Package: openvpn Version: 2.1~rc20-2Severity: normal
Hello,
I haven't change my confs OpenVPN for many month and recently - one week approximately - openvpn can't to open connection with my server. In my conf the certificates aren't absolute path, just that : " ca ca.crt cert client.crt key client.key " and these file are in /etc/openvpn
But now openvpn not found the certificates if i don't precise the path : " ca /etc/openvpn/ca.crt cert /etc/openvpn/client.crtkey /etc/openvpn/client.key "
Execute openvpn with parameter /etc/openvpn/my.conf give this message : # openvpn /etc/openvpn/server.confFri Nov 27 20:59:09 2009 OpenVPN 2.1_rc20 x86_64-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] built on Oct 6 2009 Fri Nov 27 20:59:09 2009 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info. Fri Nov 27 20:59:09 2009 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Fri Nov 27 20:59:09 2009 Cannot load certificate file client.crt: error:02001002:system library:fopen:No such file or directory: error:20074002:BIO routines:FILE_CTRL:system lib: error:140AD002:SSL routines:SSL_CTX_use_certificate_file:system lib Fri Nov 27 20:59:09 2009 Exiting
The same bug is present on three pc on debian : two sid/squeeze and one Lenny. Best regards. Kévin -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (988, 'testing'), (986, 'testing'), (984, 'stable'), (982, 'stable'), (98, 'unstable'), (96, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.30-2-amd64 (SMP w/2 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages openvpn depends on: ii debconf [debconf-2.0] 1.5.28 Debian configuration management sy ii libc6 2.10.1-7 GNU C Library: Shared libraries ii liblzo2-2 2.03-2 data compression library ii libpam0g 1.1.0-4 Pluggable Authentication Modules l ii libpkcs11-helper1 1.07-1 library that simplifies the intera ii libssl0.9.8 0.9.8k-6 SSL shared libraries ii openssl-blacklist 0.5-2 list of blacklisted OpenSSL RSA ke ii openvpn-blacklist 0.4 list of blacklisted OpenVPN RSA sh Versions of packages openvpn recommends: ii net-tools 1.60-23 The NET-3 networking toolkit Versions of packages openvpn suggests: ii openssl 0.9.8k-6 Secure Socket Layer (SSL) binary a pn resolvconf <none> (no description available) -- debconf information: openvpn/vulnerable_prng: openvpn/create_tun: false
signature.asc
Description: OpenPGP digital signature
