This document contains a list of known issues that runway has. If you have a problem that is not listed here, please open an issue.
This section documents known issues or potential problems with the remote command deployment strategy (SSH).
Runway uses the ssh2 crystal library to facilitate SSH connections. In this section, when we refer to libssh2, we are referring to the underlying C library that the ssh2 crystal library uses. When we refer to ssh2, we are referring to the crystal library.
This library has a direct dependency on the libssh2 library. If you are having issues with runway not being able to connect to your servers, you may need to install libssh2 on your system.
brew install libssh2# if you have linuxbrew
brew install libssh2# you might need to dev packages for libssh2 even if you ran the above command for libssh2
apt-get install libssh2-1-devThis library has a direct dependency on the libevent library. You may need to install it on your system.
sudo apt-get install libevent-devThis section describes possible problems you may run into when using public key authentication with the remote command deployment strategy, and how to fix them.
The most common reason why you may see errors like SSH2::SessionError - ERR -18: Username/PublicKey combination invalid is because the public/private key pair you are using has incorrect permissions.
Please make sure that your keys have the correct permissions. In general, this usually means something like this:
- The containing directory should have permissions
700 - The private/public key pair should have permissions
600
The acceptance/ dir at the root of this repo actually spins up an SSH server, and a container running runway and runs deployment commands on that SSH server. If you are having issues with the remote_command deployment strategy, looking at how this is setup in the acceptance/ dir may help you debug your issues.
RSA is kind of a dated algorithm, and some SSH servers may not support it. If you are having issues with RSA keys, you may want to try using an ECDSA key instead.
However, many systems are still using RSA keys, so this is a real issue many users may run into.
You may see SSH2::SessionError - ERR -18: Username/PublicKey combination invalid if you are having RSA key issues which is unfortunate because the error message is not very helpful and it actually obfuscates the real issue.
Let's say you generated a key with:
ssh-keygen -m PEM -t rsaIf you look at the logs on the remote server that runway is trying to SSH into, you might see this:
$ cat /var/log/auth.log
...
userauth_pubkey: signature algorithm ssh-rsa not in PubkeyAcceptedAlgorithms [preauth]
...To fix this problem, you need to tell the SSH server to accept RSA keys. You can do this like so:
Open and edit: /etc/ssh/sshd_config
sudo nano /etc/ssh/sshd_configAdd the following line:
PubkeyAcceptedAlgorithms +ssh-rsaRestart the ssh service:
sudo service ssh restartNow you SSH connections with your RSA should succeed.
This is a known and documented issue in the ssh2 library - issue