[Bug 265058] Re: [SRU] openvpn2.1~rc7 fails to pick up the CN of certificates
Martin Pitt
martin.pitt at ubuntu.com
Fri Dec 10 18:00:05 GMT 2010
Subscribing ubuntu-sponsors.
--
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is a direct subscriber.
https://bugs.launchpad.net/bugs/265058
Title:
[SRU] openvpn2.1~rc7 fails to pick up the CN of certificates
Status in “openvpn” package in Ubuntu:
Fix Released
Status in “openvpn” source package in Hardy:
Triaged
Status in “openvpn” source package in Intrepid:
Fix Released
Bug description:
Binary package hint: openvpn
In Ubuntu 8.04.1 the version of openvpn available is 2.1~rc7 which has a pretty serious bug:
>From a reply to the openvpn mailing list after we were having problems:
"try upgrading to 2.1_rc9 ; in 2.1_rc7 the code to extract a common name from a certificate DN was broken. v2.1_rc8 and higher reverted back to the old mechanism, as found in 2.0.9."
This means any attempt to use the ccd feature (different options for different clients based on the name of the client certificate) will fail. Our setup involved an inter-LAN vpn; we could not push the appropriate routes as it couldn't identify the clients properly
Manually upgraded to rc9 and our setup now works
More information about the Ubuntu-sponsors
mailing list