[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Made a script to split a single OpenVPN file to multiple to avoid the issue due to XML chunks within the single file breaking network-manager-openvpn when importing https://gist.github.com/ThomasG77/5c09eead1244f9d1d2bd7fa70b26fead -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I am having the same issue on Ubuntu 18.04 LTS. sudo nmcli connection import type openvpn file config.ovpn gives the following error Error: failed to import 'config.ovpn': configuration error: unsupported 3th argument net_gateway to “route” (line 12). Running sudo openvpn config.ovpn works -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Launchpad has imported 14 comments from the remote bug at https://bugs.kde.org/show_bug.cgi?id=349282. If you reply to an imported comment from within Launchpad, your comment will be sent to the remote bug automatically. Read more about Launchpad's inter-bugtracker facilities at https://help.launchpad.net/InterBugTracking. On 2015-06-17T10:03:22+00:00 Psychonaut wrote: The Connection Editor of the NetworkManager plasma applet is unable to import OpenVPN configuration files which contain inline certificates and keys. Reproducible: Always Steps to Reproduce: 1. Open the Connection Editor. 2. File -> Import VPN… 3. Select and open an OpenVPN configuration file (.ovpn) which contains inline certificates and/or keys. That is, the file specifies "[inline]" as the value of the ca, cert, key, and/or tls-auth fields, and then provides ASCII-armoured certificates and/or keys in , , , and elements at the end of the file. Actual Results: 4. For every inline certificate/key in the configuration file, an error dialog appears indicating that the certificate/key could not be copied because the file [inline] could not be opened. For example: Error copying file to /home/miller/.kde4/share/apps/networkmanagement/certificates/ukp- vpn_[inline]: Cannot open /tmp/[inline] for input Expected Results: 4. The Connection Editor should recognize that "[inline]" is not a filename but rather a special value indicating that the certificate/key is contained within the OpenVPN configuration file itself. It should then read in and process that certificate/key. Reply at: https://bugs.launchpad.net/ubuntu/+source/network-manager- openvpn/+bug/606365/comments/36 On 2015-06-19T07:51:58+00:00 Jgrulich wrote: Do you really use plasma-nm in version 0.9.3.4? I thought this has been fixed already. Any chance you can try at least 0.9.3.5 version where I did one more fix regarding OpenVPN import. Reply at: https://bugs.launchpad.net/ubuntu/+source/network-manager- openvpn/+bug/606365/comments/37 On 2015-06-19T08:22:53+00:00 Psychonaut wrote: Yes, I'm running plasma-nm 0.9.3.4. I can't test 0.9.3.5 at the moment but can do so as soon as it's packaged for openSUSE 13.2. Reply at: https://bugs.launchpad.net/ubuntu/+source/network-manager- openvpn/+bug/606365/comments/38 On 2015-06-28T15:16:13+00:00 Lamarque wrote: That is not the syntax our import code expects. The import code expects no ca, cert, key or ts-auth tags with '[inline]' as value when certificates are embedded. It expects only , and tags in that case. Besides, using '[inline]' as value is redundant in this case. Reply at: https://bugs.launchpad.net/ubuntu/+source/network-manager- openvpn/+bug/606365/comments/39 On 2015-06-28T18:46:05+00:00 Psychonaut wrote: It may not be the syntax the plasma-nm import code expects, but it's one that the OpenVPN command-line client supports. I've come across a few .ovpn files which use this syntax, and I've seen it recommended by OpenVPN experts such as Jan Just Keijser (see for example ). It looks like this [inline] directive was never documented in the OpenVPN man pages. However, given that it's in use, it might still be a good idea for plasma-nm to handle this syntax. Reply at: https://bugs.launchpad.net/ubuntu/+source/network-manager- openvpn/+bug/606365/comments/40 On 2015-06-28T23:28:46+00:00 Lamarque wrote: Git commit 599afdacd744a2d7785274687438a23f21617c34 by Lamarque V. Souza. Committed on 28/06/2015 at 23:26. Pushed by lvsouza into branch 'master'. Add support to import .ovpn files with syntax described in http://openvpn-users.narkive.com/ZwzahkCv/embedding-key-cert-ca-into-client-config FIXED-IN: 0.9.3.7 M +22 -5vpn/openvpn/openvpn.cpp http://commits.kde.org/plasma- nm/599afdacd744a2d7785274687438a23f21617c34 Reply at: https://bugs.launchpad.net/ubuntu/+source/network-manager- openvpn/+bug/606365/comments/41 On 2015-06-29T01:03:02+00:00 Lamarque wrote: Git commit c6f0b9df0e1a78c4d54058136580104b5e5b22a7 by Lamarque V. Souza. Committed on 29/06/2015 at 00:21. Pushed by lvsouza into branch '0.9.3'. Add support to import .ovpn files with syntax described in http://openvpn-users.narkive.com/ZwzahkCv/embedding-key-cert-ca-into-client-config FIXED-IN: 0.9.3.7 M +22 -5vpn/openvpn/openvpn.cpp http://commits.kde.org/plasma- nm/c6f0b9df0e1a78c4d54058136580104b5e5b22a7 Reply at: https://bugs.launchpad.net/ubuntu/+source/network-manager- openvpn/+bug/606365/comments/42
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I was able to solve my problems on Ubuntu Mate 18.04 by using the command line (rather than the network manager gui) to import the .ovpn as follows: User@Node-99:~/Downloads$ sudo nmcli connection import type openvpn file Miami.ovpn Error: failed to import 'Miami.ovpn': configuration error: invalid 1th argument to “mssfix” where number expected (line 6). What is good about the command line is that it is more verbose and will help you find which line in your .ovpn file is causing the error. In my case I used a text editor to open the file Miami.ovpn and I commented out the offending line (It was line 6) So I placed a # in front of the line and a space. After doing that: User@Node-99:~/Downloads$ sudo nmcli connection import type openvpn file Miami.ovpn Connection 'Miami' (cb4d9379-9f35-4b03-b53d-3af05781e5aa) successfully added. Problem solved. VPN able to connect now and it shows up as a choice inside of the Network manager. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
My ubuntu 16.04 has affected but #77 fixed it. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Just experienced this issue in Ubuntu 17.04. Manually configuring the key-direction as stated in #76 fixed it. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
** Changed in: plasma-nm Status: Unknown => New ** Changed in: plasma-nm Importance: Unknown => High -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
plasma-nm was fixed in Wily with https://launchpad.net/ubuntu/+source /plasma-nm/4:5.3.95-0ubuntu1 ** Also affects: plasma-nm (Ubuntu) Importance: Undecided Status: New ** Changed in: plasma-nm (Ubuntu) Importance: Undecided => Medium ** Changed in: network-manager-openvpn (Ubuntu) Importance: High => Medium ** Changed in: plasma-nm (Ubuntu) Status: New => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
network-manager-openvpn was fixed in Xenial with https://launchpad.net/ubuntu/+source/network-manager-openvpn/1.1.93-1 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
The original bug as reported was a failure to import certain configuration files using network-mangaer-openvpn. This turned out to be due to the use of inlined key material (comment 24). network-manager- openvpn did not support this as a feature at the time, so was unable to parse this type of configuration file. Support was since added (comment 46). This has been confirmed to work (comments 49, 63, 67, 68 etc). Therefore, this bug as reported has been fixed, so I'm setting it to Fix Released. It may well be that this doesn't solve configuration imports for all users, as is clear from subsequent comments. But we track one issue per bug, since otherwise statements like "this bug is fixed" and "this bug is not fixed" become meaningless, developers cannot track what they are being asked to do, and users end up with wildly varying expectations that can never be met. Note that a failure to import a configuration can be an entire class of bugs, not just one single bug. This bug's original reporter's problem turned out to be "doesn't work with inlined key material". Clearly that's not the only thing wrong here, as adding inlined key material support solved the problem for some, but not others. Of the remaining users here who still have import problems, there may yet be *multiple* underlying bugs. So please don't all pile on to a different bug thinking you're still all affected by the same issue. If you'd like to see your problem fixed, and you'd like to help, then first please read "How to Report Bugs Effectively" (https://www.chiark.greenend.org.uk/~sgtatham/bugs.html) carefully. Take some time to work out exact steps to reproduce your problem, make sure that they really do reproduce, and then paste exact and detailed instructions on how to reproduce your problem into a new bug report. Don't assume that someone else's import failure problem is due to the same underlying bug as your import failure problem. Do link to bugs that you think may be related (such as this one). Don't worry about filing duplicates; in this kind of case it takes far more effort to untangle reports that turn out to have different root causes then it does to mark duplicate bugs if this becomes clear to developers later. I hope this helps. I can't guarantee what will come next, but by filing actionable reports at least you'll be one step closer to real progress. ** Changed in: network-manager-openvpn (Ubuntu) Status: Confirmed => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
** Bug watch added: KDE Bug Tracking System #349282 https://bugs.kde.org/show_bug.cgi?id=349282 ** Package changed: network-manager-openvpn (Fedora) => plasma-nm ** Changed in: plasma-nm Importance: Undecided => Unknown ** Changed in: plasma-nm Status: New => Unknown ** Changed in: plasma-nm Remote watch: None => KDE Bug Tracking System #349282 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
** Tags removed: network-manager openvpn ** Tags added: xenial -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
The error I get is: "The file 'file.ovpn' could not be read or does not contain recognized VPN connection information Error: Key file contains line 'dev tun' which is not a key-value pair, group, or comment." If I edit the file and remove the line "comp-lzo adaptive" from the end of the file the import is successful. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I was able to import my config after making the adjustment outlined here : https://askubuntu.com/a/816140 However now I am having issues with systemd and my tap device, I'm not sure it's correctly creating it as I'm doing bridging not tunneling on the server end :( (probably unrelated here though) Also, please note that the above method for the import did not correctly import my key direction, I had to change that after importing, which is weird. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
im on 16.04.2 too, but i still see the bug. the workaround #77 didnt help for me too.. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
funnily enough, the bug is actually fixed, all what is needed is actually network-manager-openvpn-gnome (I tested it on version 1.1.93-1ubuntu1.1 in 16.04.2) installed and then the network settings configuration gui restarted so the new VPN shows up as openvpn, after that importing the configuration from ovpn file works.. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
** Also affects: network-manager-openvpn (Fedora) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I'm on ubuntu 16.10, I have pfsense running my openVPN service, and I exported the client config to an ovpn file (inline). When I get network-manager to import, I STILL get "the plugin does not support import capability". This bug has been open for OVER 6 YEARS now. How about we get this conclusively fixed already??? I have to switch to Windows to VPN in, I can't get network-manager to use any of my VPN info, even if I manually enter it. It's mind-blowing this still exists as a problem. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
This is working for me now. When I import into Network Manager, it literally tells me which line is the problem now, and whatever line that is, I comment it out and it works. Before, it would just tell me that there was an issue importing but it wasn't specific. But at least now, Network Manager helps me figure out the issue. I recently switched to Ubuntu GNOME, so I'm not sure if there's something specific with the GNOME implementation that displays specific errors, or if Network Manager has changed. At least it's working for me now, albeit with manual intervention being required. In my opinion, the real issue at this point is that even though commenting out some lines helps, each line is valid and should be accepted. If I export an .ovpn file and use it via the command line, it works without issue (even without commenting out anything). In my view, if the config file is valid enough for OpenVPN itself, it should surely be valid for Network Manager. Perhaps the OpenVPN spec has updated and Network Manager hasn't been updated to match? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I'm sorry, but im a newbie, but how does this fix get into the ubuntu versions? Do we have to wait until network-manager-openvpn (Ubuntu) gets assigned? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I've found that removing the #comments in the TA key helped. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Can also confirm that solution specified in comment #77 worked for me on Ubuntu 16.04.1. Thank you Micah! -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Holy cow! Micah you cracked it for me too! Finally after all these years I can use OpenVPN without cli. Kudos to you. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
With Ubuntu 16.04, solution provided by #77 worked. Thanks, Micah. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I should add that I'm running 16.04.2 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
For what it's worth, an out-of-the-box OpenVPN 2.1.3 Access Server user- locked configuration file only needs 1 parameter changed to import with the "network-manager-openvpn-gnome" tool. The line that says: reneg-sec 604800 Comment that out. # reneg-sec 604800 Imports without issue now. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I just tested with inlined ca, cert, key and tls-auth on Ubuntu Xenial. All of them are properly imported, the only problem is how to specify the tls-auth key direction if any. With inlined style, requires specifying the key direction with the "key-direction" parameter. The problem is the importer just ignores the "key-direction" parameter. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
@datsi, I noticed that the importer has trouble with "comp-lzo something". Using "comp-lzo" alone worked for me but I didn't test with inline cert nor PKCS12. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Same error message as above I got the same message a Error: Key files contains line 'dev tun' which is not a key-value pair, group, or comment. - running Ubuntu mate 16.04.1 up to date - configuration files are coming from pfsense (up to date) using the "archive" export that produce a .ovpn file (without keys) plus a .key and .p12 file as this network manager can not handle configurations files with inline keys and certificates - content of the .ovpn file - dev tun persist-tun persist-key cipher AES-128-CBC auth SHA1 tls-client client resolv-retry infinite remote xxx.xxx.xxx.xxx 1194 udp lport 0 verify-x509-name "NAMEOFTHEOPENVPNSERVERHERE" name auth-user-pass pkcs12 P12FILENAMEHERE.p12 tls-auth KEYFILENAMEHERE.key 1 ns-cert-type server comp-lzo adaptive end of content of the .ovpn file 1/ I tried commenting the problematic line but the error then pointed to the 2nd line and then the 3rd 2/ This .ovpn file can be imported on Mint 17.3 but not in Ubuntu mate 16.04.1 nor Linux Mint 18 I imported it in Mint 17.3 and then exported a .conf file from the network manager. I edited the .conf file so the correct path to the files. content of the .conf file from Mint 17.3 client remote XXX.XXX.XXX.XXX 1194 pkcs12 /PATH/TO/P12/FILE/P12FILENAME.p12 auth-user-pass cipher AES-128-CBC comp-lzo yes dev tun proto udp tls-auth /PATH/TO/KEY/FILE/KEYFILENAME.key 1 nobind auth-nocache script-security 2 persist-key persist-tun user nobody group nogroup --- end of content of the .conf file from Mint 17.3 --- NOTE: informations seems to be the same as the .ovpn files but not in the same order 3/ The .conf file successfully imported into ubuntu mate 16.04.1 but the vpn wasn' t working. 4/ I compared visually the configuration of the the network manager in the 2 OS and changed what was different or missing in Mate (without looking at more explanations) - username - user password - private key password - advanced/security : HMAC authentication to 'sha1' 5/ tried it and it works 6/ here the conf file from ubuntu mate -- content of the .conf file from Ubuntu mate 16.04.1 -- client remote XXX.XXX.XXX.XXX 1194 pkcs12 /PATH/TO/THE/P12/FILE/P12FILENAME.p12 auth-user-pass cipher AES-128-CBC comp-lzo yes dev tun proto udp tls-auth /PATH/TO/THE/KEY/FILE/KEYFILENAME.key 1 nobind auth-nocache script-security /home/david-stievenard/Desktop/testopenvpnDS/fw-qinhe-1-udp-1194-david.stievenard/forlaunchpad/fw-qinhe-1-udp-1194-david.stievenard-tls.key2 persist-key persist-tun user nobody group nogroup -- content of the .conf file from Ubuntu mate 16.04.1 -- NOTE: the only difference is that there is one space character in front of every line NOTE2: Importing .ovpn files works perfectly on android, windows 7 8 10. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
@denilsonsa The problem remains on proXPN file. You need to import and delete the routes (under 'IPv4 Settings' tab) after that open advanced settings and close to update and show the button. Or you could comment all lines with 'route' and then import. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I tried grabbing the [proxpn.ovpn][1] file ([from this URL][2]) and importing it into network-manager-openvpn. Unfortunately, the "Save" button stays disabled with this message: "Invalid setting IPv4 Settings: ipv4.routes: 1. route cannot be a default route" Manually adding the VPN following the instructions from [this URL][3] works. But I expected to be able to quickly import the .opvn file instead. [1]: http://www.proxpn.com/chromeos/proxpn.ovpn [2]: https://support.proxpn.com/customer/en/portal/articles/2276335-proxpn-on-chromebook-chromium-os- [3]: https://support.proxpn.com/customer/portal/articles/2120656-linux-install-instructions -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
** Changed in: network-manager-openvpn (Ubuntu) Importance: Undecided => Medium ** Changed in: network-manager-openvpn (Ubuntu) Importance: Medium => High -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Private Parts removed: remote x.x.x.x x udp remote x.x.x.x x udp remote x.x.x.x x udp key-direction 1 cipher AES-128-CBC client dev tun resolv-retry infinite nobind persist-key persist-tun ;http-proxy-retry ;http-proxy x.x.x.x x verb 4 reneg-sec 86400 echo vpnx ovpn0x tun-mtu 1500 route-method exe route-delay 2 redirect-gateway def1 comp-lzo no explicit-exit-notify 2 fragment 1390 mssfix 1390 hand-window 30 -BEGIN CERTIFICATE- -END CERTIFICATE- -BEGIN PRIVATE KEY- -END PRIVATE KEY- -BEGIN CERTIFICATE- -END CERTIFICATE- -BEGIN OpenVPN Static key V1- -END OpenVPN Static key V1- -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Kestrell, Can you post your config file? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I tried #66 & #68, I made sure there were no '#' in the .ovpn file and I don't have this line in the config: route x.x.x.0 255.255.255.255 net_gateway I still get the same error: The file 'vpn.ovpn' could not be read or does not contain recognized VPN connection information Error: the plugin does not support import capability. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I got it to import after removing the following line from the config: route x.x.x.0 255.255.255.255 net_gateway However it's a legitimate OpenVPN argument. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Update to #66: importing an "inline" .ovpn file worked now as well (after removing any # remarks). Empty lines did not give any trouble. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Running Ubuntu 16.04 Mate: I was able to import a "old-style" config file (certificates NOT inline, but in seperate files) ONLY after removing all "#" remarks. Seems they are not recognized, neither at the beginning on a line nor somewhere in the middle, so resulting in parsing errors. The same file imported nicely under Ubuntu 14.04. Only after upgrading the change was needed. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Also running into this problem on 16.04 My unified profile looks like this: client remote x.x.x.x 8757 dev tun proto udp cipher AES-256-CBC auth SHA256 resolv-retry infinite nobind persist-key persist-tun ns-cert-type server tls-version-min 1.2 comp-lzo key-direction 1 verb 3 route x.x.x.0 255.255.255.255 net_gateway -BEGIN CERTIFICATE- x -END CERTIFICATE- -BEGIN CERTIFICATE- x -END CERTIFICATE- -BEGIN RSA PRIVATE KEY- xx -END RSA PRIVATE KEY- # # 2048 bit OpenVPN static key # -BEGIN OpenVPN Static key V1- -END OpenVPN Static key V1- Ubuntu should come with more VPN protocols installed by default, at the very least OpenVPN, -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
A workaround for the problem of my previous post is to remove the line float 1 from the .ovpn profile. It gets correctly imported on both ubuntu mate for RPi and Ubuntu 64 bit. Another problem is the default route setup: routing should be decided by the VPN server and/or the .ovpn profile. But for some reason, the network manager subsystem by default puts the system default gateway to the tunnel interface. You must manually check "Use this connection only for resources on its network" on the profile after importing the .ovpn profile. An extra manual configuration step which should not be done, because the configuration is already complete in .ovpn or from pushed server routes. Also please consider that all other openvpn clients don't add this default route by default. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
In ubuntu 16.04 I'm able to import almost all my 6 .ovpn profiles with all inline certs. But one profile fails. The non-importable .ovpn profile works very well if used via commandline (sudo openvpn profile_001.ovpn) or in other vpn clients for OS X and windows. The error I get on ubuntu mate for raspberry Pi 2 is: - Cannot import VPN connection The file 'profile_001.ovpn' could not be read or does not contain recognized VPN connection information Error: the plugin does not support import capability. -- The error I get on my core i5 desktop --- Cannot import VPN connection The file 'profile_001.ovpn' could not be read or does not contain recognized VPN connection information Error: Key files contains line 'dev tun' which is not a key-value pair, group, or comment. - I have found another user reporting the same issue here: http://askubuntu.com/questions/760345/cannot-import-saved-openvpn-configuration-file-in-ubuntu-16-04-lts -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
How did you have it working in Ubuntu 14.04??? This bug has been present for generations of Ubuntu. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Ubuntu 16.04 here with the same issue. "Error: the plugin does not support import capability." This worked in 14.04! -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Importing .ovpn files also worked as expected on Kubuntu 14.04 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I just want to confirm this issue, exactly the same 5a54a wrote. This is confirmed on ubuntu-mate 16.04 64bit. Interesting enough, Kubuntu 16.05 64bit does not have this issue. There is some problem at times importing profiles in Kubuntu, but trying again a second time works well. I also noticed a few more issues, confirmed on multiple OpenVPN profiles: TCP Ports if the port in the profile is selected to be TCP, network-manager does not recognize that, and it is needed to manually go in network manager and select TCP port. However same profiles work fine on windows OpenVPN GUI, also starting OpenVPN from command line on linux works fine. remote tcp-client - This line in the configuration is relevant. network-manager-openvpn cannot interpret that (but works fine on anything else including cli). If I manually change the profile and split 2 lines, it works on network-manger-openvpn. something like this: remote tcp-client SPLIT TUNNEL if the profile is a split-tunnel configuration, network manager setting "use only for resources on this connection" in "ipv4 - routes" is not ticked. The connection tries to go full tunnel, and internet stops working. Also confirmed that on windows OpenVPN GUI this problem does not exist, and also starting OpenVPN from command line on linux works fine. If separate bugs are requested, please let me know and I will do that. sample of an OpenVPN profile (exported by PFSense appliance): dev tun persist-tun persist-key cipher BF-CBC auth SHA1 tls-client client resolv-retry infinite remote tcp-client lport 0 auth-user-pass ca -ca.crt tls-auth -tls.key 1 ns-cert-type server comp-lzo passtos Best Regards Mauro -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Had no problem importing pfSense ovpn file (with separate p12 and key files) in 15.10. Now in 16.04 LTS cannot import the same files anymore: "Cannot import VPN connnection The file 'pfsense-udp-1194---xx.ovpn' could not be read or does not contain recognized VPN connection information. Error: unknown error." -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Agree with Patrick. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Further to the above, here is the error message I receive. . . The file 'client.ovpn' could not be read or does not contain recognised VPN connection information Error: the plugin does not support import capability. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I'm running 16.04 release. This bug is still present. I tried updating all packages, still no joy. Where can I get this alleged fix? I've been tracking this bug for 6 years and I'm ready to throw my monitor out of the window. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I'll try another update, maybe I miss something... -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
Re: [Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I need to get the packages from proposed repository to make things work. Em qui, 14 de abr de 2016 às 11:11, bagl0312 <606...@bugs.launchpad.net> escreveu: > Confirmed: I cannot (yet) import a VPN configuration file on 16.04 > (current release) > > -- > You received this bug notification because you are subscribed to the bug > report. > https://bugs.launchpad.net/bugs/606365 > > Title: > unable to import config with inlined ca, cert, key or tls-auth > > Status in NetworkManager-OpenVPN: > Fix Released > Status in network-manager-openvpn package in Ubuntu: > Confirmed > > Bug description: > Binary package hint: network-manager-openvpn-gnome > > So a client of mine runs an OpenVPN setup. It exported a client.ovpn > file but it fails to completely import this file using the network- > manager (gnome) on Ubuntu 10.04. > > When I import the file, it gives me the name ("client") and gateway > ("vpn.example.org") on the initial screen. No other fields are > populated even though the client.ovpn file also includes a user > certificate, server certifikate and a private key. > > When I go to advanced, some (most) of the settings obviously seem to > import correct, others not at all. E.g. none of the TLS settings (key > and key direction) are imported. > > From what I understand I should be able to use this without any > additional settings. > > The following software is installed through aptitude: > >* openvpn (2.1.0) >* openvpn-blacklist >* network-manager-openvpn >* network-manager-openvpn-gnome > > To manage notifications about this bug go to: > > https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions > -- Sent from my Android -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Bogdan, please make sure to have all the updates applied. Network- Manager and the OpenVPN plugin were refreshed post beta 2 so maybe this got implemented. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Confirmed: I cannot (yet) import a VPN configuration file on 16.04 (current release) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I am using Ubuntu GNOME 16.4 beta 2, and the fix is not there. The file still cannot be imported -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
16.04 now includes upstream fixed version. So it doesn't affect xenial anymore. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
> Changed in network-manager-openvpn: > status: Confirmed → Fix Released Great! Will 16.04 have this fix? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
** Changed in: network-manager-openvpn Status: Confirmed => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Will this ever be addressed? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
It seems we have a hero! http://bazaar.launchpad.net/~network-manager/network-manager-openvpn/trunk/revision/559 For my use case (.ovpn file created by https://hub.docker.com/r/kylemanna/openvpn/ ), I guess I will still lack the TLS-AUTH file blob. Maybe I'll add it myself if I have time. But meanwhile I also created a tool for that at: https://github.com/dolanor/ovpnsplit It is in go, and if you want binaries directly, here they are: https://github.com/dolanor/ovpnsplit/releases -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Just FYI, this feature is already implemented in KDE (plasma-nm) - https://bugs.kde.org/show_bug.cgi?id=349282 ** Bug watch added: KDE Bug Tracking System #349282 https://bugs.kde.org/show_bug.cgi?id=349282 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Confirmed for 15.04: Still an issue for in-line *.ovpn files still works with sudo openvpn --config client.ovpn Off to do this manually, but... this IS an issue for larger deployments. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I just hit this bug. And this is how Ubuntu will never get enterprise acceptance. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Btw for those people who looking here for bugfixes, which they dont get, look at this: Yes, there is: http://howto.praqma.net/ubuntu/vpn/openvpn-access-server-client-on-ubuntu And even a little python script who breaks it apart: https://gist.github.com/seebk/bb94a7fd70d4cc454aaa So, as you see, its would be so damn easy for the Network Manager to read these kind of files, which are very very common for OpenVPN, because you only have to provide ONE file. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I thought I have another look, and wow, the bug is still existant.. Wow! Years! Even though it is so easy to fix it, and there are already solutions present, it just have to get upstream. Can somebody state what the problem is? Its a quite enterprisey thing that doesnt work for years now, no wonder they still use RHEL everywhere.. :/ -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
@Nicolas It is not the answer for *inlined* certificates. You can extract inline certificates into separate files, but it is not what people requested here. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
could this be the answer? https://naveensnayak.wordpress.com/2013/03/04/ubuntu-openvpn-with-ovpn- file/ Thanks, -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Happy Birthday to this Bug !!! Sarcasm apart - it is amazing that such an important piece of software is not been supported properly - particularly with the corporate market requesting it. if the suggestion here: https://bugzilla.gnome.org/show_bug.cgi?id=67 is correct - that it is not possible to handle inline certificates & it will be necessary to manually edit the ovpn file. could we have an article/wiki explaining the steps to do so? or a small utility that could do this work? Thanks, -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Come on, many of the latest OpenVPN implementations use in-line certificates by default... how can this bug be still there five years later? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Hope this bug will be addressed - five years without a fix - is far too long... :( -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I have created a small python script to extract the embedded certificates and to rewrite the ovpn config to use separate key and cert files. https://gist.github.com/seebk/bb94a7fd70d4cc454aaa Maybe it helps to simplify the error prone manual setup until this bug is fixed. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Would be really nice if somebody could take a look at this and work on it. Thanks :) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Can somebody please fix this? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
I am experiencing the same problem. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
2015... Nothing was done yet. Let's make some movements. Here is the import function: http://bazaar.launchpad.net/~network-manager/network-manager-openvpn/trunk/view/head:/properties/import-export.c#L268 and here are the lines of ca/cert/key tags parsing: http://bazaar.launchpad.net/~network-manager/network-manager-openvpn/trunk/view/head:/properties/import-export.c#L563 My suggestion is to save inline ca/cert/key inside of a Network Manager configurations file encoded into base64 (again) with "inline:" prefix, e.g.: [connection] id=MyVPN uuid=ac9d354e-03ef-4063-8c96-4a40bd17bea6 type=vpn [vpn] service-type=org.freedesktop.NetworkManager.openvpn connection-type=tls remote=myvpnhost.com cert-pass-flags=0 tap-dev=no proto-tcp=no mssfix=no ca=inline: cert=inline: key=inline: Another approach would be to parse as much information from *.ovpn file as we can, remove parsed parts, encode rest of the file into a base64 string, and save it into a Network Manager connection config file. This may help to deal with extra options like inline certificates, but may also cause unexpected configuration conflicts. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
This bug affects me as well. Anyone got a script working to automate the creation of the separate certificates and keys from inside the .ovpm file? Would be a great workaround till this gets fixed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Same as #25 and #26. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
Actually, I'm not having luck with the workaround: it seems that DNS settings have not been updated to find recources in the VPN. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
** Changed in: network-manager-openvpn Status: Unknown => Confirmed ** Changed in: network-manager-openvpn Importance: Unknown => Medium -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 606365] Re: unable to import config with inlined ca, cert, key or tls-auth
** Summary changed: - client.ovpn file is not completely imported + unable to import config with inlined ca, cert, key or tls-auth ** Changed in: network-manager-openvpn Importance: Undecided => Unknown ** Changed in: network-manager-openvpn Status: New => Unknown ** Changed in: network-manager-openvpn Remote watch: None => GNOME Bug Tracker #67 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/606365 Title: unable to import config with inlined ca, cert, key or tls-auth To manage notifications about this bug go to: https://bugs.launchpad.net/network-manager-openvpn/+bug/606365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs