From nobody Thu Jan 18 17:32:48 2024 X-Original-To: freebsd-arm@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TG8w45XQ4z56Ysk for ; Thu, 18 Jan 2024 17:32:52 +0000 (UTC) (envelope-from fbsd@www.zefox.net) Received: from www.zefox.net (www.zefox.net [50.1.20.27]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "www.zefox.com", Issuer "www.zefox.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4TG8w42C1Qz46k4 for ; Thu, 18 Jan 2024 17:32:52 +0000 (UTC) (envelope-from fbsd@www.zefox.net) Authentication-Results: mx1.freebsd.org; none Received: from www.zefox.net (localhost [127.0.0.1]) by www.zefox.net (8.17.1/8.15.2) with ESMTPS id 40IHWng5043360 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NO); Thu, 18 Jan 2024 09:32:49 -0800 (PST) (envelope-from fbsd@www.zefox.net) Received: (from fbsd@localhost) by www.zefox.net (8.17.1/8.15.2/Submit) id 40IHWmXf043359; Thu, 18 Jan 2024 09:32:48 -0800 (PST) (envelope-from fbsd) Date: Thu, 18 Jan 2024 09:32:48 -0800 From: bob prohaska To: Paul Mather Cc: Mark Millard , freebsd-arm@freebsd.org Subject: Re: sshd signal 11 on -current Message-ID: References: <7EF12F55-70E4-4780-BF73-3C7B963C3781@yahoo.com> <47E5939E-0DCF-4666-AB62-4A8E8A3F3204@gromit.dlib.vt.edu> List-Id: Porting FreeBSD to ARM processors List-Archive: https://lists.freebsd.org/archives/freebsd-arm List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-arm@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <47E5939E-0DCF-4666-AB62-4A8E8A3F3204@gromit.dlib.vt.edu> X-Rspamd-Queue-Id: 4TG8w42C1Qz46k4 X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:7065, ipnet:50.1.16.0/20, country:US] On Thu, Jan 18, 2024 at 09:45:51AM -0500, Paul Mather wrote: > On 17 Jan 2024, at 8:51???pm, bob prohaska wrote: > > > > > I'm not sure which MAC (as in ethernet MAC) is being referred > > to. Might a different kind of MAC exist, unrelated to ethernet? > > > If this error is from SSH then it is likely unrelated to Ethernet. It likely refers to Message Authentication Code (MAC), which is used to ensure data integrity. See man ssh_config(5) for details. That puts a very different light on the problem. On ns2.zefox.net, the host at the server end of the failed ssh connections, running bob@ns2:~ % ssh -Q mac hmac-sha1 hmac-sha1-96 hmac-sha2-256 hmac-sha2-512 hmac-md5 hmac-md5-96 umac-64@openssh.com umac-128@openssh.com hmac-sha1-etm@openssh.com hmac-sha1-96-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-md5-etm@openssh.com hmac-md5-96-etm@openssh.com umac-64-etm@openssh.com umac-128-etm@openssh.com bob@ns2:~ % At the same time, there was a typo (mine!) in /etc/ssh/sshd_conf, MACs -*etm@openssh.co introduced when adding the workaround in CVE-2023-48795. The error has been corrected and ns2.zefox.net rebooted. But, no difference in behavior. Here's the transcript, taken from my Raspberry Pi4 workstation: bob@raspberrypi:~ $ ssh ns2.zefox.net Password for bob@ns2.zefox.net: Last login: Thu Jan 18 08:36:07 2024 FreeBSD 12.4-STABLE r373269 GENERIC Welcome to FreeBSD! Release Notes, Errata: https://www.FreeBSD.org/releases/ Security Advisories: https://www.FreeBSD.org/security/ FreeBSD Handbook: https://www.FreeBSD.org/handbook/ FreeBSD FAQ: https://www.FreeBSD.org/faq/ Questions List: https://lists.FreeBSD.org/mailman/listinfo/freebsd-questions/ FreeBSD Forums: https://forums.FreeBSD.org/ Documents installed with the system are in the /usr/local/share/doc/freebsd/ directory, or can be installed later with: pkg install en-freebsd-doc For other languages, replace "en" with a language code like de or fr. Show the version of FreeBSD installed: freebsd-version ; uname -a Please include that output and any error messages when posting questions. Introduction to manual pages: man man FreeBSD directory layout: man hier Edit /etc/motd to change this login announcement. You can use /etc/make.conf to control the options used to compile software on this system. Example entries are in /usr/share/examples/etc/make.conf and in make.conf(5). For options that are set for building FreeBSD's kernel and its world, see src.conf(5). bob@ns2:~ % grep -i ssh /var/log/messages Jan 1 00:38:20 ns2 sshd[8068]: error: Fssh_kex_exchange_identification: Connection closed by remote host Jan 1 01:04:47 ns2 sshd[8182]: error: Fssh_kex_exchange_identification: Connection closed by remote host Jan 1 01:49:21 ns2 sshd[8242]: error: PAM: Authentication error for illegal user info from 185.11.61.234 Jan 1 02:19:41 ns2 sshd[8292]: error: PAM: Authentication error for illegal user cromados from 85.209.11.226 Jan 1 02:26:04 ns2 sshd[8308]: error: Fssh_kex_exchange_identification: Connection closed by remote host Corrupted MAC on input. ssh_dispatch_run_fatal: Connection to 50.1.20.30 port 22: message authentication code incorrect bob@raspberrypi:~ $ It does seem likely I've been barking up the wrong tree, but the new tree I picked is still wrong and there are several. A web search discovered an old (2016) thread which reports: "I got this problem to go away by disabling AVB/EAV mode on the advanced settings for the Ethernet adapter on the Mac (under Big Sur)." That suggests an Ethernet problem IIUC. Any other suggestions are welcome! Thanks for writing, bob prohaska