cert type -1\r\ndebug1: Local version string SSH-2.0-OpenSSH_9.3\r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_8.4p1 Debian-5+deb11u3\r\ndebug1: compat_banner: match: OpenSSH_8.4p1 Debian-5+deb11u3 pat OpenSSH* compat 0x04000000\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: Authenticating to 192.168.10.165:22 as \'semaphore\'\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\ndebug3: order_hostkeyalgs: no algorithms matched; accept original\r\ndebug3: send packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT sent\r\ndebug3: receive packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT received\r\ndebug2: local client KEXINIT proposal\r\ndebug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c,kex-strict-c-v00@openssh.com\r\ndebug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: zlib@openssh.com,zlib,none\r\ndebug2: compression stoc: zlib@openssh.com,zlib,none\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal\r\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com\r\ndebug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: none,zlib@openssh.com\r\ndebug2: compression stoc: none,zlib@openssh.com\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug3: kex_choose_conf: will use strict KEX ordering\r\ndebug1: kex: algorithm: curve25519-sha256\r\ndebug1: kex: host key algorithm: ssh-ed25519\r\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug3: send packet: type 30\r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY\r\ndebug3: receive packet: type 31\r\ndebug1: SSH2_MSG_KEX_ECDH_REPLY received\r\ndebug1: Server host key: ssh-ed25519 SHA256:VYg5Khtns9w7VFKv9j4ciCvVpPzYIkwbzVfR2vtTWhg\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\nWarning: Permanently added \'192.168.10.165\' (ED25519) to the list of known hosts.\r\ndebug1: check_host_key: hostkey not known or explicitly trusted: disabling UpdateHostkeys\r\ndebug3: send packet: type 21\r\ndebug1: ssh_packet_send2_wrapped: resetting send seqnr 3\r\ndebug2: ssh_set_newkeys: mode 1\r\ndebug1: rekey out after 134217728 blocks\r\ndebug1: SSH2_MSG_NEWKEYS sent\r\ndebug1: expecting SSH2_MSG_NEWKEYS\r\ndebug3: receive packet: type 21\r\ndebug1: ssh_packet_read_poll2: resetting read seqnr 3\r\ndebug1: SSH2_MSG_NEWKEYS received\r\ndebug2: ssh_set_newkeys: mode 0\r\ndebug1: rekey in after 134217728 blocks\r\ndebug3: ssh_get_authentication_socket_path: path \'/tmp/semaphore/ssh-agent-2-1707156559.sock\'\r\ndebug2: get_agent_identities: ssh_agent_bind_hostkey: agent refused operation\r\ndebug1: get_agent_identities: agent returned 1 keys\r\ndebug1: Will attempt key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_rsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519 \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_xmss \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_dsa \r\ndebug2: pubkey_prepare: done\r\ndebug3: send packet: type 5\r\ndebug3: receive packet: type 7\r\ndebug1: SSH2_MSG_EXT_INFO received\r\ndebug1: kex_input_ext_info: server-sig-algs=\r\ndebug3: receive packet: type 6\r\ndebug2: service_accept: ssh-userauth\r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received\r\ndebug3: send packet: type 50\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-with-mic\r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-with-mic\r\ndebug3: authmethod_lookup gssapi-keyex\r\ndebug3: remaining preferred: hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-keyex\r\ndebug3: authmethod_lookup publickey\r\ndebug3: remaining preferred: ,publickey\r\ndebug3: authmethod_is_enabled publickey\r\ndebug1: Next authentication method: publickey\r\ndebug1: Offering public key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug3: send packet: type 50\r\ndebug2: we sent a publickey packet, wait for reply\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_rsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_xmss\r\ndebug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_dsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory\r\ndebug2: we did not send a packet, disable method\r\ndebug1: No more authentication methods to try.\r\nsemaphore@192.168.10.165: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).\r\n')
7:09:21 PM
fatal: [192.168.10.165]: UNREACHABLE! => {
7:09:21 PM
"changed": false,
7:09:21 PM
"msg": "Failed to connect to the host via ssh: OpenSSH_9.3p2, OpenSSL 3.1.4 24 Oct 2023\r\ndebug1: Reading configuration data /etc/ssh/ssh_config\r\ndebug2: resolve_canonicalize: hostname 192.168.10.165 is address\r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> '/home/semaphore/.ssh/known_hosts'\r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> '/home/semaphore/.ssh/known_hosts2'\r\ndebug1: auto-mux: Trying existing master\r\ndebug1: Control socket \"/tmp/semaphore/.ansible/cp/1a71f451e2\" does not exist\r\ndebug3: ssh_connect_direct: entering\r\ndebug1: Connecting to 192.168.10.165 [192.168.10.165] port 22.\r\ndebug3: set_sock_tos: set socket 3 IP_TOS 0x48\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: fd 3 clearing O_NONBLOCK\r\ndebug1: Connection established.\r\ndebug3: timeout: 10000 ms remain after connect\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_rsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519 type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_xmss-cert type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa type -1\r\ndebug1: identity file /home/semaphore/.ssh/id_dsa-cert type -1\r\ndebug1: Local version string SSH-2.0-OpenSSH_9.3\r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_8.4p1 Debian-5+deb11u3\r\ndebug1: compat_banner: match: OpenSSH_8.4p1 Debian-5+deb11u3 pat OpenSSH* compat 0x04000000\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: Authenticating to 192.168.10.165:22 as 'semaphore'\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\ndebug3: order_hostkeyalgs: no algorithms matched; accept original\r\ndebug3: send packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT sent\r\ndebug3: receive packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT received\r\ndebug2: local client KEXINIT proposal\r\ndebug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c,kex-strict-c-v00@openssh.com\r\ndebug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: zlib@openssh.com,zlib,none\r\ndebug2: compression stoc: zlib@openssh.com,zlib,none\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal\r\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com\r\ndebug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519\r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com\r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: none,zlib@openssh.com\r\ndebug2: compression stoc: none,zlib@openssh.com\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug3: kex_choose_conf: will use strict KEX ordering\r\ndebug1: kex: algorithm: curve25519-sha256\r\ndebug1: kex: host key algorithm: ssh-ed25519\r\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com\r\ndebug3: send packet: type 30\r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY\r\ndebug3: receive packet: type 31\r\ndebug1: SSH2_MSG_KEX_ECDH_REPLY received\r\ndebug1: Server host key: ssh-ed25519 SHA256:VYg5Khtns9w7VFKv9j4ciCvVpPzYIkwbzVfR2vtTWhg\r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory\r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory\r\nWarning: Permanently added '192.168.10.165' (ED25519) to the list of known hosts.\r\ndebug1: check_host_key: hostkey not known or explicitly trusted: disabling UpdateHostkeys\r\ndebug3: send packet: type 21\r\ndebug1: ssh_packet_send2_wrapped: resetting send seqnr 3\r\ndebug2: ssh_set_newkeys: mode 1\r\ndebug1: rekey out after 134217728 blocks\r\ndebug1: SSH2_MSG_NEWKEYS sent\r\ndebug1: expecting SSH2_MSG_NEWKEYS\r\ndebug3: receive packet: type 21\r\ndebug1: ssh_packet_read_poll2: resetting read seqnr 3\r\ndebug1: SSH2_MSG_NEWKEYS received\r\ndebug2: ssh_set_newkeys: mode 0\r\ndebug1: rekey in after 134217728 blocks\r\ndebug3: ssh_get_authentication_socket_path: path '/tmp/semaphore/ssh-agent-2-1707156559.sock'\r\ndebug2: get_agent_identities: ssh_agent_bind_hostkey: agent refused operation\r\ndebug1: get_agent_identities: agent returned 1 keys\r\ndebug1: Will attempt key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_rsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519 \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_xmss \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_dsa \r\ndebug2: pubkey_prepare: done\r\ndebug3: send packet: type 5\r\ndebug3: receive packet: type 7\r\ndebug1: SSH2_MSG_EXT_INFO received\r\ndebug1: kex_input_ext_info: server-sig-algs=\r\ndebug3: receive packet: type 6\r\ndebug2: service_accept: ssh-userauth\r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received\r\ndebug3: send packet: type 50\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-with-mic\r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-with-mic\r\ndebug3: authmethod_lookup gssapi-keyex\r\ndebug3: remaining preferred: hostbased,publickey\r\ndebug2: Unrecognized authentication method name: gssapi-keyex\r\ndebug3: authmethod_lookup publickey\r\ndebug3: remaining preferred: ,publickey\r\ndebug3: authmethod_is_enabled publickey\r\ndebug1: Next authentication method: publickey\r\ndebug1: Offering public key: RSA SHA256:Pa1Ja7oVkI1EORkH8tedugDkdTgHO5nGjCZuI6p6DyI agent\r\ndebug3: send packet: type 50\r\ndebug2: we sent a publickey packet, wait for reply\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_rsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk\r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_xmss\r\ndebug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory\r\ndebug1: Trying private key: /home/semaphore/.ssh/id_dsa\r\ndebug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory\r\ndebug2: we did not send a packet, disable method\r\ndebug1: No more authentication methods to try.\r\nsemaphore@192.168.10.165: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).",
7:09:21 PM
"unreachable": true
7:09:21 PM
}
7:09:21 PM
7:09:21 PM
PLAY RECAP *********************************************************************
7:09:21 PM
192.168.10.165 : ok=0 changed=0 unreachable=1 failed=0 skipped=0 rescued=0 ignored=0
7:09:21 PM
docker01.domain.de : ok=0 changed=0 unreachable=1 failed=0 skipped=0 rescued=0 ignored=0
7:09:21 PM
docker02.domain.de : ok=0 changed=0 unreachable=1 failed=0 skipped=0 rescued=0 ignored=0
7:09:21 PM
gitlab.domain.de : ok=0 changed=0 unreachable=1 failed=0 skipped=0 rescued=0 ignored=0
7:09:21 PM
icinga2.domain.de : ok=0 changed=0 unreachable=1 failed=0 skipped=0 rescued=0 ignored=0
7:09:21 PM
7:09:21 PM
Running playbook failed: exit status 4

This is my docker-compose.yml:

services:
  mysql:
    restart: unless-stopped
    image: mysql:latest
    hostname: mysql
    volumes:
      - /srv/docker-volumes/semaphore/mysql:/var/lib/mysql
    environment:
      MYSQL_RANDOM_ROOT_PASSWORD: 'yes'
      MYSQL_DATABASE: xxx
      MYSQL_USER: xxx
      MYSQL_PASSWORD: xxx
  semaphore:
    restart: unless-stopped
    ports:
      - 3000:3000
    image: semaphoreui/semaphore:latest
    volumes:
      - /srv/docker-volumes/semaphore/home:/etc/semaphore # config.json location
    environment:
      SEMAPHORE_DB_USER: xxx
      SEMAPHORE_DB_PASS: xxx
      SEMAPHORE_DB_HOST: mysql # for postgres, change to: postgres
      SEMAPHORE_DB_PORT: 3306 # change to 5432 for postgres
      SEMAPHORE_DB_DIALECT: mysql # for postgres, change to: postgres
      SEMAPHORE_DB: semaphore
      SEMAPHORE_PLAYBOOK_PATH: /tmp/semaphore/
      # SEMAPHORE_ADMIN_PASSWORD: changeme
      # SEMAPHORE_ADMIN_NAME: admin
      # SEMAPHORE_ADMIN_EMAIL: admin@localhost
      SEMAPHORE_ADMIN: admin
      SEMAPHORE_ACCESS_KEY_ENCRYPTION: xxx
      ANSIBLE_HOST_KEY_CHECKING: False
      SEMAPHORE_LDAP_ACTIVATED: 'no' # if you wish to use ldap, set to: 'yes' 
      SEMAPHORE_LDAP_HOST: dc01.local.example.com
      SEMAPHORE_LDAP_PORT: '636'
      SEMAPHORE_LDAP_NEEDTLS: 'yes'
      SEMAPHORE_LDAP_DN_BIND: 'uid=bind_user,cn=users,cn=accounts,dc=local,dc=shiftsystems,dc=net'
      SEMAPHORE_LDAP_PASSWORD: 'ldap_bind_account_password'
      SEMAPHORE_LDAP_DN_SEARCH: 'dc=local,dc=example,dc=com'
      SEMAPHORE_LDAP_SEARCH_FILTER: "(\u0026(uid=%s)(memberOf=cn=ipausers,cn=groups,cn=accounts,dc=local,dc=example,dc=com))"
    depends_on:
      - mysql # for postgres, change to: postgres

I hope ssh isn't the problem becauso from my seperate ansible lxc its working fine. Here some more details to my setup:

Do you need any more specific informations?

Thanks in advance, Alex

andreas-marschke commented 8 months ago 
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive
debug1: Trying private key: /home/semaphore/.ssh/id_rsa
debug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory
debug1: Trying private key: /home/semaphore/.ssh/id_ecdsa
debug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory
debug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk
debug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory
debug1: Trying private key: /home/semaphore/.ssh/id_ed25519
debug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory
debug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk
debug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory
debug1: Trying private key: /home/semaphore/.ssh/id_xmss
debug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory
debug1: Trying private key: /home/semaphore/.ssh/id_dsa
debug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory

Looks like it was trying to find the default ssh keys to connect to the server. A fix might be deploying the keys as part of the project repository as vault encrypted files.

You could review Ansibles handling of SSH Connections here: https://docs.ansible.com/ansible/9/collections/ansible/builtin/ssh_connection.html#ssh-connection

If you are in control of the registry you're deploying the container from you can also simply "build" your own container out of the semaphore image and add the keys to the new container image.

This is just to say that there are several ways to resolve this, none of which, technically are a bug in Semaphore, but one of the wrinkles you will have to work through when using one of the more popular deployment configurations for the product.

cc @fiftin IMO this is something that will need a whole damn lot of education, I have a google doc I'm trying to refine to discuss this topic and some others when it comes to the intersection of Semaphore and Ansible. Where would be best to contribute these to the project?

e36Alex commented 8 months ago

@andreas-marschke , thank you very much for your answer - even if I haven't fully understood the problem and, above all, the cause.

What would I have to do to use the semaphore key store?

andreas-marschke commented 8 months ago

Ah did you try to use the AccessKeys you can define in Semaphore?

e36Alex commented 8 months ago

@andreas-marschke , here a few more informations of my configuration:

In Semaphore i added two ssh-keys (ansible as ansible user; alexander for gitlab-repo, which works fine):

image

At the environment settings i set "default" als default environment with the following settings:

image

And this is the job template with the environment "default":

image
e36Alex commented 7 months ago

Nobody an idea?

tboerger commented 7 months ago

I simply haven't spent the time to reproduce your problem so far.

bodzio4749 commented 7 months ago

I was fighting the issue of SSH access using the docker container until I (think) figured it out. I spent a long time finally figuring out that a lot of problems are related to SSH USER and host PORT passed by semaphore. The least complicated (and probably safer) is to use inventory settings (ansible_user and ansible_port are your friends). In a normal host environment, one can overcome these issues by .ssh/config settings, but inside docker, it is not manageable. For the life of me, I have no idea why the environment has to run as "root" and hard-coded "1001" in dockerfile instead of simple UID and GUID assignments (which are ignored). My next step is to deal with this.

e36Alex commented 7 months ago

@bodzio4749 , thanks for your reply!

I added this to the hosts in the ansible hosts file, but i still get the same error. ansible_user=ansible ansible_ssh_common_args='-o StrictHostKeyChecking=no'

Is there also a problem with the ssh-key in docker setup? I would like to avoid writing the passwords to the hosts file.

bodzio4749 commented 7 months ago

Oh yes. I may be a newbee in the Linux world but I have learned some tricks to survive on all host operations. With Docker, I have discovered, it is a different game, which I am trying to learn. Ansible adds more complexity to the equation. DNS resolution + SSH config settings with ansible inventory hostnames can be a tricky problem. I have one script that runs perfectly inside a regular VM server. I am trying to migrate it to Semaphore and discovered that I cannot count on `'rsync' being present in the image. I am now trying to fix the problem and create my own version of the image.

From what I see in your trace, semaphore tries to connect with a user "none". Obviously you have a problem. It is related to ssh_user / ansible_ssy_user missing in the configuration. Here is how I fixed it.

  1. I use two inventory files. One for all servers that run on the SSH default port 22, which you do not have to worry about. The second, which only includes two connections in addition to the user id (ansible_user, ssh_user) specifies ansible_port. Oh, you also need to identify/add an important variable - ansible_connection=ssh. All three can give you the connection headaches.

  2. I have learned a lesson by dealing with ssh connections and Semaphore. Keeping a SINGLE user name for all servers targetted by any automation apps like Semaphore makes things MUCH EASIER. The same goes for SSH keys. Having different ssh ports is a headache enough.

I hope this helps you somewhat. Good luck.

fiftin commented 7 months ago

Hi @e36Alex

Our docker container sucks. I don't understand how it works.

bodzio4749 commented 7 months ago

I knew I could fix the access problems that are generated by the hard code uid 1001 for semaphore, but literally right now I just discovered that the scheduled jobs will never run inside the docker as the corn daemon is not installed there (from what I can tell).
I love this project, but running it inside the docker seems VERY painful. I believe that going the Proxmox or Ubuntu LXC route is going to be much less stressful. :)

e36Alex commented 7 months ago

Thanks for your replies. I think I will try it with a Proxmox vm - hoped, I can avoid a separate vm. Would be great, if semaphore runs stable in docker in future.

bodzio4749 commented 7 months ago

I just restored the VM. Tomorrow I will try to LXC container in Proxmox. I will see if this may be a better way.

e36Alex commented 7 months ago

I just restored the VM. Tomorrow I will try to LXC container in Proxmox. I will see if this may be a better way.

Ansible itself is running fine in an LXC. My actual "productive" instance is running in an LXC. But i wanted to move it over to a leightweight docker container, but there is no official ansible docker image. For me semaphore docker installation seemed like a two in one: ansible in docker plus a charming GUI.

e36Alex commented 7 months ago

I had another look at my logs and maybe adding the ansible_user to the hostfile made a difference: It seems like now the ansible_user ansible was used at the run:

    \r\ndebug1: No more authentication methods to try.
    \r\nansible@docker01.domain.de: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).",

But it seems like the ssh-key was not found or ignored:

9:33:18 PM "msg": "Failed to connect to the host via ssh: OpenSSH_9.3p2, OpenSSL 3.1.4 24 Oct 2023 \r\ndebug1: Reading configuration data /etc/ssh/ssh_config \r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> '/home/semaphore/.ssh/known_hosts' \r\ndebug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> '/home/semaphore/.ssh/known_hosts2' \r\ndebug1: auto-mux: Trying existing master \r\ndebug1: Control socket \"/tmp/semaphore/.ansible/cp/0d43d7fb0a\" does not exist \r\ndebug2: resolving \"docker01.domain.de\" port 22 \r\ndebug3: resolve_host: lookup docker01.domain.de:22 \r\ndebug3: ssh_connect_direct: entering \r\ndebug1: Connecting to docker01.domain.de [192.168.10.165] port 22. \r\ndebug3: set_sock_tos: set socket 3 IP_TOS 0x48 \r\ndebug2: fd 3 setting O_NONBLOCK \r\ndebug1: fd 3 clearing O_NONBLOCK \r\ndebug1: Connection established. \r\ndebug3: timeout: 10000 ms remain after connect \r\ndebug1: identity file /home/semaphore/.ssh/id_rsa type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_rsa-cert type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa-cert type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_ecdsa_sk-cert type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519 type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519-cert type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_ed25519_sk-cert type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_xmss type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_xmss-cert type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_dsa type -1 \r\ndebug1: identity file /home/semaphore/.ssh/id_dsa-cert type -1 \r\ndebug1: Local version string SSH-2.0-OpenSSH_9.3 \r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_8.4p1 Debian-5+deb11u3 \r\ndebug1: compat_banner: match: OpenSSH_8.4p1 Debian-5+deb11u3 pat OpenSSH* compat 0x04000000 \r\ndebug2: fd 3 setting O_NONBLOCK \r\ndebug1: Authenticating to docker01.domain.de:22 as 'ansible' \r\ndebug3: record_hostkey: found key type ED25519 in file /home/semaphore/.ssh/known_hosts:1 \r\ndebug3: load_hostkeys_file: loaded 1 keys from docker01.domain.de \r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory \r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory \r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory \r\ndebug3: order_hostkeyalgs: have matching best-preference key type ssh-ed25519-cert-v01@openssh.com, using HostkeyAlgorithms verbatim \r\ndebug3: send packet: type 20 \r\ndebug1: SSH2_MSG_KEXINIT sent \r\ndebug3: receive packet: type 20 \r\ndebug1: SSH2_MSG_KEXINIT received \r\ndebug2: local client KEXINIT proposal \r\ndebug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c,kex-strict-c-v00@openssh.com \r\ndebug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256 \r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com \r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com \r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 \r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 \r\ndebug2: compression ctos: zlib@openssh.com,zlib,none\r\ndebug2: compression stoc: zlib@openssh.com,zlib,none \r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal \r\ndebug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,kex-strict-s-v00@openssh.com \r\ndebug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519 \r\ndebug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com \r\ndebug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com \r\ndebug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 \r\ndebug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 \r\ndebug2: compression ctos: none,zlib@openssh.com \r\ndebug2: compression stoc: none,zlib@openssh.com \r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug3: kex_choose_conf: will use strict KEX ordering \r\ndebug1: kex: algorithm: curve25519-sha256 \r\ndebug1: kex: host key algorithm: ssh-ed25519 \r\ndebug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com \r\ndebug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: compression: zlib@openssh.com \r\ndebug3: send packet: type 30 \r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY \r\ndebug3: receive packet: type 31 \r\ndebug1: SSH2_MSG_KEX_ECDH_REPLY received \r\ndebug1: Server host key: ssh-ed25519 SHA256:xxxxxxxxxxxxxxxxxxxxxx \r\ndebug3: record_hostkey: found key type ED25519 in file /home/semaphore/.ssh/known_hosts:1 \r\ndebug3: load_hostkeys_file: loaded 1 keys from docker01.domain.de \r\ndebug1: load_hostkeys: fopen /home/semaphore/.ssh/known_hosts2: No such file or directory \r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts: No such file or directory \r\ndebug1: load_hostkeys: fopen /etc/ssh/ssh_known_hosts2: No such file or directory \r\ndebug1: Host 'docker01.domain.de' is known and matches the ED25519 host key. \r\ndebug1: Found key in /home/semaphore/.ssh/known_hosts:1 \r\ndebug3: send packet: type 21 \r\ndebug1: ssh_packet_send2_wrapped: resetting send seqnr 3 \r\ndebug2: ssh_set_newkeys: mode 1 \r\ndebug1: rekey out after 134217728 blocks \r\ndebug1: SSH2_MSG_NEWKEYS sent \r\ndebug1: expecting SSH2_MSG_NEWKEYS \r\ndebug3: receive packet: type 21 \r\ndebug1: ssh_packet_read_poll2: resetting read seqnr 3 \r\ndebug1: SSH2_MSG_NEWKEYS received \r\ndebug2: ssh_set_newkeys: mode 0 \r\ndebug1: rekey in after 134217728 blocks \r\ndebug3: ssh_get_authentication_socket_path: path '/tmp/semaphore/ssh-agent-2-1711312396.sock' \r\ndebug2: get_agent_identities: ssh_agent_bind_hostkey: agent refused operation \r\ndebug1: get_agent_identities: agent returned 1 keys \r\ndebug1: Will attempt key: RSA SHA256:xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx agent \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_rsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519 \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_xmss \r\ndebug1: Will attempt key: /home/semaphore/.ssh/id_dsa \r\ndebug2: pubkey_prepare: done \r\ndebug3: send packet: type 5 \r\ndebug3: receive packet: type 7 \r\ndebug1: SSH2_MSG_EXT_INFO received \r\ndebug1: kex_input_ext_info: server-sig-algs= \r\ndebug3: receive packet: type 6 \r\ndebug2: service_accept: ssh-userauth \r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received \r\ndebug3: send packet: type 50 \r\ndebug3: receive packet: type 51 \r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive \r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive \r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey \r\ndebug3: authmethod_lookup gssapi-with-mic \r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey \r\ndebug2: Unrecognized authentication method name: gssapi-with-mic \r\ndebug3: authmethod_lookup gssapi-keyex \r\ndebug3: remaining preferred: hostbased,publickey \r\ndebug2: Unrecognized authentication method name: gssapi-keyex \r\ndebug3: authmethod_lookup publickey \r\ndebug3: remaining preferred: ,publickey \r\ndebug3: authmethod_is_enabled publickey \r\ndebug1: Next authentication method: publickey \r\ndebug1: Offering public key: RSA SHA256:xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx agent \r\ndebug3: send packet: type 50 \r\ndebug2: we sent a publickey packet, wait for reply \r\ndebug3: receive packet: type 51 \r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive \r\ndebug1: Trying private key: /home/semaphore/.ssh/id_rsa \r\ndebug3: no such identity: /home/semaphore/.ssh/id_rsa: No such file or directory \r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa \r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa: No such file or directory \r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ecdsa_sk \r\ndebug3: no such identity: /home/semaphore/.ssh/id_ecdsa_sk: No such file or directory \r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519 \r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519: No such file or directory \r\ndebug1: Trying private key: /home/semaphore/.ssh/id_ed25519_sk \r\ndebug3: no such identity: /home/semaphore/.ssh/id_ed25519_sk: No such file or directory \r\ndebug1: Trying private key: /home/semaphore/.ssh/id_xmss \r\ndebug3: no such identity: /home/semaphore/.ssh/id_xmss: No such file or directory \r\ndebug1: Trying private key: /home/semaphore/.ssh/id_dsa \r\ndebug3: no such identity: /home/semaphore/.ssh/id_dsa: No such file or directory \r\ndebug2: we did not send a packet, disable method \r\ndebug1: No more authentication methods to try. \r\nansible@docker01.domain.de: Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password,keyboard-interactive).",

Edit: I made another test with ansible_user and ansilbe_password in the host file and this way works. But i would like to use the semaphore keystore instead - are there any hints in my logs what i did wrong?

e36Alex commented 7 months ago

Ok, i think i found a workaround:

I mounted the id_rsa of my ansible user like in this post: https://github.com/ansible-semaphore/semaphore/discussions/847#discussioncomment-8322844

Also i added a ansible.cfg to my repo with default remote_user (ansilbe) so that i dont have to set the user to each host in the hosts file. Now the playbook is running without errors.

Even if the workaround does its job, it would be nice, if the key store were useable correctly in near future!

fiftin commented 6 months ago

Hi @e36Alex,

I just installed Semaphore v2.9.64 from Docker Hub.

I added SSH key with Passphrase. And successfully connected to the server. I need details of your issue.

fiftin commented 6 months ago

I see the way - disable host key checking in Docker container by default.

fiftin commented 6 months ago

Anyone know how this did in AWX? I mean host key problem.

e36Alex commented 6 months ago

I see the way - disable host key checking in Docker container by default.

Thanks for your reply! Do you mean disabling in docker-compose.yml or in ansible.cfg?

bodzio4749 commented 6 months ago

I have finally got my backup playbook working under semaphore. Everything worked fine in my regular ansble VM, but inside docker container ... I had problems with ssh login names and ports, but all was easy to solve by using the inventory files. The real difficulty comes when one needs to run rsync (I had to add it in my custom image) or scp, both running using command or shell modules on the local host (using it as a middle man in backup process; One cannot fetch files directly between external server A to internal server B from what I hear).
The way I solved it is to generate known_hosts file using a playbook and sticking the output in the /home/semaphore/.ssh directory. I also created ssh config file in the same directory. It solves ALL kinds of problems (user id, port no, etc..) . The rsync playbook task still complained about the invalid keys, so adding parameter:

rsync -e "ssh -o StrictHostKeyChecking=no" ....

solved the problem. My biggest greef with semaphore is my lack of understanding how the runner gets its parameters for ssh connections. It seems that sometimes it is /www/semaphore and sometimes it is /tmp/semaphore ...

RustinCassiem commented 6 months ago

I had the same issue and fixed it just by adding this to my Environment image

zzecool commented 5 months ago

I had the same issue and fixed it just by adding this to my Environment image

This should be pointed in the README !!

Or even better if the install is in a container to get autoenabled by default. I also spend hours thinking that maybe the keys were the problem or the sudo pass or or, just to try and run ssh from inside the container only to find that the fingerprint was not accepted...

tboerger commented 5 months ago

Recent versions is the combustible got this ansible config in /tmp/semaphore https://github.com/semaphoreui/semaphore/blob/develop/deployment/docker/server/ansible.cfg, that way it should be already set properly.

If you are overwriting the directory this wouldn't work anymore.

tboerger commented 5 months ago

Maybe it could make sense to copy the ansible config into /usr/share/semaphore and copy it to the ansible config path if the file doesn't exist within the server wrapper.

zzecool commented 5 months ago

I literaly made a fresh install today using image: semaphoreui/semaphore:latest and it didnt work.

Is the SEMAPHORE_PLAYBOOK_PATH: /tmp/semaphore/ has anything to do with this ? Does the type of repository play a role ?

agarzon-orangerine commented 4 months ago

Having the same issue, a fresh installation from : semaphoreui/semaphore:latest and does not work:

Failed to install inventory: listening on socket "/tmp/semaphore/ssh-agent-3-1716905006.sock": listen unix /tmp/semaphore/ssh-agent-3-1716905006.sock: bind: address already in use

fiftin commented 4 months ago

@agarzon-orangerine try v2.9.113-beta

e36Alex commented 4 months ago

Since a few days (update of the image), my playbooks dont run anymore. The ansible user switched from ansible@.... to semaphore@... I did not change something at the environment.

Where can i set the default ansible user, in spite of the host file? I tried this in the extra vars, the evironment vars and in the ansible.cfg, but no change:

{ "ANSIBLE_USER": "ansible", "REMOTE_USER": "ansible", "ANSIBLE_HOST_KEY_CHECKING": false }

When i set the ansible user in the host file to ansible, then the ssh-key isnt accepted any more by the servers. But there wasnt a change, too. I map the id_rsa from local user to the contailer through docker:

volumes:
  - /srv/docker-volumes/semaphore/home:/etc/semaphore # config.json location
  - /srv/docker-volumes/semaphore/lib:/var/lib/semaphore 
  - /home/ansible/.ssh/id_rsa:/home/ansible/.ssh/id_rsa
agarzon-orangerine commented 4 months ago

@agarzon-orangerine try v2.9.113-beta

That's the only version that shows a different error, now the issue is related with : https://github.com/semaphoreui/semaphore/issues/2079