Hello Everyone Could you please give me an insight of what is going here... :-)
I'm trying to use and test the openvpn version 2.5_beta1 with the wintun interface on a windows 10 machine based on a release built from the source code. In order to do that, I'm using the openvpn-vagrant with the openvpn-build-bionic vm to generate a nsis installer. Well, so far, I'm building an unsigned release. After setting the environment variables, downloading the code and running the ./openvpn-build/windows-nsis/build-complete script, the compilation completes successfully and an exe file is generated. In a Windows 10 machine, the installation of this generated exe runs ok but when I try to connect to a server from the Openvpn-GUI using the wintun interface, I always get the following error: 2020-08-17 19:15:39 us=419470 Outgoing Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication 2020-08-17 19:15:39 us=419470 Incoming Data Channel: Cipher 'BF-CBC' initialized with 128 bit key 2020-08-17 19:15:39 us=419470 WARNING: INSECURE cipher (BF-CBC) with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC). Support for these insecure ciphers will be removed in OpenVPN 2.6. 2020-08-17 19:15:39 us=419470 Incoming Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication 2020-08-17 19:15:39 us=419470 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks. 2020-08-17 19:15:39 us=419470 interactive service msg_channel=0 2020-08-17 19:15:39 us=421471 ROUTE_GATEWAY 10.1.1.1/255.255.0.0 I=10 HWADDR=92:e9:37:4c:bb:99 2020-08-17 19:15:39 us=421471 open_tun 2020-08-17 19:15:39 us=424470 MANAGEMENT: Client disconnected 2020-08-17 19:15:39 us=424470 ERROR: Wintun requires SYSTEM privileges and therefore should be used with interactive service. If you want to use openvpn from the command line, you need to do SYSTEM elevation yourself (for example with psexec). 2020-08-17 19:15:39 us=424470 Exiting due to fatal error It seems that the openvpn.exe is unable to open the pipe with the Interactive Service (interactive service msg_channel=0). If I download and install the OpenVPN-2.5-beta.msi from the openvpn.net, wintun works perfectly. So, now is the point that I'm stuck. What am I doing wrong or missing? Moreover, I have a couple questions that you guys might help: 1) Is there any problem in using openvpn with the wintun interface from an unsigned built release? 2) Is there any problem with wintun in using an unsigned nsis installer than the .msi one? 3) I'm also trying to generate a msi installer with vagrant msibuilder but I'm getting the following error: PS O:\windows-msi> cscript build.wsf msi Microsoft (R) Windows Script Host Version 5.812 Copyright (C) Microsoft Corporation. All rights reserved. BUILD: tmp\x86\msi.wixobj RUN: "C:\Program Files (x86)\WiX Toolset v3.11\bin\candle.exe" -nologo -ext WixNetFxExtension -arch "x86" -dPRODUCT_PUBLISHER="OpenVPN Technologies, Inc." -dPRODUCT_NAME="OpenVPN" -dPRODUCT_VERSION="2.5.003" -dPACKAGE_VERSION="2.5-20200304" -dPRODUCT_TAP_WIN_NAME="TAP-Windows" -dPRODUCT_TAP_WIN_COMPONENT_ID="tap0901" -dPRODUCT_PLATFORM="x86" -dPRODUCT_CODE=" {E5931AF4-2A8F-48A5-AFC8-E996BB49D024}" -dUPGRADE_CODE="{1195A47B-A37A-4055-9D34-B7A691F7E97B}" -dCONFIG_EXTENSION="ovpn" -dPROGRAM_FILES_DIR="ProgramFilesFolder" -dOPENSSL_PLAT="" -out "tmp\x86\msi.wixobj" "msi.wxs" msi.wxs O:\windows-msi\msi.wxs(724) : error CNDL0104 : Not a valid source file; detail: 'yes' is an unexpected token. Expecting white space. Line 724, position 157. O:\windows-msi\build.wsf(163, 20) Microsoft JScript runtime error: WiX compiler returned non-zero. PS O:\windows-msi> Please, any help is very welcome! Thanks in Advance Rafael
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel