Public bug reported:
I have an ecryptfs in which my decrypted mount point is
/home/$user/Private . Additionally my openvpn setup is such that under
/etc/openvpn I have symlinks to the actual files which are located in
/home/$user/Private/openvpn. When I try to start openvpn (bear in mind
that this setup worked on 16.04, I upgraded the machine) I get an error
:
fisk-mobile ovpn-CONF-FILE[25710]: Options error: In [CMD-LINE]:1: Error
opening configuration file: /etc/openvpn/CONF-FILE.conf
Needless to say that manually running openvpn --config /etc/openvpn
/CONF-FILE.conf (which is a symlink ) worked flawlessly.
After a bit of headbanging it turned out the issue is caused by the
ProtectHome directive of the openvpn service file under:
/lib/systemd/system/openvpn@.service - the same directive also applies
to openvpn-client@.service service as well. Changing the value from
'true' to 'read-only' resolved the issue.
In my opinion having the config files on an encrypted partition under
/home/$USER is not that uncommon and so the unit file should be changed
to at least allow RO permissions. Additionally, this setup worked on
ubuntu 16.04 and I just performed an upgrade which broke the existing
setup so I consider this a regression as well.
** Affects: openvpn (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1787801
Title:
openvpn does not work with ecryptfs setup
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openvpn/+bug/1787801/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
