Routes not being added by nm-openconnect-server-openconnect-helper
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
network-manager-openconnect (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
When connecting to an openconnect VPN using network-
To test:
dpkg-divert --add --rename --divert \
/usr/
/usr/
cat > /usr/lib/
#!/bin/bash
env | sort
/usr/lib/
EOF
chmod +x /usr/lib/
These are the environment variables exported to the helper.
---
CISCO_CSTP_
CISCO_DEF_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_EXC=1
GIO_USE_VFS=local
INTERNAL_
INTERNAL_
INTERNAL_
INTERNAL_
INTERNAL_
INTERNAL_
INTERNAL_
INVOCATION_
JOURNAL_
LANG=en_GB.UTF-8
LANGUAGE=en_GB:en
LC_ADDRESS=
LC_IDENTIFICATI
LC_MEASUREMENT=
LC_MONETARY=
LC_NAME=en_GB.UTF-8
LC_NUMERIC=
LC_PAPER=
LC_TELEPHONE=
LC_TIME=en_GB.UTF-8
NM_DBUS_
NM_VPN_LOG_LEVEL=0
NM_VPN_
NM_VPN_LOG_SYSLOG=1
PATH=/usr/
PWD=/
reason=pre-init
SHLVL=1
_=/usr/bin/env
VPNGATEWAY=1.2.3.4
---
And then again with same as above, but with following changes/additions.
---
reason=connect
TUNDEV=vpn0
---
Running openconnect on the command-line, the environment variables are all present.
echo $COOKIE | /usr/sbin/ openconnect --interface vpn0 mydomain.com --cookie-on-stdin
--- OPTIONS= X-CSTP- Version= 1 DOMAIN= mydomain. com EXC_0_ADDR= 0.0.0.0 EXC_0_MASK= 255.255. 255.255 EXC_0_MASKLEN= 32 EXC_1_ADDR= 10.1.12. 244 EXC_1_MASK= 255.255. 255.255 EXC_1_MASKLEN= 32 EXC_2_ADDR= 10.194. 4.23 EXC_2_MASK= 255.255. 255.255 EXC_2_MASKLEN= 32 INC_0_ADDR= 10.96.52. 0 INC_0_MASK= 255.255. 252.0 INC_0_MASKLEN= 22 INC_10_ ADDR=10. 96.52.0 INC_10_ MASK=255. 255.252. 0 INC_10_ MASKLEN= 22 INC_11_ ADDR=10. 96.52.0 INC_11_ MASK=255. 255.252. 0 INC_11_ MASKLEN= 22 IP4_ADDRESS= 10.96.54. 29 IP4_DNS= 10.96.16. 111 10.96.16.112 IP4_MTU= 1402 IP4_NBNS= 10.96.16. 111 10.96.16.112 IP4_NETADDR= 10.96.52. 0 IP4_NETMASK= 255.255. 252.0 IP4_NETMASKLEN= 22 en_GB.UTF- 8 ON=en_GB. UTF-8 en_GB.UTF- 8 en_GB.UTF- 8 en_GB.UTF- 8 en_GB.UTF- 8 en_GB.UTF- 8 local/sbin: /usr/local/ bin:/usr/ sbin:/usr/ bin:/sbin: /bin:/snap/ bin Address= 10.96.54. 29 Client- Bypass- Protocol= false Default- Domain= mydomain. com Disable- Always- On-VPN= false Disconnected- Timeout= 3600 DNS=10. 96.16.111 DNS=10. 96.16.112 Hostname= mydomain. com Idle-Timeout= 3600 Lease-Duration= 28800 MSIE-Proxy- Lockdown= true NBNS=10. 96.16.111 NBNS=10. 96.16.112 Netmask= 255.255. 252.0 Protocol= Copyright (c) 2004 Cisco Systems, Inc. Quarantine= false Routing- Filtering- Ignore= false Session- Timeout= 28800 Smartcard- Removal- Disconnect= true Split-Exclude= 0.0.0.0/ 255.255. 255.255 Split-Exclude= 10.1.12. 244/255. 255.255. 255 Split-Exclude= 10.194. 4.23/255. 255.255. 255 Split-Include= 10.0.0. 0/255.0. 0.0 Split-Include= 10.96.52. 0/255.255. 252.0 Split-Include= 10.96.52. 0/255.255. 252.0 Split-Include= 10.96.52. 0/255.255. 252.0 TCP-Keepalive= true Tunnel- All-DNS= false
CISCO_CSTP_
CISCO_DEF_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_EXC=3
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
CISCO_SPLIT_
-- [snip] --
CISCO_SPLIT_INC=42
INTERNAL_
INTERNAL_
INTERNAL_
INTERNAL_
INTERNAL_
INTERNAL_
INTERNAL_
LANG=en_GB.UTF-8
LANGUAGE=en_GB:en
LC_ADDRESS=
LC_IDENTIFICATI
LC_MEASUREMENT=
LC_MONETARY=
LC_NAME=en_GB.UTF-8
LC_NUMERIC=
LC_PAPER=
LC_TELEPHONE=
LC_TIME=en_GB.UTF-8
PATH=/usr/
PWD=/
reason=connect
SHLVL=1
TUNDEV=vpn0
VPNGATEWAY=1.2.3.4
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-DPD=30
X-CSTP-
X-CSTP-
X-CSTP-Keepalive=20
X-CSTP-Keep=true
X-CSTP-
X-CSTP-
X-CSTP-MTU=1379
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
X-CSTP-
-- [snip] --
X-CSTP-
X-CSTP-
---