From debbugs-submit-bounces@debbugs.gnu.org Thu Sep 05 09:18:56 2019 Received: (at submit) by debbugs.gnu.org; 5 Sep 2019 13:18:56 +0000 Received: from localhost ([127.0.0.1]:34922 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1i5rf5-0003Qf-Pl for submit@debbugs.gnu.org; Thu, 05 Sep 2019 09:18:56 -0400 Received: from lists.gnu.org ([209.51.188.17]:50547) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1i5rf1-0003QW-QK for submit@debbugs.gnu.org; Thu, 05 Sep 2019 09:18:54 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:45472) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1i5rez-0006Um-Q2 for bug-guix@gnu.org; Thu, 05 Sep 2019 09:18:51 -0400 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=0.8 required=5.0 tests=BAYES_50,URIBL_BLOCKED autolearn=disabled version=3.3.2 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1i5rex-000427-JW for bug-guix@gnu.org; Thu, 05 Sep 2019 09:18:49 -0400 Received: from ns13.heimat.it ([46.4.214.66]:40692) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1i5rex-000416-81 for bug-guix@gnu.org; Thu, 05 Sep 2019 09:18:47 -0400 Received: from localhost (ip6-localhost [127.0.0.1]) by ns13.heimat.it (Postfix) with ESMTP id E5102300673 for ; Thu, 5 Sep 2019 13:18:45 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at ns13.heimat.it Received: from ns13.heimat.it ([127.0.0.1]) by localhost (ns13.heimat.it [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4p-P2zBJr97c for ; Thu, 5 Sep 2019 13:18:26 +0000 (UTC) Received: from bourrache.mug.xelera.it (unknown [93.56.161.211]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by ns13.heimat.it (Postfix) with ESMTPSA id F216C30056B for ; Thu, 5 Sep 2019 13:18:25 +0000 (UTC) Received: from roquette.mug.biscuolo.net (roquette.mug.biscuolo.net [10.38.2.14]) by bourrache.mug.xelera.it (Postfix) with SMTP id 50E59300A06 for ; Thu, 5 Sep 2019 15:18:25 +0200 (CEST) Received: (nullmailer pid 9197 invoked by uid 1000); Thu, 05 Sep 2019 13:18:24 -0000 From: Giovanni Biscuolo To: bug-guix@gnu.org Subject: =?utf-8?B?4oCYc3NoLWRhZW1vbuKAmQ==?= service fails to start at boot In-Reply-To: <20190828181141.GA27765@jurong> Organization: Xelera.eu References: <87k1da6fdb.fsf@roquette.mug.biscuolo.net> <87y315t3hw.fsf@roquette.mug.biscuolo.net> <87tvbhra2v.fsf@roquette.mug.biscuolo.net> <87imrvhhpy.fsf@cbaines.net> <874l3crjqr.fsf@roquette.mug.biscuolo.net> <87k1c6p914.fsf@roquette.mug.biscuolo.net> <20190817152031.GA3191@jurong> <87pnkuyac0.fsf_-_@gnu.org> <20190828181141.GA27765@jurong> Date: Thu, 05 Sep 2019 15:18:24 +0200 Message-ID: <87ef0u2867.fsf@roquette.mug.biscuolo.net> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-=" X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 46.4.214.66 X-Spam-Score: -1.4 (-) X-Debbugs-Envelope-To: submit X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -2.4 (--) --=-=-= Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Hi, following a recent discussion on guix-sysadmin I have to confirm the ssh-daemon issue since it is still happening on some of the machines I administer Previous possibly related bug reports are https://issues.guix.gnu.org/issue/30993 and https://issues.guix.gnu.org/issue/32197 Unfortunately this issue is *not* well reproducible, it depends on some mysterious (to me) timing factor; AFAIU it does *not* depend on the shepherd version, probably it depends on "something" related to IPv6 (read below the details) Andreas Enge writes: [...] > My impression is that the problem is still there. I am quite certain it > happened when I rebooted dover, since I had to connect on the serial console > to manually restart the ssh service. I'm sure it happened when milano-guix-1 was rebooted due to data centre maintenance and happened yesterday to one of my personal Guix machines at office [...] My situation is similar to the one observed by Andreas > Well, it is in /var/log/messages: > Aug 3 21:11:38 localhost sshd[360]: Server listening on 0.0.0.0 port 22. > Aug 3 21:11:55 localhost shepherd[1]: Service ssh-daemon could not be started. --8<---------------cut here---------------start------------->8--- [...] Sep 4 21:46:02 localhost shepherd[1]: Service syslogd has been started. [...] Sep 4 21:46:03 localhost shepherd[1]: Service loopback has been started. [...] Sep 4 21:46:22 localhost vmunix: [ 0.226337] PCI: Using configuration type 1 for base access Sep 4 21:46:09 localhost dhclient: DHCPREQUEST for 10.38.2.16 on eno1 to 255.255.255.255 port 67 [...] Sep 4 21:46:24 localhost shepherd[1]: Service networking has been started. [...] Sep 4 21:46:12 localhost sshd[577]: Server listening on 0.0.0.0 port 22. [...] Sep 4 21:46:30 localhost vmunix: [ 0.250107] ACPI: PCI Interrupt Link [LNKA] (IRQs 3 4 5 6 10 *11 12 14 15) Sep 4 21:46:13 localhost dhclient: DHCPREQUEST for 10.38.2.16 on eno1 to 255.255.255.255 port 67 [...] Sep 4 21:46:16 localhost dhclient: DHCPACK of 10.38.2.16 from 10.38.2.1 [...] Sep 4 21:46:33 localhost shepherd[1]: Service ssh-daemon could not be started. [...] Sep 4 21:46:47 localhost vmunix: [ 0.731142] Segment Routing with IPv6 --8<---------------cut here---------------end--------------->8--- Please note the timing of the dhclient and the sshd processes: I inserted them as printed in /var/log/messages but they are not time-sequential: does it means something or is irrelevant? So the sshd process started (as far as I cen see there is no trace it was stopped) and pretty soon shepherd noticed ssh-daemon was not started. Logging in from the console I see the ssh-daemon is stopped but enabled: --8<---------------cut here---------------start------------->8--- Status of ssh-daemon: It is stopped. It is enabled. Provides (ssh-daemon). Requires (syslogd loopback). Conflicts with (). Will be respawned. --8<---------------cut here---------------end--------------->8--- [...] If I start it via `sudo herd start ssh-daemon` it immediatly starts, like in Andreas experience: > Aug 3 21:13:10 localhost sshd[385]: Server listening on 0.0.0.0 port 22. > Aug 3 21:13:10 localhost sshd[385]: Server listening on :: port 22. > Aug 3 21:13:11 localhost shepherd[1]: Service ssh-daemon has been started. --8<---------------cut here---------------start------------->8--- Sep 5 13:38:55 localhost sshd[745]: Server listening on 0.0.0.0 port 22. Sep 5 13:38:55 localhost sshd[745]: Server listening on :: port 22. Sep 5 13:38:55 localhost shepherd[1]: Service ssh-daemon has been started. --8<---------------cut here---------------end--------------->8--- Please notice the difference from above: this time the sshd server is also listening on the IPv6 address :: while in the above log it was only listening on the 0.0.0.0 IPv4 address Does the failure have something to do with IPv6 not available when sshd starts for the first time after a reboot? Please have a look at the following /var/log/message excerpt from my system after a succesfull ssh-daemon start soon after a reboot (no "manual" intervention): --8<---------------cut here---------------start------------->8--- Sep 5 14:45:00 localhost vmunix: [ 0.247544] pci 0000:00:14.0: reg 0x10: [mem 0xf7c20000-0xf7c2ffff 64bit] Sep 5 14:44:45 localhost sshd[574]: Server listening on 0.0.0.0 port 22. [...] Sep 5 14:44:47 localhost sshd[574]: Server listening on :: port 22. [...] Sep 5 14:45:05 localhost shepherd[1]: Service ssh-daemon has been started. --8<---------------cut here---------------end--------------->8--- Bingo? This time ssh was started also on :: and it works right after a reboot. It really seems it has something to do with IPv6 but I cannot understand exactly what :-S (do I have to disable IPv6 in my configs?) For completeness, I have to say that the issue happened yesterday after a `guix system reconfigure`, this is my current system generation: --8<---------------cut here---------------start------------->8--- Generation 8 Sep 04 2019 17:19:08 (current) file name: /var/guix/profiles/system-8-link canonical file name: /gnu/store/iw2ayn696f8ipmd5gzw9fxljf9h8w4pr-system label: GNU with Linux-Libre 5.2.11 bootloader: grub-efi root device: UUID: 26bd54ec-4e74-4b3a-96ff-58f2f34e4a1a kernel: /gnu/store/xgl60ivx8p5p79zjbf08p4x09881wf4s-linux-libre-5.2.11/bzImage --8<---------------cut here---------------end--------------->8--- Reconfigured with this guix version: --8<---------------cut here---------------start------------->8--- g@batondor ~$ sudo -i guix describe Generation 6 Sep 04 2019 17:17:02 (current) guix 5ee1c04 repository URL: https://git.savannah.gnu.org/git/guix.git branch: master commit: 5ee1c0459eebdd3b7771abaeab0f0b52ff86fdd5 --8<---------------cut here---------------end--------------->8--- This is the shepherd version: --8<---------------cut here---------------start------------->8--- g@batondor ~$ shepherd --version shepherd (GNU Shepherd) 0.6.1 --8<---------------cut here---------------end--------------->8--- Thanks! Gio' -- Giovanni Biscuolo Xelera IT Infrastructures --=-=-= Content-Type: application/pgp-signature; name=signature.asc Content-Transfer-Encoding: base64 LS0tLS1CRUdJTiBQR1AgU0lHTkFUVVJFLS0tLS0KCmlRSXpCQUVCQ2dBZEZpRUVSY3hqdUZKWXlk VmZOTEk1MDMwT3A4N01PUklGQWwxeENBVUFDZ2tRMDMwT3A4N00KT1JMMFF4QUFtaDJvc2dtU2tB bkJraXhuOUE4dGVtUlI3QlpwNStMSGZDNUxHZS81eDBTd3Fhd2YwMVFHQW5udwpuRGpkRDdXZFdx Z0lKSHBabjNoZWJRTFZWWVZHRm5BUDZza0Q0QUczK1lRM29sRTZnaXM0OFRNdlFRNXZVT2gwCkFn UXZpV2pOc3p1Q3NHN3BpWlZvQnM2OCtOZjZteXlKOFZJcVF1S0ZPaEFkQ2E5V1ZLVlFjNGtWdDZO UVZpSEoKVldyZ3F1c1U4eXRXajJnczVyeUtSR1dUeGQwVDRncWU1YVg1WUgrTjNoamkxNnEzOUxR VWxjMzhNZUdxV0tXdwpJaHh5eklmTzZudU43WnBqQzdvc1ZPSSt5TngzSDFSRk9VQjZVeWRhRVQ5 WkxXQks2QjdaVVEvemtPM09POENwCmdNMnY3U1ovSGxJZ2pGeWNvNXNYeTl3YURIU21ZRlFLMWZH TUtXRyswc29pTllCUXNRa2d5N0hFcVNCZ3ROVGMKdVAzdms0bFNFQVF0NklFQW5VTHRZeTBWRUFL OGZxOS80alIzemM1MVZnUTV1K3U3VkNMdEROa25oNmFCRy8rQgpaSEdZL3pWRU83VXVmc3djMjkx MW1BUjU2TUpWM0g2UnR2VjRCem96QVFaUHNkSEVoaXZnMGJUUkdBcWFVMGlQCmF3Y3d3UmE2Mk9Q NkcwRlhPNyt4bDh3d1ZrV3VOSi9PZkg3MUhaMXV1WDAwZWNUdHdoMHZNb0FJWU1CMy9ZSDQKSUx6 c0VscXV3aEgvczhGcVFxNFdNcEVVbGJ4RHdEdVJVejJsdG9ITG40azRhVlkvNkNmenRSRG5pOUZr OGM5UwpBZUNKd3dlOXhmazNSOGFWT3V0ekRNc0FhZ0hHMWhrQTdhczZLNFVYSURWbjZtNHFDRFU9 Cj1hZjVMCi0tLS0tRU5EIFBHUCBTSUdOQVRVUkUtLS0tLQ== --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Sun Sep 08 00:19:28 2019 Received: (at 37309) by debbugs.gnu.org; 8 Sep 2019 04:19:28 +0000 Received: from localhost ([127.0.0.1]:38313 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1i6ofg-0004F4-6w for submit@debbugs.gnu.org; Sun, 08 Sep 2019 00:19:28 -0400 Received: from rezeros.cc ([45.76.207.221]:60174) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1i6ofd-0004Ev-WB for 37309@debbugs.gnu.org; Sun, 08 Sep 2019 00:19:26 -0400 Received: from localhost (117.173.227.57 [117.173.227.57]) by rezeros.cc (OpenSMTPD) with ESMTPSA id 55a055af (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256:NO); Sun, 8 Sep 2019 04:19:23 +0000 (UTC) Received: from gift (localhost.localdomain [127.0.0.1]) by localhost (OpenSMTPD) with ESMTP id f4f5175e; Sun, 8 Sep 2019 04:19:14 +0000 (UTC) From: iyzsong@member.fsf.org (=?utf-8?B?5a6L5paH5q2m?=) To: Giovanni Biscuolo Subject: Re: bug#37309: =?utf-8?B?4oCYc3NoLWRhZW1vbuKAmQ==?= service fails to start at boot References: <87k1da6fdb.fsf@roquette.mug.biscuolo.net> <87y315t3hw.fsf@roquette.mug.biscuolo.net> <87tvbhra2v.fsf@roquette.mug.biscuolo.net> <87imrvhhpy.fsf@cbaines.net> <874l3crjqr.fsf@roquette.mug.biscuolo.net> <87k1c6p914.fsf@roquette.mug.biscuolo.net> <20190817152031.GA3191@jurong> <87pnkuyac0.fsf_-_@gnu.org> <20190828181141.GA27765@jurong> <87ef0u2867.fsf@roquette.mug.biscuolo.net> Date: Sun, 08 Sep 2019 12:19:14 +0800 In-Reply-To: <87ef0u2867.fsf@roquette.mug.biscuolo.net> (Giovanni Biscuolo's message of "Thu, 05 Sep 2019 15:18:24 +0200") Message-ID: <871rwro1x9.fsf@member.fsf.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: 0.0 (/) X-Debbugs-Envelope-To: 37309 Cc: Ludovic =?utf-8?Q?Court=C3=A8s?= , 37309@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) Giovanni Biscuolo writes: > Hi, > > following a recent discussion on guix-sysadmin I have to confirm the > ssh-daemon issue since it is still happening on some of the machines I > administer > > Previous possibly related bug reports are > https://issues.guix.gnu.org/issue/30993 and > https://issues.guix.gnu.org/issue/32197 > > Unfortunately this issue is *not* well reproducible, it depends on some > mysterious (to me) timing factor; AFAIU it does *not* depend on the > shepherd version, probably it depends on "something" related to IPv6 > (read below the details) Hello, thank you for this report, it's reproducible with my box that has an old hard disk, and disable IPv6 for sshd does fix the issue for me... > > Andreas Enge writes: > > [...] > >> My impression is that the problem is still there. I am quite certain it >> happened when I rebooted dover, since I had to connect on the serial console >> to manually restart the ssh service. > > I'm sure it happened when milano-guix-1 was rebooted due to data centre > maintenance and happened yesterday to one of my personal Guix machines at > office > > [...] > > My situation is similar to the one observed by Andreas > >> Well, it is in /var/log/messages: >> Aug 3 21:11:38 localhost sshd[360]: Server listening on 0.0.0.0 port 22. >> Aug 3 21:11:55 localhost shepherd[1]: Service ssh-daemon could not be started. > > [...] > Sep 4 21:46:02 localhost shepherd[1]: Service syslogd has been started. > [...] > Sep 4 21:46:03 localhost shepherd[1]: Service loopback has been started. > [...] > Sep 4 21:46:22 localhost vmunix: [ 0.226337] PCI: Using configuration type 1 for base access > Sep 4 21:46:09 localhost dhclient: DHCPREQUEST for 10.38.2.16 on eno1 to 255.255.255.255 port 67 > [...] > Sep 4 21:46:24 localhost shepherd[1]: Service networking has been started. > [...] > Sep 4 21:46:12 localhost sshd[577]: Server listening on 0.0.0.0 port 22. > [...] > Sep 4 21:46:30 localhost vmunix: [ 0.250107] ACPI: PCI Interrupt Link [LNKA] (IRQs 3 4 5 6 10 *11 12 14 15) > Sep 4 21:46:13 localhost dhclient: DHCPREQUEST for 10.38.2.16 on eno1 to 255.255.255.255 port 67 > [...] > Sep 4 21:46:16 localhost dhclient: DHCPACK of 10.38.2.16 from 10.38.2.1 > [...] > Sep 4 21:46:33 localhost shepherd[1]: Service ssh-daemon could not be started. > [...] > Sep 4 21:46:47 localhost vmunix: [ 0.731142] Segment Routing with IPv6 > > > Please note the timing of the dhclient and the sshd processes: I > inserted them as printed in /var/log/messages but they are not > time-sequential: does it means something or is irrelevant? > > So the sshd process started (as far as I cen see there is no trace it > was stopped) and pretty soon shepherd noticed ssh-daemon was not > started. > > Logging in from the console I see the ssh-daemon is stopped but enabled: > > Status of ssh-daemon: > It is stopped. > It is enabled. > Provides (ssh-daemon). > Requires (syslogd loopback). > Conflicts with (). > Will be respawned. > > > [...] Yes, I think when 'ssh-daemon' failed to start, shepherd should respawn it until success or disable it, but by look at the code of 'make-forkexec-constructor', when using 'pid-file' (as 'ssh-ademon' does), and a timeout (default to 5s %pid-file-timeout) is reached, the processes got a 'SIGTERM' and return '#f' as its running state, which won't be respawn (it's not a pid number) I guess... To ludo: Is my analysis correct? It's not clear to me how to fix it so 'ssh-daemon' can be respawn though... > > If I start it via `sudo herd start ssh-daemon` it immediatly starts, > like in Andreas experience: > >> Aug 3 21:13:10 localhost sshd[385]: Server listening on 0.0.0.0 port 22. >> Aug 3 21:13:10 localhost sshd[385]: Server listening on :: port 22. >> Aug 3 21:13:11 localhost shepherd[1]: Service ssh-daemon has been started. > > Sep 5 13:38:55 localhost sshd[745]: Server listening on 0.0.0.0 port 22. > Sep 5 13:38:55 localhost sshd[745]: Server listening on :: port 22. > Sep 5 13:38:55 localhost shepherd[1]: Service ssh-daemon has been started. > > > Please notice the difference from above: this time the sshd server is > also listening on the IPv6 address :: while in the above log it was only > listening on the 0.0.0.0 IPv4 address > > Does the failure have something to do with IPv6 not available when sshd > starts for the first time after a reboot? I agree, as adding '(extra-content "ListenAddress 0.0.0.0")' to my 'openssh-configuration' to skip the ipv6 listen fix this issue for me. A proper fix should be respawn 'ssh-daemon' and start it after 'ipv6 available' (i don't know what this mean yet..). From debbugs-submit-bounces@debbugs.gnu.org Thu Sep 26 16:23:19 2019 Received: (at control) by debbugs.gnu.org; 26 Sep 2019 20:23:19 +0000 Received: from localhost ([127.0.0.1]:45338 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iDaIH-0001az-Ij for submit@debbugs.gnu.org; Thu, 26 Sep 2019 16:23:19 -0400 Received: from hera.aquilenet.fr ([185.233.100.1]:49176) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iDaIF-0001ap-P3 for control@debbugs.gnu.org; Thu, 26 Sep 2019 16:23:16 -0400 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id DE04E8BD5A for ; Thu, 26 Sep 2019 22:23:13 +0200 (CEST) X-Virus-Scanned: Debian amavisd-new at aquilenet.fr Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id syEdIJuI7lqd for ; Thu, 26 Sep 2019 22:23:12 +0200 (CEST) Received: from ribbon (unknown [IPv6:2a01:e0a:1d:7270:af76:b9b:ca24:c465]) by hera.aquilenet.fr (Postfix) with ESMTPSA id 8A5128BD58 for ; Thu, 26 Sep 2019 22:23:12 +0200 (CEST) Date: Thu, 26 Sep 2019 22:23:11 +0200 Message-Id: <87v9telscw.fsf@gnu.org> To: control@debbugs.gnu.org From: =?utf-8?Q?Ludovic_Court=C3=A8s?= Subject: control message for bug #37309 MIME-version: 1.0 Content-type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.0 (/) severity 37309 important quit From debbugs-submit-bounces@debbugs.gnu.org Thu Sep 26 16:28:48 2019 Received: (at control) by debbugs.gnu.org; 26 Sep 2019 20:28:48 +0000 Received: from localhost ([127.0.0.1]:45349 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iDaNc-0001ln-Er for submit@debbugs.gnu.org; Thu, 26 Sep 2019 16:28:48 -0400 Received: from hera.aquilenet.fr ([185.233.100.1]:49414) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iDaNa-0001lc-AS for control@debbugs.gnu.org; Thu, 26 Sep 2019 16:28:46 -0400 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id B157E8BD6A for ; Thu, 26 Sep 2019 22:28:45 +0200 (CEST) X-Virus-Scanned: Debian amavisd-new at aquilenet.fr Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mTjP7P2CmTcF for ; Thu, 26 Sep 2019 22:28:45 +0200 (CEST) Received: from ribbon (unknown [IPv6:2a01:e0a:1d:7270:af76:b9b:ca24:c465]) by hera.aquilenet.fr (Postfix) with ESMTPSA id EA16E8BD62 for ; Thu, 26 Sep 2019 22:28:44 +0200 (CEST) Date: Thu, 26 Sep 2019 22:28:44 +0200 Message-Id: <87r242ls3n.fsf@gnu.org> To: control@debbugs.gnu.org From: =?utf-8?Q?Ludovic_Court=C3=A8s?= Subject: control message for bug #30993 MIME-version: 1.0 Content-type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.0 (/) merge 30993 37309 quit From debbugs-submit-bounces@debbugs.gnu.org Thu Sep 26 16:29:04 2019 Received: (at control) by debbugs.gnu.org; 26 Sep 2019 20:29:04 +0000 Received: from localhost ([127.0.0.1]:45354 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iDaNr-0001mf-RD for submit@debbugs.gnu.org; Thu, 26 Sep 2019 16:29:04 -0400 Received: from hera.aquilenet.fr ([185.233.100.1]:49432) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iDaNq-0001mJ-SL for control@debbugs.gnu.org; Thu, 26 Sep 2019 16:29:03 -0400 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id 4D8D38BD5B for ; Thu, 26 Sep 2019 22:29:02 +0200 (CEST) X-Virus-Scanned: Debian amavisd-new at aquilenet.fr Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bXG0bYeR9znE for ; Thu, 26 Sep 2019 22:29:01 +0200 (CEST) Received: from ribbon (unknown [IPv6:2a01:e0a:1d:7270:af76:b9b:ca24:c465]) by hera.aquilenet.fr (Postfix) with ESMTPSA id A1AA58BD58 for ; Thu, 26 Sep 2019 22:29:01 +0200 (CEST) Date: Thu, 26 Sep 2019 22:29:01 +0200 Message-Id: <87pnjmls36.fsf@gnu.org> To: control@debbugs.gnu.org From: =?utf-8?Q?Ludovic_Court=C3=A8s?= Subject: control message for bug #30993 MIME-version: 1.0 Content-type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.0 (/) retitle 30993 'ssh-daemon' fails to start quit From debbugs-submit-bounces@debbugs.gnu.org Tue Nov 26 13:34:58 2019 Received: (at 37309) by debbugs.gnu.org; 26 Nov 2019 18:34:59 +0000 Received: from localhost ([127.0.0.1]:52933 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iZffu-0007LI-Ns for submit@debbugs.gnu.org; Tue, 26 Nov 2019 13:34:58 -0500 Received: from mail1.fsfe.org ([217.69.89.151]:56170) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iZffs-0007Kz-TP for 37309@debbugs.gnu.org; Tue, 26 Nov 2019 13:34:57 -0500 From: Jelle Licht To: =?utf-8?B?5a6L5paH5q2m?= , Giovanni Biscuolo Subject: Re: bug#37309: =?utf-8?B?4oCYc3NoLWRhZW1vbuKAmQ==?= service fails to start at boot In-Reply-To: <871rwro1x9.fsf@member.fsf.org> References: <87k1da6fdb.fsf@roquette.mug.biscuolo.net> <87y315t3hw.fsf@roquette.mug.biscuolo.net> <87tvbhra2v.fsf@roquette.mug.biscuolo.net> <87imrvhhpy.fsf@cbaines.net> <874l3crjqr.fsf@roquette.mug.biscuolo.net> <87k1c6p914.fsf@roquette.mug.biscuolo.net> <20190817152031.GA3191@jurong> <87pnkuyac0.fsf_-_@gnu.org> <20190828181141.GA27765@jurong> <87ef0u2867.fsf@roquette.mug.biscuolo.net> <871rwro1x9.fsf@member.fsf.org> Date: Tue, 26 Nov 2019 19:34:52 +0100 Message-ID: <87y2w2mqpf.fsf@jlicht.xyz> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 37309 Cc: 37309@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -6.0 (------) Hey =E5=AE=8B=E6=96=87=E6=AD=A6, Giovanni, iyzsong@member.fsf.org (=E5=AE=8B=E6=96=87=E6=AD=A6) writes: > [...] > Yes, I think when 'ssh-daemon' failed to start, shepherd should respawn > it until success or disable it, but by look at the code of > 'make-forkexec-constructor', when using 'pid-file' (as 'ssh-ademon' > does), and a timeout (default to 5s %pid-file-timeout) is reached, the > processes got a 'SIGTERM' and return '#f' as its running state, which > won't be respawn (it's not a pid number) I guess... > > To ludo: Is my analysis correct? It's not clear to me how to fix it so > 'ssh-daemon' can be respawn though... I think I am also running into a similar issue on my spinning rust based T400. Is there a workaround available that does the above, or is that analysis of the situation not correct either? Thanks, Jelle From debbugs-submit-bounces@debbugs.gnu.org Fri Nov 29 03:41:19 2019 Received: (at 37309) by debbugs.gnu.org; 29 Nov 2019 08:41:19 +0000 Received: from localhost ([127.0.0.1]:59344 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iabq2-0001uq-Kf for submit@debbugs.gnu.org; Fri, 29 Nov 2019 03:41:18 -0500 Received: from ns13.heimat.it ([46.4.214.66]:44518) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iabpy-0001uO-Qo for 37309@debbugs.gnu.org; Fri, 29 Nov 2019 03:41:15 -0500 Received: from localhost (ip6-localhost [127.0.0.1]) by ns13.heimat.it (Postfix) with ESMTP id 8F378300EFB; Fri, 29 Nov 2019 08:41:06 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at ns13.heimat.it Received: from ns13.heimat.it ([127.0.0.1]) by localhost (ns13.heimat.it [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zYN3bc8h6TBs; Fri, 29 Nov 2019 08:40:47 +0000 (UTC) Received: from bourrache.mug.xelera.it (unknown [93.56.161.211]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by ns13.heimat.it (Postfix) with ESMTPSA id 36099300692; Fri, 29 Nov 2019 08:40:47 +0000 (UTC) Received: from roquette.mug.biscuolo.net (roquette [10.38.2.14]) by bourrache.mug.xelera.it (Postfix) with SMTP id 3B322300A05; Fri, 29 Nov 2019 09:40:46 +0100 (CET) Received: (nullmailer pid 4871 invoked by uid 1000); Fri, 29 Nov 2019 08:40:45 -0000 From: Giovanni Biscuolo To: Jelle Licht , =?utf-8?B?5a6L5paH5q2m?= Subject: Re: bug#37309: =?utf-8?B?4oCYc3NoLWRhZW1vbuKAmQ==?= service fails to start at boot In-Reply-To: <87y2w2mqpf.fsf@jlicht.xyz> Organization: Xelera.eu References: <87k1da6fdb.fsf@roquette.mug.biscuolo.net> <87y315t3hw.fsf@roquette.mug.biscuolo.net> <87tvbhra2v.fsf@roquette.mug.biscuolo.net> <87imrvhhpy.fsf@cbaines.net> <874l3crjqr.fsf@roquette.mug.biscuolo.net> <87k1c6p914.fsf@roquette.mug.biscuolo.net> <20190817152031.GA3191@jurong> <87pnkuyac0.fsf_-_@gnu.org> <20190828181141.GA27765@jurong> <87ef0u2867.fsf@roquette.mug.biscuolo.net> <871rwro1x9.fsf@member.fsf.org> <87y2w2mqpf.fsf@jlicht.xyz> Date: Fri, 29 Nov 2019 09:40:37 +0100 Message-ID: <87imn3f52y.fsf@roquette.mug.biscuolo.net> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-Spam-Score: 0.0 (/) X-Debbugs-Envelope-To: 37309 Cc: 37309@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) --=-=-= Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi Jelle, Jelle Licht writes: [...] > I think I am also running into a similar issue on my spinning rust based > T400. Is there a workaround available that does the above, I added `(extra-content "ListenAddress 0.0.0.0")` to my openssh-configuration, to only listen on IPv4 addresses: =2D-8<---------------cut here---------------start------------->8--- (service openssh-service-type (openssh-configuration (port-number 22) (extra-content "ListenAddress 0.0.0.0") (authorized-keys `(("g" ,(local-file "keys/ssh/g.pub")) ("hydra",(local-file "keys/ssh/hydra.pub")))))) =2D-8<---------------cut here---------------end--------------->8--- I tried to reboot several times one machine I can use for testing and it works for me: please can you try and report if this also works for you? [...] Thanks! Gio' =2D-=20 Giovanni Biscuolo Xelera IT Infrastructures --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEERcxjuFJYydVfNLI5030Op87MORIFAl3g2YUACgkQ030Op87M ORJMOA//ZyYsA6NbjXJuTpdp1wE1G8wfZwNdlKFUKgbJL4u8Vdsn/b/UTdCU+sOz bNNq6LCwJEYcVwowSz+2qLGJeOHwCYKwHp4mz+GzeQ41evHVJQYuYCMv5TcP10gw l7RW4rxP1yWRDacdc3bUts/VfhIYykxQcBdmm6zqY+Cg9SsAARIbZn4PRt7ci5JC wfXVCaJu4Diob8lyAt8Gb46aiZiQ3sKRui9xLfvNDD6L/owXbjBwGrXuvToTIAEr rCGImbBSgruYkRM6/1R5Oly3c0wJ5vQbULi/yb+HbVWfd8MmDWu2z2QzNXcsGrxv 8xx82QF4sltfvgABWnBq1EVAWFuSgaBJi7kTVTM1+4KVvRoRPsxwXbkfwMZbtNUE KvhMDeLeGdBehiX1n2eISFefI3kkhdlho2VqiPqskj/q0sRia6NNIC/zXH/RPsXb alc/tcR9OWRHJfnHgZQ1650dCOxWynVwQQB10/Eg4pFfTCSy8B2jfUOzLn6fXyd8 tUz2R+v7YO78XfzUgam9lLpi/p9bvlUS8V22n/vbhOAx0bQSmuGfTQRvu2MJ3xV9 oq3/Y5hqhLdG/Z6XH+ftjzbsg/HGs23O1tOhFFAjrfoAR2rcXSLOYhAnOQXdMBMs rLQ3s7a8NNZbdWhWDNBD09JgGsLhf55I2g8QjSUTB95lwzB5gAg= =Qf9S -----END PGP SIGNATURE----- --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Fri Nov 29 04:51:51 2019 Received: (at 37309) by debbugs.gnu.org; 29 Nov 2019 09:51:51 +0000 Received: from localhost ([127.0.0.1]:59370 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iacwJ-0003Vy-E1 for submit@debbugs.gnu.org; Fri, 29 Nov 2019 04:51:51 -0500 Received: from mail1.fsfe.org ([217.69.89.151]:54484) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1iacwH-0003Vo-Nn for 37309@debbugs.gnu.org; Fri, 29 Nov 2019 04:51:50 -0500 From: Jelle Licht To: Giovanni Biscuolo , =?utf-8?B?5a6L5paH5q2m?= Subject: Re: bug#37309: =?utf-8?B?4oCYc3NoLWRhZW1vbuKAmQ==?= service fails to start at boot In-Reply-To: <87imn3f52y.fsf@roquette.mug.biscuolo.net> References: <87k1da6fdb.fsf@roquette.mug.biscuolo.net> <87y315t3hw.fsf@roquette.mug.biscuolo.net> <87tvbhra2v.fsf@roquette.mug.biscuolo.net> <87imrvhhpy.fsf@cbaines.net> <874l3crjqr.fsf@roquette.mug.biscuolo.net> <87k1c6p914.fsf@roquette.mug.biscuolo.net> <20190817152031.GA3191@jurong> <87pnkuyac0.fsf_-_@gnu.org> <20190828181141.GA27765@jurong> <87ef0u2867.fsf@roquette.mug.biscuolo.net> <871rwro1x9.fsf@member.fsf.org> <87y2w2mqpf.fsf@jlicht.xyz> <87imn3f52y.fsf@roquette.mug.biscuolo.net> Date: Fri, 29 Nov 2019 10:51:46 +0100 Message-ID: <87r21rui19.fsf@jlicht.xyz> MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 37309 Cc: 37309@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -6.0 (------) Hi Giovanni, Giovanni Biscuolo writes: > Hi Jelle, > > Jelle Licht writes: > > [...] > >> I think I am also running into a similar issue on my spinning rust based >> T400. Is there a workaround available that does the above, > > I added `(extra-content "ListenAddress 0.0.0.0")` to my > openssh-configuration, to only listen on IPv4 addresses: > > --8<---------------cut here---------------start------------->8--- > (service openssh-service-type > (openssh-configuration > (port-number 22) > (extra-content "ListenAddress 0.0.0.0") > (authorized-keys > `(("g" ,(local-file "keys/ssh/g.pub")) > ("hydra",(local-file "keys/ssh/hydra.pub")))))) > --8<---------------cut here---------------end--------------->8--- > > I tried to reboot several times one machine I can use for testing and it > works for me: please can you try and report if this also works for you? This, in combination with setting the pid-file-timeout to 30 seconds, made everything work! I guess it is a combination of fun IPv6 interactions with extremely slow and busy spinning rust. Thank you! This does still like a workaround instead of a proper fix though; is there something we can do to mitigate these issues in the first place? - Jelle From debbugs-submit-bounces@debbugs.gnu.org Tue Dec 03 15:15:20 2019 Received: (at 37309) by debbugs.gnu.org; 3 Dec 2019 20:15:20 +0000 Received: from localhost ([127.0.0.1]:41108 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1icEZm-0005RM-36 for submit@debbugs.gnu.org; Tue, 03 Dec 2019 15:15:20 -0500 Received: from out4-smtp.messagingengine.com ([66.111.4.28]:51131) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1icEXe-0005Ne-LJ for 37309@debbugs.gnu.org; Tue, 03 Dec 2019 15:15:11 -0500 Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.nyi.internal (Postfix) with ESMTP id BD52D222F1; Tue, 3 Dec 2019 15:12:55 -0500 (EST) Received: from mailfrontend2 ([10.202.2.163]) by compute4.internal (MEProxy); Tue, 03 Dec 2019 15:12:55 -0500 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=famulari.name; h=from:to:subject:date:message-id:mime-version:content-type :content-transfer-encoding; s=mesmtp; bh=PuOdsdvwCw8DqdcyJpq0t9j a9cSAgmNahsL0qS3bGNY=; b=cigVPblztEs2Cui7NKxDba2QqXNK97o4O7QFpqB FOs4oY5Mk2c62uf/Z+N+WOsudPO89ozUGTacAwgmKR1GYrohb7jECrB6YEmarVwr yBLwIOwFzbOi/rUvPautKopZgSnW64M7UXJkNzlxDmqiXSQPD8Z/SV95V0VVHi/n 4V1k= DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:message-id:mime-version:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; bh=PuOdsd vwCw8DqdcyJpq0t9ja9cSAgmNahsL0qS3bGNY=; b=VX5QPcuC6+HHo7IFUkiSLj gvS5Gm0lt0vz1IGEsMpla3BxbfrxlhQI+6WyLy3DrFaQeujMBfH/xRDgmWh3Vlqt TPxH4mteUfLCCp8pY4kV2XpLIP3AxIZMzXPzG2frcQs5Xod5RNI+ZpSgLJgOGanD 5i4KyQQhZVZAcaELMjxaCuLvOwNMi/JJdMGZzFsCrD3JE/ufw+CB5y0njOzAvrc7 InTwD3PpnwOW4FCmCtM5xT0ensXAw2BmplvBXw8l8NcbQ2wJIEOMVbcr6tf6VM/L ER6nUEWop6aOCmTT9aaRjHOCWKv/RcxxSonzgJeoxseslIxtvSy8Xe4ApizV79kA == X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedufedrudejjedgudefgecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecunecujfgurhephffvufffkffogggtgfesthekre dtredtjeenucfhrhhomhepnfgvohcuhfgrmhhulhgrrhhiuceolhgvohesfhgrmhhulhgr rhhirdhnrghmvgeqnecuffhomhgrihhnpehguhhigidrihhnfhhopdhgnhhurdhorhhgne cukfhppeejiedruddvgedrudefkedrieefnecurfgrrhgrmhepmhgrihhlfhhrohhmpehl vghosehfrghmuhhlrghrihdrnhgrmhgvnecuvehluhhsthgvrhfuihiivgeptd X-ME-Proxy: Received: from jasmine.lan (c-76-124-138-63.hsd1.pa.comcast.net [76.124.138.63]) by mail.messagingengine.com (Postfix) with ESMTPA id 6CFA9306010D for <37309@debbugs.gnu.org>; Tue, 3 Dec 2019 15:12:55 -0500 (EST) From: Leo Famulari To: 37309@debbugs.gnu.org Subject: [PATCH] services: openssh: Restrict to IPv4. Date: Tue, 3 Dec 2019 15:12:51 -0500 Message-Id: <180aa2dee4e1da7fe915c85b90b1f60edd04f23d.1575403967.git.leo@famulari.name> X-Mailer: git-send-email 2.24.0 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Spam-Score: -0.8 (/) X-Debbugs-Envelope-To: 37309 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) This works around . * gnu/services/ssh.scm ()[address-family]: New field. (openssh-config-file): Use it. * doc/guix.texi: Document it. --- doc/guix.texi | 10 ++++++++++ gnu/services/ssh.scm | 16 +++++++++++++++- 2 files changed, 25 insertions(+), 1 deletion(-) diff --git a/doc/guix.texi b/doc/guix.texi index 39eb25385c..cf0e141baf 100644 --- a/doc/guix.texi +++ b/doc/guix.texi @@ -13913,6 +13913,16 @@ This is a symbol specifying the logging level: @code{quiet}, @code{fatal}, @code{error}, @code{info}, @code{verbose}, @code{debug}, etc. See the man page for @file{sshd_config} for the full list of level names. +@item @code{address-family} (default: @code{'inet}) +This is a symbol specifying which type of internet addresses should be +handled by @command{sshd}. The options are @code{inet} (IPv4), +@code{inet6} (IPv6), or @code{any}, which selects both @code{inet} and +@code{inet6}. The upstream default in @code{any}. However, we +currently default to @code{inet} due to a nondeterministic +@command{sshd} startup failure when using IPv6 on Guix. See +@uref{https://issues.guix.info/issue/30993, the bug report} for more +information on this temporary limitation. + @item @code{extra-content} (default: @code{""}) This field can be used to append arbitrary text to the configuration file. It is especially useful for elaborate configurations that cannot be expressed diff --git a/gnu/services/ssh.scm b/gnu/services/ssh.scm index d2dbb8f80d..7e25810eff 100644 --- a/gnu/services/ssh.scm +++ b/gnu/services/ssh.scm @@ -4,6 +4,7 @@ ;;; Copyright © 2016 Julien Lepiller ;;; Copyright © 2017 Clément Lassieur ;;; Copyright © 2019 Ricardo Wurmus +;;; Copyright © 2019 Leo Famulari ;;; ;;; This file is part of GNU Guix. ;;; @@ -340,7 +341,16 @@ The other options should be self-descriptive." ;; proposed in . Keep it internal/undocumented ;; for now. (%auto-start? openssh-auto-start? - (default #t))) + (default #t)) + + ;; Symbol + ;; XXX: This shouldn't be required, but due to limitations with IPv6 + ;; on Guix, sshd often fails to start when it attempts to bind to both + ;; 0.0.0.0 and ::, because the IPv6 interface is not ready in time. + ;; Accepted options are inet (IPv4), inet6 (IPv6), or any (both). + ;; + (address-family openssh-configuration-address-family + (default 'inet))) (define %openssh-accounts (list (user-group (name "sshd") (system? #t)) @@ -468,6 +478,10 @@ of user-name/file-like tuples." (symbol->string (openssh-configuration-log-level config)))) + (format port "AddressFamily ~a\n" + #$(symbol->string + (openssh-configuration-address-family config))) + ;; Add '/etc/authorized_keys.d/%u', which we populate. (format port "AuthorizedKeysFile \ .ssh/authorized_keys .ssh/authorized_keys2 /etc/ssh/authorized_keys.d/%u\n") -- 2.24.0 From debbugs-submit-bounces@debbugs.gnu.org Tue Dec 03 16:53:56 2019 Received: (at submit) by debbugs.gnu.org; 3 Dec 2019 21:53:56 +0000 Received: from localhost ([127.0.0.1]:41173 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1icG7D-0007z1-Md for submit@debbugs.gnu.org; Tue, 03 Dec 2019 16:53:56 -0500 Received: from lists.gnu.org ([209.51.188.17]:34792) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1icG78-0007yo-RO for submit@debbugs.gnu.org; Tue, 03 Dec 2019 16:53:50 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]:38852) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1icG73-0007tI-9p for bug-guix@gnu.org; Tue, 03 Dec 2019 16:53:43 -0500 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=0.8 required=5.0 tests=BAYES_50,URIBL_BLOCKED autolearn=disabled version=3.3.2 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1icG6v-0006nK-Tf for bug-guix@gnu.org; Tue, 03 Dec 2019 16:53:35 -0500 Received: from lepiller.eu ([89.234.186.109]:57716) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1icG6v-0006E8-8u for bug-guix@gnu.org; Tue, 03 Dec 2019 16:53:33 -0500 Received: from lepiller.eu (localhost [127.0.0.1]) by lepiller.eu (OpenSMTPD) with ESMTP id 672200ee; Tue, 3 Dec 2019 21:53:22 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=lepiller.eu; h=date :in-reply-to:references:mime-version:content-type :content-transfer-encoding:subject:to:from:message-id; s=dkim; bh=VmU5lRMy5d2+QgKCdwqWvR9SNUM=; b=XQCwbAfOAfPfGuK8GX5VGDq4OdUQ hrDNZl5EFS4aoGmj2H4+3mpfyZQRFtpsO+tP8aaazNSaB/HDi3GszwZpR09O1t4C f2L7HtqnXyRvh4UsY8rJKjnpLTSsetnyc9ofkpcSwdtB0v7J7G/6oQ/BGSTAdQx+ AtW1QG3Elo1XbQjAibPtjF3KJmEXrtEViFCYwyg3OEVtJsgAfxHh1sQoWCY13Ews CmikPYxed753AeG0Q8TP7oNtissY9lpMsgpeolXvURRGNOBP8OZjwQyJfd3U01jN +lbLarlFxwqIaTmcE4RgYZrmCOzLWkoBaRYuq+roHc7MeXVS9kXPOARGMg== Received: by lepiller.eu (OpenSMTPD) with ESMTPSA id 9963c8aa (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256:NO); Tue, 3 Dec 2019 21:53:21 +0000 (UTC) Date: Tue, 03 Dec 2019 22:53:11 +0100 User-Agent: K-9 Mail for Android In-Reply-To: <180aa2dee4e1da7fe915c85b90b1f60edd04f23d.1575403967.git.leo@famulari.name> References: <87ef0u2867.fsf@roquette.mug.biscuolo.net> <180aa2dee4e1da7fe915c85b90b1f60edd04f23d.1575403967.git.leo@famulari.name> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Subject: Re: bug#37309: [PATCH] services: openssh: Restrict to IPv4. To: bug-guix@gnu.org,Leo Famulari ,37309@debbugs.gnu.org From: Julien Lepiller Message-ID: <9AF0F57B-ED38-4A4F-9D34-B0A083DBBB3C@lepiller.eu> X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] [fuzzy] X-Received-From: 89.234.186.109 X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: submit X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) Le 3 d=C3=A9cembre 2019 21:12:51 GMT+01:00, Leo Famulari a =C3=A9crit : >This works around =2E > >* gnu/services/ssh=2Escm ()[address-family]: New >field=2E >(openssh-config-file): Use it=2E >* doc/guix=2Etexi: Document it=2E >--- > doc/guix=2Etexi | 10 ++++++++++ > gnu/services/ssh=2Escm | 16 +++++++++++++++- > 2 files changed, 25 insertions(+), 1 deletion(-) > >diff --git a/doc/guix=2Etexi b/doc/guix=2Etexi >index 39eb25385c=2E=2Ecf0e141baf 100644 >--- a/doc/guix=2Etexi >+++ b/doc/guix=2Etexi >@@ -13913,6 +13913,16 @@ This is a symbol specifying the logging level: >@code{quiet}, @code{fatal}, >@code{error}, @code{info}, @code{verbose}, @code{debug}, etc=2E See the >man > page for @file{sshd_config} for the full list of level names=2E >=20 >+@item @code{address-family} (default: @code{'inet}) >+This is a symbol specifying which type of internet addresses should be >+handled by @command{sshd}=2E The options are @code{inet} (IPv4), >+@code{inet6} (IPv6), or @code{any}, which selects both @code{inet} and >+@code{inet6}=2E The upstream default in @code{any}=2E However, we default *is* >+currently default to @code{inet} due to a nondeterministic >+@command{sshd} startup failure when using IPv6 on Guix=2E See >+@uref{https://issues=2Eguix=2Einfo/issue/30993, the bug report} for more >+information on this temporary limitation=2E >+ > @item @code{extra-content} (default: @code{""}) >This field can be used to append arbitrary text to the configuration >file=2E It >is especially useful for elaborate configurations that cannot be >expressed >diff --git a/gnu/services/ssh=2Escm b/gnu/services/ssh=2Escm >index d2dbb8f80d=2E=2E7e25810eff 100644 >--- a/gnu/services/ssh=2Escm >+++ b/gnu/services/ssh=2Escm >@@ -4,6 +4,7 @@ > ;;; Copyright =C2=A9 2016 Julien Lepiller > ;;; Copyright =C2=A9 2017 Cl=C3=A9ment Lassieur > ;;; Copyright =C2=A9 2019 Ricardo Wurmus >+;;; Copyright =C2=A9 2019 Leo Famulari > ;;; > ;;; This file is part of GNU Guix=2E > ;;; >@@ -340,7 +341,16 @@ The other options should be self-descriptive=2E" >;; proposed in =2E Keep it >internal/undocumented > ;; for now=2E > (%auto-start? openssh-auto-start? >- (default #t))) >+ (default #t)) >+ >+ ;; Symbol >+ ;; XXX: This shouldn't be required, but due to limitations with IPv6 >+ ;; on Guix, sshd often fails to start when it attempts to bind to >both >+ ;; 0=2E0=2E0=2E0 and ::, because the IPv6 interface is not ready in ti= me=2E >+ ;; Accepted options are inet (IPv4), inet6 (IPv6), or any (both)=2E >+ ;; >+ (address-family openssh-configuration-address-family >+ (default 'inet))) >=20 > (define %openssh-accounts > (list (user-group (name "sshd") (system? #t)) >@@ -468,6 +478,10 @@ of user-name/file-like tuples=2E" > (symbol->string > (openssh-configuration-log-level config)))) >=20 >+ (format port "AddressFamily ~a\n" >+ #$(symbol->string >+ (openssh-configuration-address-family config))) >+ > ;; Add '/etc/authorized_keys=2Ed/%u', which we populate=2E > (format port "AuthorizedKeysFile \ >=2Essh/authorized_keys =2Essh/authorized_keys2 >/etc/ssh/authorized_keys=2Ed/%u\n") From debbugs-submit-bounces@debbugs.gnu.org Wed Dec 04 08:41:47 2019 Received: (at 37309) by debbugs.gnu.org; 4 Dec 2019 13:41:47 +0000 Received: from localhost ([127.0.0.1]:41571 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1icUuY-0001M7-SI for submit@debbugs.gnu.org; Wed, 04 Dec 2019 08:41:47 -0500 Received: from wout2-smtp.messagingengine.com ([64.147.123.25]:36773) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1icUuX-0001Lu-4R for 37309@debbugs.gnu.org; Wed, 04 Dec 2019 08:41:45 -0500 Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.west.internal (Postfix) with ESMTP id 2BC677EC; Wed, 4 Dec 2019 08:41:39 -0500 (EST) Received: from mailfrontend2 ([10.202.2.163]) by compute4.internal (MEProxy); Wed, 04 Dec 2019 08:41:39 -0500 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=famulari.name; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:content-transfer-encoding:in-reply-to; s=mesmtp; bh=d/ENTXGdLwgZ8MtzmxJ5mVB4LBsJ1Ny8/wRNeZhoDkc=; b=X3Em75Zjf/Qr JKWa0k3OKVHYj4p+BrymIs9l05hcwmgLo/s6c3IPVHJaD5aA0/VvKXngx/xubz1H SzVwRJ+rzdvUjNlspOHaI18TTLTeW89KBA45SOt+OlcFe/ervahAVQswme4QJT7E tST374Xp85rbPHuMzq6ZtBgl7FvnK+M= DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm1; bh=d/ENTXGdLwgZ8MtzmxJ5mVB4LBsJ1Ny8/wRNeZhoD kc=; b=KTRDl5eW4sz0BO22nSwNQyds83yg8hkkjbeYFhbwC0KOpY2ACf862y8yi iGJ2+jMjEpz3Mm/x9LyMQet1je9FoQNrwAxhRwMcRBaSG8pMzua+OnzgH4Al5efH pz2J+oLfzqmxfvyGaJHgZRtd43RmdYrbunGxT1kNlxlbvoQNIgDMuZMiyRb4rDWo zwR7Hs0K6lBzDQiz83UxD/+6bXbACIveHnWpaDE4TsLmRvI5k7o8vgMaPmvHYYen hWvE/8UlfVUYoMAlaY/yjc9aBFBmHnKjdFm6oJKCZPuR6C61d3Oj0V4Jfa6PhPM2 IdtInnshQ53KPI40yIenGxp/iMT8w== X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedufedrudejledgheefucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhepfffhvffukfhfgggtugfgjggfsehtkeertddtredunecuhfhrohhmpefnvgho ucfhrghmuhhlrghrihcuoehlvghosehfrghmuhhlrghrihdrnhgrmhgvqeenucfkphepje eirdduvdegrddufeekrdeifeenucfrrghrrghmpehmrghilhhfrhhomheplhgvohesfhgr mhhulhgrrhhirdhnrghmvgenucevlhhushhtvghrufhiiigvpedt X-ME-Proxy: Received: from localhost (c-76-124-138-63.hsd1.pa.comcast.net [76.124.138.63]) by mail.messagingengine.com (Postfix) with ESMTPA id 7484F3060191; Wed, 4 Dec 2019 08:41:37 -0500 (EST) Date: Wed, 4 Dec 2019 08:41:35 -0500 From: Leo Famulari To: Julien Lepiller Subject: Re: bug#37309: [PATCH] services: openssh: Restrict to IPv4. Message-ID: <20191204134135.GA7375@jasmine.lan> References: <87ef0u2867.fsf@roquette.mug.biscuolo.net> <180aa2dee4e1da7fe915c85b90b1f60edd04f23d.1575403967.git.leo@famulari.name> <9AF0F57B-ED38-4A4F-9D34-B0A083DBBB3C@lepiller.eu> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <9AF0F57B-ED38-4A4F-9D34-B0A083DBBB3C@lepiller.eu> User-Agent: Mutt/1.12.2 (2019-09-21) X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 37309 Cc: 37309@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.7 (-) On Tue, Dec 03, 2019 at 10:53:11PM +0100, Julien Lepiller wrote: > Le 3 décembre 2019 21:12:51 GMT+01:00, Leo Famulari a écrit : > >+@item @code{address-family} (default: @code{'inet}) > >+This is a symbol specifying which type of internet addresses should be > >+handled by @command{sshd}. The options are @code{inet} (IPv4), > >+@code{inet6} (IPv6), or @code{any}, which selects both @code{inet} and > >+@code{inet6}. The upstream default in @code{any}. However, we > default *is* Thanks! This patch did make sshd work for me again. However, as part of trying to debug this issue, I changed my system configuration so that it uses dhcp-client-service and wpa-supplicant-service instead of using Wicd. And now I can't reproduce the bug anymore. I guess that either 1) wpa_supplicant brings the network interfaces up faster or 2) the state of the network interfaces is more accurately captured with these services (in the sense of, is the network up?). Tricky... Does the patch help anybody else? From debbugs-submit-bounces@debbugs.gnu.org Tue Dec 10 11:47:36 2019 Received: (at 37309) by debbugs.gnu.org; 10 Dec 2019 16:47:36 +0000 Received: from localhost ([127.0.0.1]:56485 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1ieiff-0000QS-Nw for submit@debbugs.gnu.org; Tue, 10 Dec 2019 11:47:35 -0500 Received: from eggs.gnu.org ([209.51.188.92]:50555) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1ieife-0000QF-BK for 37309@debbugs.gnu.org; Tue, 10 Dec 2019 11:47:34 -0500 Received: from fencepost.gnu.org ([2001:470:142:3::e]:55151) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1ieifX-0005S8-L8; Tue, 10 Dec 2019 11:47:27 -0500 Received: from [2001:660:6102:320:e120:2c8f:8909:cdfe] (port=53342 helo=ribbon) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1ieifX-0001TK-19; Tue, 10 Dec 2019 11:47:27 -0500 From: =?utf-8?Q?Ludovic_Court=C3=A8s?= To: Leo Famulari Subject: Re: bug#37309: [PATCH] services: openssh: Restrict to IPv4. References: <87ef0u2867.fsf@roquette.mug.biscuolo.net> <180aa2dee4e1da7fe915c85b90b1f60edd04f23d.1575403967.git.leo@famulari.name> <9AF0F57B-ED38-4A4F-9D34-B0A083DBBB3C@lepiller.eu> <20191204134135.GA7375@jasmine.lan> X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 20 Frimaire an 228 de la =?utf-8?Q?R=C3=A9volution?= X-PGP-Key-ID: 0x090B11993D9AEBB5 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5 X-OS: x86_64-pc-linux-gnu Date: Tue, 10 Dec 2019 17:47:25 +0100 In-Reply-To: <20191204134135.GA7375@jasmine.lan> (Leo Famulari's message of "Wed, 4 Dec 2019 08:41:35 -0500") Message-ID: <87tv68m8ki.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.3 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 37309 Cc: Julien Lepiller , 37309@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) Hi Leo, Leo Famulari skribis: > On Tue, Dec 03, 2019 at 10:53:11PM +0100, Julien Lepiller wrote: >> Le 3 d=C3=A9cembre 2019 21:12:51 GMT+01:00, Leo Famulari a =C3=A9crit : >> >+@item @code{address-family} (default: @code{'inet}) >> >+This is a symbol specifying which type of internet addresses should be >> >+handled by @command{sshd}. The options are @code{inet} (IPv4), >> >+@code{inet6} (IPv6), or @code{any}, which selects both @code{inet} and >> >+@code{inet6}. The upstream default in @code{any}. However, we >> default *is* > > Thanks! > > This patch did make sshd work for me again. > > However, as part of trying to debug this issue, I changed my system > configuration so that it uses dhcp-client-service and > wpa-supplicant-service instead of using Wicd. And now I can't reproduce > the bug anymore. > > I guess that either 1) wpa_supplicant brings the network interfaces up > faster or 2) the state of the network interfaces is more accurately > captured with these services (in the sense of, is the network up?). Did anyone manage to get an strace log as was discussed in ? That would allow us to know where this is hanging exactly (probably bind(2) on an IPv6 address.) Thanks, Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Tue Aug 18 00:08:49 2020 Received: (at control) by debbugs.gnu.org; 18 Aug 2020 04:08:49 +0000 Received: from localhost ([127.0.0.1]:33703 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1k7svZ-0000BE-Cf for submit@debbugs.gnu.org; Tue, 18 Aug 2020 00:08:49 -0400 Received: from mail-qt1-f176.google.com ([209.85.160.176]:44562) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1k7svX-0000Aw-FQ for control@debbugs.gnu.org; Tue, 18 Aug 2020 00:08:48 -0400 Received: by mail-qt1-f176.google.com with SMTP id h21so14199203qtp.11 for ; Mon, 17 Aug 2020 21:08:47 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:date:message-id:to:subject; bh=/dStQY7xm7SUm1KCZIk10gq2A1sNSQtz5r5b388Y8lQ=; b=ZZKKbFYQT2tziO1OvyjippgI1uCTv8obwXc1KkoS/msapYhFiA0wwDOWA6taElSSPA 8XZYzLekledwAHmd5YUgF8Q+PDIjgQoPgGoX3SgyOnInV842LmTy/3QfIgG8hfiNpl20 FV6LLi9Lvq+B1UsSOIuJA5sIVPYsQIJlLGP0a+6W6PSb9X9eNSXbFP4xIVcz7UzNWZP9 k2g/HJITjwdjyEzphZnnVmgu3En2SY0opVEvqKJa46xjoRCLK/txEMgBiBRe+M0ajj9z 9wi8AScOyH478Eg+ki5qRa4MzRXtzCO0M9n6IwqxbWIUJiGuxPYZ9h79niXPTx1xJ3wK kv+w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:date:message-id:to:subject; bh=/dStQY7xm7SUm1KCZIk10gq2A1sNSQtz5r5b388Y8lQ=; b=r8WzPoL7p4dp/7Fzk3WDJ10EIoWw96+rkop0y2mkRhyrVnyJ4j+WifkvURrumZkYy1 zJGyjfF8h2OzdR8ffyJAPxZ0kGqBqyS16RGQLKyWuh5KlIo5qsBQKata3VRbZSJwGzm8 IqD1FtCvO/ttau6YQFReDtiyHgUN5lGgIF847T1cRrFJHHFf8FjTelJlSkUwWJ9extoI MQ75s6Fl64lU24yPJgoZqZyZxVe0/xBzqqyTB0HHzk6Qvz1II4SNcO2ZNh8ns1rTNyMS nZpOOtNaNKM+2vIch18sOsEOq1L/fZviyMh9j2m0pVN0QiplO/L9csUsfYGs36kkmW9+ qSPg== X-Gm-Message-State: AOAM531jTiWfO47Z/2HbFJcR9geYtE7AV1MipjeWFB3NizKf2Vk8o3bB BIltP5aQjlRH2XdYpoMjvb3sQiwM+P4= X-Google-Smtp-Source: ABdhPJwlClAnZDe89/K5XdauCHspewVGUUevqp1Tn2vQzeNHBJjIUkfde0WzZ18ym38dvJWR2VksqA== X-Received: by 2002:ac8:4e28:: with SMTP id d8mr16651645qtw.134.1597723721575; Mon, 17 Aug 2020 21:08:41 -0700 (PDT) Received: from hurd (dsl-10-148-23.b2b2c.ca. [72.10.148.23]) by smtp.gmail.com with ESMTPSA id l45sm22889198qtf.11.2020.08.17.21.08.40 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 17 Aug 2020 21:08:41 -0700 (PDT) From: maxim.cournoyer@gmail.com X-Google-Original-From: maxim@hurd.i-did-not-set--mail-host-address--so-tickle-me Date: Tue, 18 Aug 2020 00:08:39 -0400 Message-Id: <87wo1wppdk.fsf@hurd.i-did-not-set--mail-host-address--so-tickle-me> To: control@debbugs.gnu.org Subject: control message for bug #30993 X-Spam-Score: 0.0 (/) X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) tags 30993 fixed close 30993 quit From unknown Sat Jun 21 10:45:32 2025 Received: (at fakecontrol) by fakecontrolmessage; To: internal_control@debbugs.gnu.org From: Debbugs Internal Request Subject: Internal Control Message-Id: bug archived. Date: Tue, 15 Sep 2020 11:24:04 +0000 User-Agent: Fakemail v42.6.9 # This is a fake control message. # # The action: # bug archived. thanks # This fakemail brought to you by your local debbugs # administrator From debbugs-submit-bounces@debbugs.gnu.org Fri Nov 27 17:58:02 2020 Received: (at control) by debbugs.gnu.org; 27 Nov 2020 22:58:02 +0000 Received: from localhost ([127.0.0.1]:46582 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kimgk-0002s3-0T for submit@debbugs.gnu.org; Fri, 27 Nov 2020 17:58:02 -0500 Received: from dustycloud.org ([50.116.34.160]:44312) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kimgi-0002rj-0i for control@debbugs.gnu.org; Fri, 27 Nov 2020 17:58:00 -0500 Received: from twig (localhost [127.0.0.1]) by dustycloud.org (Postfix) with ESMTPS id 4AFB42665A for ; Fri, 27 Nov 2020 17:57:59 -0500 (EST) User-agent: mu4e 1.4.13; emacs 27.1 From: Christopher Lemmer Webber To: control@debbugs.gnu.org Subject: unarchive 37309 Date: Fri, 27 Nov 2020 17:57:27 -0500 Message-ID: <87y2imjtm0.fsf@dustycloud.org> MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) unarchive 37309 From debbugs-submit-bounces@debbugs.gnu.org Fri Nov 27 18:01:30 2020 Received: (at submit) by debbugs.gnu.org; 27 Nov 2020 23:01:30 +0000 Received: from localhost ([127.0.0.1]:46600 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kimk5-00047O-QY for submit@debbugs.gnu.org; Fri, 27 Nov 2020 18:01:30 -0500 Received: from lists.gnu.org ([209.51.188.17]:47436) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kimk4-00045x-0s for submit@debbugs.gnu.org; Fri, 27 Nov 2020 18:01:28 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]:52876) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kimk2-0007Mu-SO for bug-guix@gnu.org; Fri, 27 Nov 2020 18:01:27 -0500 Received: from dustycloud.org ([2600:3c02::f03c:91ff:feae:cb51]:57634) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kimk0-0006KE-Ps for bug-guix@gnu.org; Fri, 27 Nov 2020 18:01:26 -0500 Received: from twig (localhost [127.0.0.1]) by dustycloud.org (Postfix) with ESMTPS id 934A32665A; Fri, 27 Nov 2020 18:01:20 -0500 (EST) References: <87k1da6fdb.fsf@roquette.mug.biscuolo.net> <87y315t3hw.fsf@roquette.mug.biscuolo.net> <87tvbhra2v.fsf@roquette.mug.biscuolo.net> <87imrvhhpy.fsf@cbaines.net> <874l3crjqr.fsf@roquette.mug.biscuolo.net> <87k1c6p914.fsf@roquette.mug.biscuolo.net> <20190817152031.GA3191@jurong> <87pnkuyac0.fsf_-_@gnu.org> <20190828181141.GA27765@jurong> <87ef0u2867.fsf@roquette.mug.biscuolo.net> User-agent: mu4e 1.4.13; emacs 27.1 From: Christopher Lemmer Webber To: Giovanni Biscuolo Subject: Re: bug#37309: =?utf-8?B?4oCYc3NoLWRhZW1vbuKAmQ==?= service fails to start at boot In-reply-to: <87ef0u2867.fsf@roquette.mug.biscuolo.net> Date: Fri, 27 Nov 2020 18:00:48 -0500 Message-ID: <87tutajtgf.fsf@dustycloud.org> MIME-Version: 1.0 Content-Type: text/plain Received-SPF: pass client-ip=2600:3c02::f03c:91ff:feae:cb51; envelope-from=cwebber@dustycloud.org; helo=dustycloud.org X-Spam_score_int: 14 X-Spam_score: 1.4 X-Spam_bar: + X-Spam_report: (1.4 / 5.0 requ) BAYES_00=-1.9, RCVD_IN_SBL_CSS=3.335, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001 autolearn=no autolearn_force=no X-Spam_action: no action X-Spam-Score: 2.2 (++) X-Spam-Report: Spam detection software, running on the system "debbugs.gnu.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: Giovanni Biscuolo writes: > Hi, > > following a recent discussion on guix-sysadmin I have to confirm the > ssh-daemon issue since it is still happening on some of the machines I > administer > > Previous possibly related bug r [...] Content analysis details: (2.2 points, 10.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -2.3 RCVD_IN_DNSWL_MED RBL: Sender listed at https://www.dnswl.org/, medium trust [209.51.188.17 listed in list.dnswl.org] 3.6 RCVD_IN_SBL_CSS RBL: Received via a relay in Spamhaus SBL-CSS [2600:3c02:0:0:f03c:91ff:feae:cb51 listed in] [zen.spamhaus.org] 1.0 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail) -0.0 SPF_HELO_PASS SPF: HELO matches SPF record 0.0 RCVD_IN_MSPIKE_H4 RBL: Very Good reputation (+4) [209.51.188.17 listed in wl.mailspike.net] 0.0 RCVD_IN_MSPIKE_WL Mailspike good senders X-Debbugs-Envelope-To: submit Cc: bug-guix@gnu.org, 37309@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.2 (+) X-Spam-Report: Spam detection software, running on the system "debbugs.gnu.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: Giovanni Biscuolo writes: > Hi, > > following a recent discussion on guix-sysadmin I have to confirm the > ssh-daemon issue since it is still happening on some of the machines I > administer > > Previous possibly related bug r [...] Content analysis details: (1.2 points, 10.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 3.6 RCVD_IN_SBL_CSS RBL: Received via a relay in Spamhaus SBL-CSS [2600:3c02:0:0:f03c:91ff:feae:cb51 listed in] [zen.spamhaus.org] -2.3 RCVD_IN_DNSWL_MED RBL: Sender listed at https://www.dnswl.org/, medium trust [209.51.188.17 listed in list.dnswl.org] 0.0 RCVD_IN_MSPIKE_H4 RBL: Very Good reputation (+4) [209.51.188.17 listed in wl.mailspike.net] 1.0 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail) -0.0 SPF_HELO_PASS SPF: HELO matches SPF record 0.0 RCVD_IN_MSPIKE_WL Mailspike good senders -1.0 MAILING_LIST_MULTI Multiple indicators imply a widely-seen list manager Giovanni Biscuolo writes: > Hi, > > following a recent discussion on guix-sysadmin I have to confirm the > ssh-daemon issue since it is still happening on some of the machines I > administer > > Previous possibly related bug reports are > https://issues.guix.gnu.org/issue/30993 and > https://issues.guix.gnu.org/issue/32197 > > Unfortunately this issue is *not* well reproducible, it depends on some > mysterious (to me) timing factor; AFAIU it does *not* depend on the > shepherd version, probably it depends on "something" related to IPv6 > (read below the details) This issue continues to plauge me, and has ever since I started to use GuixSD. However it is much worse now that I am running Guix on servers... I frequently have to log in via Linode's (nonfree!) web console on every server that is rebooted and kick herd to restart openssh. Once I do that it's fine. I don't think my linode machine is on "spinning rust" so I don't think this is the cause. IPv6, maybe? Dunno what. However I think that it's probably really a dependency issue somewhere; herd is starting opensshd before some other dependent service is spawned. But what? Maybe something authentication related like networking, or something. But hm, networking is required... I'm assuming others must be experiencing this still too... right? Would really like to see it fixed. It's one of the few things holding me back from recommending Guix on servers to others. Do others have any idea? I noticed the lsh daemon requires networking. Why doesn't openssh? What about the following "fix"? diff --git a/gnu/services/ssh.scm b/gnu/services/ssh.scm index 1891db0487..c9bd62bab7 100644 --- a/gnu/services/ssh.scm +++ b/gnu/services/ssh.scm @@ -508,7 +508,7 @@ of user-name/file-like tuples." (list (shepherd-service (documentation "OpenSSH server.") - (requirement '(syslogd loopback)) + (requirement '(syslogd networking loopback)) (provision '(ssh-daemon ssh sshd)) (start #~(make-forkexec-constructor #$openssh-command #:pid-file #$pid-file)) From debbugs-submit-bounces@debbugs.gnu.org Fri Nov 27 20:08:47 2020 Received: (at 37309) by debbugs.gnu.org; 28 Nov 2020 01:08:47 +0000 Received: from localhost ([127.0.0.1]:46668 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kiojH-0001gd-Ek for submit@debbugs.gnu.org; Fri, 27 Nov 2020 20:08:47 -0500 Received: from eggs.gnu.org ([209.51.188.92]:54812) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kiojD-0001gN-5n for 37309@debbugs.gnu.org; Fri, 27 Nov 2020 20:08:46 -0500 Received: from fencepost.gnu.org ([2001:470:142:3::e]:35953) by eggs.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1kioj7-0000pX-I8; Fri, 27 Nov 2020 20:08:37 -0500 Received: from host-37-191-224-14.lynet.no ([37.191.224.14]:43938 helo=localhost) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1kioj7-0003Py-4r; Fri, 27 Nov 2020 20:08:37 -0500 From: Marius Bakke To: Christopher Lemmer Webber , Giovanni Biscuolo Subject: Re: bug#37309: =?utf-8?B?4oCYc3NoLWRhZW1vbuKAmQ==?= service fails to start at boot In-Reply-To: <87tutajtgf.fsf@dustycloud.org> References: <87k1da6fdb.fsf@roquette.mug.biscuolo.net> <87y315t3hw.fsf@roquette.mug.biscuolo.net> <87tvbhra2v.fsf@roquette.mug.biscuolo.net> <87imrvhhpy.fsf@cbaines.net> <874l3crjqr.fsf@roquette.mug.biscuolo.net> <87k1c6p914.fsf@roquette.mug.biscuolo.net> <20190817152031.GA3191@jurong> <87pnkuyac0.fsf_-_@gnu.org> <20190828181141.GA27765@jurong> <87ef0u2867.fsf@roquette.mug.biscuolo.net> <87tutajtgf.fsf@dustycloud.org> Date: Sat, 28 Nov 2020 02:08:34 +0100 Message-ID: <87k0u6xp7x.fsf@gnu.org> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 37309 Cc: 37309@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) --=-=-= Content-Type: text/plain Christopher Lemmer Webber skriver: > Giovanni Biscuolo writes: > >> Hi, >> >> following a recent discussion on guix-sysadmin I have to confirm the >> ssh-daemon issue since it is still happening on some of the machines I >> administer >> >> Previous possibly related bug reports are >> https://issues.guix.gnu.org/issue/30993 and >> https://issues.guix.gnu.org/issue/32197 >> >> Unfortunately this issue is *not* well reproducible, it depends on some >> mysterious (to me) timing factor; AFAIU it does *not* depend on the >> shepherd version, probably it depends on "something" related to IPv6 >> (read below the details) > > This issue continues to plauge me, and has ever since I started to use > GuixSD. However it is much worse now that I am running Guix on > servers... I frequently have to log in via Linode's (nonfree!) web > console on every server that is rebooted and kick herd to restart > openssh. Once I do that it's fine. Can you share an excerpt of /var/log/messages (ideally the whole boot sequence) from when SSH failed to start? > I don't think my linode machine is on "spinning rust" so I don't think > this is the cause. IPv6, maybe? Dunno what. > > However I think that it's probably really a dependency issue somewhere; > herd is starting opensshd before some other dependent service is > spawned. But what? Maybe something authentication related like > networking, or something. But hm, networking is required... > > I'm assuming others must be experiencing this still too... right? FWIW I have never encountered this. :-/ > Would really like to see it fixed. It's one of the few things holding > me back from recommending Guix on servers to others. > > Do others have any idea? > > I noticed the lsh daemon requires networking. Why doesn't openssh? It's really for legacy reasons, from before we had the Guix System installer. Then a common way to install was to run dhclient and "herd start ssh-daemon" manually on the live image, so people could do the installation over SSH: https://issues.guix.gnu.org/26548#5 Nowadays, the installer gives a nice and quick way to deploy a minimal system, and I suspect the SSH method has fallen out of favor. > What about the following "fix"? [...] > (list (shepherd-service > (documentation "OpenSSH server.") > - (requirement '(syslogd loopback)) > + (requirement '(syslogd networking loopback)) If it works for you, let's do this. It would be good to find the underlying cause though... Not sure what to do about the installer however: perhaps create yet-another undocumented field of openssh-service-type that makes the networking requirement optional? --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQFDBAEBCgAtFiEEu7At3yzq9qgNHeZDoqBt8qM6VPoFAl/BoxIPHG1hcml1c0Bn bnUub3JnAAoJEKKgbfKjOlT6IkcIALXF4JaUnoObn2DOBkcTf83l7xOGTVP8CHMJ IBtQNc5hwpMKj39uzSM2CJPRmNxIqpcFbFYqUDATz9S6UET+mTHuQ9mCL2XsF5tF wRjneR/vUaCC0uSKOK01hdUon1dNzTY3lAfwEu41b/zLLXwjMZcnIlA4roIlcYhN VhM9oVpoGPZCoB9FpcnO7ab7pmvecsjajDYSqTrYgrwFrKZEulOm4lYPIDun7jHp JAzepeEfApYd7jPI346I0x+/xdGzXtcw5xprhfV6QkVqzeNZaLhZTMyn+iJjGl3H sYiw1DmSRn8zNz1YO7zt3Bk0mq5BLNiONXxdm6Z0Hcbq+Eh6k6A= =6Eah -----END PGP SIGNATURE----- --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Thu Dec 03 15:39:09 2020 Received: (at 37309) by debbugs.gnu.org; 3 Dec 2020 20:39:09 +0000 Received: from localhost ([127.0.0.1]:41878 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kkvNd-00060W-5K for submit@debbugs.gnu.org; Thu, 03 Dec 2020 15:39:09 -0500 Received: from wout2-smtp.messagingengine.com ([64.147.123.25]:59903) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kkvNb-00060F-UK for 37309@debbugs.gnu.org; Thu, 03 Dec 2020 15:39:08 -0500 Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.west.internal (Postfix) with ESMTP id AB5FAFD7; Thu, 3 Dec 2020 15:39:01 -0500 (EST) Received: from mailfrontend1 ([10.202.2.162]) by compute3.internal (MEProxy); Thu, 03 Dec 2020 15:39:02 -0500 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=famulari.name; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:in-reply-to; s=mesmtp; bh=cccZd/HZIgB9AO3jFdr1OuU6 6yKJBLpO/pGfoFsTUvc=; b=ZKln4+fHAaA0T5VFoRd2w9JVwGVrDSWi6u/x/Nck na1NPFbWlXIdl5rBliIC0IyMYqqn+eQAgjXKzU1i9n+4QBY1ndbyihu5NzXXVPP8 0FNc0DpcKku8/ExYT//Wls8hNCsLLYEotpRMpM9mOwxo1Qu6PBxbyD7smFD8+XST XmY= DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; bh=cccZd/ HZIgB9AO3jFdr1OuU66yKJBLpO/pGfoFsTUvc=; b=UG63PLmLN5y92qRwgKMnEd lrBBOdenanbD0+O2l2rXGZBU413w9wKucsGpe6Wt77LS4pywA4+41WqTgTU5e7rh nmmUrUr8UGL8lwDJYcR7d75BaZlB+1MkxlsbteHgoRFpqWmgMDOxruAW1RFBLU3m iXQsQv6N/Lu4+8G9TanV2wog5o/e5cp3ZI6wy8nbvhuWEFbZivhqxgRi5r0yaHgF HGHvxEqiixxPhmO1i+qXTzuxJpEzlSYOmjT/AY7fgi4SR7kKv62Gy3urZMcc8OFL qkb5UMovmknXl4eFko3P3LbG1RK6vszThbN+W8uZlQSeAYrNozz2OM7rv6Kjo7Dg == X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedujedrudeiiedgudegudcutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmd enucfjughrpeffhffvuffkfhggtggujgesghdtreertddtvdenucfhrhhomhepnfgvohcu hfgrmhhulhgrrhhiuceolhgvohesfhgrmhhulhgrrhhirdhnrghmvgeqnecuggftrfgrth htvghrnhepudekveegteekleetgfeitdejgfejkeffudethedvhfeukeduleeikeejfeeh ffetnecukfhppeejfedrudeguddruddvjedrudegieenucevlhhushhtvghrufhiiigvpe dtnecurfgrrhgrmhepmhgrihhlfhhrohhmpehlvghosehfrghmuhhlrghrihdrnhgrmhgv X-ME-Proxy: Received: from localhost (c-73-141-127-146.hsd1.pa.comcast.net [73.141.127.146]) by mail.messagingengine.com (Postfix) with ESMTPA id A4741240059; Thu, 3 Dec 2020 15:39:00 -0500 (EST) Date: Thu, 3 Dec 2020 15:38:59 -0500 From: Leo Famulari To: Marius Bakke Subject: Re: bug#37309: =?utf-8?B?4oCYc3NoLWRhZW1v?= =?utf-8?B?buKAmQ==?= service fails to start at boot Message-ID: References: <87tvbhra2v.fsf@roquette.mug.biscuolo.net> <87imrvhhpy.fsf@cbaines.net> <874l3crjqr.fsf@roquette.mug.biscuolo.net> <87k1c6p914.fsf@roquette.mug.biscuolo.net> <20190817152031.GA3191@jurong> <87pnkuyac0.fsf_-_@gnu.org> <20190828181141.GA27765@jurong> <87ef0u2867.fsf@roquette.mug.biscuolo.net> <87tutajtgf.fsf@dustycloud.org> <87k0u6xp7x.fsf@gnu.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="tA8SbypSriY52XJP" Content-Disposition: inline In-Reply-To: <87k0u6xp7x.fsf@gnu.org> X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 37309 Cc: Christopher Lemmer Webber , Giovanni Biscuolo , 37309@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.7 (-) --tA8SbypSriY52XJP Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Nov 28, 2020 at 02:08:34AM +0100, Marius Bakke wrote: > Christopher Lemmer Webber skriver: > > I'm assuming others must be experiencing this still too... right? >=20 > FWIW I have never encountered this. :-/ I reenabled IPv6 listening for sshd after updating to 1.2.0 and things are working for now. The problem has always been intermittent for me in the past. Chris, are you using an old Thinkpad too? --tA8SbypSriY52XJP Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAABCAAdFiEEsFFZSPHn08G5gDigJkb6MLrKfwgFAl/JTOMACgkQJkb6MLrK fwh3ehAA5eqcYL2e9Um8q35fSDuChLmmJWdxqzUec+9W64i7tQbi6Ni30jj9HH6o 7EPcK6TqCRWQ9GlSRpJKqUWX8s+vRZS9fMR/0g9ohDdkaasaUW+5hnTJ3GBoDy8i BVeJPvlz1Z7cLw7HPOXzQ+fpp/lI68qKr5Q7czoy/rd0ktSYJqhqtS3T2lCG9EZ5 Z+sQXCvrRGgoYlAoKCgdEFmsbCG2yRKhGQduCdmHqgX2X3jvrvWvA+4jjhGy+QSy yBVgDNBnnyj8R1L0M8lcuGRZCZLA5s9Wh5DTLHnm+aheq7YKr9crSbdHTB4TI7O8 zYis/5xL+oY1HNzR4Y5jdzDYneEBHOGmWoctUsTkfRd6xC2PtcieDvP59XoPKJKJ H2eOi7iZC8pH3IbEfrv+HSQobqtILh4wLKDKfdl+yrp0BvCokRPzhtYk++neeHle +XMfuij1riUWuTApJh4gmHpoMhobXqV6wbD6ZVIhpR6DWWgfUbePGG2zelReEfAs GgFwgSttdSVd0n3e+qrlYbdlbcilo6GxTHy64LoyepSbTn72iMOZG3k5+eoJSx1T OzRdHRdD/jQt/Im5AISF6zMjTEQHGoqQXAkXB2/FS4Zx0gLLeubT2m2uOaqW2fNW rJ2TGCOlWTOSvLL0FWyuZN+SFJ/+ZRABi2Np36u7K8iPDIzTMhA= =039v -----END PGP SIGNATURE----- --tA8SbypSriY52XJP-- From debbugs-submit-bounces@debbugs.gnu.org Thu Dec 03 16:57:18 2020 Received: (at 37309) by debbugs.gnu.org; 3 Dec 2020 21:57:18 +0000 Received: from localhost ([127.0.0.1]:42002 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kkwbG-0007x4-Ff for submit@debbugs.gnu.org; Thu, 03 Dec 2020 16:57:18 -0500 Received: from dustycloud.org ([50.116.34.160]:51190) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kkwbF-0007ww-4L for 37309@debbugs.gnu.org; Thu, 03 Dec 2020 16:57:17 -0500 Received: from twig (localhost [127.0.0.1]) by dustycloud.org (Postfix) with ESMTPS id 449A426641; Thu, 3 Dec 2020 16:57:16 -0500 (EST) References: <87tvbhra2v.fsf@roquette.mug.biscuolo.net> <87imrvhhpy.fsf@cbaines.net> <874l3crjqr.fsf@roquette.mug.biscuolo.net> <87k1c6p914.fsf@roquette.mug.biscuolo.net> <20190817152031.GA3191@jurong> <87pnkuyac0.fsf_-_@gnu.org> <20190828181141.GA27765@jurong> <87ef0u2867.fsf@roquette.mug.biscuolo.net> <87tutajtgf.fsf@dustycloud.org> <87k0u6xp7x.fsf@gnu.org> User-agent: mu4e 1.4.13; emacs 27.1 From: Christopher Lemmer Webber To: Leo Famulari Subject: Re: bug#37309: =?utf-8?B?4oCYc3NoLWRhZW1vbuKAmQ==?= service fails to start at boot In-reply-to: Date: Thu, 03 Dec 2020 16:56:40 -0500 Message-ID: <87pn3qzh7r.fsf@dustycloud.org> MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: 37309 Cc: Giovanni Biscuolo , 37309@debbugs.gnu.org, Marius Bakke X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) Leo Famulari writes: > On Sat, Nov 28, 2020 at 02:08:34AM +0100, Marius Bakke wrote: >> Christopher Lemmer Webber skriver: >> > I'm assuming others must be experiencing this still too... right? >> >> FWIW I have never encountered this. :-/ > > I reenabled IPv6 listening for sshd after updating to 1.2.0 and things > are working for now. The problem has always been intermittent for me in > the past. > > Chris, are you using an old Thinkpad too? I did experience it on an old thinkpad, though in this case it's happening on the Linode server I'm running. Not particularly old, but probably shared by many users and thus slower in some way. That's part of what makes me think this is some kind of race condition... From unknown Sat Jun 21 10:45:32 2025 Received: (at fakecontrol) by fakecontrolmessage; To: internal_control@debbugs.gnu.org From: Debbugs Internal Request Subject: Internal Control Message-Id: bug archived. Date: Fri, 01 Jan 2021 12:24:05 +0000 User-Agent: Fakemail v42.6.9 # This is a fake control message. # # The action: # bug archived. thanks # This fakemail brought to you by your local debbugs # administrator