** Changed in: network-manager-openvpn
Status: Unknown => New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1835644
Title:
CRL files are not accessible for the Verify CRL options
To manage
This seems to also happen when you specify any cert inline in an
imported openvpn config.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1835644
Title:
CRL files are not accessible for the Verify
** Also affects: network-manager-openvpn via
https://gitlab.gnome.org/GNOME/NetworkManager-openvpn/-/issues/57
Importance: Unknown
Status: Unknown
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
thanks!
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1835644
Title:
CRL files are not accessible for the Verify CRL options
To manage notifications about this bug go to:
(Voila)[https://gitlab.gnome.org/GNOME/NetworkManager-
openvpn/-/issues/57]
** Bug watch added: gitlab.gnome.org/GNOME/NetworkManager-openvpn/-/issues #57
https://gitlab.gnome.org/GNOME/NetworkManager-openvpn/-/issues/57
--
You received this bug notification because you are a member of
Could you report the issue upstream on https://gitlab.gnome.org/GNOME
/NetworkManager-openvpn/issues since it's likely a problem in the
upstream codebase?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
I'm trying to set the crl-verify option via the network-manager UI:
nm-connection-editor -> Edit -> Advanced... -> Security -> "Verify CRL from
file".
I didn't use the crl-verify-dir setting.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
The option was added some years ago
https://gitlab.gnome.org/GNOME/NetworkManager-openvpn/-/commit/214815f7
The chroot directory seems to come from this define
https://gitlab.gnome.org/GNOME/NetworkManager-openvpn/-/blob/master/shared/nm-service-defines.h#L133
--
You received this bug
do you also have a crl-verify-dir in your configuration?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1835644
Title:
CRL files are not accessible for the Verify CRL options
To manage
could you give some details on where and how is crl.rsa.4096.pem
configured?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1835644
Title:
CRL files are not accessible for the Verify CRL options
To
Looking at the source code for nm-openvpn-service.c, before this bug was
introduced it doesn't appear that the crl-verify option was ever
implemented or used, as it is not found within the code. The only lines
that refer to crl-verify were introduced in Ubuntu 19.04, and consist of
the following:
This is a serious problem compromising the security of OpenVPN on Linux.
Every time I try to use crl-verify I get the following error:
nm-openvpn[3957]: Options error: --crl-verify fails with
'/var/lib/openvpn/chroot/[insert path to pem file selected here]': No
such file or directory (errno=2)
The problem persists on 20.04 (network-manager-openvpn, network-manager-
openvpn-gnome 1.8.12-1)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1835644
Title:
CRL files are not accessible for the
the problem persists on Ubuntu 19.10:
nm-openvpn[2459]: Options error: --crl-verify fails with
'/var/lib/openvpn/chroot//etc/openvpn/crl.pem': No such file or
directory (errno=2)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: network-manager-openvpn (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
15 matches
Mail list logo
