I have upgraded glibc on two servers running openvpn on both after the upgrade openvpn doesn't go in daemon mode as temporany workaround I have modified /etc/init.d/openvpn row from: start-stop-daemon --start --pidfile /var/run/openvp n-$VPN.pid --startas /usr/sbin/openvpn -- --config $VPN/local.conf --writepid /var/r un/openvpn-$VPN.pid --daemon --cd $VPN to: start-stop-daemon --start --pidfile /var/run/openvpn -$VPN.pid --startas /usr/sbin/openvpn -- --config $VPN/local.conf --writepid /var/ru n/openvpn-$VPN.pid --cd $VPN & here are the log: Mar 27 22:18:49 fw1 openvpn[23469]: OpenVPN 1.5.0 i686-pc-linux-gnu [SSL] [LZO] [PTHREAD] built on Mar 27 2005 Mar 27 22:18:49 fw1 openvpn[23469]: Diffie-Hellman initialized with 1024 bit key Mar 27 22:18:49 fw1 openvpn[23469]: LZO compression initialized Mar 27 22:18:49 fw1 openvpn[23469]: Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 ] Mar 27 22:18:49 fw1 openvpn[23469]: TUN/TAP device tap2 opened Mar 27 22:18:49 fw1 openvpn[23469]: Data Channel MTU parms [ L:1574 D:1574 EF:42 EB:19 ET:32 ] Mar 27 22:18:49 fw1 openvpn[23469]: Local Options hash (VER=V3): '7d0ab1ac' Mar 27 22:18:49 fw1 openvpn[23469]: Expected Remote Options hash (VER=V3): 'd9e06e80' Mar 27 22:18:49 fw1 openvpn[23469]: chroot to '/etc/openvpn/tap2/chroot' and cd to '/' succeeded Mar 27 20:18:49 fw1 openvpn[22373]: Exiting I tried to remerge nasm lzo and openvpn: emerge nasm lzo openvpn but this doesn't fix the problem Reproducible: Always Steps to Reproduce: 1. emerge --update --deep glibc 2. /etc/init.d/openvpn restart 3. Actual Results: openvpn doesn't work Expected Results: work emerge info Portage 2.0.51.19 (default-linux/x86/2004.3, gcc-3.3.5, glibc-2.3.4.20041102-r1, 2.4.28-gentoo-r5 i686) ================================================================= System uname: 2.4.28-gentoo-r5 i686 AMD Sempron(tm) 2400+ Gentoo Base System version 1.4.16 Python: dev-lang/python-2.3.4-r1 [2.3.4 (#1, Feb 15 2005, 18:28:47)] dev-lang/python: 2.3.4-r1 sys-devel/autoconf: 2.59-r6, 2.13 sys-devel/automake: 1.7.9-r1, 1.8.5-r3, 1.5, 1.4_p6, 1.6.3, 1.9.4 sys-devel/binutils: 2.15.92.0.2-r1 sys-devel/libtool: 1.5.10-r4 virtual/os-headers: 2.4.22-r1 ACCEPT_KEYWORDS="x86" AUTOCLEAN="yes" CFLAGS="-O2 -march=i686 -pipe -fomit-frame-pointer" CHOST="i686-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3/share/config /usr/share/config /var/bind /var/qmail/control" CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/env.d" CXXFLAGS="-O2 -march=i686 -pipe -fomit-frame-pointer" DISTDIR="/usr/portage/distfiles" FEATURES="autoaddcvs autoconfig ccache distlocks sandbox sfperms strict" GENTOO_MIRRORS="http://www.die.unipd.it/pub/Linux/distributions/gentoo-sources/" MAKEOPTS="-j2" PKGDIR="/usr/portage/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" SYNC="rsync://rsync.gentoo.org/gentoo-portage" USE="x86 apm berkdb bitmap-fonts crypt emboss font-server gdbm gif hardened imlib jpeg libg++ libwww mad mikmod motif mp3 ncurses nls pam pdflib perl pic pie png qt readline samba sdl spell ssl svga tcpd truetype truetype-fonts type1-fonts xml2 zlib" Unset: ASFLAGS, CBUILD, CTARGET, LANG, LC_ALL, LDFLAGS, PORTDIR_OVERLAY
another workaround is to run openvpn without chroot. Note I have tested with and without grsecurity enabled
openvpn ~x86 version (1.6) does't solve the problem
since warpzero seems to be inactive i'm going to take this over, as discussed with carlo :)
what about 2.0 ?
Today I'm testing openvpn 2.0 and the problem seems solved, thanks Nicola
