> On 28. Nov 2023, at 15:48, Antonio Quartulli <a...@unstable.cc> wrote: > > Hi, > > On 28/11/2023 15:42, Aleksandar Ivanisevic wrote: >> Have you tried connecting? I get this error only on client connect. > > Ops, sorry! this wasn't clear to me. > > Well, this opens another different path then. > > First of all, I tried connecting and I see no message whatsoever about CRL > being loaded. > That's because the CRL load upon connect happens only if the CRL file was > modified since last read. > > Since my file is exactly the same, then no load happens. > > This seems to be telling us that something may have happened to that file.
What could have happened? and why did it stop happening as soon as I’ve put in “providers legacy default” in the config file? With that option I have exactly the same behaviour as you, i.e only one " CRL: loaded 1 CRLs from file” per server startup. what is your openssl version, maybe that has something to do with it? mine is OpenSSL 3.0.11 19 Sep 2023 (Library: OpenSSL 3.0.11 19 Sep 2023) > Do you see this error upon *every* client connect? yes, every connect is the same sequence (on verb 4): 2023-11-19T01:44:43.951057+01:00 xxx openvpn[7996]: MULTI: multi_create_instance called 2023-11-19T01:44:43.956500+01:00 xxx openvpn[7996]: xxx:61094 Re-using SSL/TLS context 2023-11-19T01:44:43.957059+01:00 xxx openvpn[7996]: xxx:61094 LZO compression initializing 2023-11-19T01:44:43.958348+01:00 xxx openvpn[7996]: xxx:61094 OpenSSL: error:0308010C:digital envelope routines::unsupported 2023-11-19T01:44:43.958902+01:00 xxx openvpn[7996]: xxx:61094 OpenSSL: error:0480006C:PEM routines::no start line _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
