[Bug 275323] OpenVPN topology subnet crash on initiate FreeBSD 14.0

From: <bugzilla-noreply_at_freebsd.org>
Date: Wed, 29 Nov 2023 19:57:24 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=275323

--- Comment #10 from Marek Zarychta <zarychtam@plan-b.pwste.edu.pl> ---
I tried to reproduce this issue running OpenVPN 2.6.8 on 14.0-STABLE #2
stable/14-n265718-e4fb49e867ae: Sat Nov 11 12:59:50 CET 2023 but I was able to
do it only partially. I can confirm, that running the OpenVPN daemon as an
ordinary user, or rather dropping privileges in the process after
initialization is still possible on FreeBSD 14. On the other hand, DCO
acceleration requires running the daemon as root which is expected behaviour,
though not documented much. Since version 2.6.1 DCO, if available, is the
default mode of OpenVPN[1]. FreeBSD 14.0 provides us with the required module
thanks to the effort of kp@,  so upgrading to 14.0 activates this mode if
config options are compatible with DCO. Some configs seemingly compatible with
DCO might break though, but that's pretty normal since our implementation is
only 99.9% compatible with the one used on Linux (see for example bug 273664).

TL;DR - that PR wasn't describing any bug, just reported a misused new feature
which makes OpenVPN on FreeBSD 14 a lot more performant

1. https://github.com/OpenVPN/openvpn/blob/release/2.6/ChangeLog

-- 
You are receiving this mail because:
You are the assignee for the bug.