[plasma-nm] [Bug 414975] New: The openfortivpn plugin does not allow to set gateway port

Mon, 09 Dec 2019 03:23:31 -0800 

https://bugs.kde.org/show_bug.cgi?id=414975

            Bug ID: 414975
           Summary: The openfortivpn plugin does not allow to set gateway
                    port
           Product: plasma-nm
           Version: unspecified
          Platform: Other
                OS: Linux
            Status: REPORTED
          Severity: normal
          Priority: NOR
         Component: editor
          Assignee: jgrul...@redhat.com
          Reporter: kle...@gmail.com
  Target Milestone: ---

SUMMARY


STEPS TO REPRODUCE
1. Setup openfortivpn connection with <host> or <host:port> as gateway
2. Save config3. 
3. Try to connect

OBSERVED RESULT
In syslog:
NetworkManager[1112]: <debug> [1575890075.2403] agent-manager:
req[0x557e287b29d0, :1.34/org.kde.plasma.networkmanagement/1000]: agent
returned secrets for request [0x557e287c4b20/"XXX"/"vpn"]
NetworkManager[1112]: <debug> [1575890075.2407]
settings-connection[0x557e28672d20,2a77d541-0d9e-417e-9f47-d3efda16f6ff]:
(vpn:0x557e286bdf70) secrets returned from agent :1.34
NetworkManager[1112]: <debug> [1575890075.2408]
settings-connection[0x557e28672d20,2a77d541-0d9e-417e-9f47-d3efda16f6ff]:
(vpn:0x557e286bdf70) secrets request completed
NetworkManager[1112]: <debug> [1575890075.2420]
settings-connection[0x557e28672d20,2a77d541-0d9e-417e-9f47-d3efda16f6ff]:
(vpn:0x557e286bdf70) saving new secrets to backing storage
NetworkManager[1112]: <debug> [1575890075.2689] ++ connection 'get-new-secrets'
(0x557e28682700/NMSimpleConnection/"vpn" <
0x557e28672d20/NMSKeyfileConnection/"vpn"):
NetworkManager[1112]: <debug> [1575890075.2689] ++ vpn                       [
0x7fa0e8014e80 < 0x557e2873e8a0 ]
NetworkManager[1112]: <debug> [1575890075.2689] ++ vpn.secrets               =
((GHashTable*) 0x7fa0e8014d80) < ((GHashTable*) 0x7fa0e8014f00)
NetworkManager[1112]: <info>  [1575890075.2705]
settings-connection[0x557e28672d20,2a77d541-0d9e-417e-9f47-d3efda16f6ff]:
write: successfully updated (keyfile: update
/etc/NetworkManager/system-connections/XXX
(2a77d541-0d9e-417e-9f47-d3efda16f6ff,"XXX")), connection was modified in the
process
NetworkManager[1112]: <debug> [1575890075.2715]
vpn-connection[0x557e2879c400,2a77d541-0d9e-417e-9f47-d3efda16f6ff,"XXX",0]:
asking service if additional secrets are required
NetworkManager[1112]: <debug> [1575890075.2793]
vpn-connection[0x557e2879c400,2a77d541-0d9e-417e-9f47-d3efda16f6ff,"XXX",0]:
service indicated no additional secrets required
NetworkManager[1112]: <debug> [1575890075.2800]
vpn-connection[0x557e2879c400,2a77d541-0d9e-417e-9f47-d3efda16f6ff,"XXX",0]:
Calling old Connect function as not all agents support interactive secrets
NetworkManager[1112]: <info>  [1575890075.2836]
vpn-connection[0x557e2879c400,2a77d541-0d9e-417e-9f47-d3efda16f6ff,"XXX",0]:
VPN plugin: state changed: starting (3)
NetworkManager[1112]: INFO:   Connected to gateway.
NetworkManager[1112]: ERROR:  Could not authenticate to gateway (Bad HTTP
response code).
NetworkManager[1112]: INFO:   Closed connection to gateway.
NetworkManager[1112]: INFO:   Logged out.
NetworkManager[1112]: <warn>  [1575890075.7613]
vpn-connection[0x557e2879c400,2a77d541-0d9e-417e-9f47-d3efda16f6ff,"XXX",0]:
VPN plugin: failed: connect-failed (1)
NetworkManager[1112]: <info>  [1575890075.7614]
vpn-connection[0x557e2879c400,2a77d541-0d9e-417e-9f47-d3efda16f6ff,"XXX",0]:
VPN plugin: state changed: stopping (5)
NetworkManager[1112]: <info>  [1575890075.7615]
vpn-connection[0x557e2879c400,2a77d541-0d9e-417e-9f47-d3efda16f6ff,"XXX",0]:
VPN plugin: state changed: stopped (6)


EXPECTED RESULT
Succesful connection

SOFTWARE/OS VERSIONS
Linux/KDE Plasma: KDE neon 5.17.4
(available in About System)
KDE Plasma Version: 5.17.4
KDE Frameworks Version: 5.64.0
Qt Version: 5.13.2

ADDITIONAL INFORMATION

My organization uses a FortiVPN server on a non-standard port I think (443). It
seems to me that the port information is no present in plasma-nm code.

Note that the connection to the VPN is successful with the command-line client
with the following configuration:

# config file for openfortivpn, see man openfortivpn(1)
host = <host>
port = <port>
username = <user>
password =
trusted-cert = <cert>

Note also that we use a hardware token to generate one time password.

Finally, I already saw a colleague connecting successfully to the VPN using the
GNOME applet.

-- 
You are receiving this mail because:
You are watching all bug changes.

Reply via email to