Ghost in the machine?
106 views
Skip to first unread message
Chökie Gyaltsen
Dec 16, 2019, 12:26:00 PM12/16/19
to qubes...@googlegroups.com
Hello all,
I've just installed Qubes latest preview 3. Installed it offline, so all the logs you will see are from a disconnected system. There are some services disabled related to security that worry me ( listed below ). Also some entries that i have some doubts on sys logs ( written below also ). I had a critical warning just after the install, related to gtk before the login screen. Attached are all the logs found, complete. If you need some other info please just let me know.
Thank you very much in advance for your help. Doubts below.
output of systemctl -al showing inactive services only ( full list of services attached )
-----------------------------------------------------------------------------------------
UNIT LOAD ACTIVE SUB DESCRIPTION
boot.automount loaded inactive dead boot.automount
dev-block-259:2.device loaded inactive dead dev-block-259:2.device
dev-hugepages.mount loaded inactive dead Huge Pages File System
proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System
sys-fs-fuse-connections.mount loaded inactive dead FUSE Control File System
systemd-ask-password-console.path loaded inactive dead Dispatch Password Requests to Console Directory Watch
alsa-restore.service loaded inactive dead Save/Restore Sound Card State
● apparmor.service not-found inactive dead apparmor.service
auditd.service loaded inactive dead Security Auditing Service
dmraid-activation.service loaded inactive dead Activation of DM RAID sets
emergency.service loaded inactive dead Emergency Shell
● fedora-autorelabel-mark.service not-found inactive dead fedora-autorelabel-mark.service
● fedora-autorelabel.service not-found inactive dead fedora-autorelabel.service
fedora-import-state.service loaded inactive dead Import network configuration from initramfs
fstrim.service loaded inactive dead Discard unused blocks
ge...@tty1.service loaded inactive dead Getty on tty1
iscsid.service loaded inactive dead Open-iSCSI
iscsiuio.service loaded inactive dead iSCSI UserSpace I/O driver
libvirt-guests.service loaded inactive dead Suspend/Resume Running libvirt Guests
● livesys-late.service not-found inactive dead livesys-late.service
● lvm2-activation-early.service not-found inactive dead lvm2-activation-early.service
● lvm2-activation.service not-found inactive dead lvm2-activation.service
plymouth-quit-wait.service loaded inactive dead Hold until boot process finishes up
plymouth-quit.service loaded inactive dead Terminate Plymouth Boot Screen
plymouth-read-write.service loaded inactive dead Tell Plymouth To Write Out Runtime Data
plymouth-start.service loaded inactive dead Show Plymouth Boot Screen
qube...@sys-firewall.service loaded inactive dead Start Qubes VM sys-firewall
qube...@sys-net.service loaded inactive dead Start Qubes VM sys-net
qube...@sys-whonix.service loaded inactive dead Start Qubes VM sys-whonix
rc-local.service loaded inactive dead /etc/rc.d/rc.local Compatibility
rescue.service loaded inactive dead Rescue Shell
● syslog.service not-found inactive dead syslog.service
systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console
systemd-ask-password-plymouth.service loaded inactive dead Forward Password Requests to Plymouth
systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall
systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats
systemd-firstboot.service loaded inactive dead First Boot Wizard
systemd-initctl.service loaded inactive dead /dev/initctl Compatibility Daemon
systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk
systemd-quotacheck.service loaded inactive dead File System Quota Check
systemd-rfkill.service loaded inactive dead Load/Save RF Kill Switch Status
systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories
systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes
virtlockd.service loaded inactive dead Virtual machine lock manager
virtlogd.service loaded inactive dead Virtual machine log manager
● ypbind.service not-found inactive dead ypbind.service
system-qubes\x2dvm.slice loaded inactive dead system-qubes\x2dvm.slice
syslog.socket loaded inactive dead Syslog Socket
emergency.target loaded inactive dead Emergency Mode
network-pre.target loaded inactive dead Network (Pre)
network.target loaded inactive dead Network
remote-fs-pre.target loaded inactive dead Remote File Systems (Pre)
rescue.target loaded inactive dead Rescue Mode
shutdown.target loaded inactive dead Shutdown
time-sync.target loaded inactive dead System Time Synchronized
umount.target loaded inactive dead Unmount All Filesystems
virt-guest-shutdown.target loaded inactive dead Libvirt guests shutdown
The question here is if it is normal that these services are disabled on first login just after a disconnected install?
output of journalctl -ax --merge ( full journalctl output attached ) below the messages i have some comments on my doubts
-------------------------------------------------------------------------------------------------------------------------
Dec 15 20:52:30 dom0 kernel: Linux version 4.19.86-1.pvops.qubes.x86_64 (user@build-fedora4) (gcc version 6.4.1 20170727 (Red Hat 6.4.1-1) (GCC)) #1 SMP Sun Dec 1 07:16:00 UTC 2019
Dec 15 20:52:30 dom0 kernel: Command line: placeholder root=/dev/mapper/qubes_dom0-root ro rd.lvm.lv=qubes_dom0/root rd.lvm.lv=qubes_dom0/swap i915.alpha_support=1 plymouth.ignore-serial-con
( is it possible to disable alpha support? i Have a skylake 9th gen ) - later there is an entry stating that it taints the kernel
Dec 15 20:52:30 dom0 kernel: ata1: SATA link up 3.0 Gbps (SStatus 123 SControl 300)
Dec 15 20:52:30 dom0 kernel: ata1.00: supports DRM functions and may not be fully accessible
Dec 15 20:52:30 dom0 kernel: ata1.00: ATA-11: Samsung SSD 860 EVO 250GB, RVT01B6Q, max UDMA/133
Dec 15 20:52:30 dom0 kernel: ata1.00: 488397168 sectors, multi 1: LBA48 NCQ (depth 32), AA
Dec 15 20:52:30 dom0 kernel: ata1.00: supports DRM functions and may not be fully accessible
Dec 15 20:52:30 dom0 kernel: ata1.00: configured for UDMA/133
( isn`t UDMA 133 a little old for a recent SSD? If so, is it possible to speedup the disk with newer drivers? )
Dec 15 20:52:30 dom0 kernel: ahci 0000:00:17.0: port does not support device sleep
Dec 15 20:52:30 dom0 kernel: scsi 0:0:0:0: Direct-Access ATA Samsung SSD 860 1B6Q PQ: 0 ANSI: 5
Dec 15 20:52:30 dom0 kernel: sd 0:0:0:0: Attached scsi generic sg0 type 0
Dec 15 20:52:30 dom0 kernel: ata1.00: Enabling discard_zeroes_data
Dec 15 20:52:30 dom0 kernel: sd 0:0:0:0: [sda] 488397168 512-byte logical blocks: (250 GB/233 GiB)
Dec 15 20:52:30 dom0 kernel: sd 0:0:0:0: [sda] Write Protect is off
Dec 15 20:52:30 dom0 kernel: sd 0:0:0:0: [sda] Mode Sense: 00 3a 00 00
Dec 15 20:52:30 dom0 kernel: sd 0:0:0:0: [sda] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA
Dec 15 20:52:30 dom0 kernel: ata1.00: Enabling discard_zeroes_data
Dec 15 20:52:30 dom0 kernel: sda:
Dec 15 20:52:30 dom0 kernel: ata1.00: Enabling discard_zeroes_data
Dec 15 20:52:30 dom0 systemd-modules-load[195]: Failed to find module 'uinput'
( found info on kernel.org stating this module is for user input, is it normal that the module is not present? )
Dec 15 20:52:31 dom0 kernel: Setting dangerous option alpha_support - tainting kernel
( can this be disabled and a more accurate skylake 9th gen driver made available? )
Dec 15 20:52:31 dom0 kernel: nvme nvme0: missing or invalid SUBNQN field.
Dec 15 20:52:31 dom0 kernel: nvme nvme0: Shutdown timeout set to 8 seconds
Dec 15 20:52:31 dom0 kernel: nvme0n1: p1 p2
( after some searching i found that this message is related to the boot disk Samsung V-NAND SSD 970 PRO NVMe M.2, just installed. The hardware is pretty new but Samsung has made available the source code for 'magician' ( if i remember correctly, ( i am still offline ), software under request. The linux version is old and does not recognize any of the disks present on the machine. Do you know of any opensource project ongoing to port the tool to linux? )
Dec 15 20:52:34 dom0 kernel: input: PC Speaker as /devices/platform/pcspkr/input/input8
( a speakear as input??? like a mic or something? )
Dec 15 20:52:34 dom0 kernel: cfg80211: Loading compiled-in X.509 certificates for regulatory database
Dec 15 20:52:34 dom0 kernel: RAPL PMU: API unit is 2^-32 Joules, 5 fixed counters, 655360 ms ovfl timer
Dec 15 20:52:34 dom0 kernel: RAPL PMU: hw unit of domain pp0-core 2^-14 Joules
Dec 15 20:52:34 dom0 kernel: RAPL PMU: hw unit of domain package 2^-14 Joules
Dec 15 20:52:34 dom0 kernel: RAPL PMU: hw unit of domain dram 2^-14 Joules
Dec 15 20:52:34 dom0 kernel: RAPL PMU: hw unit of domain pp1-gpu 2^-14 Joules
Dec 15 20:52:34 dom0 kernel: RAPL PMU: hw unit of domain psys 2^-14 Joules
Dec 15 20:52:34 dom0 kernel: cfg80211: Loaded X.509 cert 'sforshee: 00b28ddf47aef9cea7'
Dec 15 20:52:34 dom0 kernel: platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
( is it normal this error? )
Dec 15 20:52:35 dom0 systemd[1]: tmp.mount: Directory /tmp to mount over is not empty, mounting anyway.
( this always happened in previous installations, strange no? )
Dec 15 20:52:36 dom0 systemd-tmpfiles[1180]: Cannot set file attribute for '/var/log/journal', value=0x00800000, mask=0x00800000: Operation not supported
Dec 15 20:52:36 dom0 systemd-tmpfiles[1180]: Cannot set file attribute for '/var/log/journal/2f474aa11eba4b1394708823e685bcd8', value=0x00800000, mask=0x00800000: Operation not supported
( is this normal? )
Dec 15 20:52:36 dom0 xenstored[1267]: TDB: tdb_open_ex: could not open file /var/lib/xenstored/tdb: No such file or directory
Dec 15 20:52:36 dom0 xenstored[1267]: Checking store ...
( this message happens at every boot )
Dec 15 20:52:37 dom0 xenstored[1267]: Checking store complete.
Dec 15 20:52:38 dom0 udisksd[1497]: Acquired the name org.freedesktop.UDisks2 on the system message bus
Dec 15 20:52:38 dom0 udisksd[1497]: Error loading modules: Error opening directory '/usr/lib64/udisks2/modules': No such file or directory
Dec 15 20:52:40 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/__init__.py:703: DeprecationWarning: Gdk.Screen.get_primary_monitor is deprecated primary = screen.get_primary_monitor()
Dec 15 20:52:40 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/__init__.py:704: DeprecationWarning: Gdk.Screen.get_monitor_geometry is deprecated monitor_geometry = screen.get_monitor_geometry(primary)
Dec 15 20:52:40 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/__init__.py:705: DeprecationWarning: Gdk.Screen.get_monitor_scale_factor is deprecated monitor_scale = screen.get_monitor_scale_factor(primary)
Dec 15 20:52:40 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/__init__.py:706: DeprecationWarning: Gdk.Screen.get_monitor_width_mm is deprecated monitor_width_mm = screen.get_monitor_width_mm(primary)
Dec 15 20:52:40 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/__init__.py:707: DeprecationWarning: Gdk.Screen.get_monitor_height_mm is deprecated monitor_height_mm = screen.get_monitor_height_mm(primary)
Dec 15 20:52:40 dom0 anaconda[1338]: Detected primary monitor: 1920x1080 168dpix 161dpiy
Dec 15 20:52:40 dom0 anaconda[1338]: Entered hub: InitialSetupMainHub
Dec 15 20:52:41 dom0 anaconda[1338]: /usr/share/anaconda/addons/org_qubes_os_initial_setup/gui/spokes/qubes_os.py:113: DeprecationWarning: Gtk.Alignment.set_padding is deprecated self.outer_widget.set_padding(0, 0, 20, 0)
Dec 15 20:52:41 dom0 anaconda[1338]: /usr/lib64/python3.5/_collections_abc.py:597: DeprecationWarning: Will be removed in 1.0. Access properties with Device.properties. return self[key]
Dec 15 20:52:41 dom0 anaconda[1338]: /usr/share/anaconda/addons/org_qubes_os_initial_setup/gui/spokes/qubes_os.py:90: DeprecationWarning: Will be removed in 1.0. Use equivalent Devices method udev_info = pyudev.Device.from_device_file(context, dev)
Dec 15 20:52:41 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/hubs/__init__.py:197: DeprecationWarning: Gtk.Widget.set_margin_left is deprecated selector.set_margin_left(12)
Dec 15 20:52:41 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/gi/overrides/Gdk.py:329: DeprecationWarning: Gdk.Cursor.new is deprecated return cls.new(*args, **kwds)
( is it possible that the critical errors of gtk are because of this? )
Dec 15 20:53:16 dom0 kernel: kauditd_printk_skb: 30 callbacks suppressed
( probably typing the password, no? )
Dec 15 21:02:47 dom0 pulseaudio[12493]: [pulseaudio] authkey.c: Failed to open cookie file '/home/dunde/.config/pulse/cookie': No such file or directory
Dec 15 21:02:47 dom0 pulseaudio[12493]: [pulseaudio] authkey.c: Failed to load authentication key '/home/dunde/.config/pulse/cookie': No such file or directory
Dec 15 21:02:47 dom0 pulseaudio[12493]: [pulseaudio] authkey.c: Failed to open cookie file '/home/dunde/.pulse-cookie': No such file or directory
Dec 15 21:02:47 dom0 pulseaudio[12493]: [pulseaudio] authkey.c: Failed to load authentication key '/home/dunde/.pulse-cookie': No such file or directory
( this message happens at every boot too )
Dec 15 22:01:01 dom0 CROND[12871]: (root) CMD (run-parts /etc/cron.hourly)
Dec 15 22:01:01 dom0 run-parts[12874]: (/etc/cron.hourly) starting 0anacron
Dec 15 22:01:01 dom0 anacron[12882]: Anacron started on 2019-12-15
Dec 15 22:01:01 dom0 anacron[12882]: Will run job `cron.daily' in 28 min.
Dec 15 22:01:01 dom0 anacron[12882]: Will run job `cron.weekly' in 48 min.
Dec 15 22:01:01 dom0 anacron[12882]: Will run job `cron.monthly' in 68 min.
Dec 15 22:01:01 dom0 anacron[12882]: Jobs will be executed sequentially
Dec 15 22:01:01 dom0 run-parts[12884]: (/etc/cron.hourly) finished 0anacron
Dec 15 22:29:01 dom0 anacron[12882]: Job `cron.daily' started
Dec 15 22:29:01 dom0 run-parts[12979]: (/etc/cron.daily) starting logrotate
Dec 15 22:29:01 dom0 run-parts[12984]: (/etc/cron.daily) finished logrotate
Dec 15 22:29:01 dom0 run-parts[12986]: (/etc/cron.daily) starting lvm-cleanup
Dec 15 22:29:01 dom0 run-parts[12991]: (/etc/cron.daily) finished lvm-cleanup
Dec 15 22:29:01 dom0 run-parts[12993]: (/etc/cron.daily) starting qubes-dom0-updates.cron
Dec 15 22:29:02 dom0 run-parts[13006]: (/etc/cron.daily) finished qubes-dom0-updates.cron
Dec 15 22:29:02 dom0 anacron[12882]: Job `cron.daily' terminated (mailing output)
Dec 15 22:29:02 dom0 anacron[12882]: Can't find sendmail at /usr/sbin/sendmail, not mailing output
( below i have the configuration of anacron, is this email sent to root? If root is disabled can it be redirected? )
Dec 15 22:49:01 dom0 anacron[12882]: Job `cron.weekly' started
Dec 15 22:49:01 dom0 anacron[12882]: Job `cron.weekly' terminated
Dec 15 23:00:01 dom0 CROND[13112]: (root) CMD (/usr/bin/qvm-sync-clock > /dev/null 2>&1 || true)
Dec 15 23:00:02 dom0 systemd[12338]: Time has been changed
-- The system clock has been changed to REALTIME microseconds after January 1st, 1970.
Dec 16 03:00:02 dom0 audit[13989]: USYS_CONFIG pid=13989 uid=0 auid=4294967295 ses=4294967295 msg='op=change-system-time exe="/usr/sbin/hwclock" hostname=? addr=? terminal=? res=success'
Dec 16 03:00:02 dom0 kernel: audit: type=1111 audit(1576465202.499:664): pid=13989 uid=0 auid=4294967295 ses=4294967295 msg='op=change-system-time exe="/usr/sbin/hwclock" hostname=? addr=? t
Dec 16 03:01:01 dom0 CROND[13997]: (root) CMD (run-parts /etc/cron.hourly)
Dec 16 03:01:01 dom0 run-parts[14000]: (/etc/cron.hourly) starting 0anacron
Dec 16 03:01:01 dom0 anacron[14008]: Anacron started on 2019-12-16
Dec 16 03:01:01 dom0 anacron[14008]: Will run job `cron.daily' in 16 min.
Dec 16 03:01:01 dom0 anacron[14008]: Jobs will be executed sequentially
Dec 16 03:01:01 dom0 run-parts[14010]: (/etc/cron.hourly) finished 0anacron
Dec 16 03:03:06 dom0 qrexec[14018]: qubes.GetDate: sys-firewall -> @default: allowed to dom0
Dec 16 03:17:01 dom0 anacron[14008]: Job `cron.daily' started
Dec 16 03:17:01 dom0 run-parts[14075]: (/etc/cron.daily) starting logrotate
Dec 16 03:17:01 dom0 run-parts[14080]: (/etc/cron.daily) finished logrotate
Dec 16 03:17:01 dom0 run-parts[14082]: (/etc/cron.daily) starting lvm-cleanup
Dec 16 03:17:01 dom0 run-parts[14087]: (/etc/cron.daily) finished lvm-cleanup
Dec 16 03:17:01 dom0 run-parts[14089]: (/etc/cron.daily) starting qubes-dom0-updates.cron
Dec 16 03:17:02 dom0 run-parts[14102]: (/etc/cron.daily) finished qubes-dom0-updates.cron
Dec 16 03:17:02 dom0 anacron[14008]: Job `cron.daily' terminated (mailing output)
Dec 16 03:17:02 dom0 anacron[14008]: Can't find sendmail at /usr/sbin/sendmail, not mailing output
( second time it happens )
Dec 16 08:57:02 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 08:57:30 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 08:57:55 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 08:58:25 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 08:58:52 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
( i suppose this was the first critical message i got after install and before the login screen, below the second. I include Xorg logs, do not know if it helps or not troubleshooting. Please let me know what to do to solve this )
Dec 16 09:41:04 dom0 xfce4-notifyd[17096]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 09:44:28 dom0 xfce4-notifyd[17096]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 09:49:02 dom0 xfce4-notifyd[17096]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 09:50:44 dom0 xfce4-notifyd[17096]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 09:53:38 dom0 xfce4-notifyd[17096]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 10:00:01 dom0 CROND[17189]: (root) CMD (/usr/bin/qvm-sync-clock > /dev/null 2>&1 || true)
Sent with ProtonMail Secure Email.
I've just installed Qubes latest preview 3. Installed it offline, so all the logs you will see are from a disconnected system. There are some services disabled related to security that worry me ( listed below ). Also some entries that i have some doubts on sys logs ( written below also ). I had a critical warning just after the install, related to gtk before the login screen. Attached are all the logs found, complete. If you need some other info please just let me know.
Thank you very much in advance for your help. Doubts below.
output of systemctl -al showing inactive services only ( full list of services attached )
-----------------------------------------------------------------------------------------
UNIT LOAD ACTIVE SUB DESCRIPTION
boot.automount loaded inactive dead boot.automount
dev-block-259:2.device loaded inactive dead dev-block-259:2.device
dev-hugepages.mount loaded inactive dead Huge Pages File System
proc-sys-fs-binfmt_misc.mount loaded inactive dead Arbitrary Executable File Formats File System
sys-fs-fuse-connections.mount loaded inactive dead FUSE Control File System
systemd-ask-password-console.path loaded inactive dead Dispatch Password Requests to Console Directory Watch
alsa-restore.service loaded inactive dead Save/Restore Sound Card State
● apparmor.service not-found inactive dead apparmor.service
auditd.service loaded inactive dead Security Auditing Service
dmraid-activation.service loaded inactive dead Activation of DM RAID sets
emergency.service loaded inactive dead Emergency Shell
● fedora-autorelabel-mark.service not-found inactive dead fedora-autorelabel-mark.service
● fedora-autorelabel.service not-found inactive dead fedora-autorelabel.service
fedora-import-state.service loaded inactive dead Import network configuration from initramfs
fstrim.service loaded inactive dead Discard unused blocks
ge...@tty1.service loaded inactive dead Getty on tty1
iscsid.service loaded inactive dead Open-iSCSI
iscsiuio.service loaded inactive dead iSCSI UserSpace I/O driver
libvirt-guests.service loaded inactive dead Suspend/Resume Running libvirt Guests
● livesys-late.service not-found inactive dead livesys-late.service
● lvm2-activation-early.service not-found inactive dead lvm2-activation-early.service
● lvm2-activation.service not-found inactive dead lvm2-activation.service
plymouth-quit-wait.service loaded inactive dead Hold until boot process finishes up
plymouth-quit.service loaded inactive dead Terminate Plymouth Boot Screen
plymouth-read-write.service loaded inactive dead Tell Plymouth To Write Out Runtime Data
plymouth-start.service loaded inactive dead Show Plymouth Boot Screen
qube...@sys-firewall.service loaded inactive dead Start Qubes VM sys-firewall
qube...@sys-net.service loaded inactive dead Start Qubes VM sys-net
qube...@sys-whonix.service loaded inactive dead Start Qubes VM sys-whonix
rc-local.service loaded inactive dead /etc/rc.d/rc.local Compatibility
rescue.service loaded inactive dead Rescue Shell
● syslog.service not-found inactive dead syslog.service
systemd-ask-password-console.service loaded inactive dead Dispatch Password Requests to Console
systemd-ask-password-plymouth.service loaded inactive dead Forward Password Requests to Plymouth
systemd-ask-password-wall.service loaded inactive dead Forward Password Requests to Wall
systemd-binfmt.service loaded inactive dead Set Up Additional Binary Formats
systemd-firstboot.service loaded inactive dead First Boot Wizard
systemd-initctl.service loaded inactive dead /dev/initctl Compatibility Daemon
systemd-machine-id-commit.service loaded inactive dead Commit a transient machine-id on disk
systemd-quotacheck.service loaded inactive dead File System Quota Check
systemd-rfkill.service loaded inactive dead Load/Save RF Kill Switch Status
systemd-tmpfiles-clean.service loaded inactive dead Cleanup of Temporary Directories
systemd-update-utmp-runlevel.service loaded inactive dead Update UTMP about System Runlevel Changes
virtlockd.service loaded inactive dead Virtual machine lock manager
virtlogd.service loaded inactive dead Virtual machine log manager
● ypbind.service not-found inactive dead ypbind.service
system-qubes\x2dvm.slice loaded inactive dead system-qubes\x2dvm.slice
syslog.socket loaded inactive dead Syslog Socket
emergency.target loaded inactive dead Emergency Mode
network-pre.target loaded inactive dead Network (Pre)
network.target loaded inactive dead Network
remote-fs-pre.target loaded inactive dead Remote File Systems (Pre)
rescue.target loaded inactive dead Rescue Mode
shutdown.target loaded inactive dead Shutdown
time-sync.target loaded inactive dead System Time Synchronized
umount.target loaded inactive dead Unmount All Filesystems
virt-guest-shutdown.target loaded inactive dead Libvirt guests shutdown
The question here is if it is normal that these services are disabled on first login just after a disconnected install?
output of journalctl -ax --merge ( full journalctl output attached ) below the messages i have some comments on my doubts
-------------------------------------------------------------------------------------------------------------------------
Dec 15 20:52:30 dom0 kernel: Linux version 4.19.86-1.pvops.qubes.x86_64 (user@build-fedora4) (gcc version 6.4.1 20170727 (Red Hat 6.4.1-1) (GCC)) #1 SMP Sun Dec 1 07:16:00 UTC 2019
Dec 15 20:52:30 dom0 kernel: Command line: placeholder root=/dev/mapper/qubes_dom0-root ro rd.lvm.lv=qubes_dom0/root rd.lvm.lv=qubes_dom0/swap i915.alpha_support=1 plymouth.ignore-serial-con
( is it possible to disable alpha support? i Have a skylake 9th gen ) - later there is an entry stating that it taints the kernel
Dec 15 20:52:30 dom0 kernel: ata1: SATA link up 3.0 Gbps (SStatus 123 SControl 300)
Dec 15 20:52:30 dom0 kernel: ata1.00: supports DRM functions and may not be fully accessible
Dec 15 20:52:30 dom0 kernel: ata1.00: ATA-11: Samsung SSD 860 EVO 250GB, RVT01B6Q, max UDMA/133
Dec 15 20:52:30 dom0 kernel: ata1.00: 488397168 sectors, multi 1: LBA48 NCQ (depth 32), AA
Dec 15 20:52:30 dom0 kernel: ata1.00: supports DRM functions and may not be fully accessible
Dec 15 20:52:30 dom0 kernel: ata1.00: configured for UDMA/133
( isn`t UDMA 133 a little old for a recent SSD? If so, is it possible to speedup the disk with newer drivers? )
Dec 15 20:52:30 dom0 kernel: ahci 0000:00:17.0: port does not support device sleep
Dec 15 20:52:30 dom0 kernel: scsi 0:0:0:0: Direct-Access ATA Samsung SSD 860 1B6Q PQ: 0 ANSI: 5
Dec 15 20:52:30 dom0 kernel: sd 0:0:0:0: Attached scsi generic sg0 type 0
Dec 15 20:52:30 dom0 kernel: ata1.00: Enabling discard_zeroes_data
Dec 15 20:52:30 dom0 kernel: sd 0:0:0:0: [sda] 488397168 512-byte logical blocks: (250 GB/233 GiB)
Dec 15 20:52:30 dom0 kernel: sd 0:0:0:0: [sda] Write Protect is off
Dec 15 20:52:30 dom0 kernel: sd 0:0:0:0: [sda] Mode Sense: 00 3a 00 00
Dec 15 20:52:30 dom0 kernel: sd 0:0:0:0: [sda] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA
Dec 15 20:52:30 dom0 kernel: ata1.00: Enabling discard_zeroes_data
Dec 15 20:52:30 dom0 kernel: sda:
Dec 15 20:52:30 dom0 kernel: ata1.00: Enabling discard_zeroes_data
Dec 15 20:52:30 dom0 systemd-modules-load[195]: Failed to find module 'uinput'
( found info on kernel.org stating this module is for user input, is it normal that the module is not present? )
Dec 15 20:52:31 dom0 kernel: Setting dangerous option alpha_support - tainting kernel
( can this be disabled and a more accurate skylake 9th gen driver made available? )
Dec 15 20:52:31 dom0 kernel: nvme nvme0: missing or invalid SUBNQN field.
Dec 15 20:52:31 dom0 kernel: nvme nvme0: Shutdown timeout set to 8 seconds
Dec 15 20:52:31 dom0 kernel: nvme0n1: p1 p2
( after some searching i found that this message is related to the boot disk Samsung V-NAND SSD 970 PRO NVMe M.2, just installed. The hardware is pretty new but Samsung has made available the source code for 'magician' ( if i remember correctly, ( i am still offline ), software under request. The linux version is old and does not recognize any of the disks present on the machine. Do you know of any opensource project ongoing to port the tool to linux? )
Dec 15 20:52:34 dom0 kernel: input: PC Speaker as /devices/platform/pcspkr/input/input8
( a speakear as input??? like a mic or something? )
Dec 15 20:52:34 dom0 kernel: cfg80211: Loading compiled-in X.509 certificates for regulatory database
Dec 15 20:52:34 dom0 kernel: RAPL PMU: API unit is 2^-32 Joules, 5 fixed counters, 655360 ms ovfl timer
Dec 15 20:52:34 dom0 kernel: RAPL PMU: hw unit of domain pp0-core 2^-14 Joules
Dec 15 20:52:34 dom0 kernel: RAPL PMU: hw unit of domain package 2^-14 Joules
Dec 15 20:52:34 dom0 kernel: RAPL PMU: hw unit of domain dram 2^-14 Joules
Dec 15 20:52:34 dom0 kernel: RAPL PMU: hw unit of domain pp1-gpu 2^-14 Joules
Dec 15 20:52:34 dom0 kernel: RAPL PMU: hw unit of domain psys 2^-14 Joules
Dec 15 20:52:34 dom0 kernel: cfg80211: Loaded X.509 cert 'sforshee: 00b28ddf47aef9cea7'
Dec 15 20:52:34 dom0 kernel: platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
( is it normal this error? )
Dec 15 20:52:35 dom0 systemd[1]: tmp.mount: Directory /tmp to mount over is not empty, mounting anyway.
( this always happened in previous installations, strange no? )
Dec 15 20:52:36 dom0 systemd-tmpfiles[1180]: Cannot set file attribute for '/var/log/journal', value=0x00800000, mask=0x00800000: Operation not supported
Dec 15 20:52:36 dom0 systemd-tmpfiles[1180]: Cannot set file attribute for '/var/log/journal/2f474aa11eba4b1394708823e685bcd8', value=0x00800000, mask=0x00800000: Operation not supported
( is this normal? )
Dec 15 20:52:36 dom0 xenstored[1267]: TDB: tdb_open_ex: could not open file /var/lib/xenstored/tdb: No such file or directory
Dec 15 20:52:36 dom0 xenstored[1267]: Checking store ...
( this message happens at every boot )
Dec 15 20:52:37 dom0 xenstored[1267]: Checking store complete.
Dec 15 20:52:38 dom0 udisksd[1497]: Acquired the name org.freedesktop.UDisks2 on the system message bus
Dec 15 20:52:38 dom0 udisksd[1497]: Error loading modules: Error opening directory '/usr/lib64/udisks2/modules': No such file or directory
Dec 15 20:52:40 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/__init__.py:703: DeprecationWarning: Gdk.Screen.get_primary_monitor is deprecated primary = screen.get_primary_monitor()
Dec 15 20:52:40 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/__init__.py:704: DeprecationWarning: Gdk.Screen.get_monitor_geometry is deprecated monitor_geometry = screen.get_monitor_geometry(primary)
Dec 15 20:52:40 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/__init__.py:705: DeprecationWarning: Gdk.Screen.get_monitor_scale_factor is deprecated monitor_scale = screen.get_monitor_scale_factor(primary)
Dec 15 20:52:40 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/__init__.py:706: DeprecationWarning: Gdk.Screen.get_monitor_width_mm is deprecated monitor_width_mm = screen.get_monitor_width_mm(primary)
Dec 15 20:52:40 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/__init__.py:707: DeprecationWarning: Gdk.Screen.get_monitor_height_mm is deprecated monitor_height_mm = screen.get_monitor_height_mm(primary)
Dec 15 20:52:40 dom0 anaconda[1338]: Detected primary monitor: 1920x1080 168dpix 161dpiy
Dec 15 20:52:40 dom0 anaconda[1338]: Entered hub: InitialSetupMainHub
Dec 15 20:52:41 dom0 anaconda[1338]: /usr/share/anaconda/addons/org_qubes_os_initial_setup/gui/spokes/qubes_os.py:113: DeprecationWarning: Gtk.Alignment.set_padding is deprecated self.outer_widget.set_padding(0, 0, 20, 0)
Dec 15 20:52:41 dom0 anaconda[1338]: /usr/lib64/python3.5/_collections_abc.py:597: DeprecationWarning: Will be removed in 1.0. Access properties with Device.properties. return self[key]
Dec 15 20:52:41 dom0 anaconda[1338]: /usr/share/anaconda/addons/org_qubes_os_initial_setup/gui/spokes/qubes_os.py:90: DeprecationWarning: Will be removed in 1.0. Use equivalent Devices method udev_info = pyudev.Device.from_device_file(context, dev)
Dec 15 20:52:41 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/pyanaconda/ui/gui/hubs/__init__.py:197: DeprecationWarning: Gtk.Widget.set_margin_left is deprecated selector.set_margin_left(12)
Dec 15 20:52:41 dom0 anaconda[1338]: /usr/lib64/python3.5/site-packages/gi/overrides/Gdk.py:329: DeprecationWarning: Gdk.Cursor.new is deprecated return cls.new(*args, **kwds)
( is it possible that the critical errors of gtk are because of this? )
Dec 15 20:53:16 dom0 kernel: kauditd_printk_skb: 30 callbacks suppressed
( probably typing the password, no? )
Dec 15 21:02:47 dom0 pulseaudio[12493]: [pulseaudio] authkey.c: Failed to open cookie file '/home/dunde/.config/pulse/cookie': No such file or directory
Dec 15 21:02:47 dom0 pulseaudio[12493]: [pulseaudio] authkey.c: Failed to load authentication key '/home/dunde/.config/pulse/cookie': No such file or directory
Dec 15 21:02:47 dom0 pulseaudio[12493]: [pulseaudio] authkey.c: Failed to open cookie file '/home/dunde/.pulse-cookie': No such file or directory
Dec 15 21:02:47 dom0 pulseaudio[12493]: [pulseaudio] authkey.c: Failed to load authentication key '/home/dunde/.pulse-cookie': No such file or directory
( this message happens at every boot too )
Dec 15 22:01:01 dom0 CROND[12871]: (root) CMD (run-parts /etc/cron.hourly)
Dec 15 22:01:01 dom0 run-parts[12874]: (/etc/cron.hourly) starting 0anacron
Dec 15 22:01:01 dom0 anacron[12882]: Anacron started on 2019-12-15
Dec 15 22:01:01 dom0 anacron[12882]: Will run job `cron.daily' in 28 min.
Dec 15 22:01:01 dom0 anacron[12882]: Will run job `cron.weekly' in 48 min.
Dec 15 22:01:01 dom0 anacron[12882]: Will run job `cron.monthly' in 68 min.
Dec 15 22:01:01 dom0 anacron[12882]: Jobs will be executed sequentially
Dec 15 22:01:01 dom0 run-parts[12884]: (/etc/cron.hourly) finished 0anacron
Dec 15 22:29:01 dom0 anacron[12882]: Job `cron.daily' started
Dec 15 22:29:01 dom0 run-parts[12979]: (/etc/cron.daily) starting logrotate
Dec 15 22:29:01 dom0 run-parts[12984]: (/etc/cron.daily) finished logrotate
Dec 15 22:29:01 dom0 run-parts[12986]: (/etc/cron.daily) starting lvm-cleanup
Dec 15 22:29:01 dom0 run-parts[12991]: (/etc/cron.daily) finished lvm-cleanup
Dec 15 22:29:01 dom0 run-parts[12993]: (/etc/cron.daily) starting qubes-dom0-updates.cron
Dec 15 22:29:02 dom0 run-parts[13006]: (/etc/cron.daily) finished qubes-dom0-updates.cron
Dec 15 22:29:02 dom0 anacron[12882]: Job `cron.daily' terminated (mailing output)
Dec 15 22:29:02 dom0 anacron[12882]: Can't find sendmail at /usr/sbin/sendmail, not mailing output
( below i have the configuration of anacron, is this email sent to root? If root is disabled can it be redirected? )
Dec 15 22:49:01 dom0 anacron[12882]: Job `cron.weekly' started
Dec 15 22:49:01 dom0 anacron[12882]: Job `cron.weekly' terminated
Dec 15 23:00:01 dom0 CROND[13112]: (root) CMD (/usr/bin/qvm-sync-clock > /dev/null 2>&1 || true)
Dec 15 23:00:02 dom0 systemd[12338]: Time has been changed
-- The system clock has been changed to REALTIME microseconds after January 1st, 1970.
Dec 16 03:00:02 dom0 audit[13989]: USYS_CONFIG pid=13989 uid=0 auid=4294967295 ses=4294967295 msg='op=change-system-time exe="/usr/sbin/hwclock" hostname=? addr=? terminal=? res=success'
Dec 16 03:00:02 dom0 kernel: audit: type=1111 audit(1576465202.499:664): pid=13989 uid=0 auid=4294967295 ses=4294967295 msg='op=change-system-time exe="/usr/sbin/hwclock" hostname=? addr=? t
Dec 16 03:01:01 dom0 CROND[13997]: (root) CMD (run-parts /etc/cron.hourly)
Dec 16 03:01:01 dom0 run-parts[14000]: (/etc/cron.hourly) starting 0anacron
Dec 16 03:01:01 dom0 anacron[14008]: Anacron started on 2019-12-16
Dec 16 03:01:01 dom0 anacron[14008]: Will run job `cron.daily' in 16 min.
Dec 16 03:01:01 dom0 anacron[14008]: Jobs will be executed sequentially
Dec 16 03:01:01 dom0 run-parts[14010]: (/etc/cron.hourly) finished 0anacron
Dec 16 03:03:06 dom0 qrexec[14018]: qubes.GetDate: sys-firewall -> @default: allowed to dom0
Dec 16 03:17:01 dom0 anacron[14008]: Job `cron.daily' started
Dec 16 03:17:01 dom0 run-parts[14075]: (/etc/cron.daily) starting logrotate
Dec 16 03:17:01 dom0 run-parts[14080]: (/etc/cron.daily) finished logrotate
Dec 16 03:17:01 dom0 run-parts[14082]: (/etc/cron.daily) starting lvm-cleanup
Dec 16 03:17:01 dom0 run-parts[14087]: (/etc/cron.daily) finished lvm-cleanup
Dec 16 03:17:01 dom0 run-parts[14089]: (/etc/cron.daily) starting qubes-dom0-updates.cron
Dec 16 03:17:02 dom0 run-parts[14102]: (/etc/cron.daily) finished qubes-dom0-updates.cron
Dec 16 03:17:02 dom0 anacron[14008]: Job `cron.daily' terminated (mailing output)
Dec 16 03:17:02 dom0 anacron[14008]: Can't find sendmail at /usr/sbin/sendmail, not mailing output
( second time it happens )
Dec 16 08:57:02 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 08:57:30 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 08:57:55 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 08:58:25 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 08:58:52 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
( i suppose this was the first critical message i got after install and before the login screen, below the second. I include Xorg logs, do not know if it helps or not troubleshooting. Please let me know what to do to solve this )
Dec 16 09:41:04 dom0 xfce4-notifyd[17096]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 09:44:28 dom0 xfce4-notifyd[17096]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 09:49:02 dom0 xfce4-notifyd[17096]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 09:50:44 dom0 xfce4-notifyd[17096]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 09:53:38 dom0 xfce4-notifyd[17096]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
Dec 16 10:00:01 dom0 CROND[17189]: (root) CMD (/usr/bin/qvm-sync-clock > /dev/null 2>&1 || true)
Sent with ProtonMail Secure Email.
awokd
Dec 20, 2019, 10:39:44 AM12/20/19
to Chökie Gyaltsen, qubes...@googlegroups.com
'Chökie Gyaltsen' via qubes-users:
afterwards.
drivers. In most cases, it does not matter. You could try to remove it
and see what happens. On this and your other hardware related questions,
you could also try booting a newer version of Qubes (i.e. 4.0.2rc3) or
another distribution like Debian 10 on the same hardware and
cross-referencing logs.>
can't be accomplished some other way. Not really Qubes related, though.
> Dec 15 20:52:34 dom0 kernel: platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
> ( is it normal this error? )
Yes, Xen/Qubes blocks some direct hardware access.
> Dec 15 20:52:36 dom0 systemd-tmpfiles[1180]: Cannot set file attribute for '/var/log/journal', value=0x00800000, mask=0x00800000: Operation not supported
> Dec 15 20:52:36 dom0 systemd-tmpfiles[1180]: Cannot set file attribute for '/var/log/journal/2f474aa11eba4b1394708823e685bcd8', value=0x00800000, mask=0x00800000: Operation not supported
> ( is this normal? )
My logs show it too.
> Dec 15 20:52:36 dom0 xenstored[1267]: TDB: tdb_open_ex: could not open file /var/lib/xenstored/tdb: No such file or directory
> Dec 15 20:52:36 dom0 xenstored[1267]: Checking store ...
> ( this message happens at every boot )
Same.
> Dec 15 20:52:37 dom0 xenstored[1267]: Checking store complete.
>
> Dec 15 20:52:38 dom0 udisksd[1497]: Acquired the name org.freedesktop.UDisks2 on the system message bus
> Dec 15 20:52:38 dom0 udisksd[1497]: Error loading modules: Error opening directory '/usr/lib64/udisks2/modules': No such file or directory
Did you install something in dom0? Generally, you should not. Uninstall
it or reinstall Qubes and the error should go away.
nothing to solve! Ignore the messages unless you're experiencing problems.
--
- don't top post
Mailing list etiquette:
- trim quoted reply to only relevant portions
- when possible, copy and paste text instead of screenshots
> Hello all,
>
>
> I've just installed Qubes latest preview 3. Installed it offline, so all the logs you will see are from a disconnected system. There are some services disabled related to security that worry me ( listed below ). Also some entries that i have some doubts on sys logs ( written below also ). I had a critical warning just after the install, related to gtk before the login screen. Attached are all the logs found, complete. If you need some other info please just let me know.
>
>
>
> I've just installed Qubes latest preview 3. Installed it offline, so all the logs you will see are from a disconnected system. There are some services disabled related to security that worry me ( listed below ). Also some entries that i have some doubts on sys logs ( written below also ). I had a critical warning just after the install, related to gtk before the login screen. Attached are all the logs found, complete. If you need some other info please just let me know.
>
> output of systemctl -al showing inactive services only ( full list of services attached )
>
> -----------------------------------------------------------------------------------------
> UNIT LOAD ACTIVE SUB DESCRIPTION
> boot.automount loaded inactive dead boot.automount
>
> -----------------------------------------------------------------------------------------
> UNIT LOAD ACTIVE SUB DESCRIPTION
> boot.automount loaded inactive dead boot.automount
> The question here is if it is normal that these services are disabled on first login just after a disconnected install?
Yes; most of those only fire once on boot and are no longer needed
afterwards.
>
>
>
> output of journalctl -ax --merge ( full journalctl output attached ) below the messages i have some comments on my doubts
> -------------------------------------------------------------------------------------------------------------------------
> Dec 15 20:52:30 dom0 kernel: Linux version 4.19.86-1.pvops.qubes.x86_64 (user@build-fedora4) (gcc version 6.4.1 20170727 (Red Hat 6.4.1-1) (GCC)) #1 SMP Sun Dec 1 07:16:00 UTC 2019
> Dec 15 20:52:30 dom0 kernel: Command line: placeholder root=/dev/mapper/qubes_dom0-root ro rd.lvm.lv=qubes_dom0/root rd.lvm.lv=qubes_dom0/swap i915.alpha_support=1 plymouth.ignore-serial-con
> ( is it possible to disable alpha support? i Have a skylake 9th gen ) - later there is an entry stating that it taints the kernel
Possibly. Keep in mind dom0 runs Fedora 25, so does not have newer
>
>
> output of journalctl -ax --merge ( full journalctl output attached ) below the messages i have some comments on my doubts
> -------------------------------------------------------------------------------------------------------------------------
> Dec 15 20:52:30 dom0 kernel: Linux version 4.19.86-1.pvops.qubes.x86_64 (user@build-fedora4) (gcc version 6.4.1 20170727 (Red Hat 6.4.1-1) (GCC)) #1 SMP Sun Dec 1 07:16:00 UTC 2019
> Dec 15 20:52:30 dom0 kernel: Command line: placeholder root=/dev/mapper/qubes_dom0-root ro rd.lvm.lv=qubes_dom0/root rd.lvm.lv=qubes_dom0/swap i915.alpha_support=1 plymouth.ignore-serial-con
> ( is it possible to disable alpha support? i Have a skylake 9th gen ) - later there is an entry stating that it taints the kernel
drivers. In most cases, it does not matter. You could try to remove it
and see what happens. On this and your other hardware related questions,
you could also try booting a newer version of Qubes (i.e. 4.0.2rc3) or
another distribution like Debian 10 on the same hardware and
cross-referencing logs.>
> Dec 15 20:52:30 dom0 systemd-modules-load[195]: Failed to find module 'uinput'
>
> ( found info on kernel.org stating this module is for user input, is it normal that the module is not present? )
No, it is present on mine.
>
> ( found info on kernel.org stating this module is for user input, is it normal that the module is not present? )
> Dec 15 20:52:31 dom0 kernel: nvme nvme0: missing or invalid SUBNQN field.
> Dec 15 20:52:31 dom0 kernel: nvme nvme0: Shutdown timeout set to 8 seconds
> Dec 15 20:52:31 dom0 kernel: nvme0n1: p1 p2
> ( after some searching i found that this message is related to the boot disk Samsung V-NAND SSD 970 PRO NVMe M.2, just installed. The hardware is pretty new but Samsung has made available the source code for 'magician' ( if i remember correctly, ( i am still offline ), software under request. The linux version is old and does not recognize any of the disks present on the machine. Do you know of any opensource project ongoing to port the tool to linux? )
No, but I am not aware of any functionality the software provides that
> Dec 15 20:52:31 dom0 kernel: nvme nvme0: Shutdown timeout set to 8 seconds
> Dec 15 20:52:31 dom0 kernel: nvme0n1: p1 p2
> ( after some searching i found that this message is related to the boot disk Samsung V-NAND SSD 970 PRO NVMe M.2, just installed. The hardware is pretty new but Samsung has made available the source code for 'magician' ( if i remember correctly, ( i am still offline ), software under request. The linux version is old and does not recognize any of the disks present on the machine. Do you know of any opensource project ongoing to port the tool to linux? )
can't be accomplished some other way. Not really Qubes related, though.
> Dec 15 20:52:34 dom0 kernel: platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
> ( is it normal this error? )
> Dec 15 20:52:35 dom0 systemd[1]: tmp.mount: Directory /tmp to mount over is not empty, mounting anyway.
> ( this always happened in previous installations, strange no? )
Typical on a remount.
> ( this always happened in previous installations, strange no? )
> Dec 15 20:52:36 dom0 systemd-tmpfiles[1180]: Cannot set file attribute for '/var/log/journal', value=0x00800000, mask=0x00800000: Operation not supported
> Dec 15 20:52:36 dom0 systemd-tmpfiles[1180]: Cannot set file attribute for '/var/log/journal/2f474aa11eba4b1394708823e685bcd8', value=0x00800000, mask=0x00800000: Operation not supported
> ( is this normal? )
> Dec 15 20:52:36 dom0 xenstored[1267]: TDB: tdb_open_ex: could not open file /var/lib/xenstored/tdb: No such file or directory
> Dec 15 20:52:36 dom0 xenstored[1267]: Checking store ...
> ( this message happens at every boot )
> Dec 15 20:52:37 dom0 xenstored[1267]: Checking store complete.
>
> Dec 15 20:52:38 dom0 udisksd[1497]: Acquired the name org.freedesktop.UDisks2 on the system message bus
> Dec 15 20:52:38 dom0 udisksd[1497]: Error loading modules: Error opening directory '/usr/lib64/udisks2/modules': No such file or directory
it or reinstall Qubes and the error should go away.
> Dec 15 22:29:02 dom0 anacron[12882]: Can't find sendmail at /usr/sbin/sendmail, not mailing output
>
> ( below i have the configuration of anacron, is this email sent to root? If root is disabled can it be redirected? )
Email isn't sent anywhere, because sendmail isn't installed.
>
> ( below i have the configuration of anacron, is this email sent to root? If root is disabled can it be redirected? )
> Dec 16 08:57:02 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
> Dec 16 08:57:30 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
> Dec 16 08:57:55 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
> Dec 16 08:58:25 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
> Dec 16 08:58:52 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
> ( i suppose this was the first critical message i got after install and before the login screen, below the second. I include Xorg logs, do not know if it helps or not troubleshooting. Please let me know what to do to solve this )
Were you having trouble with XFCE windows in Qubes? If not, there's
> Dec 16 08:57:30 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
> Dec 16 08:57:55 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
> Dec 16 08:58:25 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
> Dec 16 08:58:52 dom0 xfce4-notifyd[15405]: xfce_notify_window_expire_timeout: assertion 'XFCE_IS_NOTIFY_WINDOW(data)' failed
> ( i suppose this was the first critical message i got after install and before the login screen, below the second. I include Xorg logs, do not know if it helps or not troubleshooting. Please let me know what to do to solve this )
nothing to solve! Ignore the messages unless you're experiencing problems.
--
- don't top post
Mailing list etiquette:
- trim quoted reply to only relevant portions
- when possible, copy and paste text instead of screenshots
Chökie Gyaltsen
Dec 22, 2019, 12:36:41 PM12/22/19
to qubes...@googlegroups.com
Thank you for your answers awokd,
Some of the issues were solved, below in bold the errors still happening.
Dec 15 20:52:30 dom0 kernel: Linux version 4.19.86-1.pvops.qubes.x86_64 (user@build-fedora4) (gcc version 6.4.1 20170727 (Red Hat 6.4.1-1) (GCC)) #1 SMP Sun Dec 1 07:16:00 UTC 2019
Dec 15 20:52:30 dom0 kernel: Command line: placeholder root=/dev/mapper/qubes_dom0-root ro rd.lvm.lv=qubes_dom0/root rd.lvm.lv=qubes_dom0/swap i915.alpha_support=1 plymouth.ignore-serial-con( is it possible to disable alpha support? i Have a skylake 9th gen ) - later there is an entry stating that it taints the kernelPossibly. Keep in mind dom0 runs Fedora 25, so does not have newerdrivers. In most cases, it does not matter. You could try to remove itand see what happens. On this and your other hardware related questions,you could also try booting a newer version of Qubes (i.e. 4.0.2rc3) oranother distribution like Debian 10 on the same hardware andcross-referencing logs.>
Thank you, i removed the alpha_support and with that the gtk errors i was having vanished along with the tainted kernel messages.
Also noticed improvement of the speed of the graphics. Things appear to move smoother and faster screen. Does that make sense?
The machine is a librem 13v3
Dec 15 20:52:30 dom0 systemd-modules-load[195]: Failed to find module 'uinput'( found info on kernel.org stating this module is for user input, is it normal that the module is not present? )No, it is present on mine.
i do not know how to solve this, i have seen some answers on github related to permissions, are these permissions correct? This is the second reinstal of Qubes 4.0.2-preview3
cd /dev
ls -ltra uinput
crw-rw---- 1 root qubes 10, 223 Dec 22 16:29 uinput
The module seems to be running
lsmod | grep uinput
uinput 20480 0
The status of the module load service is this:
● systemd-modules-load.service - Load Kernel Modules
Loaded: loaded (/usr/lib/systemd/system/systemd-modules-load.service; static; vendor preset: disabled)
Active: active (exited) since Sun 2019-12-22 16:29:16 WET; 6min ago
Docs: man:systemd-modules-load.service(8)
man:modules-load.d(5)
Process: 540 ExecStart=/usr/lib/systemd/systemd-modules-load (code=exited, status=0/SUCCESS)
Main PID: 540 (code=exited, status=0/SUCCESS)
Tasks: 0 (limit: 4915)
Dec 22 16:29:16 dom0 systemd-modules-load[540]: Inserted module 'uinput'
Dec 22 16:29:16 dom0 systemd[1]: Started Load Kernel Modules.
More info from journalctl
journalctl -aex --unit systemd-modules-load.service
Dec 22 16:29:12 dom0 systemd-modules-load[199]: Inserted module 'xen_gntalloc'
Dec 22 16:29:12 dom0 systemd-modules-load[199]: Inserted module 'xen_blkback'
Dec 22 16:29:12 dom0 systemd-modules-load[199]: Inserted module 'xen_pciback'
Dec 22 16:29:12 dom0 systemd[1]: systemd-modules-load.service: Main process exited, code=exited, status=1/FAILURE
Dec 22 16:29:12 dom0 systemd[1]: Failed to start Load Kernel Modules.
-- Subject: Unit systemd-modules-load.service has failed
-- Defined-By: systemd
--
-- Unit systemd-modules-load.service has failed.
--
-- The result is failed.
Dec 22 16:29:12 dom0 systemd[1]: systemd-modules-load.service: Unit entered failed state.
Dec 22 16:29:12 dom0 systemd[1]: systemd-modules-load.service: Failed with resul 'exit-code'.
Dec 22 16:29:16 dom0 systemd-modules-load[540]: Inserted module 'uinput'
Dec 22 16:29:16 dom0 systemd[1]: Started Load Kernel Modules.
-- Subject: Unit systemd-modules-load.service has finished start-up
-- Defined-By: systemd
--
-- Unit systemd-modules-load.service has finished starting up.
--
-- The start-up result is done.
These messages are not so detailed on the causes on which the error ocurred. Is there a way to get more info, like turning on a debug mode on boot or something?
Is there a way on qubes to check the signature of uinput module?
Dec 15 20:52:37 dom0 xenstored[1267]: Checking store complete.
Dec 15 20:52:38 dom0 udisksd[1497]: Acquired the name org.freedesktop.UDisks2 on the system message busDec 15 20:52:38 dom0 udisksd[1497]: Error loading modules: Error opening directory '/usr/lib64/udisks2/modules': No such file or directoryDid you install something in dom0? Generally, you should not. Uninstallit or reinstall Qubes and the error should go away.
I did not install anything on dom0 ( how do i find what was supposedly installed, is there a way? )
This are the logs from installing the latest preview3 of 4.0.2. I installed it twice, the logs are the same, do you think reinstalling it will solve?
Thank you for your patience. Sorry for so many questions.
Merry Christmas everyone.
awokd
Dec 26, 2019, 7:24:36 AM12/26/19
to qubes...@googlegroups.com
'Chökie Gyaltsen' via qubes-users:
> Thank you, i removed the alpha_support and with that the gtk errors i was having vanished along with the tainted kernel messages.
> Also noticed improvement of the speed of the graphics. Things appear to move smoother and faster screen. Does that make sense?
> The machine is a librem 13v3
Does make some sense if the Linux kernel used now has better support for
Intel integrated graphics. Appears it must!
>>> Dec 15 20:52:30 dom0 systemd-modules-load[195]: Failed to find module 'uinput'
>>> ( found info on kernel.org stating this module is for user input, is it normal that the module is not present? )
>>
>
>> No, it is present on mine.
>
> i do not know how to solve this, i have seen some answers on github related to permissions, are these permissions correct? This is the second reinstal of Qubes 4.0.2-preview3
Didn't realize you were running rc3. Have you tried 4.0.1? In which log
are you seeing the above error?
> Dec 22 16:29:16 dom0 systemd-modules-load[540]: Inserted module 'uinput'
OK, so it's working on yours too.
> Dec 22 16:29:12 dom0 systemd[1]: Failed to start Load Kernel Modules.
>
> -- Subject: Unit systemd-modules-load.service has failed
>
> -- Defined-By: systemd
>
> -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel
>
> --
>
> -- Unit systemd-modules-load.service has failed.
>>> Dec 15 20:52:37 dom0 xenstored[1267]: Checking store complete.
>
>>> Dec 15 20:52:38 dom0 udisksd[1497]: Acquired the name org.freedesktop.UDisks2 on the system message bus
>>> Dec 15 20:52:38 dom0 udisksd[1497]: Error loading modules: Error opening directory '/usr/lib64/udisks2/modules': No such file or directory
>>
>
>> Did you install something in dom0? Generally, you should not. Uninstall
>> it or reinstall Qubes and the error should go away.
>
> I did not install anything on dom0 ( how do i find what was supposedly installed, is there a way? )
> This are the logs from installing the latest preview3 of 4.0.2. I installed it twice, the logs are the same, do you think reinstalling it will solve?
Ignore the install logs unless you're troubleshooting an installation
issue. Instead, reference the log from a recent boot, and see if those
errors you mentioned are still present (apart from the
"systemd-modules-load.service has failed".)
> Thank you, i removed the alpha_support and with that the gtk errors i was having vanished along with the tainted kernel messages.
> Also noticed improvement of the speed of the graphics. Things appear to move smoother and faster screen. Does that make sense?
> The machine is a librem 13v3
Intel integrated graphics. Appears it must!
>>> Dec 15 20:52:30 dom0 systemd-modules-load[195]: Failed to find module 'uinput'
>>> ( found info on kernel.org stating this module is for user input, is it normal that the module is not present? )
>>
>
>> No, it is present on mine.
>
> i do not know how to solve this, i have seen some answers on github related to permissions, are these permissions correct? This is the second reinstal of Qubes 4.0.2-preview3
are you seeing the above error?
> Dec 22 16:29:16 dom0 systemd-modules-load[540]: Inserted module 'uinput'
> Dec 22 16:29:12 dom0 systemd[1]: Failed to start Load Kernel Modules.
>
> -- Subject: Unit systemd-modules-load.service has failed
>
> -- Defined-By: systemd
>
> -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel
>
> --
>
> -- Unit systemd-modules-load.service has failed.
> These messages are not so detailed on the causes on which the error ocurred. Is there a way to get more info, like turning on a debug mode on boot or something?
Ignore this error. It does not impact Qubes functionality.
>>> Dec 15 20:52:37 dom0 xenstored[1267]: Checking store complete.
>
>>> Dec 15 20:52:38 dom0 udisksd[1497]: Acquired the name org.freedesktop.UDisks2 on the system message bus
>>> Dec 15 20:52:38 dom0 udisksd[1497]: Error loading modules: Error opening directory '/usr/lib64/udisks2/modules': No such file or directory
>>
>
>> Did you install something in dom0? Generally, you should not. Uninstall
>> it or reinstall Qubes and the error should go away.
>
> I did not install anything on dom0 ( how do i find what was supposedly installed, is there a way? )
> This are the logs from installing the latest preview3 of 4.0.2. I installed it twice, the logs are the same, do you think reinstalling it will solve?
issue. Instead, reference the log from a recent boot, and see if those
errors you mentioned are still present (apart from the
"systemd-modules-load.service has failed".)
Chökie Gyaltsen
Dec 26, 2019, 8:56:54 AM12/26/19
to qubes...@googlegroups.com
Thank you for the answers,
Below i reply in bold.
Happy new year everyone!
‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
On Thursday, December 26, 2019 12:24 PM, 'awokd' via qubes-users qubes...@googlegroups.com wrote:
Dec 15 20:52:30 dom0 systemd-modules-load[195]: Failed to find module 'uinput'( found info on kernel.org stating this module is for user input, is it normal that the module is not present? )No, it is present on mine.i do not know how to solve this, i have seen some answers on github related to permissions, are these permissions correct? This is the second reinstal of Qubes 4.0.2-preview3Didn't realize you were running rc3. Have you tried 4.0.1?
I installed 4.0.1 in the beginning of the month, rc3 was not available yet, and i had an even worse message on journalctl:
Kernel: [drm:intel_cpu_fifo_underrun_irq_handler [i915]] *ERROR* CPU pipe A FIFO underrun
After rc3 was made available, i installed it and the message this CPU pipe FIFO underrun was not in the logs anymore. But all the other messages are there still.
In which logare you seeing the above error?
This message is from journalctl -ax and persisted after installation at everyboot until today for 3 weeks.
Dec 22 16:29:16 dom0 systemd-modules-load[540]: Inserted module 'uinput'OK, so it's working on yours too.
Dec 22 16:29:12 dom0 systemd[1]: Failed to start Load Kernel Modules.-- Subject: Unit systemd-modules-load.service has failed-- Defined-By: systemd
-- Unit systemd-modules-load.service has failed.
These messages are not so detailed on the causes on which the error ocurred. Is there a way to get more info, like turning on a debug mode on boot or something?Ignore this error. It does not impact Qubes functionality.
Qubes is working fine, but due to the problems i had already with this machine before, after several reinstalls, including the worrying journalctl message "CPU pipe A FIFO Underrun" mentioned above; since 'uinput' is related to keyboard and mouse and it is failing, how can i be sure the version that is being loaded is not somehow tainted? Because it fails on first try, right? 'uinput' deals with keyboard and mouse and although they work fine, they seem to be perfect for logging user activity ( keyboard and mouse ).
Dec 15 20:52:37 dom0 xenstored[1267]: Checking store complete.Dec 15 20:52:38 dom0 udisksd[1497]: Acquired the name org.freedesktop.UDisks2 on the system message busDec 15 20:52:38 dom0 udisksd[1497]: Error loading modules: Error opening directory '/usr/lib64/udisks2/modules': No such file or directoryDid you install something in dom0? Generally, you should not. Uninstallit or reinstall Qubes and the error should go away.I did not install anything on dom0 ( how do i find what was supposedly installed, is there a way? )This are the logs from installing the latest preview3 of 4.0.2. I installed it twice, the logs are the same, do you think reinstalling it will solve?Ignore the install logs unless you're troubleshooting an installationissue. Instead, reference the log from a recent boot, and see if thoseerrors you mentioned are still present (apart from the"systemd-modules-load.service has failed".)
All the errors are still happening since install. I am sorry to insist, but the 'uinput' error is the one that worries me more, pardon my ignorance and thus the question:
How can i check the signature of the module loaded? Is it possible?
Thank you very much for your help.
when possible, copy and paste text instead of screenshots
awokd
Dec 26, 2019, 9:03:40 AM12/26/19
to qubes...@googlegroups.com
'Chökie Gyaltsen' via qubes-users:
> On Thursday, December 26, 2019 12:24 PM, 'awokd' via qubes-users qubes...@googlegroups.com wrote:
>> In which log
>> are you seeing the above error?
>
> This message is from journalctl -ax and persisted after installation at everyboot until today for 3 weeks.
Try including the -b option.
--
- don't top post
Mailing list etiquette:
- trim quoted reply to only relevant portions
- when possible, copy and paste text instead of screenshots
> On Thursday, December 26, 2019 12:24 PM, 'awokd' via qubes-users qubes...@googlegroups.com wrote:
>> In which log
>> are you seeing the above error?
>
> This message is from journalctl -ax and persisted after installation at everyboot until today for 3 weeks.
> All the errors are still happening since install. I am sorry to insist, but the 'uinput' error is the one that worries me more, pardon my ignorance and thus the question:
> How can i check the signature of the module loaded? Is it possible?
See if they persist with the above option.
> How can i check the signature of the module loaded? Is it possible?
--
- don't top post
Mailing list etiquette:
- trim quoted reply to only relevant portions
- when possible, copy and paste text instead of screenshots
Chökie Gyaltsen
Dec 26, 2019, 4:09:45 PM12/26/19
to qubes...@googlegroups.com
Thank you very much for your answers, my replies in bold below.
‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
On Thursday, December 26, 2019 2:03 PM, 'awokd' via qubes-users qubes...@googlegroups.com wrote:
'Chökie Gyaltsen' via qubes-users:On Thursday, December 26, 2019 12:24 PM, 'awokd' via qubes-users qubes...@googlegroups.com wrote:In which logare you seeing the above error?This message is from journalctl -ax and persisted after installation at everyboot until today for 3 weeks.Try including the -b option.
I included the -b option on journalctl and the same message with 'uinput' module not being loaded and zenstored not found and being rebuiild showed up on today's boot.
Thank you
All the errors are still happening since install. I am sorry to insist, but the 'uinput' error is the one that worries me more, pardon my ignorance and thus the question:How can i check the signature of the module loaded? Is it possible?See if they persist with the above option.
awokd
Dec 27, 2019, 3:30:17 AM12/27/19
to qubes...@googlegroups.com
'Chökie Gyaltsen' via qubes-users:
mine. I'll try a fresh install of 4.0.2rc3 sometime and see. Maybe it
gets loaded later in the boot sequence than in 4.0.1, since you've
determined it shows up anyways. Ignore xenstored, that always happens.
>>> All the errors are still happening since install. I am sorry to insist, but the 'uinput' error is the one that worries me more, pardon my ignorance and thus the question:
>>> How can i check the signature of the module loaded? Is it possible?
You should be able to find SHA256 sums somewhere of that module (make
sure the version exactly matches yours). This is fine for a quick check.
> Thank you very much for your answers, my replies in bold below.
>
> Sent with ProtonMail Secure Email.
>
> ‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
> On Thursday, December 26, 2019 2:03 PM, 'awokd' via qubes-users qubes...@googlegroups.com wrote:
>
>> 'Chökie Gyaltsen' via qubes-users:
>
>
> Sent with ProtonMail Secure Email.
>
> ‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
> On Thursday, December 26, 2019 2:03 PM, 'awokd' via qubes-users qubes...@googlegroups.com wrote:
>
>> 'Chökie Gyaltsen' via qubes-users:
>
> I included the -b option on journalctl and the same message with 'uinput' module not being loaded and zenstored not found and being rebuiild showed up on today's boot.
The 'uinput' one is the only odd message, since I'm not seeing it on
mine. I'll try a fresh install of 4.0.2rc3 sometime and see. Maybe it
gets loaded later in the boot sequence than in 4.0.1, since you've
determined it shows up anyways. Ignore xenstored, that always happens.
>>> All the errors are still happening since install. I am sorry to insist, but the 'uinput' error is the one that worries me more, pardon my ignorance and thus the question:
>>> How can i check the signature of the module loaded? Is it possible?
sure the version exactly matches yours). This is fine for a quick check.
Chökie Gyaltsen
Dec 27, 2019, 7:21:41 AM12/27/19
to qubes...@googlegroups.com
Thank you very much Awokd, below the answers in bold
On Friday, December 27, 2019 8:30 AM, 'awokd' via qubes-users qubes...@googlegroups.com wrote:
'Chökie Gyaltsen' via qubes-users:Thank you very much for your answers, my replies in bold below.Sent with ProtonMail Secure Email.‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐On Thursday, December 26, 2019 2:03 PM, 'awokd' via qubes-users qubes...@googlegroups.com wrote:'Chökie Gyaltsen' via qubes-users:I included the -b option on journalctl and the same message with 'uinput' module not being loaded and zenstored not found and being rebuiild showed up on today's boot.The 'uinput' one is the only odd message, since I'm not seeing it onmine. I'll try a fresh install of 4.0.2rc3 sometime and see. Maybe itgets loaded later in the boot sequence than in 4.0.1, since you'vedetermined it shows up anyways. Ignore xenstored, that always happens.
OK perfect, thank you for your help.
All the errors are still happening since install. I am sorry to insist, but the 'uinput' error is the one that worries me more, pardon my ignorance and thus the question:How can i check the signature of the module loaded? Is it possible?You should be able to find SHA256 sums somewhere of that module (makesure the version exactly matches yours). This is fine for a quick check.
Great!
You received this message because you are subscribed to the Google Groups "qubes-users" group.To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/74a2cb28-57f0-8a2f-1e0f-5a74e8879e87%40danwin1210.me.
Reply all
Reply to author
Forward
0 new messages