From nobody Wed Jan 17 19:55:49 2024 X-Original-To: freebsd-arm@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TFc7R49ZFz56b6n for ; Wed, 17 Jan 2024 19:55:47 +0000 (UTC) (envelope-from fbsd@www.zefox.net) Received: from www.zefox.net (www.zefox.net [50.1.20.27]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "www.zefox.com", Issuer "www.zefox.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TFc7Q6bn0z4nqD for ; Wed, 17 Jan 2024 19:55:46 +0000 (UTC) (envelope-from fbsd@www.zefox.net) Authentication-Results: mx1.freebsd.org; none Received: from www.zefox.net (localhost [127.0.0.1]) by www.zefox.net (8.17.1/8.15.2) with ESMTPS id 40HJtoYI040217 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NO); Wed, 17 Jan 2024 11:55:50 -0800 (PST) (envelope-from fbsd@www.zefox.net) Received: (from fbsd@localhost) by www.zefox.net (8.17.1/8.15.2/Submit) id 40HJtnUU040216; Wed, 17 Jan 2024 11:55:49 -0800 (PST) (envelope-from fbsd) Date: Wed, 17 Jan 2024 11:55:49 -0800 From: bob prohaska To: Mark Millard Cc: freebsd-arm@freebsd.org Subject: Re: sshd signal 11 on -current Message-ID: References: <7EF12F55-70E4-4780-BF73-3C7B963C3781@yahoo.com> List-Id: Porting FreeBSD to ARM processors List-Archive: https://lists.freebsd.org/archives/freebsd-arm List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-arm@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <7EF12F55-70E4-4780-BF73-3C7B963C3781@yahoo.com> X-Rspamd-Queue-Id: 4TFc7Q6bn0z4nqD X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:7065, ipnet:50.1.16.0/20, country:US] On Wed, Jan 17, 2024 at 09:34:28AM -0800, Mark Millard wrote: > On Jan 17, 2024, at 08:00, bob prohaska wrote: > > > A Pi4 running -current reported: > > > > Jan 13 16:23:10 nemesis kernel: pid 53604 (sshd), jid 0, uid 22: exited on signal 11 (no core dump - bad address) > > repeatedly. > > I assume that the pid changed from message to message, in addition > to the time but the rest of each message text matched exactly. > I've put a copy of the relevant lines from nemesis's /var/log/messages at http://www.zefox.net/~fbsd/tiptrouble/sshfaults.log > > There's no obvious disruption of operation, existing > > ssh connections seem undisturbed. > I'll take that statement back. The host ns2.zefox.net crashed and rebooted while I was writing this note. After logging back in to ns2.zefox.net the session was again terminated by a "Corrupted MAC on input message: Last login: Wed Jan 17 11:28:45 2024 from nemesis.zefox.com FreeBSD 12.4-STABLE r373269 GENERIC Welcome to FreeBSD! Release Notes, Errata: https://www.FreeBSD.org/releases/ Security Advisories: https://www.FreeBSD.org/security/ FreeBSD Handbook: https://www.FreeBSD.org/handbook/ FreeBSD FAQ: https://www.FreeBSD.org/faq/ Questions List: https://lists.FreeBSD.org/mailman/listinfo/freebsd-questions/ FreeBSD Forums: https://forums.FreeBSD.org/ Documents installed with the system are in the /usr/local/share/doc/freebsd/ directory, or can be installed later with: pkg install en-freebsd-doc For other languages, replace "en" with a language code like de or fr. Show the version of FreeBSD installed: freebsd-version ; uname -a Please include that output and any error messages when posting questions. Introduction to manual pages: man man FreeBSD directory layout: man hier Edit /etc/motd to change this login announcement. To change an environment variable in tcsh you use: setenv NAME "value" where NAME is the name of the variable and "value" its new value. bob@ns2:~ % uptime 11:30AM up 21 mins, 1 user, load averages: 0.00, 0.00, 0.00 bob@ns2:~ % grep -i ssh /var/log/messages Jan 1 00:38:20 ns2 sshd[8068]: error: Fssh_kex_exchange_identification: Connection closed by remote host Jan 1 01:04:47 ns2 sshd[8182]: error: Fssh_kex_exchange_identification: Connection closed by remote host Jan 1 01:49:21 ns2 sshd[8242]: error: PAM: Authentication error for illegal user info from 185.11.61.234 Jan 1 02:19:41 ns2 sshd[8292]: error: PAM: Authentication error for illegal user cromados from 85.209.11.226 Jan 1 02:26:04 ns2 sshd[8308]: error: Fssh_kex_exchange_identification: Connection closed by remote host Jan 1 03:09:31 ns2 sshd[8623]: error: Fssh_kex_exchange_identification: Connection closed by remote host Corrupted MAC on input. ssh_dispatch_run_fatal: Connection to 50.1.20.30 port 22: message authentication code incorrect bob@raspberrypi:~ $ It's very curious that logging back in to ns2.zefox.net goes without error, but attempts to look at /var/log/messages simply repeats the "corrupted MAC..." message with ssh disconnection: Last login: Wed Jan 17 11:41:19 2024 from gateway.zefox.net FreeBSD 12.4-STABLE r373269 GENERIC Welcome to FreeBSD! Release Notes, Errata: https://www.FreeBSD.org/releases/ Security Advisories: https://www.FreeBSD.org/security/ FreeBSD Handbook: https://www.FreeBSD.org/handbook/ FreeBSD FAQ: https://www.FreeBSD.org/faq/ Questions List: https://lists.FreeBSD.org/mailman/listinfo/freebsd-questions/ FreeBSD Forums: https://forums.FreeBSD.org/ Documents installed with the system are in the /usr/local/share/doc/freebsd/ directory, or can be installed later with: pkg install en-freebsd-doc For other languages, replace "en" with a language code like de or fr. Show the version of FreeBSD installed: freebsd-version ; uname -a Please include that output and any error messages when posting questions. Introduction to manual pages: man man FreeBSD directory layout: man hier Edit /etc/motd to change this login announcement. When using ZFS as the file system the "df" command is reporting the pool size and not file system sizes. It also does not know about descendent ZFS datasets, snapshots, quotas, and reservations with their individual space usage. Use the built-in "zfs list" command to get a better overview of space usage: zfs list -o space -- Benedict Reuschling bob@ns2:~ % more /var/log/messages Corrupted MAC on input. ssh_dispatch_run_fatal: Connection to 50.1.20.30 port 22: message authentication code incorrect bob@raspberrypi:~ $ Despite this ns2.zefox.net still answers queries sent via nslookup: bob@raspberrypi:~ $ nslookup > server ns2.zefox.net Default server: ns2.zefox.net Address: 50.1.20.30#53 > www.zefox.org Server: ns2.zefox.net Address: 50.1.20.30#53 Name: www.zefox.org Address: 50.1.20.28 > www.zefox.net Server: ns2.zefox.net Address: 50.1.20.30#53 Name: www.zefox.net Address: 50.1.20.27 Outwardly, ns2.zefox.net appears to work as intended. Thanks for reading! bob prohaska