| 14 Apr 2023 |
 aciceri | this is my /etc/machines:
ssh://root@rock5b.fleet aarch64-linux /etc/ssh/ssh_host_ed25519_key 6 2 nixos-test,benchmark,big-parallel,kvm - -
| 08:23:52 |
 @linus:schreibt.jetzt | oh, maybe it's trying to use the SSH host key as specified, and of course hydra-queue-runner can't read it | 08:24:25 |
| @linus:schreibt.jetzt | maybe the logs of hydra-queue-runner have some helpful infomration | 08:24:38 |
| aciceri | Apr 14 10:24:56 mothership hydra-queue-runner[3329939]: checking the queue for builds > 371...
Apr 14 10:24:57 mothership hydra-queue-runner[3329939]: got notification: builds restarted
Apr 14 10:24:57 mothership hydra-queue-runner[3329939]: checking the queue for builds > 0...
Apr 14 10:24:57 mothership hydra-queue-runner[3329939]: loading build 371 (trotten:master:aarch64-linux.treefmt)
Apr 14 10:24:57 mothership hydra-queue-runner[3329939]: aborting unsupported build step '/nix/store/cf0kfmf12cqrcvjjsp48zbzp20nw1q5q-treefmt.toml.drv' (type 'aarch64-linux')
Apr 14 10:24:57 mothership hydra-queue-runner[3329939]: marking build 371 as failed
Apr 14 10:25:07 mothership hydra-queue-runner[3329939]: checking the queue for builds > 371...
| 08:25:20 |
| aciceri | i can try to change permissions for a minute, just to see it this is the problem | 08:25:50 |
| @linus:schreibt.jetzt | that will break sshing into your machine fwiw | 08:26:04 |
| @linus:schreibt.jetzt | I think | 08:26:09 |
| aciceri | why? | 08:26:25 |
| @linus:schreibt.jetzt | openssh doesn't like the host key being accessible to anyone other than root | 08:26:42 |
| @linus:schreibt.jetzt | and won't use it if that's the case | 08:26:52 |
| aciceri | otherwise I can change the ssh key path to the one in hydra-queue-runner's HOME | 08:27:04 |
| @linus:schreibt.jetzt | yeah that sounds reasonable | 08:27:23 |
| aciceri | I will not be able to remote build using cli and a different user | 08:27:27 |
| @linus:schreibt.jetzt | yes you will | 08:27:33 |
| aciceri | why? | 08:27:42 |
 das_j | In reply to @linus:schreibt.jetzt
yes you will ACLs to the rescue? | 08:27:45 |
| @linus:schreibt.jetzt | In reply to @aciceri:nixos.dev
why? because it all goes through the nix daemon which runs as root | 08:27:51 |
| aciceri | ah right | 08:28:01 |
| aciceri | nothing to do :( | 08:30:37 |
| aciceri | same logs for hydra-queue-runner | 08:31:14 |
| aciceri | isn't there a way to get better errors? | 08:31:43 |
| @linus:schreibt.jetzt | systemctl edit --runtime hydra-queue-runner and add more -vs | 08:33:21 |
| @linus:schreibt.jetzt | maybe | 08:33:22 |
| @linus:schreibt.jetzt | lol | 08:33:23 |
| aciceri | haven't I to restart hydra every time, right? I can simply click "restart" from the Hydra UI, right? | 08:33:38 |
| @linus:schreibt.jetzt | I think so | 08:34:14 |
| aciceri | In reply to @linus:schreibt.jetzt
systemctl edit --runtime hydra-queue-runner and add more -vs I simply add more v to the command and then I don't have to restart the service, right? | 08:41:00 |
| aciceri | I think I never used systemctl edit | 08:41:10 |
| @linus:schreibt.jetzt | you do have to restart it | 08:41:11 |
| @linus:schreibt.jetzt | so what you want is the following content:
[Service
| 08:41:58 |
