nm-openvpn "Passwords with Certificate (TLS)" panel has wrong labels and inverts passwords
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
network-manager-openvpn (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
openvpn (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
I use a VPN to the office using the "Passwords with Certificate (TLS)" option in openvpn, I configured the following values:
CA: /etc/openvpn/ca.crt
Cert: /etc/openvpn/
Key: /etc/openvpn/
This all used to work fine (in hardy), but in the latest version in intrepid (0.7~~svn200809
Cannot load private key file /etc/openvpn/
I did some digging, and found that the openvpn commandline is:
openvpn .... --ca /etc/openvpn/
note that the CA on the commandline is NOT what I configured above.
If I swap the CA and cert over in the configuration then all works fine - but I shouldn't need to do that, something is swapping over the CA and Cert between the UI and the openvpn commandline.
Can't reproduce with current intrepid (same version as you).
My VPN configuration dialog shows (top to bottom):
- User cert : selected client.crt
- CA cert : selected ca.crt
- User private key : selected client.key
Then the command line is : network- manager- openvpn/ nm-openvpn- service- openvpn- helper --up-restart --persist-key --persist-tun --management 127.0.0.1 1194 --management- query-passwords --route-noexec --client --ca /home/koon/ openvpn/ ca.crt --cert /home/koon/ openvpn/ client. crt --key /home/koon/ openvpn/ client. key
/usr/sbin/openvpn --remote 192.168.122.41 --nobind --dev tun --proto udp --port 1194 --syslog nm-openvpn --script-security 2 --up /usr/lib/
...which is correct.
Could you please retry on a new configuration (not one imported from hardy ?)
It can also be a translation error where two labels might haven been swapped, so please confirm how the dialog box reads (top to bottom) and which language/locale you are using.
In all cases, that would be a network- manager- openvpn, bug and not an openvpn bug.