Am 28.04.25 um 09:53 schrieb Walter Doekes:
On 24-04-2025 10:26, Arne Schwabe wrote:
You are also saying that there is a difference in OpenVPN 2.5 vs OPneVPN
2.6. If that is indeed the case, a git bisect would be helpful to point
to the commit that is breaking this.
Well. This was my least worst bisect experience so far. So, thank you for
that! :)
autoreconf -ivf && ./configure && echo '#define HAVE_EVP_PKEY_ID 1' >>
config.h && make -j12
was sufficient on Ubuntu/Noble and running didn't require extra
installation/path shuffling.
The offending commit is:
commit b364711486dc6371ad2659a5aa190941136f4f04
Author: Arne Schwabe <a...@rfc2549.org>
Date: Mon May 2 17:43:10 2022 +0200
Implement stateless HMAC-based sesssion-id three-way-handshake
Double checked and confirmed. Apparently this alters things so the
source-IP-switched connection shows up as a second connection.
I haven't checked if it's something I can fix yet. But At least we have a
culprit now.
Well that changes the behaviour of how new sessions are established,
that this change is the one that is triggering the issue is even more
perplexing.
Arne
_______________________________________________
Openvpn-devel mailing list
Openvpn-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-devel
