index 87d6fc31..dba9d02c 100644 --- a/src/openvpn/options.c +++ b/src/openvpn/options.c @@ -3194,6 +3194,16 @@ options_postprocess_mutate_ce(struct options *o, struct connection_entry *ce) ce->explicit_exit_notification = 0; }+ /* when DCO is in use we can't send data channel packets.+ * EEN needs to be re-implemented over the control channel in order + * to work. + */ + if (dco_enabled(o) && ce->explicit_exit_notification) + { + msg(M_WARN, "NOTICE: --explicit-exit-notify ignored when " + "data channel offload is in use"); + ce->explicit_exit_notification = 0; + }
I don't like this. There is already the patch from me that allows this on the control channel. So we need a better solution than disabling it when dco is enabled. Did you check what happens if data packets are tried being sent when DCO is enabled? Maybe that just has a warning now that no key is active.
Arne _______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
