Mailinglist Archive: opensuse-bugs (3112 mails)

< Previous Next >
[Bug 703407] New: network manager vpn connection does not remain connected
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Fri, 1 Jul 2011 09:21:53 +0000
  • Message-id: <bug-703407-21960@http.bugzilla.novell.com/>

https://bugzilla.novell.com/show_bug.cgi?id=703407

https://bugzilla.novell.com/show_bug.cgi?id=703407#c0


Summary: network manager vpn connection does not remain
connected
Classification: openSUSE
Product: openSUSE 11.4
Version: Final
Platform: x86-64
OS/Version: Linux
Status: NEW
Severity: Normal
Priority: P5 - None
Component: Network
AssignedTo: bnc-team-screening@xxxxxxxxxxxxxxxxxxxxxx
ReportedBy: ohering@xxxxxxxxxx
QAContact: qa@xxxxxxx
Found By: Outsourced Testing
Blocker: ---


Created an attachment (id=437945)
--> (http://bugzilla.novell.com/attachment.cgi?id=437945)
NetworkManager-openvpn.11.4.debug.patch

if the vpn connection is temporary unavailable, openvpn will attempt to
reconnect.
Once that reconnect succeeds, then /usr/lib/nm-openvpn-service-openvpn-helper
is called with 'restart' instead of 'init'. But its not only the *argv[]
content that differs, also the environment with connection value differs.
Since this helper pulls all options from environment and passes them to
NetworkManager, the script will fail because it does not find some of them when
called with 'restart'.
I hacked the helper to just return 0 early. Maybe that can be improved to check
wether some of the environment variables are set, then these could be passed to
NetworkManager. I have not checked what the caller of the helper does actually
do with 'init' vs. 'restart'.

The attached patch works for me, the vpn connection remains active now.

Example from logfile:
==> /var/log/NetworkManager <==
Jun 30 19:30:02 probook nm-openvpn[5876]: read UDPv4 [ECONNREFUSED]: Connection
refused (code=111)
Jun 30 19:30:15 nm-openvpn[5876]: last message repeated 7 times
Jun 30 19:30:15 probook nm-openvpn[5876]: [puerta] Inactivity timeout
(--ping-restart), restarting
Jun 30 19:30:15 probook nm-openvpn[5876]: SIGUSR1[soft,ping-restart] received,
process restarting
Jun 30 19:30:17 probook nm-openvpn[5876]: WARNING: No server certificate
verification method has been enabled. See http://openvpn.net/howto.html#mitm
for more info.
Jun 30 19:30:17 probook nm-openvpn[5876]: NOTE: the current --script-security
setting may allow this configuration to call user-defined scripts
Jun 30 19:30:17 probook nm-openvpn[5876]: Re-using SSL/TLS context
Jun 30 19:30:17 probook nm-openvpn[5876]: LZO compression initialized
Jun 30 19:30:17 probook nm-openvpn[5876]: UDPv4 link local: [undef]
Jun 30 19:30:17 probook nm-openvpn[5876]: UDPv4 link remote: 1.2.3.4:1194
Jun 30 19:30:21 probook nm-openvpn[5876]: [puerta] Peer Connection Initiated
with 1.2.3.4:1194
Jun 30 19:30:23 probook nm-openvpn[5876]: Preserving previous TUN/TAP instance:
tun0
Jun 30 19:30:23 probook nm-openvpn[5876]:
/usr/lib/nm-openvpn-service-openvpn-helper tun0 1500 1542 10.203.0.189
10.203.0.1 restart
Jun 30 19:30:23 probook nm-openvpn[5876]: Initialization Sequence Completed

--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

< Previous Next >
Follow Ups