New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[BUG] Fedora 36 - Openconnect csd-post gives empty document and indefinitely connects #274
Comments
Reverting to |
Reverting to least available commit |
Reverting to silverblue 35 ( |
@Meister1593 would you mind reporting a bug in https://bugzilla.redhat.com/enter_bug.cgi?product=Fedora against the openconnect component? I don't think that we will be able to help you here (we don't have the expertise). |
|
Closing this one as it has been reported upstream and will be tracked there and there is a workaround in https://bugs.launchpad.net/ubuntu/+source/openconnect/+bug/1968467/comments/6. |
From https://bugs.launchpad.net/ubuntu/+source/openconnect/+bug/1968467/comments/6 the next works for me:
|
Describe the bug
Openconnect csd post wrapper used for anyconnect vpn service fails unexpectedly with empty document returned from vpn.
To Reproduce
I'm not sure if it's possible to replicate locally (requires vpn credentials) but i will at least try to replicate it the way i did
sudo openconnect --user=user --csd-wrapper=/usr/libexec/openconnect/csd-post.sh hostname
while trying to connect (only once)
Expected behavior
Openconnect has to establish connection and give login form to proceed further
OS version:
Additional context
I recently moved from Kinoite 35 and there vpn worked perfectly fine.
I pinned that deployment in case something like this happened and on fresh user (i cleared configs and home data before installing silverblue) my own user before installing, kinoite 35 indeed works just fine with this vpn.
On silverblue i tried downgrading openconnect to the same version as on kinoite 35, but it still didn't work and had the same problem.
My assumption is that something is wrong with certificates but there no errors about them, even if i place
set -x
incsd-post.sh
(that i placed in home folder)Also, there is
xmlstarlet
installed via overlays - this was kinda required forcsd-post.sh
script, it has fallback to use it withoutxmlstarlet
but it also says that it might not work without itThe text was updated successfully, but these errors were encountered: