OpenSSL: error:02015031:system library:ioctl:Can't assign requested address
-
Having an absolute nightmare with pfSense since upgrading to 2.5.0.
I went through the usual cipher and auth issues that arise as a result of OpenVPN 2.5 being bundled with it, granted that's nothing to do with pfSense.
However, I'm now running RC builds (2.5.1.r.20210404.0300 at time of writing) because of the unbound instability issue I'm having too and now my OpenVPN clients won't connect with the following error:
OpenSSL: error:02015031:system library:ioctl:Can't assign requested address
Here's the full logs:
Apr 4 20:13:38 openvpn 19447 TLS: Initial packet from [AF_INET]212.102.37.182:1198, sid=70b1bea0 0bd563cb Apr 4 20:13:38 openvpn 19447 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this Apr 4 20:13:38 openvpn 19447 VERIFY WARNING: depth=0, unable to get certificate CRL: C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=zurich402, name=zurich402 Apr 4 20:13:38 openvpn 19447 VERIFY WARNING: depth=1, unable to get certificate CRL: C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=Private Internet Access, name=Private Internet Access, emailAddress=secure@privateinternetaccess.com Apr 4 20:13:38 openvpn 19447 VERIFY OK: depth=1, C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=Private Internet Access, name=Private Internet Access, emailAddress=secure@privateinternetaccess.com Apr 4 20:13:38 openvpn 19447 VERIFY KU OK Apr 4 20:13:38 openvpn 19447 Validating certificate extended key usage Apr 4 20:13:38 openvpn 19447 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication Apr 4 20:13:38 openvpn 19447 VERIFY EKU OK Apr 4 20:13:38 openvpn 19447 VERIFY OK: depth=0, C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=zurich402, name=zurich402 Apr 4 20:13:38 openvpn 19447 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, 2048 bit RSA Apr 4 20:13:38 openvpn 19447 [zurich402] Peer Connection Initiated with [AF_INET]212.102.37.182:1198 Apr 4 20:13:40 openvpn 19447 SENT CONTROL [zurich402]: 'PUSH_REQUEST' (status=1) Apr 4 20:13:40 openvpn 19447 PUSH: Received control message: 'PUSH_REPLY,comp-lzo no,redirect-gateway def1,route-ipv6 2000::/3,dhcp-option DNS 10.0.0.243,route-gateway 10.5.112.1,topology subnet,ping 10,ping-restart 60,ifconfig 10.5.112.231 255.255.255.0,peer-id 16' Apr 4 20:13:40 openvpn 19447 Options error: option 'redirect-gateway' cannot be used in this context ([PUSH-OPTIONS]) Apr 4 20:13:40 openvpn 19447 Options error: option 'route-ipv6' cannot be used in this context ([PUSH-OPTIONS]) Apr 4 20:13:40 openvpn 19447 Options error: option 'dhcp-option' cannot be used in this context ([PUSH-OPTIONS]) Apr 4 20:13:40 openvpn 19447 OPTIONS IMPORT: timers and/or timeouts modified Apr 4 20:13:40 openvpn 19447 OPTIONS IMPORT: compression parms modified Apr 4 20:13:40 openvpn 19447 OPTIONS IMPORT: --ifconfig/up options modified Apr 4 20:13:40 openvpn 19447 OPTIONS IMPORT: route-related options modified Apr 4 20:13:40 openvpn 19447 OPTIONS IMPORT: peer-id set Apr 4 20:13:40 openvpn 19447 OPTIONS IMPORT: adjusting link_mtu to 1625 Apr 4 20:13:40 openvpn 19447 Using peer cipher 'AES-128-CBC' Apr 4 20:13:40 openvpn 19447 OpenSSL: error:02015031:system library:ioctl:Can't assign requested address Apr 4 20:13:40 openvpn 19447 EVP cipher init #2 Apr 4 20:13:40 openvpn 19447 Exiting due to fatal error
Any help on this would be appreciated, else I'm planning on simply downgrading back to 2.4.5-p1.
-
I've got a similar issue:
Apr 5 11:29:09 pfsense openvpn[66140]: Using peer cipher 'AES-256-CBC' Apr 5 11:29:09 pfsense openvpn[66140]: OpenSSL: error:0201502D:system library:ioctl:Operation not supported Apr 5 11:29:09 pfsense openvpn[66140]: EVP cipher init #2 Apr 5 11:29:09 pfsense openvpn[66140]: Exiting due to fatal erro
I'm on 2.5.1.r.20210405.0300