sshd not starting because of missing /run/sshd

Did this happen before or after you rebooted into Ubuntu 23.04?

If before the reboot, /run/sshd should already have been present on the system, created by the previous version of /lib/systemd/system/ssh.service.

If after the reboot, it should be created by /usr/lib/tmpfiles.d/openssh-server.conf, via /lib/systemd/system/systemd-tmpfiles-setup.service.

/lib/systemd/system/systemd-tmpfiles-setup.service is a dependency of sysinit.target, so this directory should be created on boot before the ssh socket connection starts up.

So I don't see why this directory would be missing for you.

I don't know whether sshd was running immediately after the install; I noticed this problem a couple reboots after the install process was complete. Are there any logs I can check that would be helpful to reconstruct the sequence of events?

If you saw this problem after reboots, then the question is why tmpfiles handling is not working as expected.

I don't know if these jobs log anything relevant, but a place to start is:

 - output of systemctl status systemd-tmpfiles-setup
 - output of journalctl -b 0 --no-pager -lu systemd-tmpfiles-setup

Opened a bug task on systemd as well.

systemctl status systemd-tmpfiles-setup says:

 systemd-tmpfiles-setup.service - Create Volatile Files and Directories
     Loaded: loaded (/lib/systemd/system/systemd-tmpfiles-setup.service; static)
     Active: active (exited) since Tue 2023-06-06 01:46:37 EDT; 23h ago
       Docs: man:tmpfiles.d(5)
             man:systemd-tmpfiles(8)
   Main PID: 536 (code=exited, status=73)
        CPU: 62ms

Jun 06 01:46:37 big-bucks systemd-tmpfiles[536]: Detected unsafe path transition / (owned by beland) → /var (owned by root) during canonicalization of /var/log/journal.
Jun 06 01:46:37 big-bucks systemd-tmpfiles[536]: Detected unsafe path transition / (owned by beland) → /var (owned by root) during canonicalization of /var/log/journal.
Jun 06 01:46:37 big-bucks systemd-tmpfiles[536]: Detected unsafe path transition / (owned by beland) → /var (owned by root) during canonicalization of /var/log/journal/0bbe1b93d943a0a5>
Jun 06 01:46:37 big-bucks systemd-tmpfiles[536]: Detected unsafe path transition / (owned by beland) → /var (owned by root) during canonicalization of /var/log/journal/0bbe1b93d943a0a5>
Jun 06 01:46:37 big-bucks systemd-tmpfiles[536]: Detected unsafe path transition / (owned by beland) → /var (owned by root) during canonicalization of /var/log/journal/0bbe1b93d943a0a5>
Jun 06 01:46:37 big-bucks systemd-tmpfiles[536]: Detected unsafe path transition / (owned by beland) → /run (owned by root) during canonicalization of /run/log/journal.
Jun 06 01:46:37 big-bucks systemd-tmpfiles[536]: Detected unsafe path transition / (owned by beland) → /run (owned by root) during canonicalization of /run/log/journal.
Jun 06 01:46:37 big-bucks systemd-tmpfiles[536]: Detected unsafe path transition / (owned by beland) → /var (owned by root) during canonicalization of /var/log/journal/0bbe1b93d943a0a5>
Jun 06 01:46:37 big-bucks systemd-tmpfiles[536]: Detected unsafe path transition / (owned by beland) → /var (owned by root) during canonicalization of /var/log/journal/0bbe1b93d943a0a5>
Jun 06 01:46:37 big-bucks systemd[1]: Finished systemd-tmpfiles-setup.service - Create Volatile Files and Directories.

> Jun 06 01:46:37 big-bucks systemd-tmpfiles[536]: Detected unsafe path transition / (owned by beland) → /var (owned by root) during canonicalization of /var.

Well, that's fairly clear - you have insecure permissions on your root filesystem and systemd-tmpfiles is failing to act. You'll want to 'chown root:root /' to fix this; afterwards everything should work normally.

My naughty chickens have come home to roost! Thanks for the quick diagnosis.