DID something crucial changed on Androids?
Posted: Wed Oct 04, 2023 6:31 pm
Android 13 with sec update on June 5 I get this with trying to connect to my OpenVPN server from the phone:
What is interesting is there is no change since years on the server, nor on the client and it just started doing it with no reason. Checked it on multiple wifis and 5G networks its the same while the VPN works from regular laptop on Debian for example just WTF.
In addition I have checked the CA and cert expire in 2040 so that's not a problem either.
It's a TCP server.
Code: Select all
Wed Oct 4 20:27:27 2023 us=527519 MULTI: multi_create_instance called
Wed Oct 4 20:27:27 2023 us=527815 Re-using SSL/TLS context
Wed Oct 4 20:27:27 2023 us=527855 LZO compression initializing
Wed Oct 4 20:27:27 2023 us=528235 Control Channel MTU parms [ L:1624 D:1182 EF:68 EB:0 ET:0 EL:3 ]
Wed Oct 4 20:27:27 2023 us=528289 Data Channel MTU parms [ L:1624 D:1450 EF:124 EB:406 ET:0 EL:3 ]
Wed Oct 4 20:27:27 2023 us=528399 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,keydir 0,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
Wed Oct 4 20:27:27 2023 us=528414 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,keydir 1,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client'
Wed Oct 4 20:27:27 2023 us=528467 TCP connection established with [AF_INET]1.2.3.4:42758
Wed Oct 4 20:27:27 2023 us=528487 TCP_SERVER link local: (not bound)
Wed Oct 4 20:27:27 2023 us=528501 TCP_SERVER link remote: [AF_INET]1.2.3.4:42758
Wed Oct 4 20:27:27 2023 us=528713 1.2.3.4:42758 TLS: Initial packet from [AF_INET]1.2.3.4:42758, sid=6f33c880 ab475379
Wed Oct 4 20:28:27 2023 us=230994 1.2.3.4:42758 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Wed Oct 4 20:28:27 2023 us=231217 1.2.3.4:42758 TLS Error: TLS handshake failed
Wed Oct 4 20:28:27 2023 us=231576 1.2.3.4:42758 Fatal TLS error (check_tls_errors_co), restarting
Wed Oct 4 20:28:27 2023 us=231606 1.2.3.4:42758 SIGUSR1[soft,tls-error] received, client-instance restarting
Wed Oct 4 20:28:27 2023 us=231762 TCP/UDP: Closing socket
In addition I have checked the CA and cert expire in 2040 so that's not a problem either.
It's a TCP server.