我无法在 Windows 2022 服务器上启动 Stunnel (5.69)。我有一个带完整链的 PEM 编码的 Sectigo 证书,但出现此错误:
Server is down
[ ] Initializing inetd mode configuration
[ ] Running on Windows 6.2
[.] Reading configuration from file C:\Program Files (x86)\stunnel\config\stunnel.conf
[.] UTF-8 byte order mark detected
[.] FIPS mode disabled
[ ] Compression disabled
[ ] No PRNG seeding was required
[ ] Initializing service [CAIRLAB_SERVER_PROD]
[ ] stunnel default security level set: 2
[ ] Ciphers: HIGH:!aNULL:!SSLv2:!DH:!kDHEPSK
[ ] TLSv1.3 ciphersuites: TLS_AES_256_GCM_SHA384:TLS_AES_128_GCM_SHA256:TLS_CHACHA20_POLY1305_SHA256
[ ] TLS options: 0x2100000 (+0x0, -0x0)
[ ] Session resumption enabled
[ ] Loading certificate from file: "C:\Program Files (x86)\stunnel\config\my_fancy.cer"
[!] error queue: ssl/ssl_rsa.c:448: error:0A080002:SSL routines::system lib
[!] error queue: crypto/bio/bss_file.c:300: error:10080002:BIO routines::system lib
[!] SSL_CTX_use_certificate_chain_file: crypto/bio/bss_file.c:297: error:8000007B:system library::Unknown error
[!] Service [CAIRLAB_SERVER_PROD]: Failed to initialize TLS context
[!] Configuration failed
[ ] Deallocating temporary section defaults
[ ] Deallocating section [CAIRLAB_SERVER_PROD]
更改路径时我得到了完全相同的错误,因此我假设未知错误Stunnel 没有找到该文件。cer 文件与密钥文件一起位于配置文件夹中。