antfeh
commented
4 years ago Should be fixed with this pull request.
Closed Domiroh closed 4 years ago
antfeh
commented
4 years ago Should be fixed with this pull request.
c-goes
commented
4 years ago What environment are you testing in? OS? OpenSSL version? You can merge it yourself if the Ansible works in vagrant environment.
antfeh
commented
4 years ago We are not testing anymore. This is done on physical host with ubuntu 18.04, 4.15.0-72-generic, OpenSSL 1.1.1, with and zfs partition for the containers. The fix worked for this environment.
c-goes
commented
4 years ago Never tried 18.04 because of LXD api errors with ansible. I will need to add it to travis before merge
c-goes
commented
4 years ago Maybe it works on 18.04 just because it uses the same LXD version as 16.04 with xenial-backports. Good to know this.
Following configs should be changed:
roles/vpn/templates/openssl/server.cnf.j2:5:
default_md = sha2roles/vpn/templates/openssl/client1.cnf.j2:5:default_md = sha2to
default_md = sha256This solved an error while running the ansible provision.