From nobody Mon Sep 26 06:38:41 2022 X-Original-To: bugs@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4MbY4K0RyWz4d5NJ for ; Mon, 26 Sep 2022 06:38:41 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4MbY4J6Sgfz3CP3 for ; Mon, 26 Sep 2022 06:38:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4MbY4J57J6zgrT for ; Mon, 26 Sep 2022 06:38:40 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 28Q6ce8c034381 for ; Mon, 26 Sep 2022 06:38:40 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 28Q6ce6e034380 for bugs@FreeBSD.org; Mon, 26 Sep 2022 06:38:40 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 266598] if_ovpn(4) DCO module not supporting correctly IPv6 tunneling Date: Mon, 26 Sep 2022 06:38:41 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: ipv6 X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: gert@greenie.muc.de X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: bugs@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Bug reports List-Archive: https://lists.freebsd.org/archives/freebsd-bugs List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-bugs@freebsd.org MIME-Version: 1.0 ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1664174320; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=p6mF7odc2aCxRWY+nysgQcEHMwU1669TINBTmGBOYXU=; b=ZcVj9epaF8x9zxNQFzY9fKubiMgN4+nT8+pmbjJK0vkosWaM8xUUr3NKux5BqwCFA/4Asj Ma9CW/pP0vMLzkw+WL036vXWxtaEc9M2ATgXCsLQoTb2Cr9nPdDHkMYeC6g666lwGSQegl sVGTL4pWww/Zk2uJLehRNtPOGn+EkpKHAfUvKPzeGjVH5gw6MHvyG4ZT6Z0i7MoRn2zNZv d2dQxrA4PHcjD5NMS8vfiIinxBL1lLkG2+tnscgjiT9+M2JG95xPk0c4dG7m8wCjHY8m9D j9HUblUY7r/a5p05p+4yO01hJjWS+8ifeabas92dpO4RZLbgf0PgBspJ0UM9Nw== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1664174320; a=rsa-sha256; cv=none; b=PhX462oDFks+Ovu7XfsTmskWHOaGIs8S8C0wqgd4Ral11FebEzcTJ5WShx5AGObIvu7Iqe EZH6T57Jiwjy2zamx8P76WYOatRTIxAf94e38Jv43T67I6rBzAVDffYP0a36/UP1xWZ0qz Q7qYMQzUhJVfFEGkkaBE2zt1NWL0DgX2ooGOWf/87zFpHlpzPgn7r02FoSw4cJpvyjQdGS kxOy7CjBfDW9z8bG/EqTQxE/gTNdHRHBPoG53zsv3wpwtgptaj8kTNmbUzQ5F4ghQrJK4e 04l2Ye++BMNKch7ToG6mUOt+JpQmElxTbSMwIF/psZfK+SA0wcO7hs/dWNBvlw== ARC-Authentication-Results: i=1; mx1.freebsd.org; none X-ThisMailContainsUnwantedMimeParts: N https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D266598 --- Comment #3 from Gert Doering --- I can not reproduce the tcpdump issue, but I can reproduce the SSH stall. Setup: - OpenVPN Client with Linux-DCO, Server with FreeBSD-DCO. - SSH client on the Linux side, SSH server on the FreeBSD side - tcpdump running on both tunnel sides - initial SSH handshake passes, then 08:32:25.353401 IP6 fd00:abcd:114:2::1.22 > fd00:abcd:114:2::1001.54728: Fl= ags [P.], seq 2627:2671, ack 2086, win 1042, options [nop,nop,TS val 3092511785= ecr 3727979942], length 44 08:32:25.353420 IP6 fd00:abcd:114:2::1001.54728 > fd00:abcd:114:2::1.22: Fl= ags [.], ack 2671, win 501, options [nop,nop,TS val 3727979943 ecr 3092511785], length 0 08:32:25.354086 IP6 fd00:abcd:114:2::1001.54728 > fd00:abcd:114:2::1.22: Fl= ags [P.], seq 2086:2642, ack 2671, win 501, options [nop,nop,TS val 3727979944 = ecr 3092511785], length 556 08:32:25.564213 IP6 fd00:abcd:114:2::1001.54728 > fd00:abcd:114:2::1.22: Fl= ags [P.], seq 2086:2642, ack 2671, win 501, options [nop,nop,TS val 3727980154 = ecr 3092511785], length 556 08:32:25.776229 IP6 fd00:abcd:114:2::1001.54728 > fd00:abcd:114:2::1.22: Fl= ags [P.], seq 2086:2642, ack 2671, win 501, options [nop,nop,TS val 3727980366 = ecr 3092511785], length 556 ... 08:34:15.540211 IP6 fd00:abcd:114:2::1001.54728 > fd00:abcd:114:2::1.22: Fl= ags [P.], seq 2086:2642, ack 2671, win 501, options [nop,nop,TS val 3728090130 = ecr 3092511785], length 556 a 556 byte packet gets "stuck" - this is seen on the client side tcpdump, b= ut never show up on the server side tcpdump. The initial handshake up to the "length 44" and "length 0" byte packets ARE seen on the server side tcpdump, so generally, tcpdump is working fine: 08:32:25.352754 IP6 fd00:abcd:114:2::1.22 > fd00:abcd:114:2::1001.54728: Fl= ags [P.], seq 2627:2671, ack 2086, win 1042, options [nop,nop,TS val 3092511785= ecr 3727979942], length 44 08:32:25.353596 IP6 fd00:abcd:114:2::1001.54728 > fd00:abcd:114:2::1.22: Fl= ags [.], ack 2671, win 501, options [nop,nop,TS val 3727979943 ecr 3092511785], length 0 This does not look related to MTU/MSS (FreeBSD DCO seems to do mssfix just fine, I see packets coming out with mss 1360 - which is fine) - especially = as the packet that is eaten is small anyway. --=20 You are receiving this mail because: You are the assignee for the bug.=