-
-
Notifications
You must be signed in to change notification settings - Fork 2.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
RFC: fix #6686: Debian: enable ssh.service and make it work reliably on armbian-firstrun #6687
Conversation
…s generation purposes)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
lgtm
Is this still being worked on? |
Hi @EvilOlaf I tested a couple weeks ago a vanilla Bookworm image and couldn't reproduce; let me test again and get back to you :) |
I'm running a bookworm-vendor image built from trunk a couole hrs ago - orangepi5-plus Tomorrow I'll try the same config on my nanopi-r5c - will report any issue Should you be able to pull some log data, it could be helpful in pinpointing root cause |
This PR: #3774 wants to run armbian-firstrun before ssh.service 🤔 (including some other ssh changes) Which is better? 😄 |
Can't say, but if it's more complete/compatible we should consider it |
No no, disregard everything that is not ssh related 😄 The other stuff in this PR is unrelated. I have just discovered that linked PR and am trying to see if some of the stuff is beneficial. |
Can't say to be honest: what I understood experimentally is that a few weeks ago ssh on boot (Trixie) was failing 30%-60% of the times - when armbian-firstrun was started before it - no issue on bookworm When this issue appeared, trixie ssh init file changed in order to pull Reproduced same results on bookworm - trixie - and called it a day - pushing this PR - current vs edge kernels made no difference (ubuntu manages sshd with a socket strategy - different than debian) At the time I only tested on orangepi5-plus, orangepizero3 and orangepizero2w |
I haven't run into any issues so far, but I'll test 👍 |
Great, thanks - perhaps the key might be related to some specific boards tweaks |
Alright. Finally got there. tl;dr: never mind |
No biggie Werner, it's been better to double check |
Description
ssh.service
activation fails on first boot due to a race condition witharmbian-firstrun
(missing host keys at ssh.service startup)By changing
armbian-firstrun.service
to runAfter=ssh.service
SBC is always reachable reliably via ssh, even on first run, so that it can be configured headlessly by remote loginIt also reverts commit IDs: #911c756083164c32051d533ca3f2de488f202130 and #30c47f6f6cebd75f5c28866918fea093b8c82b44 disabling
ssh.socket
- this fixes SSH Deamon behavious to honourListenAddress
directive when set viasshd_config
Jira reference number [AR-2356]
How Has This Been Tested?
systemd enable armbian-firstrun.service and touch
/root/.not_logged_in_yet(Bookworm-Edge && Trixie-Edge)
Checklist: