stable

openvpn-2.5.7-1.fc36

FEDORA-2022-31409e24bc created by dsommers 12 months ago for Fedora 36

Update to latest upstream OpenVPN 2.5.7.

This release can resolve connectivity issues after upgrading to Fedora 36, which ships with OpenSSL 3. Use these options: --tls-cert-profile insecure and --providers legacy default if you experience connectivity issues.

More details: https://github.com/OpenVPN/openvpn/blob/release/2.5/Changes.rst

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2022-31409e24bc

This update has been submitted for testing by dsommers.

12 months ago

This update's test gating status has been changed to 'ignored'.

12 months ago

This update has been pushed to testing.

11 months ago
User Icon ckujau provided feedback 11 months ago
karma
BZ#2087181 OpenVPN Connection stopped working after upgrade to F36
BZ#2091980 openvpn-2.5.7 is available
User Icon mhayden commented & provided feedback 11 months ago
karma

Working fine with NetworkManager

This update has been submitted for stable by bodhi.

11 months ago

This update has been pushed to stable.

11 months ago
User Icon dirkk commented & provided feedback 11 months ago
karma

Does NOT work for me. Downgrading to 2.5.6 works again fine. Problem might be similar as in bug report https://bugzilla.redhat.com/show_bug.cgi?id=2092800

User Icon thm commented & provided feedback 11 months ago
karma

Did also NOT work for me against a 2.4.9 server. Needed to do one of two things: either

  • pass --providers legacy default to allow (weak) BF-CBC, or
  • explicitly set AES-256-GCM cipher in the client.

Otherwise, connecting to that server will fail.

User Icon dsommers commented & provided feedback 11 months ago

This contains more related details as well: https://bugzilla.redhat.com/show_bug.cgi?id=2093069

@thm How do you start your client? Via the openvpn-client@.service systemd unit or NetworkManager?

Input and in the BZs here will be brought up with the upstream community as well

User Icon dsommers commented & provided feedback 11 months ago

Upstream has sent a patch to the mailing list to be considered: https://patchwork.openvpn.net/patch/2504/

I've put together a few quick test builds

F36: https://koji.fedoraproject.org/koji/taskinfo?taskID=87830798

Rawhide: https://koji.fedoraproject.org/koji/taskinfo?taskID=87830820

If some of you can do a quick test of those build to see if that helps, I can get a 2.5.7-2 prepared later this weekend.

User Icon thm commented & provided feedback 11 months ago
User Icon dsommers commented & provided feedback 11 months ago

An updated 2.5.7-2 build is now on the way into updates-testing. Please test this build and give the appropriate votes. Since this update caused so much issues and regressions, the 2.5.7-2 build requires more +1s than I normally require.

https://bodhi.fedoraproject.org/updates/FEDORA-2022-8ca0f56650


Please login to add feedback.

Metadata
Type
enhancement
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-1
Stable by Karma
2
Stable by Time
7 days
Dates
submitted
12 months ago
in testing
11 months ago
in stable
11 months ago
BZ#2087181 OpenVPN Connection stopped working after upgrade to F36
0
1
BZ#2091980 openvpn-2.5.7 is available
0
1

Automated Test Results