> On 24-04-2025 10:26, Arne Schwabe wrote:
>> You are also saying that there is a difference in OpenVPN 2.5 vs OPneVPN
>> 2.6. If that is indeed the case, a git bisect would be helpful to point
>> to the commit that is breaking this.

Well. This was my least worst bisect experience so far. So, thank you for
that! :)

  autoreconf -ivf && ./configure && echo '#define HAVE_EVP_PKEY_ID 1' >>
config.h && make -j12

was sufficient on Ubuntu/Noble and running didn't require extra
installation/path shuffling.

The offending commit is:

  commit b364711486dc6371ad2659a5aa190941136f4f04
  Author: Arne Schwabe <a...@rfc2549.org>
  Date:   Mon May 2 17:43:10 2022 +0200

    Implement stateless HMAC-based sesssion-id three-way-handshake


Double checked and confirmed. Apparently this alters things so the
source-IP-switched connection shows up as a second connection.

I haven't checked if it's something I can fix yet. But At least we have a
culprit now.


Cheers,
Walter Doekes
OSSO B.V.




_______________________________________________
Openvpn-devel mailing list
Openvpn-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-devel

Reply via email to