| 14 Apr 2023 |
 @linus:schreibt.jetzt | yes | 08:21:34 |
 aciceri | it caused me a several headaches | 08:21:38 |
| aciceri | * yes I remember that there were some hard coded conditions about being localhost in the hydra source | 08:21:49 |
| @linus:schreibt.jetzt | 🙃 | 08:21:53 |
| @linus:schreibt.jetzt | as a workaround you can use foo.localhost :p | 08:22:04 |
| aciceri | or 127.0.0.1 or was it hardcoded too? | 08:23:00 |
| aciceri | btw setting also sshUser to root still doesn't work | 08:23:11 |
| @linus:schreibt.jetzt | yeah but that forces IPv4 and that makes me sad :D | 08:23:11 |
| @linus:schreibt.jetzt | huh | 08:23:29 |
| aciceri | this is my /etc/machines:
ssh://root@rock5b.fleet aarch64-linux /etc/ssh/ssh_host_ed25519_key 6 2 nixos-test,benchmark,big-parallel,kvm - -
| 08:23:52 |
| @linus:schreibt.jetzt | oh, maybe it's trying to use the SSH host key as specified, and of course hydra-queue-runner can't read it | 08:24:25 |
| @linus:schreibt.jetzt | maybe the logs of hydra-queue-runner have some helpful infomration | 08:24:38 |
| aciceri | Apr 14 10:24:56 mothership hydra-queue-runner[3329939]: checking the queue for builds > 371...
Apr 14 10:24:57 mothership hydra-queue-runner[3329939]: got notification: builds restarted
Apr 14 10:24:57 mothership hydra-queue-runner[3329939]: checking the queue for builds > 0...
Apr 14 10:24:57 mothership hydra-queue-runner[3329939]: loading build 371 (trotten:master:aarch64-linux.treefmt)
Apr 14 10:24:57 mothership hydra-queue-runner[3329939]: aborting unsupported build step '/nix/store/cf0kfmf12cqrcvjjsp48zbzp20nw1q5q-treefmt.toml.drv' (type 'aarch64-linux')
Apr 14 10:24:57 mothership hydra-queue-runner[3329939]: marking build 371 as failed
Apr 14 10:25:07 mothership hydra-queue-runner[3329939]: checking the queue for builds > 371...
| 08:25:20 |
| aciceri | i can try to change permissions for a minute, just to see it this is the problem | 08:25:50 |
| @linus:schreibt.jetzt | that will break sshing into your machine fwiw | 08:26:04 |
| @linus:schreibt.jetzt | I think | 08:26:09 |
| aciceri | why? | 08:26:25 |
| @linus:schreibt.jetzt | openssh doesn't like the host key being accessible to anyone other than root | 08:26:42 |
| @linus:schreibt.jetzt | and won't use it if that's the case | 08:26:52 |
| aciceri | otherwise I can change the ssh key path to the one in hydra-queue-runner's HOME | 08:27:04 |
| @linus:schreibt.jetzt | yeah that sounds reasonable | 08:27:23 |
| aciceri | I will not be able to remote build using cli and a different user | 08:27:27 |
| @linus:schreibt.jetzt | yes you will | 08:27:33 |
| aciceri | why? | 08:27:42 |
 @janne.hess:helsinki-systems.de | In reply to @linus:schreibt.jetzt
yes you will ACLs to the rescue? | 08:27:45 |
| @linus:schreibt.jetzt | In reply to @aciceri:nixos.dev
why? because it all goes through the nix daemon which runs as root | 08:27:51 |
| aciceri | ah right | 08:28:01 |
| aciceri | nothing to do :( | 08:30:37 |
| aciceri | same logs for hydra-queue-runner | 08:31:14 |
| aciceri | isn't there a way to get better errors? | 08:31:43 |
