[Bug 1209063] New: [Snapshot 20230307] OpenSSH fails to start with FIPS mode enabled
http://bugzilla.opensuse.org/show_bug.cgi?id=1209063 Bug ID: 1209063 Summary: [Snapshot 20230307] OpenSSH fails to start with FIPS mode enabled Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: MicroOS Assignee: kubic-bugs@opensuse.org Reporter: jalausuch@suse.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- When enabling FIPS on MicroOS, ssh can't be started:
sshd.service - OpenSSH Daemon Loaded: loaded (/usr/lib/systemd/system/sshd.service; enabled; preset: enabled) Active: failed (Result: exit-code) since Wed 2023-03-08 11:07:28 UTC; 6min ago Process: 1082 ExecStartPre=/usr/sbin/sshd-gen-keys-start (code=exited, status=0/SUCCESS) Process: 1091 ExecStartPre=/usr/sbin/sshd -t $SSHD_OPTS (code=exited, status=255/EXCEPTION) CPU: 46ms
Mar 08 11:07:28 localhost.localdomain systemd[1]: sshd.service: Scheduled restart job, restart counter is at 5. Mar 08 11:07:28 localhost.localdomain systemd[1]: Stopped OpenSSH Daemon. Mar 08 11:07:28 localhost.localdomain systemd[1]: sshd.service: Start request repeated too quickly. Mar 08 11:07:28 localhost.localdomain systemd[1]: sshd.service: Failed with result 'exit-code'. Mar 08 11:07:28 localhost.localdomain systemd[1]: Failed to start OpenSSH Daemon.
rpm -q patterns-base-fips patterns-base-fips-20200505-39.1.x86_64
rpm -q openssh-fips openssh-fips-8.9p1-7.2.x86_64
Journal errors:
journalctl --no-pager --quiet -p err -o short-precise Mar 08 12:13:05.705213 localhost systemd[1]: Failed to start OpenSSH Daemon. Mar 08 12:13:05.987071 localhost systemd[1]: Failed to start OpenSSH Daemon. Mar 08 12:13:06.381482 localhost systemd[1]: Failed to start OpenSSH Daemon. Mar 08 12:13:06.847204 localhost.localdomain systemd[1]: Failed to start OpenSSH Daemon. Mar 08 12:13:07.231217 localhost.localdomain systemd[1]: Failed to start OpenSSH Daemon. Mar 08 12:13:07.450948 localhost.localdomain systemd[1]: Failed to start OpenSSH Daemon.
Detailed Journal messages:
Mar 08 12:13:05.802940 localhost systemd[1]: Starting Add host ssh key fingerprint to issue file... Mar 08 12:13:05.898348 localhost systemd[1]: sshd.service: Scheduled restart job, restart counter is at 1. Mar 08 12:13:05.898443 localhost systemd[1]: Stopped OpenSSH Daemon. Mar 08 12:13:05.900334 localhost systemd[1]: Starting OpenSSH Daemon... Mar 08 12:13:05.903830 localhost sshd-gen-keys-start[1036]: Checking for missing server keys in /etc/ssh Mar 08 12:13:05.959678 localhost systemd[1]: issue-add-ssh-keys.service: Deactivated successfully. Mar 08 12:13:05.959748 localhost systemd[1]: Finished Add host ssh key fingerprint to issue file. Mar 08 12:13:05.966932 localhost systemd[1]: Starting Permit User Sessions... Mar 08 12:13:05.981236 localhost sshd[1039]: PRNG is not seeded Mar 08 12:13:05.986973 localhost systemd[1]: sshd.service: Control process exited, code=exited, status=255/EXCEPTION Mar 08 12:13:05.986979 localhost systemd[1]: sshd.service: Failed with result 'exit-code'. Mar 08 12:13:05.987071 localhost systemd[1]: Failed to start OpenSSH Daemon.
-- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1209063 Felix Niederwanger <felix.niederwanger@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |felix.niederwanger@suse.com -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com