Open 573 opened 2 days ago
-
With ~/.ssh/environment
PATH=/data/data/com.termux.nix/files/usr/etc/profiles/per-user/nix-on-droid/bin:"$PATH"
and PermitUserEnvironment yes
in sshd_config both on deploy target I get thus far that a nix-store --serve --write
process is spawned there by nix shell nixpkgs#deploy-rs --command deploy -s .#sams9__x86_64-linux -- --impure
.
Other than that nothing more is happening:
$ nix shell nixpkgs#deploy-rs --command deploy -s .#sams9__x86_64-linux -- --impure -L
🚀 ℹ️ [deploy] [INFO] Evaluating flake in .
🚀 ℹ️ [deploy] [INFO] The following profiles are going to be deployed:
[sams9__x86_64-linux.system]
user = "nix-on-droid"
ssh_user = "nix-on-droid"
path = "/nix/store/fy1j25k13vckdk5qpr9xap8akawwdnna-activatable-tealdeer-1.6.1"
hostname = "smartphone"
ssh_opts = ["-v", "-oControlMaster=no"]
🚀 ℹ️ [deploy] [INFO] Building profile `system` for node `sams9__x86_64-linux`
activatable-tealdeer> created 4 symlinks in user environment
🚀 ℹ️ [deploy] [INFO] Copying profile `system` to node `sams9__x86_64-linux`
OpenSSH_9.7p1, OpenSSL 3.0.14 4 Jun 2024
debug1: Reading configuration data /home/nixos/.ssh/config
debug1: Reading configuration data /home/nixos/.ssh/config.d/morehosts
debug1: /home/nixos/.ssh/config.d/morehosts line 15: Applying options for smartphone
debug1: /home/nixos/.ssh/config line 4: Applying options for *
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 5: Applying options for *
debug1: Control socket "/home/nixos/.ssh/socket-nix-on-droid@nn.nn.nn.nn-8022" does not exist
debug1: Connecting to nn.nn.nn.nn [nn.nn.nn.nn] port 8022.
debug1: fd 3 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /home/nixos/.ssh/id_ed25519 type 3
debug1: identity file /home/nixos/.ssh/id_ed25519-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_9.7
debug1: Remote protocol version 2.0, remote software version OpenSSH_9.7
debug1: compat_banner: match: OpenSSH_9.7 pat OpenSSH* compat 0x04000000
debug1: Authenticating to nn.nn.nn.nn:8022 as 'nix-on-droid'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: sntrup761x25519-sha512@openssh.com
debug1: kex: host key algorithm: ssh-ed25519
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: zlib@openssh.com
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: zlib@openssh.com
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: SSH2_MSG_KEX_ECDH_REPLY received
debug1: Server host key: ssh-ed25519 SHA256:XpLkjWVrFMqfJPKqLEgpwFBgUTVb/a3zyL9czQPMJS8
debug1: checking without port identifier
Warning: Permanently added '[nn.nn.nn.nn]:8022' (ED25519) to the list of known hosts.
debug1: ssh_packet_send2_wrapped: resetting send seqnr 3
debug1: rekey out after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: Sending SSH2_MSG_EXT_INFO
debug1: expecting SSH2_MSG_NEWKEYS
debug1: ssh_packet_read_poll2: resetting read seqnr 3
debug1: SSH2_MSG_NEWKEYS received
debug1: rekey in after 134217728 blocks
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_ext_info_client_parse: server-sig-algs=<ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256>
debug1: kex_ext_info_check_ver: publickey-hostbound@openssh.com=<0>
debug1: kex_ext_info_check_ver: ping@openssh.com=<0>
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_ext_info_client_parse: server-sig-algs=<ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256>
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug1: Next authentication method: publickey
debug1: get_agent_identities: bound agent to hostkey
debug1: get_agent_identities: ssh_fetch_identitylist: agent contains no identities
debug1: Will attempt key: /home/nixos/.ssh/id_ed25519 ED25519 SHA256:UWqCm7Zsk2o+NJEpFp/0Z9mVzGUEXygGe79EGxa2kLg explicit
debug1: Offering public key: /home/nixos/.ssh/id_ed25519 ED25519 SHA256:UWqCm7Zsk2o+NJEpFp/0Z9mVzGUEXygGe79EGxa2kLg explicit
debug1: Server accepts key: /home/nixos/.ssh/id_ed25519 ED25519 SHA256:UWqCm7Zsk2o+NJEpFp/0Z9mVzGUEXygGe79EGxa2kLg explicit
debug1: Enabling compression at level 6.
Authenticated to nn.nn.nn.nn ([nn.nn.nn.nn]:8022) using "publickey".
debug1: channel 0: new session [client-session] (inactive timeout: 0)
debug1: Requesting no-more-sessions@openssh.com
Couldn't execute bash -c "echo started": No such file or directory
debug1: Entering interactive session.
debug1: pledge: exec
debug1: client_input_global_request: rtype hostkeys-00@openssh.com want_reply 0
debug1: Remote: /data/data/com.termux.nix/files/home/.ssh/authorized_keys:2: key options: agent-forwarding port-forwarding pty user-rc x11-forwarding
debug1: Remote: /data/data/com.termux.nix/files/home/.ssh/authorized_keys:2: key options: agent-forwarding port-forwarding pty user-rc x11-forwarding
debug1: Sending environment.
debug1: channel 0: setting env LANG = "en_US.UTF-8"
debug1: channel 0: setting env LC_ADDRESS = "en_US.UTF-8"
debug1: channel 0: setting env LC_MEASUREMENT = "de_DE.UTF-8"
debug1: channel 0: setting env LC_MONETARY = "en_US.UTF-8"
debug1: channel 0: setting env LC_NAME = "en_US.UTF-8"
debug1: channel 0: setting env LC_PAPER = "de_DE.UTF-8"
debug1: channel 0: setting env LC_TELEPHONE = "en_US.UTF-8"
debug1: Sending command: nix-store --serve --write
Repeating deploy
states:
$ nix shell nixpkgs#deploy-rs --command deploy -s .#sams9__x86_64-linux -- --impure
🚀 ℹ️ [deploy] [INFO] Evaluating flake in .
🚀 ℹ️ [deploy] [INFO] The following profiles are going to be deployed:
[sams9__x86_64-linux.system]
user = "nix-on-droid"
ssh_user = "nix-on-droid"
path = "/nix/store/0bzhbry0rjf10c0mw3pw532ncfrxp73z-activatable-ipfetch-unstable-2022-03-24"
hostname = "smartphone"
ssh_opts = ["-v"]
🚀 ℹ️ [deploy] [INFO] Building profile `system` for node `sams9__x86_64-linux`
🚀 ℹ️ [deploy] [INFO] Copying profile `system` to node `sams9__x86_64-linux`
OpenSSH_9.7p1, OpenSSL 3.0.14 4 Jun 2024
debug1: Reading configuration data /home/nixos/.ssh/config
debug1: Reading configuration data /home/nixos/.ssh/config.d/morehosts
debug1: /home/nixos/.ssh/config.d/morehosts line 15: Applying options for smartphone
debug1: /home/nixos/.ssh/config line 4: Applying options for *
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 5: Applying options for *
debug1: auto-mux: Trying existing master at '/home/nixos/.ssh/socket-nix-on-droid@nn.nn.nn.nn-8022'
debug1: multiplexing control connection
debug1: channel 1: new mux-control [mux-control] (inactive timeout: 0)
debug1: multiplexing control connection
debug1: channel 2: new mux-control [mux-control] (inactive timeout: 0)
debug1: channel 3: new session [client-session] (inactive timeout: 0)
debug1: channel 2: free: mux-control, nchannels 4
#1 mux-control (t16 [mux-control] r3 i0/0 o0/0 e[closed]/0 fd 5/5/-1 sock 5 cc -1 io 0x00/0x00)
#2 mux-control (t16 [mux-control] nr0 i3/0 o3/0 e[closed]/0 fd 6/6/-1 sock 6 cc -1 io 0x00/0x00)
#3 client-session (t3 [session] nr0 i0/0 o0/0 e[write]/0 fd 7/8/9 sock -1 cc 1 io 0x00/0x00)
debug1: Sending environment.
debug1: channel 3: setting env LANG = "en_US.UTF-8"
debug1: channel 3: setting env LC_ADDRESS = "en_US.UTF-8"
debug1: channel 3: setting env LC_MEASUREMENT = "de_DE.UTF-8"
debug1: channel 3: setting env LC_MONETARY = "en_US.UTF-8"
debug1: channel 3: setting env LC_NAME = "en_US.UTF-8"
debug1: channel 3: setting env LC_PAPER = "de_DE.UTF-8"
debug1: channel 3: setting env LC_TELEPHONE = "en_US.UTF-8"
debug1: Sending command: nix-store --serve --write
debug1: mux_client_request_session: master session id: 3
debug1: channel 1: free: mux-control, nchannels 3
#1 mux-control (t16 [mux-control] nr0 i3/0 o3/0 e[closed]/0 fd 5/5/-1 sock 5 cc -1 io 0x00/0x00)
#3 client-session (t4 [session] r0 i3/0 o3/0 e[write]/0 fd -1/-1/9 sock -1 cc -1 io 0x00/0x00)
🚀 ℹ️ [deploy] [INFO] Activating profile `system` for node `sams9__x86_64-linux`
🚀 ℹ️ [deploy] [INFO] Creating activation waiter
OpenSSH_9.7p1, OpenSSL 3.0.14 4 Jun 2024
debug1: Reading configuration data /home/nixos/.ssh/config
debug1: Reading configuration data /home/nixos/.ssh/config.d/morehosts
debug1: /home/nixos/.ssh/config.d/morehosts line 15: Applying options for smartphone
debug1: /home/nixos/.ssh/config line 4: Applying options for *
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 5: Applying options for *
debug1: auto-mux: Trying existing master at '/home/nixos/.ssh/socket-nix-on-droid@nn.nn.nn.nn-8022'
debug1: multiplexing control connection
debug1: channel 1: new mux-control [mux-control] (inactive timeout: 0)
debug1: channel 2: new session [client-session] (inactive timeout: 0)
OpenSSH_9.7p1, OpenSSL 3.0.14 4 Jun 2024
debug1: Reading configuration data /home/nixos/.ssh/config
debug1: Reading configuration data /home/nixos/.ssh/config.d/morehosts
debug1: /home/nixos/.ssh/config.d/morehosts line 15: Applying options for smartphone
debug1: /home/nixos/.ssh/config line 4: Applying options for *
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 5: Applying options for *
debug1: auto-mux: Trying existing master at '/home/nixos/.ssh/socket-nix-on-droid@nn.nn.nn.nn-8022'
debug1: multiplexing control connection
debug1: channel 4: new mux-control [mux-control] (inactive timeout: 0)
debug1: channel 5: new session [client-session] (inactive timeout: 0)
debug1: Sending environment.
debug1: channel 2: setting env LC_ADDRESS = "en_US.UTF-8"
debug1: channel 2: setting env LC_NAME = "en_US.UTF-8"
debug1: channel 2: setting env LC_MONETARY = "en_US.UTF-8"
debug1: channel 2: setting env LC_PAPER = "de_DE.UTF-8"
debug1: channel 2: setting env LANG = "en_US.UTF-8"
debug1: channel 2: setting env LC_TELEPHONE = "en_US.UTF-8"
debug1: channel 2: setting env LC_MEASUREMENT = "de_DE.UTF-8"
debug1: Sending command: /nix/store/0bzhbry0rjf10c0mw3pw532ncfrxp73z-activatable-ipfetch-unstable-2022-03-24/activate-rs wait '/nix/store/0bzhbry0rjf10c0mw3pw532ncfrxp73z-activatable-ipfetch-unstable-2022-03-24' --temp-path '/tmp'
debug1: Sending environment.
debug1: channel 5: setting env LC_ADDRESS = "en_US.UTF-8"
debug1: channel 5: setting env LC_NAME = "en_US.UTF-8"
debug1: channel 5: setting env LC_MONETARY = "en_US.UTF-8"
debug1: channel 5: setting env LC_PAPER = "de_DE.UTF-8"
debug1: channel 5: setting env LANG = "en_US.UTF-8"
debug1: channel 5: setting env LC_TELEPHONE = "en_US.UTF-8"
debug1: channel 5: setting env LC_MEASUREMENT = "de_DE.UTF-8"
debug1: Sending command: /nix/store/0bzhbry0rjf10c0mw3pw532ncfrxp73z-activatable-ipfetch-unstable-2022-03-24/activate-rs activate '/nix/store/0bzhbry0rjf10c0mw3pw532ncfrxp73z-activatable-ipfetch-unstable-2022-03-24' --profile-user nix-on-droid --profile-name system --temp-path '/tmp' --confirm-timeout 30 --magic-rollback --auto-rollback
debug1: mux_client_request_session: master session id: 2
debug1: mux_client_request_session: master session id: 5
debug1: client_input_channel_req: channel 3 rtype exit-status reply 0
debug1: client_input_channel_req: no sink for exit-status on channel 3
debug1: channel 3: free: client-session, nchannels 6
#1 mux-control (t16 [mux-control] r2 i0/0 o0/0 e[closed]/0 fd 5/5/-1 sock 5 cc -1 io 0x01/0x00)
#2 client-session (t4 [session] r1 i0/0 o0/0 e[write]/0 fd 6/7/8 sock -1 cc 1 io 0x00/0x00)
#3 client-session (t4 [session] r0 i3/0 o3/0 e[write]/0 fd -1/-1/9 sock -1 cc -1 io 0x00/0x00)
#4 mux-control (t16 [mux-control] r5 i0/0 o0/0 e[closed]/0 fd 10/10/-1 sock 10 cc -1 io 0x00/0x00)
#5 client-session (t4 [session] r2 i0/0 o0/0 e[write]/0 fd 11/12/13 sock -1 cc 4 io 0x00/0x00)
debug1: client_input_channel_req: channel 2 rtype exit-signal reply 0
debug1: channel 2: free: client-session, nchannels 5
#1 mux-control (t16 [mux-control] nr0 i3/0 o1/0 e[closed]/0 fd 5/5/-1 sock 5 cc -1 io 0x01/0x00)
#2 client-session (t4 [session] r1 i3/0 o3/0 e[write]/0 fd -1/-1/8 sock -1 cc -1 io 0x00/0x00)
#4 mux-control (t16 [mux-control] r5 i0/0 o0/0 e[closed]/0 fd 10/10/-1 sock 10 cc -1 io 0x00/0x00)
#5 client-session (t4 [session] r2 i3/0 o0/0 e[write]/0 fd -1/12/13 sock -1 cc 4 io 0x00/0x00)
debug1: channel 1: free: mux-control, nchannels 4
#1 mux-control (t16 [mux-control] nr0 i3/0 o3/0 e[closed]/0 fd 5/5/-1 sock 5 cc -1 io 0x00/0x00)
#4 mux-control (t16 [mux-control] r5 i0/0 o0/0 e[closed]/0 fd 10/10/-1 sock 10 cc -1 io 0x00/0x00)
#5 client-session (t4 [session] r2 i3/0 o0/0 e[write]/0 fd -1/12/13 sock -1 cc 4 io 0x00/0x00)
🚀 ❌ [deploy] [ERROR] Waiting over SSH resulted in a bad exit code: Some(255)
🚀 ℹ️ [deploy] [INFO] Revoking previous deploys
🚀 ❌ [deploy] [ERROR] Deployment to node sams9__x86_64-linux failed, rolled back to previous generation
Related #226
Related #290, would it be possible to support what https://github.com/NixOS/nix/issues/8292#issuecomment-1536230370 suggests, via
ssh_opts
probably ?This way non-NixOS targets could more easily benefit of https://github.com/serokell/deploy-rs, i. e. :
vs. (without PATH set to
/etc/profiles/per-user/nix-on-droid/bin/
for ssh, redacted log bits)