Your message dated Wed, 28 Dec 2022 22:26:53 +0000
with message-id <[email protected]>
and subject line Bug#1014376: fixed in openvpn 2.6.0~rc1-1
has caused the Debian Bug report #1014376,
regarding openvpn: Using unreleased version with backwards incompatible changes
is not a good idea
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1014376: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014376
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: openvpn
Version: 2.6.0~git20220518+dco-2
Severity: important
User: [email protected]
Usertags: origin-kali
X-Debbugs-Cc: [email protected]
Hello Bernhard,
as Kali is based on Debian testing, our users started to experience
the git snapshot of OpenVPN that you uploaded. Unfortunately, we got
multiple reports that their VPN break because many VPN services ship .opvn
files that rely on --cipher.
At the same time, it's not really reasonable to expect (commercial)
services to be ready for a version of OpenVPN that is not released yet.
Upstream OpenVPN contributors are blaming Debian/Kali for this choice:
https://forums.openvpn.net/viewtopic.php?p=107165#p107154
As such I really believe that this git snapshot should have stayed in
experimental. Why was it uploaded to unstable before its upstream
release?
I assume it was due to OpenSSL 3 becoming the default. However I notice
that upstream released 2.5.7 on May 31 that adds limited support of
OpenSSL 3.x. Can we switch back to 2.5.7 until 2.6 is released upstream?
(We will likely do this in Kali with a version like 2.6.0~really2.5.7)
If we don't want to switch back to 2.5.x, it might make sense to
temporarily revert the backwards incompatible change
that breaks most people's setup, I'm speaking of this commit:
https://github.com/OpenVPN/openvpn/commit/65f6da8eeb84fbcea357765e13fa73d0169a143c
It seems to be the change that is causing most issues.
Thank you for maintaining such an important package!
--- End Message ---
--- Begin Message ---
Source: openvpn
Source-Version: 2.6.0~rc1-1
Done: Bernhard Schmidt <[email protected]>
We believe that the bug you reported is fixed in the latest version of
openvpn, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Bernhard Schmidt <[email protected]> (supplier of updated openvpn package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 28 Dec 2022 22:51:31 +0100
Source: openvpn
Architecture: source
Version: 2.6.0~rc1-1
Distribution: unstable
Urgency: medium
Maintainer: Bernhard Schmidt <[email protected]>
Changed-By: Bernhard Schmidt <[email protected]>
Closes: 1014376
Changes:
openvpn (2.6.0~rc1-1) unstable; urgency=medium
.
* New upstream version 2.6.0~rc1 (Closes: #1014376)
* Drop DCO workaround applied upstream
Checksums-Sha1:
c849e792d2b64d907f3dbee06a5d3d92e548bfff 2232 openvpn_2.6.0~rc1-1.dsc
3763ea43195f6551893af99ec3efbc08d3a12cb6 1189126 openvpn_2.6.0~rc1.orig.tar.gz
447bea334cb428eff0289ed7b4940a2540f874ba 58308
openvpn_2.6.0~rc1-1.debian.tar.xz
8208daf8d2f0316f3d0b2f3f6c38bc260425f5c1 8059
openvpn_2.6.0~rc1-1_amd64.buildinfo
Checksums-Sha256:
8cba8aff72175cbe895519802f5b7dc28e7a7a9e306dc68cb6db154ae935f31a 2232
openvpn_2.6.0~rc1-1.dsc
a323c81a436f969156bc898f7c189de0a52ecc9f7ab95c9111fa49404d2aba3d 1189126
openvpn_2.6.0~rc1.orig.tar.gz
59ec434b1b57598c454b4e7842d1887ba875f506e5a52cf5d30d65cb0eef3c03 58308
openvpn_2.6.0~rc1-1.debian.tar.xz
0b32db3e1632110fd157bdcced55a0c50870f65c04c44ec3ba14a8a6126e5292 8059
openvpn_2.6.0~rc1-1_amd64.buildinfo
Files:
d34c4f7b7d9663a2867702a0788548ff 2232 net optional openvpn_2.6.0~rc1-1.dsc
a9b8ef3656fede18ddc1dca035cb2ba2 1189126 net optional
openvpn_2.6.0~rc1.orig.tar.gz
1c27899d4252273f4b3bd81bae7ce662 58308 net optional
openvpn_2.6.0~rc1-1.debian.tar.xz
bdfa120baae048f6bdba3b3521688da6 8059 net optional
openvpn_2.6.0~rc1-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=Tplc
-----END PGP SIGNATURE-----
--- End Message ---
