OPNsense Forum

English Forums => Virtual private networks => Topic started by: zerolution on October 05, 2022, 05:26:12 pm

Title: Upgrade to 22.7.5 stack trace with RSA Class breaks VPN SSL Certs verification
Post by: zerolution on October 05, 2022, 05:26:12 pm

During upgrade from 22.7.4 to 22.7.5:

Fatal error: Uncaught Error: Class "phpseclib3\Crypt\Common\AsymmetricKey" not found in /usr/local/share/phpseclib/Crypt/RSA.php:69
Stack trace:
#0 /usr/local/etc/inc/certs.inc(34): require_once()
#1 /usr/local/etc/inc/config.inc(40): require_once('/usr/local/etc/...')
#2 /usr/local/etc/rc.configure_plugins(35): require_once('/usr/local/etc/...')
#3 {main}
  thrown in /usr/local/share/phpseclib/Crypt/RSA.php on line 69
Reloading template OPNsense/Nginx: OK
[59/64] Upgrading opnsense from 22.7.4 to 22.7.5...
[59/64] Extracting opnsense-22.7.5: ........

Since then OpenVPN Server throws an SSL CErt error when trying to connect client:

Error openvpn   OpenSSL: error:1417C086:SSL routines:tls_process_client_certificate:certificate verify failed

Title: Re: Upgrade to 22.7.5 stack trace with RSA Class breaks VPN SSL Certs verification
Post by: franco on October 06, 2022, 12:24:01 pm

First of all please stop spamming.

> [59/64] Extracting opnsense-22.7.5: ........

It indicates your update is still not complete. Or it may be this issue: https://forum.opnsense.org/index.php?topic=30569.0


Cheers,
Franco

Title: Re: Upgrade to 22.7.5 stack trace with RSA Class breaks VPN SSL Certs verification
Post by: zerolution on October 06, 2022, 07:15:39 pm

The patch mentioned in https://forum.opnsense.org/index.php?topic=30569.0 fixed the issue.

Thank you Franco for redirecting me to that post, and apologies for the redundant post.

(I have removed the useless info I posted earlier)