Arch Linux

Please read this before reporting a bug:
https://wiki.archlinux.org/index.php/Reporting_Bug_Guidelines

Do NOT report bugs when a package is just outdated, or it is in Unsupported. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!
Tasklist

FS#52632 - [openconnect] EMSGSIZE error

Attached to Project: Arch Linux
Opened by Gaelic (gaelic) - Thursday, 19 January 2017, 08:59 GMT
Last edited by Doug Newgard (Scimmia) - Tuesday, 24 January 2017, 05:33 GMT
Task Type Bug Report
Category Packages: Extra
Status Assigned
Assigned To Felix Yan (felixonmars)
Levente Polyak (anthraxx)
Architecture All
Severity High
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 0%
Votes 1
Private No

Details

Description:

With the latest update from 2017-01-01 I am not able to connect to the vpn of my university anymore (uibk.ac.at). I found some details on that problem in a redhat bug:

https://bugzilla.redhat.com/show_bug.cgi?id=1404371

It works fine with 1:7.07-1

Additional info:
* package version(s)

openconnect 1:7.08-1

* config and/or log files etc.

Jan 19 09:27:40 angus openconnect[16542]: Connected to 138.232.0.177:443
Jan 19 09:27:40 angus openconnect[16542]: SSL negotiation with 138.232.0.177
Jan 19 09:27:40 angus openconnect[16542]: Server certificate verify failed: signer not found
Jan 19 09:27:40 angus openconnect[16542]: Connected to HTTPS on 138.232.0.177
Jan 19 09:27:40 angus openconnect[16542]: Got CONNECT response: HTTP/1.1 200 OK
Jan 19 09:27:40 angus openconnect[16542]: CSTP connected. DPD 30, Keepalive 20
Jan 19 09:27:40 angus openconnect[16542]: Connected as 138.232.7.104, using SSL
Jan 19 09:27:40 angus openconnect[16542]: Established DTLS connection (using GnuTLS). Ciphersuite (DTLS0.9)-(DHE-RSA-4294967237)-(AES-128-CBC)-(SHA1).
Jan 19 09:27:40 angus openconnect[16542]: Failed to write to SSL socket: The transmitted packet is too large (EMSGSIZE).
Jan 19 09:27:40 angus openconnect[16542]: Failed to send DPD request (1355 -5)
Jan 19 09:27:40 angus openconnect[16542]: Detected MTU of 1354 bytes (was 1355)
Jan 19 09:27:41 angus openconnect[16542]: SIOCSIFMTU: Operation not permitted
Jan 19 09:27:41 angus dbus[366]: [system] Rejected send message, 1 matched rules; type="method_call", sender=":1.1341" (uid=993 pid=16546 comm="/usr/lib/networkmanager
Jan 19 09:28:41 angus NetworkManager[15190]: <warn> [1484814521.0983] vpn-connection[0x101a4b0,430c86df-3a7b-4302-b86a-ee10ed8c64c3,"uibk",0]: VPN connection: connect
Jan 19 09:28:41 angus nm-openconnect-[16467]: Connect timer expired, disconnecting.


Steps to reproduce:

This task depends upon

Comment by freswa (frederik) - Saturday, 06 May 2017, 22:50 GMT
Can confirm, a downgrade to 1:7.06-2 fixes the problem.
Also using "--no-dtls" fixes this for me.
Comment by C K (blaka) - Friday, 08 September 2017, 14:14 GMT
I can confirm that the bug still exists. (2017-09-08)
Comment by Alexandros Mittos (Aventinus) - Tuesday, 12 June 2018, 11:07 GMT
The problem still persists. I downgraded to 1:7.06-2 and it works fine.
Comment by Levente Polyak (anthraxx) - Tuesday, 12 February 2019, 01:23 GMT
whats the state with vpnc 1:0.5.3.r452.r67-1 and openconnect 1:8.02-1?

Loading...