Re: ssh configuration on builders [Re: [all] builder queue problem]
On Mon, 01 Jul 2024, Jakub Bogusz wrote: > openssh 9.8p1 dropped DSA keys support by default (could be brought back > by --enable-dsa-keys), so "+ssh_dss" (which apparently exists in current > configuration) became invalid. > > So either these options should be removed from builder configuration or > DSA keys support restored in openssh.spec. Disabled DSA on ep09. > On Mon, Jul 01, 2024 at 05:10:17PM +, PLD all builder wrote: > > there were problems sending files from queue > > /home/pld/builderth/pld-builder.new/spool/ftp: > > problems: > > [src: > > /home/pld/builderth/pld-builder.new/spool/ftp/3f092c05-a1fe-410a-adca-148f6352e974] > > > > Executing: program /usr/bin/ssh host ep09.pld-linux.org, user pldth, > > command sftp > > OpenSSH_9.8p1, OpenSSL 3.3.1 4 Jun 2024 > > debug1: Reading configuration data /etc/ssh/ssh_config > > debug1: /etc/ssh/ssh_config line 55: Applying options for * > > /etc/ssh/ssh_config line 65: Bad key types '+ssh-dss'. > > /etc/ssh/ssh_config line 66: Bad key types '+ssh-dss'. > > /etc/ssh/ssh_config: terminating, 2 bad configuration options > > scp: Connection closed [...] -- Jan Rękorajski| PLD/Linux SysAdm | bagginspld-linux.org | http://www.pld-linux.org/ ___ pld-devel-en mailing list pld-devel-en@lists.pld-linux.org http://lists.pld-linux.org/mailman/listinfo/pld-devel-en
ssh configuration on builders [Re: [all] builder queue problem]
openssh 9.8p1 dropped DSA keys support by default (could be brought back by --enable-dsa-keys), so "+ssh_dss" (which apparently exists in current configuration) became invalid. So either these options should be removed from builder configuration or DSA keys support restored in openssh.spec. On Mon, Jul 01, 2024 at 05:10:17PM +, PLD all builder wrote: > there were problems sending files from queue > /home/pld/builderth/pld-builder.new/spool/ftp: > problems: > [src: > /home/pld/builderth/pld-builder.new/spool/ftp/3f092c05-a1fe-410a-adca-148f6352e974] > > Executing: program /usr/bin/ssh host ep09.pld-linux.org, user pldth, command > sftp > OpenSSH_9.8p1, OpenSSL 3.3.1 4 Jun 2024 > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: /etc/ssh/ssh_config line 55: Applying options for * > /etc/ssh/ssh_config line 65: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config line 66: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config: terminating, 2 bad configuration options > scp: Connection closed > > [src: > /home/pld/builderth/pld-builder.new/spool/ftp/d87c4b67-5928-4a38-a62c-ff51f3e968a0] > > Executing: program /usr/bin/ssh host ep09.pld-linux.org, user pldth, command > sftp > OpenSSH_9.8p1, OpenSSL 3.3.1 4 Jun 2024 > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: /etc/ssh/ssh_config line 55: Applying options for * > /etc/ssh/ssh_config line 65: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config line 66: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config: terminating, 2 bad configuration options > scp: Connection closed > > [src: > /home/pld/builderth/pld-builder.new/spool/ftp/bd8c22ad-70ad-4a80-83f0-dfa0deb2d425] > > Executing: program /usr/bin/ssh host ep09.pld-linux.org, user pldth, command > sftp > OpenSSH_9.8p1, OpenSSL 3.3.1 4 Jun 2024 > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: /etc/ssh/ssh_config line 55: Applying options for * > /etc/ssh/ssh_config line 65: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config line 66: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config: terminating, 2 bad configuration options > scp: Connection closed > > [src: > /home/pld/builderth/pld-builder.new/spool/ftp/f0fba842-a9ad-4361-800b-aa21fe6b419b] > > Executing: program /usr/bin/ssh host ep09.pld-linux.org, user pldth, command > sftp > OpenSSH_9.8p1, OpenSSL 3.3.1 4 Jun 2024 > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: /etc/ssh/ssh_config line 55: Applying options for * > /etc/ssh/ssh_config line 65: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config line 66: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config: terminating, 2 bad configuration options > scp: Connection closed > > [src: > /home/pld/builderth/pld-builder.new/spool/ftp/fabdfca0-2c08-47ed-aab9-a5e4d0483346] > > Executing: program /usr/bin/ssh host ep09.pld-linux.org, user pldth, command > sftp > OpenSSH_9.8p1, OpenSSL 3.3.1 4 Jun 2024 > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: /etc/ssh/ssh_config line 55: Applying options for * > /etc/ssh/ssh_config line 65: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config line 66: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config: terminating, 2 bad configuration options > scp: Connection closed > > [src: > /home/pld/builderth/pld-builder.new/spool/ftp/8b0b4f93-ee8b-4595-99ea-f02e23663838] > > Executing: program /usr/bin/ssh host ep09.pld-linux.org, user pldth, command > sftp > OpenSSH_9.8p1, OpenSSL 3.3.1 4 Jun 2024 > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: /etc/ssh/ssh_config line 55: Applying options for * > /etc/ssh/ssh_config line 65: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config line 66: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config: terminating, 2 bad configuration options > scp: Connection closed > > [src: > /home/pld/builderth/pld-builder.new/spool/ftp/d27e529e-a7eb-427b-a08a-700a971586b2] > > Executing: program /usr/bin/ssh host ep09.pld-linux.org, user pldth, command > sftp > OpenSSH_9.8p1, OpenSSL 3.3.1 4 Jun 2024 > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: /etc/ssh/ssh_config line 55: Applying options for * > /etc/ssh/ssh_config line 65: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config line 66: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config: terminating, 2 bad configuration options > scp: Connection closed > > [src: > /home/pld/builderth/pld-builder.new/spool/ftp/3dd5e745-df9a-4552-996c-698bdc3112b2] > > Executing: program /usr/bin/ssh host ep09.pld-linux.org, user pldth, command > sftp > OpenSSH_9.8p1, OpenSSL 3.3.1 4 Jun 2024 > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: /etc/ssh/ssh_config line 55: Applying options for * > /etc/ssh/ssh_config line 65: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config line 66: Bad key types '+ssh-dss'. > /etc/ssh/ssh_config: terminating, 2 bad configuration options > scp: Connection closed > > [src: > /home/pld/builderth/pld-builder.new/spool/ftp/4e2ab5ad-9845-47a8-bede-2d23ce0fd430] > > Executing:
Re: [all] builder queue problem
On 11.11.2015 16:06, PLD all builder wrote: > there were problems sending files from queue > /home/pld/builderth/pld-builder.new/spool/notify: > problems: > [src: > /home/pld/builderth/pld-builder.new/spool/notify/897a4ea6-eea2-4ae7-9cdc-8b83a5f02230] > > (_ssl.c:581)> > [src: > /home/pld/builderth/pld-builder.new/spool/notify/26618bd6-7ede-4d59-a629-c1ec3e8ce199] > > (_ssl.c:581)> > [src: > /home/pld/builderth/pld-builder.new/spool/notify/5b33c564-6b37-4f58-be8c-96237f011088] > > (_ssl.c:581)> > Can someone have a look or at least disable cron job until issue is resolved so above message is not resent every 5min? ___ pld-devel-en mailing list pld-devel-en@lists.pld-linux.org http://lists.pld-linux.org/mailman/listinfo/pld-devel-en
Re: [all] builder queue problem
On Wednesday 11 of November 2015, Jan Palus wrote: > > > (_ssl.c:581)> > > Can someone have a look or at least disable cron job until issue is > resolved so above message is not resent every 5min? Certificate expired on srcbuilder.pld-linux.org causing that problem. -- Arkadiusz Miśkiewicz, arekm / ( maven.pl | pld-linux.org ) ___ pld-devel-en mailing list pld-devel-en@lists.pld-linux.org http://lists.pld-linux.org/mailman/listinfo/pld-devel-en
Re: [all] builder queue problem
On Wed, 11 Nov 2015, Arkadiusz Miśkiewicz wrote: > On Wednesday 11 of November 2015, Jan Palus wrote: > > > > > > (_ssl.c:581)> > > > > Can someone have a look or at least disable cron job until issue is > > resolved so above message is not resent every 5min? > > Certificate expired on srcbuilder.pld-linux.org causing that problem. Who can generate new cert there? RMF? For now I hacked builder code (only on builders, not in git) to disable cert verification. -- Jan Rękorajski| PLD/Linux SysAdm | bagginspld-linux.org | http://www.pld-linux.org/ ___ pld-devel-en mailing list pld-devel-en@lists.pld-linux.org http://lists.pld-linux.org/mailman/listinfo/pld-devel-en
Re: [all] builder queue problem
On Wednesday 11 of November 2015, Jan Rękorajski wrote: > On Wed, 11 Nov 2015, Arkadiusz Miśkiewicz wrote: > > On Wednesday 11 of November 2015, Jan Palus wrote: > > > > > > > failed (_ssl.c:581)> > > > > > > Can someone have a look or at least disable cron job until issue is > > > resolved so above message is not resent every 5min? > > > > Certificate expired on srcbuilder.pld-linux.org causing that problem. > > Who can generate new cert there? RMF? Anyone having hostmaster@/feedback@ access can do it on startssl.com. Started procedure, waiting for their staff confirmation of certificate. > For now I hacked builder code (only on builders, not in git) > to disable cert verification. -- Arkadiusz Miśkiewicz, arekm / ( maven.pl | pld-linux.org ) ___ pld-devel-en mailing list pld-devel-en@lists.pld-linux.org http://lists.pld-linux.org/mailman/listinfo/pld-devel-en
Re: [all] builder queue problem
On Wednesday 11 of November 2015, Arkadiusz Miśkiewicz wrote: > On Wednesday 11 of November 2015, Jan Rękorajski wrote: > > On Wed, 11 Nov 2015, Arkadiusz Miśkiewicz wrote: > > > On Wednesday 11 of November 2015, Jan Palus wrote: > > > > > > > > > failed (_ssl.c:581)> > > > > > > > > Can someone have a look or at least disable cron job until issue is > > > > resolved so above message is not resent every 5min? > > > > > > Certificate expired on srcbuilder.pld-linux.org causing that problem. > > > > Who can generate new cert there? RMF? > > Anyone having hostmaster@/feedback@ access can do it on startssl.com. > > Started procedure, waiting for their staff confirmation of certificate. srcbuilder.pld got new certificate now. -- Arkadiusz Miśkiewicz, arekm / ( maven.pl | pld-linux.org ) ___ pld-devel-en mailing list pld-devel-en@lists.pld-linux.org http://lists.pld-linux.org/mailman/listinfo/pld-devel-en
