On 3/31/2015 10:30 AM, Mike Tancsa wrote:
On 3/31/2015 10:23 AM, Gert Doering wrote:
Hi,
On Tue, Mar 31, 2015 at 09:39:46AM -0400, Mike Tancsa wrote:
I am not able to reproduce this.
You need to use --daemon to make openvpn fork(). Otherwise, it will
"just work", but after forking, the cryptodev file descriptor is no
longer valid -> boom. Steffan's patch should fix that.
Hi,
Is having in the config
daemon openvpn-hq
not the same as --daemon from the arguments ?
commenting out daemon in the config, and starting it up with
openvpn --daemon --config /usr/local/etc/openvpn/openvpn.conf
also works for me. Perhaps its the way the engine is loaded with this
version of openssl in the base of FreeBSD ?
# openssl engine -t -c
(cryptodev) BSD cryptodev engine
[RSA, DSA, DH, AES-128-CBC, AES-192-CBC, AES-256-CBC]
[ available ]
(rsax) RSAX engine support
[RSA]
[ available ]
(rdrand) Intel RDRAND engine
[RAND]
[ available ]
(dynamic) Dynamic engine loading support
[ unavailable ]
---Mike
--
-------------------
Mike Tancsa, tel +1 519 651 3400
Sentex Communications, m...@sentex.net
Providing Internet services since 1994 www.sentex.net
Cambridge, Ontario Canada http://www.tancsa.com/
