Adding VPN results in password loss
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| UBports Fairphone 2 |
Invalid
|
Undecided
|
Unassigned | ||
Bug Description
If you add an VPN (OpenVPN) account in the settings interface and try to connect with that account an error : "The VPN connection '176.126.237.217' failed because there were no valid VPN secrets." pops up, then if you enter the VPN settings the password field is empty.
No errors were seen in logcat.
Connecting with the same credentials and certificates packed in a ovpn file on the commandline a valid connection will be established.
root@ubuntu-
Wed Mar 1 14:39:10 2017 OpenVPN 2.3.2 arm-unknown-
Enter Auth Username:vpnbook
Enter Auth Password: xxxxxx
Wed Mar 1 14:39:19 2017 WARNING: No server certificate verification method has been enabled. See http://
Wed Mar 1 14:39:19 2017 NOTE: --fast-io is disabled since we are not using UDP
Wed Mar 1 14:39:19 2017 Socket Buffers: R=[87380->131072] S=[16384->131072]
Wed Mar 1 14:39:19 2017 Attempting to establish TCP connection with [AF_INET]
Wed Mar 1 14:39:20 2017 TCP connection established with [AF_INET]
Wed Mar 1 14:39:20 2017 TCPv4_CLIENT link local: [undef]
Wed Mar 1 14:39:20 2017 TCPv4_CLIENT link remote: [AF_INET]
Wed Mar 1 14:39:20 2017 TLS: Initial packet from [AF_INET]
Wed Mar 1 14:39:20 2017 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Wed Mar 1 14:39:22 2017 VERIFY OK: depth=1, C=CH, ST=Zurich, L=Zurich, O=vpnbook.com, OU=IT, CN=vpnbook.com, name=vpnbook.com, <email address hidden>
Wed Mar 1 14:39:22 2017 VERIFY OK: depth=0, C=CH, ST=Zurich, L=Zurich, O=vpnbook.com, OU=IT, CN=vpnbook.com, name=vpnbook.com, <email address hidden>
Wed Mar 1 14:39:28 2017 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Wed Mar 1 14:39:28 2017 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Mar 1 14:39:28 2017 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Wed Mar 1 14:39:28 2017 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Mar 1 14:39:28 2017 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Wed Mar 1 14:39:28 2017 [vpnbook.com] Peer Connection Initiated with [AF_INET]
Wed Mar 1 14:39:30 2017 SENT CONTROL [vpnbook.com]: 'PUSH_REQUEST' (status=1)
Wed Mar 1 14:39:30 2017 PUSH: Received control message: 'PUSH_REPLY,
Wed Mar 1 14:39:30 2017 OPTIONS IMPORT: timers and/or timeouts modified
Wed Mar 1 14:39:30 2017 OPTIONS IMPORT: --ifconfig/up options modified
Wed Mar 1 14:39:30 2017 OPTIONS IMPORT: route options modified
Wed Mar 1 14:39:30 2017 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Wed Mar 1 14:39:30 2017 ROUTE_GATEWAY 192.168.
Wed Mar 1 14:39:30 2017 TUN/TAP device tun3 opened
Wed Mar 1 14:39:30 2017 TUN/TAP TX queue length set to 100
Wed Mar 1 14:39:30 2017 do_ifconfig, tt->ipv6=0, tt->did_
Wed Mar 1 14:39:30 2017 /sbin/ip link set dev tun3 up mtu 1500
Wed Mar 1 14:39:30 2017 /sbin/ip addr add dev tun3 local 10.12.0.10 peer 10.12.0.9
Wed Mar 1 14:39:32 2017 /sbin/ip route add 176.126.237.217/32 via 192.168.1.1
Wed Mar 1 14:39:32 2017 /sbin/ip route add 0.0.0.0/1 via 10.12.0.9
Wed Mar 1 14:39:32 2017 /sbin/ip route add 128.0.0.0/1 via 10.12.0.9
Wed Mar 1 14:39:32 2017 /sbin/ip route add 10.12.0.1/32 via 10.12.0.9
Wed Mar 1 14:39:32 2017 Initialization Sequence Completed
| ut4fp (ut4fp) wrote | #1 |
| Changed in ubports-fp2: | |
| status: | New → Confirmed |
| Johannah Sprinz (neothethird) wrote | #2 |
| Changed in ubports-fp2: | |
| status: | Confirmed → Invalid |
in the /etc/NetworkMan
If i edit the vpn config like this:
password-flags=0
And add the following:
[vpn-secrets]
password=
Now restart network manager by:
service network-manager restart
The connection could be established by shifting the key in the networking-manager gui.