Merge lp:~jordane/cloud-init/sshd-systemd-fix into lp:~cloud-init-dev/cloud-init/trunk
Proposed by
Jordan Evans
Status: | Merged |
---|---|
Merged at revision: | 995 |
Proposed branch: | lp:~jordane/cloud-init/sshd-systemd-fix |
Merge into: | lp:~cloud-init-dev/cloud-init/trunk |
Diff against target: |
14 lines (+2/-1) 1 file modified
systemd/cloud-init.service (+2/-1) |
To merge this branch: | bzr merge lp:~jordane/cloud-init/sshd-systemd-fix |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
cloud-init Commiters | Pending | ||
Review via email: mp+226880@code.launchpad.net |
This proposal supersedes a proposal from 2014-06-24.
Description of the change
Fixes bug 1333920, a race condition between sshd and cloud-init by making cloud-init start before sshd.
To post a comment you must log in.
Hi jordan,
is this necessary?
In Ubuntu, my experience is that sshd actually does the right thing. On each connection, it will check keys. Ie, you can start sshd whenever, and cloud-init will write the keys later, and ssh will deny connections until those keys are found.
that is a bit less than ideal, because ideally the port wouldn't even be open, so the "poll-er" could just poll until port open and then expect everythign functional.
So my question is does this result in permanent broken? or broken until keys generated.