openssh not starting unless reconfigured

DoneSubmitted by Eric Brown.
Details
5 participants
  • Eric Brown
  • Martin Castillo
  • Clément Lassieur
  • Leo Famulari
  • Ludovic Courtès
Owner
unassigned
Severity
important
E
E
Eric Brown wrote on 18 Jul 2018 16:50
(address . bug-guix@gnu.org)
87601clhrh.fsf@fastmail.com
GuixSD 1.5 amd64

(stock, and with guix pull && guix package -u)

I have initialized a system with the attached config.scm. The openssh
service does not work at boot.

However, I can reconfigure the system, and the openssh service works and
allows connections.

(I've confirmed with several people with same observation on #guix)
Attachment: config.scm
L
L
Leo Famulari wrote on 18 Jul 2018 20:26
(no subject)
(address . control@debbugs.gnu.org)
20180718182630.GA20694@jasmine.lan
severity 32197 important
-----BEGIN PGP SIGNATURE-----

iQIzBAABCAAdFiEEsFFZSPHn08G5gDigJkb6MLrKfwgFAltPhlYACgkQJkb6MLrK
fwhXBw//c/0wvcxD1pOohX86DCJNfTnFXm/9Udv2jynkf7641YZ+bsofIgSqiRh1
DVq5otqtgHblCiDQ8izeFev3xGNHdLarGV6lMgLirQ6f1WQUsiHG7JGtjMOJjFaf
e/+teRKSRGdhkbTYz9tmkQ2zg/QgVefel2KqKwlrCWstT9UgjCdGHH5G3fay7Jax
FlL51iv6M3ewYawF1sN5U/FXsWnLb7du3zKzZdXYjYJkPhbn2ZxpfRDaoimAUwl5
Kmind7PHuJsOsTP4t7j1TZAH01j8ubT1cvvk7ufAqCEqNhJIDkgkVx5TdtBwA2JV
4cqjcNcHowLaKKedzCgJgP/iFj6SKGIWCORU+2Z9hjKydVrUUJnNQj772u4bzK/I
ZN47/E1WkRkG1gYiVapM2KWKSwUK9R+C4ig1pwbsKYTG/wq+yia+r3gjRSJerg2i
sw7uHty4shOe1/WElFmiP59itDEtPxD3cRvX54BqIWIEYad2kq7drxl6jJs2A8SB
4z/lgJjnFTnjZH9EQv8yQt4fe0qV/wLnUR3snpQpCC1oqtIr2y0H5gODD5/gAdsT
drJplmCXjELIVotYXeWSt5ngrN0KJc3FjaBie2sGm0RRM9VQeuNt/12bsEVA0sMJ
VLhJeG2rL5ao+VSFz7z+Ujbphj7791vSN2cbpQop9VFV/VEFY5g=
=JfoP
-----END PGP SIGNATURE-----


L
L
Leo Famulari wrote on 18 Jul 2018 20:29
(address . control@debbugs.gnu.org)
20180718182910.GA23198@jasmine.lan
merge 32197 30993
-----BEGIN PGP SIGNATURE-----
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=Oq18
-----END PGP SIGNATURE-----


C
C
Clément Lassieur wrote on 19 Jul 2018 15:02
Re: bug#32197: openssh not starting unless reconfigured
(name . Eric Brown)(address . brown@fastmail.com)
87tvov5qfa.fsf@lassieur.org
Eric Brown <brown@fastmail.com> writes:

Toggle quote (12 lines)
> GuixSD 1.5 amd64
>
> (stock, and with guix pull && guix package -u)
>
> I have initialized a system with the attached config.scm. The openssh
> service does not work at boot.
>
> However, I can reconfigure the system, and the openssh service works and
> allows connections.
>
> (I've confirmed with several people with same observation on #guix)

Hi Eric,

Julien pushed a commit that is supposed to fix your issue. Could you
'guix pull' and test it?

Thanks,
Clément
C
C
Clément Lassieur wrote on 19 Jul 2018 15:15
Re: bug#30993: OpenSSH sshd killed by Shepherd 0.4.0
87sh4f5ptn.fsf@lassieur.org
Heya,

Martin Castillo <castilma@uni-bremen.de> writes:

Toggle quote (15 lines)
> On 06.05.2018 21:50, Leo Famulari wrote:
>> On Fri, May 04, 2018 at 04:01:52AM +0200, Martin Castillo wrote:
>>> Sorry, I forgot to mention that I have the same problem. But I had it already with shepherd 0.3.
>>
>> Interesting. Did it ever work for you on that system?
>>
>> that system?
> Do you mean shepherd 0.3? Yes. And once(or so) with shepherd 0.4.
>
> I reported that here [0]. Some of the mentioned files needed small
> changes for the current guix, but ssh works with all of them, strangely.
>
> I attached my current configuration, where I need to start the daemon
> manually (herd start ssh-daemon) after each boot.

I don't think you're having the same bug. Martin can manually start the
daemon, whereas Leo can't. So Martin seems to have
has been pushed by Julien.

Martin, could you please test it? (You just need to 'guix pull' and try
again.) Leo, if you confirm my analysis, could you please unmerge the
bugs?

Thanks,
Clément
E
E
Eric Brown wrote on 19 Jul 2018 16:23
Re: bug#32197: openssh not starting unless reconfigured
(name . Clément Lassieur)(address . clement@lassieur.org)
8736wfi9tj.fsf@fastmail.com
Clément Lassieur <clement@lassieur.org> writes:

Toggle quote (22 lines)
> Eric Brown <brown@fastmail.com> writes:
>
>> GuixSD 1.5 amd64
>>
>> (stock, and with guix pull && guix package -u)
>>
>> I have initialized a system with the attached config.scm. The openssh
>> service does not work at boot.
>>
>> However, I can reconfigure the system, and the openssh service works and
>> allows connections.
>>
>> (I've confirmed with several people with same observation on #guix)
>
> Hi Eric,
>
> Julien pushed a commit that is supposed to fix your issue. Could you
> 'guix pull' and test it?
>
> Thanks,
> Clément

The fix works as expected. Thanks for your help!
C
C
Clément Lassieur wrote on 19 Jul 2018 16:24
control message for bug #30993
(address . control@debbugs.gnu.org)
87pnzj5mms.fsf@lassieur.org
unmerge 30993
C
C
Clément Lassieur wrote on 19 Jul 2018 16:25
control message for bug #32197
(address . control@debbugs.gnu.org)
87o9f35mm8.fsf@lassieur.org
tags 32197 fixed
C
C
Clément Lassieur wrote on 19 Jul 2018 16:26
Re: bug#30993: OpenSSH sshd killed by Shepherd 0.4.0
87muun5mj0.fsf@lassieur.org
Clément Lassieur <clement@lassieur.org> writes:

Toggle quote (2 lines)
> Leo, if you confirm my analysis, could you please unmerge the bugs?

I did it, because Eric confirmed the fix.
Clément
C
C
Clément Lassieur wrote on 19 Jul 2018 16:27
control message for bug #32197
(address . control@debbugs.gnu.org)
87lga75mhs.fsf@lassieur.org
tags 32197 fixed
close 32197
L
L
Leo Famulari wrote on 19 Jul 2018 18:57
Re: bug#30993: OpenSSH sshd killed by Shepherd 0.4.0
(name . Clément Lassieur)(address . clement@lassieur.org)
20180719165730.GA8867@jasmine.lan
On Thu, Jul 19, 2018 at 04:26:59PM +0200, Clément Lassieur wrote:
Toggle quote (6 lines)
> Clément Lassieur <clement@lassieur.org> writes:
>
> > Leo, if you confirm my analysis, could you please unmerge the bugs?
>
> I did it, because Eric confirmed the fix.

Thanks, sorry for the confusion!
-----BEGIN PGP SIGNATURE-----
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=OssZ
-----END PGP SIGNATURE-----


M
M
Martin Castillo wrote on 23 Jul 2018 19:08
a5d68301-2219-4e4a-0350-a906e4d4a379@uni-bremen.de
On 19.07.2018 15:15, Clément Lassieur wrote:
Toggle quote (9 lines)
> [...]
> Martin, could you please test it? (You just need to 'guix pull' and try
> again.) Leo, if you confirm my analysis, could you please unmerge the
> bugs?
>
> Thanks,
> Clément
>

It still does not work for me.

Attached are my guix version, dmesg|grep shepherd output, config.scm and
my qemu invocation (metal).

I run that system in qemu, but it is installed directly on my harddrive.

Martin

--
GPG: 7FDE 7190 2F73 2C50 236E 403D CC13 48F1 E644 08EC
;; This is an operating system configuration template ;; for a "desktop" setup without full-blown desktop ;; environments. ;; This is an operating system configuration template ;; for a "bare bones" setup, with no X11 display server. ;(use-modules (gnu)) (use-modules (gnu) (gnu system nss)) (use-service-modules ssh) (use-service-modules base desktop xorg) (use-package-modules certs linux suckless wm) ;(use-package-modules admin) (define cyborg-quirk "Section \"InputClass\" Identifier \"Saitek Cyborg R.A.T.5 Mouse\" MatchIsPointer \"on\" MatchProduct \"Saitek Cyborg R.A.T.5 Mouse\" MatchVendor \"Saitek|SAITEK\" MatchDevicePath \"/dev/input/event*\" Option \"ButtonMapping\" \"1 2 3 4 5 6 7 2 9 4 5 12 0 0 0\" Option \"ZAxisMapping\" \"10 11\" # Option \"AutoReleaseButtons\" \"12 13 14 15\" EndSection ") (define xneo "Section \"InputClass\" Identifier \"keyboard-all\" Option \"XkbLayout\" \"neo\" MatchIsKeyboard \"on\" EndSection ") (define %my-xorg-conf (xorg-configuration-file #:extra-config (list cyborg-quirk xneo))) (define %my-startx (xorg-start-command #:configuration-file %my-xorg-conf)) (define %my-services ;; My very own list of services. (modify-services %desktop-services (guix-service-type config => (guix-configuration (inherit config) (extra-options '("-M4")) (substitute-urls (cons* "https://berlin.guixsd.org" "https://hydra.gnu.org" (guix-configuration-substitute-urls config))))) (openssh-service-type config => (openssh-configuration (inherit config) (x11-forwarding? (openssh-configuration-x11-forwarding? config)))) (slim-service-type config => (slim-configuration (inherit config) (startx %my-startx) (default-user "mcd"))))) (operating-system (host-name "komputilo") (timezone "Europe/Berlin") (locale "de_DE.UTF-8") (hosts-file (plain-file "hosts" "127.0.0.1 localhost komputilo ::1 localhost komputilo 192.168.178.20 pi.fritz.box pi")) ;; Assuming /dev/sdX is the target hard disk, and "my-root" is ;; the label of the target root file system. (bootloader (bootloader-configuration (bootloader (bootloader (inherit grub-bootloader) (installer #~(const #t)))))) ; (bootloader (bootloader-configuration (bootloader grub-bootloader) ; (target "/dev/sda3") ;(menu-entries '((menu-entry ; (label "Grub Nixos") ; (multiboot "(hd0)") ; still unsupported ; ))) ; )) (file-systems (cons (file-system (device (file-system-label "guix-root")) (mount-point "/") (type "ext4")) %base-file-systems)) ;; This is where user accounts are specified. The "root" ;; account is implicit, and is initially created with the ;; empty password. (users (cons (user-account (name "mcd") (comment "Martin Castillo") (group "users") ;; Adding the account to the "wheel" group ;; makes it a sudoer. Adding it to "audio" ;; and "video" allows the user to play sound ;; and access the webcam. (supplementary-groups '("wheel" ; "plugdev" ? für mtp? ist aber undefiniert "audio" "video" "netdev")) ;workmanager")) (home-directory "/home/mcd")) %base-user-accounts)) ;; Globally-installed packages. ;(packages (cons tcpdump %base-packages)) ;; Add a bunch of window managers; we can choose one at ;; the log-in screen with F1. (packages (cons* dmenu ;window managers nss-certs ;for HTTPS access kbd-neo %base-packages)) ;; Add services to the baseline: a DHCP client and ;; an SSH server. (services (cons* ;(dhcp-client-service) ; (gpm-service) ;mouse in vt (console-keymap-service (file-append kbd-neo "/share/keymaps/neo.map"));; (service openssh-service-type (openssh-configuration (x11-forwarding? #t) (accepted-environment '("COLORTERM" "Foo")) (port-number 22))) (simple-service 'store-my-config etc-service-type `(("config.scm" ,(local-file (assoc-ref (current-source-location) 'filename))))) (xfce-desktop-service) %my-services)) ;; Use the "desktop" services, which include the X11 ;; log-in service, networking with Wicd, and more. ;(services %desktop-services) ;; Allow resolution of '.local' host names with mDNS. (name-service-switch %mdns-host-lookup-nss))
[ 11.764507] shepherd[1]: Service root has been started.
[ 14.719803] shepherd[1]: starting services...
[ 14.722728] shepherd[1]: Service root-file-system has been started.
[ 14.725482] shepherd[1]: Service user-file-systems has been started.
[ 14.729274] shepherd[1]: Service file-system-/dev/pts has been started.
[ 14.732863] shepherd[1]: Service file-system-/dev/shm has been started.
[ 14.736110] shepherd[1]: Service file-system-/gnu/store has been started.
[ 14.750763] shepherd[1]: Service file-system-/run/systemd has been started.
[ 14.757029] shepherd[1]: Service file-system-/run/user has been started.
[ 14.760723] shepherd[1]: Service file-system-/sys/fs/cgroup has been started.
[ 14.765708] shepherd[1]: Service file-system-/sys/fs/cgroup/elogind has been started.
[ 14.776834] shepherd[1]: Service file-system-/sys/fs/cgroup/cpuset has been started.
[ 14.790800] shepherd[1]: Service file-system-/sys/fs/cgroup/cpu has been started.
[ 14.795139] shepherd[1]: Service file-system-/sys/fs/cgroup/cpuacct has been started.
[ 14.810192] shepherd[1]: Service file-system-/sys/fs/cgroup/memory has been started.
[ 14.814319] shepherd[1]: Service file-system-/sys/fs/cgroup/devices has been started.
[ 14.827923] shepherd[1]: Service file-system-/sys/fs/cgroup/freezer has been started.
[ 14.834046] shepherd[1]: Service file-system-/sys/fs/cgroup/blkio has been started.
[ 14.838283] shepherd[1]: Service file-system-/sys/fs/cgroup/perf_event has been started.
[ 14.841524] shepherd[1]: Service file-systems has been started.
[ 14.966786] shepherd[1]: waiting for udevd...
[ 15.627793] shepherd[1]: Service udev has been started.
[ 15.679916] shepherd[1]: Service urandom-seed has been started.
[ 15.684068] shepherd[1]: Service user-processes has been started.
[ 15.688369] shepherd[1]: Service host-name has been started.
[ 15.719811] shepherd[1]: Service user-homes could not be started.
[ 16.737051] shepherd[1]: Service nscd has been started.
[ 16.780356] shepherd[1]: Service guix-daemon has been started.
guix (GNU Guix) 264967c883d32606c18b378f717c303e7490c942
Copyright (C) 2018 the Guix authors
License GPLv3+: GNU GPL version 3 or later http://gnu.org/licenses/gpl.html
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
# runs qemu as mcd but with read and write access to sda

mount |egrep -q 'sd(a|b)3' && echo guix-root is maybe mounted. Aborting. && exit

set -v
sudo sh -c 'exec sudo -u mcd -C 6 sh -c "
exec qemu-system-x86_64 -m 1800 -smp 2 -enable-kvm \
-net nic,model=virtio \
-net user,hostfwd=tcp::5560-:2222,hostfwd=tcp::5559-:22 \
-add-fd fd=5,set=2,opaque=rdwr:$(readlink -f /dev/disk/by-id/ata-Hitachi_HDT721010SLA360_STF6L7MS20ALEK) \
-drive file=/dev/fdset/2,index=0,media=disk" \
5<>/dev/disk/by-id/ata-Hitachi_HDT721010SLA360_STF6L7MS20ALEK '
Attachment: signature.asc
L
L
Ludovic Courtès wrote on 26 Jul 2018 15:18
Re: bug#32197: openssh not starting unless reconfigured
(name . Eric Brown)(address . brown@fastmail.com)
8736w616f1.fsf@gnu.org
Eric Brown <brown@fastmail.com> skribis:

Toggle quote (2 lines)
> Clément Lassieur <clement@lassieur.org> writes:

[...]

Toggle quote (8 lines)
>> Julien pushed a commit that is supposed to fix your issue. Could you
>> 'guix pull' and test it?
>>
>> Thanks,
>> Clément
>
> The fix works as expected. Thanks for your help!

Closing the bug, thanks everyone!

Ludo’.
Closed
E
E
Eric Brown wrote on 26 Jul 2018 15:32
(name . Ludovic Courtès)(address . ludo@gnu.org)
877eli9l6v.fsf@fastmail.com
ludo@gnu.org (Ludovic Courtès) writes:

Toggle quote (18 lines)
> Eric Brown <brown@fastmail.com> skribis:
>
>> Clément Lassieur <clement@lassieur.org> writes:
>
> [...]
>
>>> Julien pushed a commit that is supposed to fix your issue. Could you
>>> 'guix pull' and test it?
>>>
>>> Thanks,
>>> Clément
>>
>> The fix works as expected. Thanks for your help!
>
> Closing the bug, thanks everyone!
>
> Ludo’.

Hi Ludo' et al.:

Unfortunately, I am still seeing issues with this. It could be because
something that I am doing.

I first git pull the master tree into ~/projects/guix, and cd there. Then:

(GuixSD 0.15, on bare-metal)

guix environment guix
./bootstrap
./configure --localstatedir=/var
make
sudo -E guix system reconfigure /etc/config.scm

and reboot, and I still see the issue.

I apologize that the test that I had done earlier was in a VM, and I may
have done that wrong, or perhaps other differences.

Eric
Closed
E
E
Eric Brown wrote on 27 Jul 2018 13:46
(name . Ludovic Courtès)(address . ludo@gnu.org)
87d0v89a05.fsf@fastmail.com
Eric Brown <brown@fastmail.com> writes:

Toggle quote (42 lines)
> ludo@gnu.org (Ludovic Courtès) writes:
>
>> Eric Brown <brown@fastmail.com> skribis:
>>
>>> Clément Lassieur <clement@lassieur.org> writes:
>>
>> [...]
>>
>>>> Julien pushed a commit that is supposed to fix your issue. Could you
>>>> 'guix pull' and test it?
>>>>
>>>> Thanks,
>>>> Clément
>>>
>>> The fix works as expected. Thanks for your help!
>>
>> Closing the bug, thanks everyone!
>>
>> Ludo’.
>
> Hi Ludo' et al.:
>
> Unfortunately, I am still seeing issues with this. It could be because
> something that I am doing.
>
> I first git pull the master tree into ~/projects/guix, and cd there. Then:
>
> (GuixSD 0.15, on bare-metal)
>
> guix environment guix
> ./bootstrap
> ./configure --localstatedir=/var
> make
> sudo -E guix system reconfigure /etc/config.scm
>
> and reboot, and I still see the issue.
>
> I apologize that the test that I had done earlier was in a VM, and I may
> have done that wrong, or perhaps other differences.
>
> Eric

That last line was mistyped into the email--I'm executing it as:

cd ~/projects/guix
guix environment guix
./bootstrap
./configure --localstatedir=/var
make
sudo -E ./pre-inst-env guix system reconfigure /etc/config.scm
Closed
?
Your comment

This issue is archived.

To comment on this conversation send email to 32197@debbugs.gnu.org