Date: Wed, 29 Nov 2023 19:57:24 +0000 From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 275323] OpenVPN topology subnet crash on initiate FreeBSD 14.0 Message-ID: <bug-275323-7501-OvijTztMIa@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-275323-7501@https.bugs.freebsd.org/bugzilla/> References: <bug-275323-7501@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D275323 --- Comment #10 from Marek Zarychta <zarychtam@plan-b.pwste.edu.pl> --- I tried to reproduce this issue running OpenVPN 2.6.8 on 14.0-STABLE #2 stable/14-n265718-e4fb49e867ae: Sat Nov 11 12:59:50 CET 2023 but I was able= to do it only partially. I can confirm, that running the OpenVPN daemon as an ordinary user, or rather dropping privileges in the process after initialization is still possible on FreeBSD 14. On the other hand, DCO acceleration requires running the daemon as root which is expected behaviou= r, though not documented much. Since version 2.6.1 DCO, if available, is the default mode of OpenVPN[1]. FreeBSD 14.0 provides us with the required modu= le thanks to the effort of kp@, so upgrading to 14.0 activates this mode if config options are compatible with DCO. Some configs seemingly compatible w= ith DCO might break though, but that's pretty normal since our implementation is only 99.9% compatible with the one used on Linux (see for example bug 27366= 4). TL;DR - that PR wasn't describing any bug, just reported a misused new feat= ure which makes OpenVPN on FreeBSD 14 a lot more performant 1. https://github.com/OpenVPN/openvpn/blob/release/2.6/ChangeLog --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-275323-7501-OvijTztMIa>