From nobody Sat Feb 12 18:56:18 2022 X-Original-To: freebsd-arm@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id CAC9A19B26B5 for ; Sat, 12 Feb 2022 18:56:20 +0000 (UTC) (envelope-from fbsd@www.zefox.net) Received: from www.zefox.net (www.zefox.net [50.1.20.27]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "www.zefox.com", Issuer "www.zefox.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Jx07l6pzQz3HHR for ; Sat, 12 Feb 2022 18:56:19 +0000 (UTC) (envelope-from fbsd@www.zefox.net) Received: from www.zefox.net (localhost [127.0.0.1]) by www.zefox.net (8.16.1/8.15.2) with ESMTPS id 21CIuIiG037466 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NO); Sat, 12 Feb 2022 10:56:19 -0800 (PST) (envelope-from fbsd@www.zefox.net) Received: (from fbsd@localhost) by www.zefox.net (8.16.1/8.15.2/Submit) id 21CIuI8D037465; Sat, 12 Feb 2022 10:56:18 -0800 (PST) (envelope-from fbsd) Date: Sat, 12 Feb 2022 10:56:18 -0800 From: bob prohaska To: freebsd-arm@freebsd.org Cc: bob prohaska Subject: Pi3 answers ssh only if outbound ping is running on -current Message-ID: <20220212185618.GA37391@www.zefox.net> List-Id: Porting FreeBSD to ARM processors List-Archive: https://lists.freebsd.org/archives/freebsd-arm List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-arm@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline X-Rspamd-Queue-Id: 4Jx07l6pzQz3HHR X-Spamd-Bar: ++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of fbsd@www.zefox.net has no SPF policy when checking 50.1.20.27) smtp.mailfrom=fbsd@www.zefox.net X-Spamd-Result: default: False [2.93 / 15.00]; RCVD_TLS_ALL(0.00)[]; ARC_NA(0.00)[]; WWW_DOT_DOMAIN(0.50)[]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; NEURAL_SPAM_SHORT(1.00)[0.998]; NEURAL_HAM_LONG(-0.93)[-0.932]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[zefox.net]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.96)[0.959]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; MLMMJ_DEST(0.00)[freebsd-arm]; R_SPF_NA(0.00)[no SPF record]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:7065, ipnet:50.1.16.0/20, country:US]; RCVD_COUNT_TWO(0.00)[2]; MID_RHS_WWW(0.50)[] X-ThisMailContainsUnwantedMimeParts: N Status: O Content-Length: 2854 Lines: 59 For a few weeks now a Pi3 running -current will not respond to an incoming ssh connection unless an outbound ping process is running. Once the outbound ping is started via the serial console, incoming ssh connections are answered normally. Uname -a reports FreeBSD www.zefox.org 14.0-CURRENT FreeBSD 14.0-CURRENT #10 main-n253073-6db44b0158c: Sat Feb 12 04:30:21 PST 2022 bob@www.zefox.org:/usr/obj/usr/src/arm64.aarch64/sys/GENERIC arm64 A Pi4 running -current of a few days ago exhibits no such problems. Another Pi3 running stable/13 has been behaving in the same way. Both Pi3s successfully set time via ntp on reboot and will very briefly (one or two minutes) prompt for an ssh password, but no further progress is made and the login attempt times out. If the ssh login is attempted a second time, not even a password prompt comes back. Ping times (to an adjacent machine on the same subnet are 64 bytes from 50.1.20.26: icmp_seq=2 ttl=64 time=0.978 ms 64 bytes from 50.1.20.26: icmp_seq=3 ttl=64 time=0.967 ms 64 bytes from 50.1.20.26: icmp_seq=4 ttl=64 time=1.088 ms 64 bytes from 50.1.20.26: icmp_seq=5 ttl=64 time=0.983 ms 64 bytes from 50.1.20.26: icmp_seq=6 ttl=64 time=1.007 ms 64 bytes from 50.1.20.26: icmp_seq=7 ttl=64 time=1.075 ms 64 bytes from 50.1.20.26: icmp_seq=8 ttl=64 time=1.020 ms 64 bytes from 50.1.20.26: icmp_seq=9 ttl=64 time=1.044 ms 64 bytes from 50.1.20.26: icmp_seq=10 ttl=64 time=1.026 ms 64 bytes from 50.1.20.26: icmp_seq=11 ttl=64 time=0.908 ms That might be considered slow, but the correspondent machine is only a Pi2 running FreeBSD www.zefox.com 14.0-CURRENT FreeBSD 14.0-CURRENT #3 main-71d2d5adfe: Tue Dec 21 00:23:51 PST 2021 bob@www.zefox.com:/usr/obj/usr/freebsd-src/arm.armv7/sys/GENERIC arm If the outbound ping is started, an incoming ssh connection established and the outbound ping subsequently stopped the running ssh connection silently freezes; no disconnect, but no response, not even echo. Some tens of seconds later, all inputs were responded to. Tried a second time, the stoppage recurred, restarting the outbound ping eventually restored responsiveness. With the outbound ping stopped, an inbound ssh attempt silently failed: bob@raspberrypi:~ $ ssh -vvv 50.1.20.28 OpenSSH_7.9p1 Raspbian-10+deb10u2+rpt1, OpenSSL 1.1.1d 10 Sep 2019 debug1: Reading configuration data /etc/ssh/ssh_config debug1: /etc/ssh/ssh_config line 19: Applying options for * debug2: resolve_canonicalize: hostname 50.1.20.28 is address debug2: ssh_connect_direct debug1: Connecting to 50.1.20.28 [50.1.20.28] port 22. [enter key echoed] debug1: connect to address 50.1.20.28 port 22: Connection timed out ssh: connect to host 50.1.20.28 port 22: Connection timed out bob@raspberrypi:~ $ Thanks for reading and any insights. If I've omitted useful details or tests please indicate. bob prohaska