Open mr-liusg opened 9 months ago
The two logs are not truly related to each other. Are you using TCP or UDP? However, the kernel issue is already tracked in #18
For the userspace error, can you post the full log please? However, it may just be an artifact of the kernel problem.
I am using a UDP mode server. Indeed, the problem may be in the kernel. What's strange is this log " netlink reports object not found, ovpn-dco unloaded?"
that's a standard error message for when userspace cannot find the object to work on. This is the consequence of a previous problem. This is why I asked for the full log, please :-)
would you be able to reproduce this issue with --verb 6 ?
would you be able to reproduce this issue with --verb 6 ?
got it.
I'll implement it in the next change time window, the rest will have to wait. I haven't found a way to reproduce it stably yet.
me too. i try use it with kernel 6.7.9 and 6.80. ubuntu 23.10, openvpn 2.6.9
dco_get_peer_stats: netlink reports object not found, ovpn-dco unloaded?
me too. i try use it with kernel 6.7.9 and 6.80. ubuntu 23.10, openvpn 2.6.9
dco_get_peer_stats: netlink reports object not found, ovpn-dco unloaded?
Hi @liuxyon do you have the full log? and are you able to easily reproduce the issue? So far the hardest part has been reproducing the issue locally.
2024-03-12 08:07:57 OpenVPN 2.6.9 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO] 2024-03-12 08:07:57 library versions: OpenSSL 3.0.10 1 Aug 2023, LZO 2.10 2024-03-12 08:07:57 DCO version: 0.2.20231117 2024-03-12 08:07:57 net_route_v4_best_gw query: dst 0.0.0.0 2024-03-12 08:07:57 net_route_v4_best_gw result: via 91.228.56.1 dev ens3 2024-03-12 08:07:57 net_iface_new: add devpn type ovpn-dco 2024-03-12 08:07:57 DCO device devpn opened 2024-03-12 08:07:57 net_iface_mtu_set: mtu 1430 for devpn 2024-03-12 08:07:57 net_iface_up: set devpn up 2024-03-12 08:07:57 net_addr_ptp_v4_add: 10.11.1.1 peer 10.11.1.2 dev devpn 2024-03-12 08:07:57 net_iface_mtu_set: mtu 1430 for devpn 2024-03-12 08:07:57 net_iface_up: set devpn up 2024-03-12 08:07:57 net_addr_v6_add: 2602:fed8:7025:d::2/124 dev devpn 2024-03-12 08:07:57 Socket Buffers: R=[67108864->67108864] S=[67108864->67108864] 2024-03-12 08:07:57 UDPv4 link local (bound): [AF_INET]195.80.45.150:51755 2024-03-12 08:07:57 UDPv4 link remote: [AF_UNSPEC] 2024-03-12 08:07:57 dco_get_peer_stats: netlink reports object not found, ovpn-dco unloaded? 2024-03-12 08:07:57 dco_get_peer_stats: failed to send netlink message: No such file or directory (-2) 2024-03-12 08:07:57 Data Channel Offload doesn't support DATA_V1 packets. Upgrade your server to 2.4.5 or newer. 2024-03-12 08:07:57 Data Channel Offload doesn't support DATA_V1 packets. Upgrade your server to 2.4.5 or newer. 2024-03-12 08:07:58 Data Channel Offload doesn't support DATA_V1 packets. Upgrade your server to 2.4.5 or newer. 2024-03-12 08:07:58 Data Channel Offload doesn't support DATA_V1 packets. Upgrade your server to 2.4.5 or newer. 2024-03-12 08:07:58 Data Channel Offload doesn't support DATA_V1 packets. Upgrade your server to 2.4.5 or newer. 2024-03-12 08:07:58 Data Channel Offload doesn't support DATA_V1 packets. Upgrade your server to 2.4.5 or newer. 2024-03-12 08:07:59 NOTE: --mute triggered...
me too. i try use it with kernel 6.7.9 and 6.80. ubuntu 23.10, openvpn 2.6.9 dco_get_peer_stats: netlink reports object not found, ovpn-dco unloaded?
Hi @liuxyon do you have the full log? and are you able to easily reproduce the issue? So far the hardest part has been reproducing the issue locally.
are you able to easily reproduce the issue? yes. i test it in two servers.
i use openvpn with p2p mode for bgp tunnel. an side use pfsense plus 23.09.01 and other side using ubuntu 23.10
@liuxyon can you share the configuration file you used to generate the log above? it may be related to some issue with p2p mode
mode p2p local 195.80.45.150 port 51755
proto udp4 dev-type tun dev devpn
tun-mtu 1430
txqueuelen 20000
reneg-sec 86400
tls-groups X25519 data-ciphers AES-256-GCM:AES-128-GCM tls-server
remote-cert-tls client ca ca.crt cert tv189.com.crt key tv189.com.key float dh none
auth SHA3-256
tls-crypt ta.key
ifconfig 10.11.1.1 10.11.1.2 ifconfig-ipv6 2602:fed2:7025:d::2/124 2602:fed2:7025:d::3
auth-nocache
keepalive 30 120 pull-filter ignore peer-id ping-timer-rem cipher AES-256-GCM
allow-compression no
persist-key persist-tun status openvpn-status.log log openvpn.log verb 3
tls-version-min 1.3
max-clients 1
mute 20
maybe that happens because openvpn is trying to retrieve stats before the other peer has connected?
maybe that happens because openvpn is trying to retrieve stats before the other peer has connected?
i don't know, how i do fix it? when setup disable-dco, all normal. but i want to try dco..
maybe that happens because openvpn is trying to retrieve stats before the other peer has connected?
i don't know, how i do fix it? when setup disable-dco, all normal. but i want to try dco..
is it creating any issue other than the error message?
pfsense returned to normal mode, ubuntu use dco, accidentally connected once, but the network was blocked and there was no route. Now I have returned to normal mode. DCO cant connect or cant be connected.
After three days of steady running, suddenly
Then consistently see kernel errors
dmesg output
What can I do about it?