I used to run multiple times from the same working directory with the following command:
bash ./quickstart.sh -v --config config/general_config/ha.yml -t all -T all -n -w . krav.par.redhat.com
The second time when I want to run it again, the ssh connection is failing to reach my virthost!
PLAY [Tear down non-root user on virt host] ************************************
TASK [setup] *******************************************************************
Wednesday 01 March 2017 14:34:30 +0100 (0:00:00.080) 0:00:21.713 *******
Using module file /home/gchamoul/tmp/oooq/lib/python2.7/site-packages/ansible/modules/core/system/setup.py
<krav.par.redhat.com> ESTABLISH SSH CONNECTION FOR USER: root
<krav.par.redhat.com> SSH: EXEC ssh -vvv -F /home/gchamoul/tmp/oooq/ssh.config.ansible -o StrictHostKeyChecking=no -o KbdInteractiveAuthentication=no -o PreferredAuthentications=gssapi-with-mic,gssapi-keyex,hostbased,publickey -o PasswordAuthentication=no -o User=root -o ConnectTimeout=10 krav.par.redhat.com '/bin/sh -c '"'"'( umask 77 && mkdir -p "` echo $HOME/.ansible/tmp/ansible-tmp-1488375270.51-93288225655212 `" && echo ansible-tmp-1488375270.51-93288225655212="` echo $HOME/.ansible/tmp/ansible-tmp-1488375270.51-93288225655212 `" ) && sleep 0'"'"''
fatal: [krav.par.redhat.com]: UNREACHABLE! => {
"changed": false,
"msg": "Failed to connect to the host via ssh: OpenSSH_7.4p1, OpenSSL 1.0.2k-fips 26 Jan 2017\r\ndebug1: Reading configuration data /home/gchamoul/tmp/oooq/ssh.config.ansible\r\ndebug1: /home/gchamoul/tmp/oooq/ssh.config.ansible line 1: Applying options for *\r\ndebug2: resolving \"krav.par.redhat.com\" port 22\r\ndebug2: ssh_connect_direct: needpriv 0\r\ndebug1: Connecting to krav.par.redhat.com [10.41.0.21] port 22.\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: fd 3 clearing O_NONBLOCK\r\ndebug1: Connection established.\r\ndebug3: timeout: 10000 ms remain after connect\r\ndebug1: identity file /home/gchamoul/.ssh/id_rsa type 1\r\ndebug1: key_load_public: No such file or directory\r\ndebug1: identity file /home/gchamoul/.ssh/id_rsa-cert type -1\r\ndebug1: key_load_public: No such file or directory\r\ndebug1: identity file /home/gchamoul/.ssh/id_dsa type -1\r\ndebug1: key_load_public: No such file or directory\r\ndebug1: identity file /home/gchamoul/.ssh/id_dsa-cert type -1\r\ndebug1: key_load_public: No such file or directory\r\ndebug1: identity file /home/gchamoul/.ssh/id_ecdsa type -1\r\ndebug1: key_load_public: No such file or directory\r\ndebug1: identity file /home/gchamoul/.ssh/id_ecdsa-cert type -1\r\ndebug1: key_load_public: No such file or directory\r\ndebug1: identity file /home/gchamoul/.ssh/id_ed25519 type -1\r\ndebug1: key_load_public: No such file or directory\r\ndebug1: identity file /home/gchamoul/.ssh/id_ed25519-cert type -1\r\ndebug1: Enabling compatibility mode for protocol 2.0\r\ndebug1: Local version string SSH-2.0-OpenSSH_7.4\r\ndebug1: Remote protocol version 2.0, remote software version OpenSSH_6.6.1\r\ndebug1: match: OpenSSH_6.6.1 pat OpenSSH_6.6.1* compat 0x04000000\r\ndebug2: fd 3 setting O_NONBLOCK\r\ndebug1: Authenticating to krav.par.redhat.com:22 as 'root'\r\ndebug3: hostkeys_foreach: reading file \"/home/gchamoul/.ssh/known_hosts\"\r\ndebug3: record_hostkey: found key type ECDSA in file /home/gchamoul/.ssh/known_hosts:209\r\ndebug3: load_hostkeys: loaded 1 keys from krav.par.redhat.com\r\ndebug3: order_hostkeyalgs: prefer hostkeyalgs: <email address hidden>,<email address hidden>,<email address hidden>,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521\r\ndebug3: send packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT sent\r\ndebug3: receive packet: type 20\r\ndebug1: SSH2_MSG_KEXINIT received\r\ndebug2: local client KEXINIT proposal\r\ndebug2: KEX algorithms: curve25519-sha256,<email address hidden>,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha256,diffie-hellman-group14-sha1,ext-info-c\r\ndebug2: host key algorithms: <email address hidden>,<email address hidden>,<email address hidden>,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,<email address hidden>,<email address hidden>,ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa\r\ndebug2: ciphers ctos: <email address hidden>,aes128-ctr,aes192-ctr,aes256-ctr,<email address hidden>,<email address hidden>,aes128-cbc,aes192-cbc,aes256-cbc\r\ndebug2: ciphers stoc: <email address hidden>,aes128-ctr,aes192-ctr,aes256-ctr,<email address hidden>,<email address hidden>,aes128-cbc,aes192-cbc,aes256-cbc\r\ndebug2: MACs ctos: <email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: MACs stoc: <email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,hmac-sha2-256,hmac-sha2-512,hmac-sha1\r\ndebug2: compression ctos: none,<email address hidden>,zlib\r\ndebug2: compression stoc: none,<email address hidden>,zlib\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug2: peer server KEXINIT proposal\r\ndebug2: KEX algorithms: <email address hidden>,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1\r\ndebug2: host key algorithms: ssh-rsa,ecdsa-sha2-nistp256,ssh-ed25519\r\ndebug2: ciphers ctos: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,<email address hidden>,<email address hidden>,<email address hidden>,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,<email address hidden>\r\ndebug2: ciphers stoc: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,<email address hidden>,<email address hidden>,<email address hidden>,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,<email address hidden>\r\ndebug2: MACs ctos: <email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,hmac-md5,hmac-sha1,<email address hidden>,<email address hidden>,hmac-sha2-256,hmac-sha2-512,hmac-ripemd160,<email address hidden>,hmac-sha1-96,hmac-md5-96\r\ndebug2: MACs stoc: <email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,<email address hidden>,hmac-md5,hmac-sha1,<email address hidden>,<email address hidden>,hmac-sha2-256,hmac-sha2-512,hmac-ripemd160,<email address hidden>,hmac-sha1-96,hmac-md5-96\r\ndebug2: compression ctos: none,<email address hidden>\r\ndebug2: compression stoc: none,<email address hidden>\r\ndebug2: languages ctos: \r\ndebug2: languages stoc: \r\ndebug2: first_kex_follows 0 \r\ndebug2: reserved 0 \r\ndebug1: kex: algorithm: <email address hidden>\r\ndebug1: kex: host key algorithm: ecdsa-sha2-nistp256\r\ndebug1: kex: server->client cipher: <email address hidden> MAC: <implicit> compression: none\r\ndebug1: kex: client->server cipher: <email address hidden> MAC: <implicit> compression: none\r\ndebug1: kex: <email address hidden> need=64 dh_need=64\r\ndebug1: kex: <email address hidden> need=64 dh_need=64\r\ndebug3: send packet: type 30\r\ndebug1: expecting SSH2_MSG_KEX_ECDH_REPLY\r\ndebug3: receive packet: type 31\r\ndebug1: Server host key: ecdsa-sha2-nistp256 SHA256:U3IlsJSzyF05seGeoHxng2jininmAmNuMtzGU95/90Y\r\ndebug3: hostkeys_foreach: reading file \"/home/gchamoul/.ssh/known_hosts\"\r\ndebug3: record_hostkey: found key type ECDSA in file /home/gchamoul/.ssh/known_hosts:209\r\ndebug3: load_hostkeys: loaded 1 keys from krav.par.redhat.com\r\ndebug3: hostkeys_foreach: reading file \"/home/gchamoul/.ssh/known_hosts\"\r\ndebug3: record_hostkey: found key type ECDSA in file /home/gchamoul/.ssh/known_hosts:209\r\ndebug3: load_hostkeys: loaded 1 keys from 10.41.0.21\r\ndebug1: Host 'krav.par.redhat.com' is known and matches the ECDSA host key.\r\ndebug1: Found key in /home/gchamoul/.ssh/known_hosts:209\r\ndebug3: send packet: type 21\r\ndebug2: set_newkeys: mode 1\r\ndebug1: rekey after 134217728 blocks\r\ndebug1: SSH2_MSG_NEWKEYS sent\r\ndebug1: expecting SSH2_MSG_NEWKEYS\r\ndebug3: receive packet: type 21\r\ndebug1: SSH2_MSG_NEWKEYS received\r\ndebug2: set_newkeys: mode 0\r\ndebug1: rekey after 134217728 blocks\r\ndebug2: key: /home/gchamoul/.ssh/id_rsa (0x5630390b7210), agent\r\ndebug2: key: /home/gchamoul/.ssh/id_dsa ((nil))\r\ndebug2: key: /home/gchamoul/.ssh/id_ecdsa ((nil))\r\ndebug2: key: /home/gchamoul/.ssh/id_ed25519 ((nil))\r\ndebug3: send packet: type 5\r\ndebug3: receive packet: type 6\r\ndebug2: service_accept: ssh-userauth\r\ndebug1: SSH2_MSG_SERVICE_ACCEPT received\r\ndebug3: send packet: type 50\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password\r\ndebug3: start over, passed a different list publickey,gssapi-keyex,gssapi-with-mic,password\r\ndebug3: preferred gssapi-with-mic,gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-with-mic\r\ndebug3: remaining preferred: gssapi-keyex,hostbased,publickey\r\ndebug3: authmethod_lookup gssapi-keyex\r\ndebug3: remaining preferred: hostbased,publickey\r\ndebug3: authmethod_lookup publickey\r\ndebug3: remaining preferred: ,publickey\r\ndebug3: authmethod_is_enabled publickey\r\ndebug1: Next authentication method: publickey\r\ndebug1: Offering RSA public key: /home/gchamoul/.ssh/id_rsa\r\ndebug3: send_pubkey_test\r\ndebug3: send packet: type 50\r\ndebug2: we sent a publickey packet, wait for reply\r\ndebug3: receive packet: type 51\r\ndebug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password\r\ndebug1: Trying private key: /home/gchamoul/.ssh/id_dsa\r\ndebug3: no such identity: /home/gchamoul/.ssh/id_dsa: No such file or directory\r\ndebug1: Trying private key: /home/gchamoul/.ssh/id_ecdsa\r\ndebug3: no such identity: /home/gchamoul/.ssh/id_ecdsa: No such file or directory\r\ndebug1: Trying private key: /home/gchamoul/.ssh/id_ed25519\r\ndebug3: no such identity: /home/gchamoul/.ssh/id_ed25519: No such file or directory\r\ndebug2: we did not send a packet, disable method\r\ndebug1: No more authentication methods to try.\r\nPermission denied (publickey,gssapi-keyex,gssapi-with-mic,password).\r\n",
"unreachable": true
}
PLAY RECAP *********************************************************************
krav.par.redhat.com : ok=0 changed=0 unreachable=1 failed=0
localhost : ok=2 changed=1 unreachable=0 failed=0
Wednesday 01 March 2017 14:34:30 +0100 (0:00:00.175) 0:00:21.888 *******
===============================================================================
setup ------------------------------------------------------------------ 21.56s
------------------------------------------------------------------------------
setup ------------------------------------------------------------------- 0.18s
------------------------------------------------------------------------------
Add virthost ------------------------------------------------------------ 0.08s
/home/gchamoul/tmp/oooq/playbooks/quickstart.yml:8 ----------------------------
It seems to come from the IdentitiesOnly ssh config set to yes, but still not very sure! it works fine when removing that config from the ssh.config.ansible.
Fix proposed to branch: master /review. openstack. org/439600
Review: https:/