Only update frame calculation if we have a valid link sockets

author Arne Schwabe <arne@rfc2549.org>

Wed, 1 Mar 2023 13:44:55 +0000 (14:44 +0100)

committer Gert Doering <gert@greenie.muc.de>

Mon, 20 Mar 2023 16:38:01 +0000 (17:38 +0100)
author Arne Schwabe <arne@rfc2549.org>
Wed, 1 Mar 2023 13:44:55 +0000 (14:44 +0100)
committer Gert Doering <gert@greenie.muc.de>
Mon, 20 Mar 2023 16:38:01 +0000 (17:38 +0100)
diff --git a/src/openvpn/init.c b/src/openvpn/init.c

index fa2681dc717e819adeb95aebb0baf6b23679bc3e..3a6f624fdaf7f0b08cbcccff48bca4c95fa23098 100644 (file)
--- a/src/openvpn/init.c
+++ b/src/openvpn/init.c
@@ -4687,14 +4687,15 @@ init_instance(struct context *c, const struct env_set *env, const unsigned int f
      if (c->mode == CM_P2P || c->mode == CM_TOP || c->mode == CM_CHILD_TCP)
      {
          link_socket_init_phase2(c);
-    }
  
-    /* Update dynamic frame calculation as exact transport socket information
-     * (IP vs IPv6) may be only available after socket phase2 has finished.
-     * This is only needed for --static or no crypto, NCP will recalculate this
-     * in tls_session_update_crypto_params (P2MP) */
-    frame_calculate_dynamic(&c->c2.frame, &c->c1.ks.key_type, &c->options,
-                            get_link_socket_info(c));
+
+        /* Update dynamic frame calculation as exact transport socket information
+         * (IP vs IPv6) may be only available after socket phase2 has finished.
+         * This is only needed for --static or no crypto, NCP will recalculate this
+         * in tls_session_update_crypto_params (P2MP) */
+        frame_calculate_dynamic(&c->c2.frame, &c->c1.ks.key_type, &c->options,
+                                get_link_socket_info(c));
+    }
  
      /*
       * Actually do UID/GID downgrade, and chroot, if requested.
author	Arne Schwabe <arne@rfc2549.org>
	Wed, 1 Mar 2023 13:44:55 +0000 (14:44 +0100)
committer	Gert Doering <gert@greenie.muc.de>
	Mon, 20 Mar 2023 16:38:01 +0000 (17:38 +0100)