If a certificate for OpenVPN created on a windows machine is uploaded to VyOS, VyOS will not allow the configuration to be committed using this certificate. If the line endings in the certificate are changed from CRLF to LF, the certificate is then accepted.
Actions that should reproduce the issue (though this sequence hasn’t been tested):
- Create certificate on windows machine. Confirm that line endings are CRLF format.
- Upload the certificate onto the router to /config/auth/openvpn/
- set interfaces openvpn vtun10 tls ca-cert-file '/config/auth/openvpn/ca.crt'
- see error.
This also happens with the DH and key files.
Desired outcome: files with either LF or CRLF line endings are accepted.