FS#49828 : [openvpn] Failed ssl handshake with server

FS#49828 - [openvpn] Failed ssl handshake with server

Attached to Project: Arch Linux
Opened by Alex Talker (AlexTalker) - Friday, 24 June 2016, 06:31 GMT
Last edited by Christian Hesse (eworm) - Friday, 24 June 2016, 18:03 GMT

Task Type	Bug Report
Category	Packages: Core
Status	Closed
Assigned To	Thomas Bächler (brain0) Christian Hesse (eworm) Bartłomiej Piotrowski (Barthalion)
Architecture	x86_64
Severity	High
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	1 Alex Talker (AlexTalker) (2016-06-24)
Private	No

Details

Happens with version 2.3.11-1, if downgrade to 2.3.9-2 (latest version which can be found in arch archive), connection success establish. I tried downgrade openssl also but seems like it's only openvpn problem. I've to attach log & config.

I have replaced original coordinates of server for security reason, hope it doesn't mess you.

Also copy of log here https://gist.github.com/anonymous/b8ff3e9d6776b668584abe8494c98e4b

openvpn.conf (1.4 KiB)

openvpn.log (7.3 KiB)

This task depends upon

Closed by Christian Hesse (eworm)
Friday, 24 June 2016, 18:03 GMT
Reason for closing: Not a bug
Additional comments about closing: Use TLSv1.0 or higher on both sides.

Comment by Jan de Groot (JGC) - Friday, 24 June 2016, 15:00 GMT

Your server uses sslv3, looks like recent OpenVPN doesn't support this anymore.

Comment by Christian Hesse (eworm) - Friday, 24 June 2016, 18:03 GMT

Recent packages of openssl do not support SSLv3 or below. Thus openvpn package does not support it as well. On both sides at least TLSv1.0 is required.

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#49828 - [openvpn] Failed ssl handshake with server

Details

Loading...