Arch Linux

Please read this before reporting a bug:

Do NOT report bugs when a package is just outdated, or it is in Unsupported. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!

FS#29887 - [openvpn] Add ipv6 payload patch

Attached to Project: Arch Linux
Opened by Felix Yan (felixonmars) - Monday, 14 May 2012, 18:21 GMT
Last edited by Evangelos Foutras (foutrelis) - Thursday, 31 January 2013, 14:19 GMT
Task Type Feature Request
Category Packages: Core
Status Closed
Assigned To Thomas Bächler (brain0)
Architecture All
Severity Low
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 2
Private No


Would it be possible to include the ipv6 patch that is e.g. related to on
As Ubuntu added this patch since 10.04 "lucid", and IPv6 has been going much more popular these years, I want the official "openvpn" package could accept this patch too.
This task depends upon

Closed by  Evangelos Foutras (foutrelis)
Thursday, 31 January 2013, 14:19 GMT
Reason for closing:  Implemented
Additional comments about closing:  openvpn 2.3.0-1 in [testing] includes IPv6 support.
Comment by Greg (dolby) - Monday, 15 October 2012, 10:46 GMT
What does openvpn upstream think about this? Did you try contacting them?
Comment by Felix Yan (felixonmars) - Monday, 15 October 2012, 10:55 GMT
They are including this patch in 2.3 series but it has been long before a stable version of 2.3.
Comment by Thomas Bächler (brain0) - Monday, 15 October 2012, 11:23 GMT
Wait, so you're telling me that current stable OpenVPN versions do not support ipv6 transports? I didn't realize that. However, this requires thorough review.
Comment by Felix Yan (felixonmars) - Monday, 15 October 2012, 11:33 GMT
Yes I can assume this:

$ openvpn --dev tun --proto udp6
Options error: Bad protocol: 'udp6'. Allowed protocols with --proto option: [ud
p] [tcp-server] [tcp-client] [tcp]

$ openvpn --dev tun --proto udp --remote 2001:470:20::2
Mon Oct 15 19:30:13 2012 OpenVPN 2.2.2 x86_64-unknown-linux-gnu [SSL] [LZO2] [EP
OLL] [eurephia] built on Aug 18 2012
Mon Oct 15 19:30:13 2012 IMPORTANT: OpenVPN's default port number is now 1194, b
ased on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earl
ier used 5000 as the default port.
Mon Oct 15 19:30:13 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or hig
her to call user-defined scripts or executables
Mon Oct 15 19:30:13 2012 ******* WARNING *******: all encryption and authenticat
ion features disabled -- all data will be tunnelled as cleartext
Mon Oct 15 19:30:13 2012 RESOLVE: Cannot resolve host address: 2001:470:20::2: [
HOST_NOT_FOUND] The specified host is unknown.

And same command to use udp6 with AUR/openvpn-dev 2.3_beta1:

$ openvpn --dev tun --proto udp6
Mon Oct 15 19:32:25 2012 OpenVPN 2.3_beta1 x86_64-unknown-linux-gnu [SSL (OpenSS
L)] [LZO] [EPOLL] [eurephia] [MH] [IPv6] built on Oct 15 2012
Comment by Thomas Bächler (brain0) - Monday, 15 October 2012, 11:35 GMT
I am still shocked by this, but yes, we need to fix it.
Comment by Damian Bushong (katana) - Wednesday, 16 January 2013, 20:35 GMT
for the record: current version of openvpn (2.3 line) adds ipv6 support