‘guix system reconfigure’ closes SSH connections

  • Open
  • quality assurance status badge
Details
2 participants
  • Christine Lemmer-Webber
  • Ludovic Courtès
Owner
unassigned
Submitted by
Ludovic Courtès
Severity
normal
L
L
Ludovic Courtès wrote on 9 Apr 2022 14:05
(address . bug-guix@gnu.org)
87k0by8nt0.fsf@inria.fr
With OpenSSH turned into inetd style in commit
808b9e850491c7b1d867a5f1f4d5ee6f61f345d4, the service upgrade code used
by ‘guix system reconfigure’ and ‘guix deploy’ wrongfully decides that
the ‘sshd-*’ transient services corresponding to individual SSH
connections should be closed:

Toggle snippet (32 lines)
$ sudo guix system reconfigure …
[…]
guix system: chargeur d'amorçage correctement installé sur « (/dev/sda) »
0,0 Mo seront téléchargés
module-import-compiled 20KiB 1.2MiB/s 00:00 [##################] 100.0%
The following derivation will be built:
/gnu/store/n99ahnnw94cay1drg499kxsg5ma6598p-upgrade-shepherd-services.scm.drv

0,0 Mo seront téléchargés
module-import-compiled 20KiB 1.8MiB/s 00:00 [##################] 100.0%
construction de /gnu/store/n99ahnnw94cay1drg499kxsg5ma6598p-upgrade-shepherd-services.scm.drv...
shepherd: Removing service 'sshd-1'...
shepherd: Service sshd-1 has been stopped.
shepherd: Transient service sshd-1 unregistered.
shepherd: Done.
shepherd: Removing service 'sshd-3'...
shepherd: Service sshd-3 has been stopped.
shepherd: Transient service sshd-3 unregistered.
shepherd: Done.
shepherd: Service swap-swap could not be started.
shepherd: Service host-name has been started.
shepherd: Service user-homes has been started.
shepherd: Service sysctl has been started.
shepherd: Service host-name has been started.
shepherd: Service term-console could not be started.
shepherd: Service bluetooth has been started.
Pour compléter la mise à jour, lancez « herd restart SERVICE » pour arrêter,
mettre à jour et redémarrer tous les services qui n'ont pas été redémarrés
automatiquement.
Lancez « herd status » pour visualiser la liste des services de votre système.

I think the solution is to leave transient services untouched.

Unfortunately, the status sexp returned by ‘services->sexp’ currently
lacks information about whether a service is transient.

Ludo’.
L
L
Ludovic Courtès wrote on 10 Apr 2022 00:19
Re: bug#54812: ‘guix system reconfi gure’ closes SSH connections
(address . 54812-done@debbugs.gnu.org)
87zgkt6gte.fsf@gnu.org
Ludovic Courtès <ludo@gnu.org> skribis:

Toggle quote (6 lines)
> With OpenSSH turned into inetd style in commit
> 808b9e850491c7b1d867a5f1f4d5ee6f61f345d4, the service upgrade code used
> by ‘guix system reconfigure’ and ‘guix deploy’ wrongfully decides that
> the ‘sshd-*’ transient services corresponding to individual SSH
> connections should be closed:

Fixed with:

eeb8ac43c8 services: shepherd: Do not unload transient services.
a2c759c830 services: herd: Report whether a service is transient.

Ludo’.
Closed
C
C
Christine Lemmer-Webber wrote on 15 May 2022 00:19
unarchive 54812
(address . control@debbugs.gnu.org)
87wnenzri9.fsf@dustycloud.org
unarchive 54812
C
C
Christine Lemmer-Webber wrote on 15 May 2022 00:19
Re: bug#54812: ‘guix system reconfi gure’ closes SSH connections
(name . Ludovic Courtès)(address . ludo@gnu.org)
87sfpbzrgw.fsf@dustycloud.org
Ludovic Courtès <ludo@gnu.org> writes:

Toggle quote (15 lines)
> Ludovic Courtès <ludo@gnu.org> skribis:
>
>> With OpenSSH turned into inetd style in commit
>> 808b9e850491c7b1d867a5f1f4d5ee6f61f345d4, the service upgrade code used
>> by ‘guix system reconfigure’ and ‘guix deploy’ wrongfully decides that
>> the ‘sshd-*’ transient services corresponding to individual SSH
>> connections should be closed:
>
> Fixed with:
>
> eeb8ac43c8 services: shepherd: Do not unload transient services.
> a2c759c830 services: herd: Report whether a service is transient.
>
> Ludo’.

Hm. I'm getting this issue. I did a guix pull locally, on the
server... doesn't seem to make a difference. I get the very error
reported above when using "guix deploy".

I guess others aren't? I wonder why I am...

- Christine
C
C
Christine Lemmer-Webber wrote on 17 May 2022 01:40
87o7zxujse.fsf@dustycloud.org
Christine Lemmer-Webber <cwebber@dustycloud.org> writes:

Toggle quote (25 lines)
> Ludovic Courtès <ludo@gnu.org> writes:
>
>> Ludovic Courtès <ludo@gnu.org> skribis:
>>
>>> With OpenSSH turned into inetd style in commit
>>> 808b9e850491c7b1d867a5f1f4d5ee6f61f345d4, the service upgrade code used
>>> by ‘guix system reconfigure’ and ‘guix deploy’ wrongfully decides that
>>> the ‘sshd-*’ transient services corresponding to individual SSH
>>> connections should be closed:
>>
>> Fixed with:
>>
>> eeb8ac43c8 services: shepherd: Do not unload transient services.
>> a2c759c830 services: herd: Report whether a service is transient.
>>
>> Ludo’.
>
> Hm. I'm getting this issue. I did a guix pull locally, on the
> server... doesn't seem to make a difference. I get the very error
> reported above when using "guix deploy".
>
> I guess others aren't? I wonder why I am...
>
> - Christine

I reopened this, because I'm hitting it on all the machines I use "guix
deploy" with. I think, before closing, it would be good to hear if any
other guix deploy users are hitting it. If it's just me, well I'll have
to figure it out then, but I suspect it isn't just me. :)
L
L
Ludovic Courtès wrote on 15 Jun 2023 22:59
(name . Christine Lemmer-Webber)(address . cwebber@dustycloud.org)(address . 54812@debbugs.gnu.org)
87cz1wv3v8.fsf@gnu.org
Hi Christine,

Christine Lemmer-Webber <cwebber@dustycloud.org> skribis:

Toggle quote (32 lines)
> Christine Lemmer-Webber <cwebber@dustycloud.org> writes:
>
>> Ludovic Courtès <ludo@gnu.org> writes:
>>
>>> Ludovic Courtès <ludo@gnu.org> skribis:
>>>
>>>> With OpenSSH turned into inetd style in commit
>>>> 808b9e850491c7b1d867a5f1f4d5ee6f61f345d4, the service upgrade code used
>>>> by ‘guix system reconfigure’ and ‘guix deploy’ wrongfully decides that
>>>> the ‘sshd-*’ transient services corresponding to individual SSH
>>>> connections should be closed:
>>>
>>> Fixed with:
>>>
>>> eeb8ac43c8 services: shepherd: Do not unload transient services.
>>> a2c759c830 services: herd: Report whether a service is transient.
>>>
>>> Ludo’.
>>
>> Hm. I'm getting this issue. I did a guix pull locally, on the
>> server... doesn't seem to make a difference. I get the very error
>> reported above when using "guix deploy".
>>
>> I guess others aren't? I wonder why I am...
>>
>> - Christine
>
> I reopened this, because I'm hitting it on all the machines I use "guix
> deploy" with. I think, before closing, it would be good to hear if any
> other guix deploy users are hitting it. If it's just me, well I'll have
> to figure it out then, but I suspect it isn't just me. :)

It’s been a year now :-) but I’m definitely not getting this issue (SSH
connections getting closed) when using ‘guix deploy’.

What about you?

Maybe we can close?

Thanks,
Ludo’.
?
Your comment

Commenting via the web interface is currently disabled.

To comment on this conversation send an email to 54812@debbugs.gnu.org

To respond to this issue using the mumi CLI, first switch to it
mumi current 54812
Then, you may apply the latest patchset in this issue (with sign off)
mumi am -- -s
Or, compose a reply to this issue
mumi compose
Or, send patches to this issue
mumi send-email *.patch