Arch Linux

Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!
Tasklist

FS#69216 - Running openvpn as non-root user breaks password authentication

Attached to Project: Arch Linux
Opened by carbolymer (carbolymer) - Tuesday, 05 January 2021, 10:31 GMT
Last edited by Andreas Radke (AndyRTR) - Wednesday, 21 April 2021, 12:31 GMT
Task Type Bug Report
Category Packages: Extra
Status Assigned
Assigned To Christian Hesse (eworm)
Architecture All
Severity High
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 0%
Votes 5
Private No

Details

Description:
openvpn-2.5.0-3-x86_64 introduces change, which starts process with unprivileged user `openvpn`. When openvpn service is being run as openvpn:network, PAM authentication via openvpn-plugin-auth-pam.so doesn't work. Any authentication request is rejected with error: "Auth Username/Password verification failed for peer"

Affected version:
* openvpn-2.5.0-3-x86_64

Steps to reproduce:
Config files and logs are available here: https://bbs.archlinux.org/viewtopic.php?pid=1947767#p1947767
This task depends upon

Comment by Pippin (Pippin1st) - Thursday, 21 January 2021, 17:14 GMT
I can confirm that there are permission problems as I have with the --up, --down or any script...

[code]
2021-01-21 18:10:07 us=915954 /etc/openvpn/up.sh tun0 1500 1585 10.16.0.12 255.255.0.0 init
+ run /etc/openvpn/update-resolv-conf
+ /etc/openvpn/update-resolv-conf
dhcp-option DNS 10.16.0.1
Cannot write to /run/resolvconf/lock
+ '[' 1 -ne 0 ']'
+ echo '/etc/openvpn/update-resolv-conf Failed with exit code 0'
/etc/openvpn/update-resolv-conf Failed with exit code 0
+ return 1
2021-01-21 18:10:07 us=927368 WARNING: Failed running command (--up/--down): external program exited with error status: 1
2021-01-21 18:10:07 us=927413 Exiting due to fatal error
[/code]

Loading...