Ubuntu
openconnect package

OpenConnect does not connect

Bug #1456900 reported by Kari Haapanen
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
openconnect (Ubuntu)
Invalid
Undecided
Unassigned

Bug Description

kubuntu 15.04 64bit
openconnect:
  Installed: 6.00-1
  Candidate: 6.00-1
  Version table:
 *** 6.00-1 0

Login attempt fails with plasma-nm and command line as follows:

openconnect --verbose --no-cert-check --user=myusername --dump-http --no-xmlpost --passwd-on-stdin servername

GET https://servername/
Attempting to connect to server i.p.add.ress:443
SSL negotiation with servername
Connected to HTTPS on servername
> GET / HTTP/1.1
> Host: servername
> User-Agent: Open AnyConnect VPN Agent v6.00
> Accept: */*
> Accept-Encoding: identity
> X-Transcend-Version: 1
>
Got HTTP response: HTTP/1.0 302 Object Moved
Content-Type: text/html
Content-Length: 0
Cache-Control: no-cache
Pragma: no-cache
Connection: Close
Date: Wed, 20 May 2015 06:16:56 GMT
Location: /+webvpn+/index.html
Set-Cookie: tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
HTTP body length: (0)
GET https://servername/+webvpn+/index.html
SSL negotiation with servername
Connected to HTTPS on servername
> GET /+webvpn+/index.html HTTP/1.1
> Host: servername
> User-Agent: Open AnyConnect VPN Agent v6.00
> Accept: */*
> Accept-Encoding: identity
> X-Transcend-Version: 1
>
Got HTTP response: HTTP/1.1 200 OK
Transfer-Encoding: chunked
Content-Type: text/xml
Cache-Control: max-age=0
Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
Set-Cookie: webvpnlogin=1; secure
X-Transcend-Version: 1
HTTP body chunked (-2)
< <?xml version="1.0" encoding="UTF-8"?>
< <auth id="main">
< <title>SSL VPN Service</title>
< <ca status="disabled" href="/+CSCOCA+/login.html" />
<
<
<
< <banner></banner>
< <message>Please enter your username and password.</message>
<
<
< <form method="post" action="/+webvpn+/index.html">
<
< <input type="text" name="username" label="Username:" />
< <input type="password" name="password" label="Password:" />
<
<
<
<
< <input type="submit" name="Login" value="Login" />
< <input type="reset" name="Clear" value="Clear" />
<
<
< </form>
< </auth>
<
Please enter your username and password.
POST https://servername/+webvpn+/index.html
> POST /+webvpn+/index.html HTTP/1.1
> Host: servername
> User-Agent: Open AnyConnect VPN Agent v6.00
> Accept: */*
> Accept-Encoding: identity
> Cookie: webvpnlogin=1
> X-Transcend-Version: 1
> X-Pad: 0000000000000000000000000000000000000
> Content-Type: application/x-www-form-urlencoded
> Content-Length: 27
>
> username=myusername&password=
Got HTTP response: HTTP/1.1 200 OK
Transfer-Encoding: chunked
Content-Type: text/xml
Cache-Control: max-age=0
Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
Set-Cookie: webvpnlogin=1; secure
X-Transcend-Version: 1
HTTP body chunked (-2)
< <?xml version="1.0" encoding="UTF-8"?>
< <auth id="main">
< <title>SSL VPN Service</title>
< <ca status="disabled" href="/+CSCOCA+/login.html" />
<
<
<
< <banner></banner>
< <message>Please enter your username and password.</message>
<
<
< <form method="post" action="/+webvpn+/index.html">
<
< <input type="text" name="username" label="Username:" />
< <input type="password" name="password" label="Password:" />
<
<
<
<
< <input type="submit" name="Login" value="Login" />
< <input type="reset" name="Clear" value="Clear" />
<
<
< </form>
< </auth>
<
Please enter your username and password.
Username:myusername
Password:
POST https://servername/+webvpn+/index.html
> POST /+webvpn+/index.html HTTP/1.1
> Host: servername
> User-Agent: Open AnyConnect VPN Agent v6.00
> Accept: */*
> Accept-Encoding: identity
> Cookie: webvpnlogin=1
> X-Transcend-Version: 1
> X-Pad: 000000000000000000000000000
> Content-Type: application/x-www-form-urlencoded
> Content-Length: 37
>
> username=myusername&password=#########
Got HTTP response: HTTP/1.1 200 OK
Transfer-Encoding: chunked
Content-Type: text/xml
Cache-Control: max-age=0
Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
Set-Cookie: webvpnlogin=1; secure
X-Transcend-Version: 1
HTTP body chunked (-2)
< <?xml version="1.0" encoding="UTF-8"?>
< <auth id="main">
< <title>SSL VPN Service</title>
< <ca status="disabled" href="/+CSCOCA+/login.html" />
<
<
<
< <banner></banner>
< <message>Please enter your username and password.</message>
<
<
< <error id="15" param1="" param2="">Login failed.</error>
< <form method="post" action="/+webvpn+/index.html">
<
< <input type="text" name="username" label="Username:" />
< <input type="password" name="password" label="Password:" />
<
<
<
<
< <input type="submit" name="Login" value="Login" />
< <input type="reset" name="Clear" value="Clear" />
<
<
< </form>
< </auth>
<
Login failed.
Please enter your username and password.
Username:^Cfgets (stdin): Interrupted system call
:~$

Another oddity is that after issuing the command from cli, it does not give any prompt. Only after hitting another "enter", it asks for a username and continues, but never connects.

Revision history for this message
Mike Miller (mtmiller) wrote :

Have you tried connecting without the --passwd-on-stdin option? I think that option is why you are only being prompted for the username. And when you hit "enter", you are entering a blank password string. Or at least that's my best guess based on the info you've provided. Can you report back here if you're able to connect without that option?

Changed in openconnect (Ubuntu):
status: New → Incomplete
Revision history for this message
Kari Haapanen (karsta62) wrote : Re: [Bug 1456900] Re: OpenConnect does not connect
Download full text (6.7 KiB)

Sorry, I can't test it anymore. Got fired in the company's layoffs among
with several hundred others.

Thanks anyway.
- Karsta

2015-08-23 18:56 GMT+03:00 Mike Miller <email address hidden>:

> Have you tried connecting without the --passwd-on-stdin option? I think
> that option is why you are only being prompted for the username. And
> when you hit "enter", you are entering a blank password string. Or at
> least that's my best guess based on the info you've provided. Can you
> report back here if you're able to connect without that option?
>
> ** Changed in: openconnect (Ubuntu)
> Status: New => Incomplete
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/1456900
>
> Title:
> OpenConnect does not connect
>
> Status in openconnect package in Ubuntu:
> Incomplete
>
> Bug description:
> kubuntu 15.04 64bit
> openconnect:
> Installed: 6.00-1
> Candidate: 6.00-1
> Version table:
> *** 6.00-1 0
>
> Login attempt fails with plasma-nm and command line as follows:
>
> openconnect --verbose --no-cert-check --user=myusername --dump-http
> --no-xmlpost --passwd-on-stdin servername
>
> GET https://servername/
> Attempting to connect to server i.p.add.ress:443
> SSL negotiation with servername
> Connected to HTTPS on servername
> > GET / HTTP/1.1
> > Host: servername
> > User-Agent: Open AnyConnect VPN Agent v6.00
> > Accept: */*
> > Accept-Encoding: identity
> > X-Transcend-Version: 1
> >
> Got HTTP response: HTTP/1.0 302 Object Moved
> Content-Type: text/html
> Content-Length: 0
> Cache-Control: no-cache
> Pragma: no-cache
> Connection: Close
> Date: Wed, 20 May 2015 06:16:56 GMT
> Location: /+webvpn+/index.html
> Set-Cookie: tg=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/; secure
> HTTP body length: (0)
> GET https://servername/+webvpn+/index.html
> SSL negotiation with servername
> Connected to HTTPS on servername
> > GET /+webvpn+/index.html HTTP/1.1
> > Host: servername
> > User-Agent: Open AnyConnect VPN Agent v6.00
> > Accept: */*
> > Accept-Encoding: identity
> > X-Transcend-Version: 1
> >
> Got HTTP response: HTTP/1.1 200 OK
> Transfer-Encoding: chunked
> Content-Type: text/xml
> Cache-Control: max-age=0
> Set-Cookie: webvpn=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/;
> secure
> Set-Cookie: webvpnc=; expires=Thu, 01 Jan 1970 22:00:00 GMT; path=/;
> secure
> Set-Cookie: webvpnlogin=1; secure
> X-Transcend-Version: 1
> HTTP body chunked (-2)
> < <?xml version="1.0" encoding="UTF-8"?>
> < <auth id="main">
> < <title>SSL VPN Service</title>
> < <ca status="disabled" href="/+CSCOCA+/login.html" />
> <
> <
> <
> < <banner></banner>
> < <message>Please enter your username and password.</message>
> <
> <
> < <form method="post" action="/+webvpn+/index.html">
> <
> < <input type="text" name="username" label="Username:" />
> < <input type="password" name="password" label="Password:" />
> <
> <
> <
> <
> < <input type="submit" name="Login" value="Login" />
> < <input type="reset" name="Clear" value="Clear" />
> <
> ...

Read more...

Revision history for this message
Mike Miller (mtmiller) wrote :

Ok, closing as invalid. Feel free to open another bug report or ask a question if this problem is repeatable for you in the future.

Changed in openconnect (Ubuntu):
status: Incomplete → Invalid
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.