Hi, On Wed, Nov 17, 2021 at 05:53:21AM +0200, Lev Stipakov wrote: > OpenVPN 3, however, doesn't change packet-id on retransmission, > which triggers replay protection and causes level 1 nonfatal errors > in logs. > > When replay protection sees the packet with the same timestamp > and packet-id as previously received one, this is likely retransmission > from OpenVPN 3. To not to scare users, tune verbosity down in this case.
Wouldn't "fix this in OpenVPN 3, instead of hiding the warning in 2.x"
be a better approach?
This complicates 2.x code, which is complicated enough...
(If merged at all, this would not match our criteria for release/2.5
either - it's neither a bugfix, nor a long-term compatibility thing)
gert
--
"If was one thing all people took for granted, was conviction that if you
feed honest figures into a computer, honest figures come out. Never doubted
it myself till I met a computer with a sense of humor."
Robert A. Heinlein, The Moon is a Harsh Mistress
Gert Doering - Munich, Germany g...@greenie.muc.de
signature.asc
Description: PGP signature
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
