Hi all,
it looks like that the Core 186 changes in “openvpn-ctrl-updater” → git.ipfire.org Git - ipfire-2.x.git/commit has not been shipped but ovpn.conf is meanwhile under /usr/share/openvpn .
To fix it in a fast way, those → git.ipfire.org Git - ipfire-2.x.git/blobdiff - config/ovpn/openvpn-crl-updater changes should help ?!
@bonnietwin @ms, can you overlook this ?
Best,
Erik
P.S. In fact it should be enough to change only one line →
--- /etc/fcron.daily/openvpn-crl-updater 2023-11-21 17:32:55.476242608 +0100
+++ /etc/fcron.daily/openvpn-crl-updater.old 2024-07-04 11:41:01.614274142 +0200
@@ -43,7 +43,7 @@
CRL="${OVPN}/crls/cacrl.pem"
CAKEY="${OVPN}/ca/cakey.pem"
CACERT="${OVPN}/ca/cacert.pem"
-OPENSSLCONF="${OVPN}/openssl/ovpn.cnf"
+OPENSSLCONF="/usr/share/openvpn/ovpn.cnf"
# Check if CRL is presant or if OpenVPN is active
if [ ! -e "${CAKEY}" ]; then
and by executing openvpn-crl-updater again via
# root @ ipfire in /etc/fcron.daily [11:43:29]
$ /etc/fcron.daily/openvpn-crl-updater
Using configuration from /usr/share/openvpn/ovpn.cnf
the CRL should be updated again
$ grep CRL /var/log/messages
Jun 30 01:25:00 ipfire-prime openvpn: error: Could not update CRL
Jul 1 01:25:00 ipfire-prime openvpn: error: Could not update CRL
Jul 4 11:43:37 ipfire-prime openvpn: CRL has been updated