Hi, On Sat, Jun 17, 2023 at 11:35:01AM +0200, Ralf Hildebrandt via Openvpn-users wrote: > Jun 16 09:40:55 openvpn-igel-int tcp[452155]: OpenSSL: error:140E0197:SSL > routines:SSL_shutdown:shutdown while in init > Jun 16 09:40:55 openvpn-igel-int tcp[452155]: OpenSSL: error:0909006C:PEM > routines:get_name:no start line > Jun 16 09:40:55 openvpn-igel-int tcp[452155]: CRL: cannot read CRL from file > /etc/openvpn/ca/crl.pem > Jun 16 09:40:55 openvpn-igel-int tcp[452155]: CRL: loaded 1 CRLs from file > /etc/openvpn/ca/crl.pem
This is from the working connection - so it's "just log noise", it seems,
not causing an actual session abort.
My gut feeling is that there is some garbage at the *end* of the CRL file,
so OpenSSL is able to read "loaded 1 CRLs" from the file, and then there is
something more, which confuses OpenSSL - but not enough to reject the
session.
gert
--
"If was one thing all people took for granted, was conviction that if you
feed honest figures into a computer, honest figures come out. Never doubted
it myself till I met a computer with a sense of humor."
Robert A. Heinlein, The Moon is a Harsh Mistress
Gert Doering - Munich, Germany g...@greenie.muc.de
signature.asc
Description: PGP signature
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
