OpenVPN Support Forum

OpenVPN Connect stops working after upgraded to 1.1.17. It worked fine with 1.1.16.
The log says "Client exception in transport_recv_excode: PolarSSL :SSL read error: SSL - Processing of the ServerKeyExchange handshake message failed."
Exact same server and same config file, works with the previous version 1.1.16.

I am getting "OpenVPN error:PolarSSL:error parsing cert certificate:X509 - The data tag or value is invalid"
using OpenVPN Connect v 1.0.7 on iOS and v 1.1.17 on Android.

When reverting to v 1.1.16 in Android all works without error. I am unable to re-install iOS v 1.0.6

This error only presents when using my commercial VPN provider Witopia. I can connect to my own OpenVPN servers without error.

The release notes for Android v 1.1.17 say "updated MbedTLS (formerly PolarSSL)" so maybe this is where the problem lies.

I'm also having problems since the latest version. My server log says:

openvpn[3646]: 62.194.172.148:42574 TLS_ERROR: BIO read tls_read_plaintext error: error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher

I share the same config with my iOS client which works fine for now. Only the Android Clients does not want to connect.

This is the relevant config part:

cipher AES-256-CBC
tls-cipher TLS-DHE-RSA-WITH-AES-256-CBC-SHA

I agree with qingz that it may be something with PolarSSL, although I'm unable to verify that.

Similar problem, just updated on iOS to 1.0.7 and it broke my ability to connect with the following error:

Client exception in transport_recv_excode: PolarSSL: SSL read error : SSL - Processing of the ServerKeyExchange handshake message failed

Unfortunately, I cannot revert app versions in iOS...

Fixed it by updating my OpenVPN server (for me, it meant updating my Asus router firmware).

I updated my pfSense server to the latest version, but it did not help. I still think it's strange it works ok from iOS, but not on my Android.

having literally the same problem, except I am running the latest version on my server: OpenVPN 2.3.4 arm-unknown-linux-gnueabihf [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Jan 23 2016

I have problem with import profile on my Android after upgrade OpenVPN client from version 1.1.17 to 1.1.21: Error parsing OpenVPN profile: MyProfile.ovpn : mbed TLS: error parsing config private key: PK - Given private key password does not allow for correct decryption.
Previous version works fine.

Daniel Cheng wrote: ↑

Fri Jun 03, 2016 5:24 pm

Fixed it by updating my OpenVPN server (for me, it meant updating my Asus router firmware).

I have the same problem and my ASUS RT-AC56S is at the latest firmware. Still, it doesn't work.

https://play.google.com/store/apps/deta ... nvpn&hl=en

What's New
Changes from 1.1.21 to 1.1.22:
* fix for importing profiles using external certificates/bundles

l0ck0n wrote: ↑

Wed Nov 01, 2017 9:10 am

Daniel Cheng wrote: ↑

Fri Jun 03, 2016 5:24 pm

Fixed it by updating my OpenVPN server (for me, it meant updating my Asus router firmware).

I have the same problem and my ASUS RT-AC56S is at the latest firmware. Still, it doesn't work.

This might well be another problem. Can you please check if the error message is the same as reported by the OP of this thread?