Bug #3966
closed
OpenVPN crashes with AES-NI + AES-CBC
Added by Chris Buechler about 10 years ago.
Updated about 10 years ago.
Description
On systems with AES-NI enabled, OpenVPN using AES-128-CBC, AES-192-CBC, and AES-256-CBC crashes on start.
openvpn[43547]: Assertion failed at crypto.c:168
openvpn[43547]: Exiting due to fatal error
test case on 172.27.32.125, see OpenVPN client instance there.
It works using BF-CBC and no encryption.
Related forum thread, I confirmed on the above system.
https://forum.pfsense.org/index.php?topic=83466.0
- Status changed from New to Confirmed
- Assignee set to Ermal Luçi
This seems like an openvpn problem, openssl lib does not show any problem when used with the openssl binary.
OpenVPN is using EVP API so it loads all available engines which by default is cryptodev.
There are two problems here.
1 - The cryptodev interface is a bit slower than direct AESNI implementation in userland. (Though openvpn does not give any choice here)
2 - AESNI module is returning an error somewhere.
- Status changed from Confirmed to Feedback
The issue seems to be that openvpn setups the crypto before forking.
This makes crypto device unhappy in general and possible right to complain.
The following patch fixes it.
Should this be commited?
root@builder10:/usr/ports/security/openvpn/work/openvpn-2.3.5 # diff -u src/openvpn/init.c ~/init.c
--- src/openvpn/init.c 2014-10-20 10:51:43.000000000 +0200
+++ /root/init.c 2014-11-14 12:40:43.000000000 +0100
@@ -3301,6 +3301,9 @@
init_query_passwords (c);
#endif
+ /* do one-time inits, and possibily become a daemon here */
+ do_init_first_time (c);
+
/* initialize context level 2 --verb/--mute parms */
init_verb_mute (c, IVM_LEVEL_2);
@@ -3423,8 +3426,6 @@
if (c->mode == CM_P2P)
do_init_traffic_shaper (c);
- /* do one-time inits, and possibily become a daemon here */
- do_init_first_time (c);
#ifdef ENABLE_PLUGIN
/* initialize plugins */
- Status changed from Feedback to Resolved
I can confirm that enabling AES-NI and instructing OpenVPN client to use AES-128CBC seems to work perfectly as of 2.2-BETA (amd64)
built on Wed Nov 19 15:33:34 CST 2014 on Intel Haswell.
Also available in: Atom
PDF
Updated by 
Updated by Ermal Luçi 
Updated by 
Updated by