Hello Selva,
>This would lead to TLS keys going out of sync and eventual
client-disconnect as the auth will stay deferred forever.
>The auth-token expiry message you see may be an indirect effect of this
--- the server first disconnects the client, while the client continues and
eventually does a
It's also worth mentioning that we are going to use the external-auth
option for auth-gen-token as a workaround until the patch hits a release
available in Ubuntu 22.04.
With this in our config, we can force the server to notify of reauths and
we'll implement some code to check the session state t
On Mon, Jul 04, 2022 at 08:12:16 +0200, Bo Berglund wrote:
> Seems like the distro upgrade orphaned openvpn but left it in place as-is.
Right -- one of the first things the Ubuntu upgrade process does is to
edit the apt sources to update the release name on the repositories it
recognizes (so they
On Sun, Jul 03, 2022 at 21:55:13 +0200, Bo Berglund wrote:
> And now I had a look at our office server (Ubuntu 18.04 LTS) and it looks the
> same:
>
> $ openvpn --version
> OpenVPN 2.4.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11]
> [MH/PKTINFO] [AEAD] built on Feb 19 2019
>
