Bug 13190 - OpenVPN connection status shows disconnected for connected client
Summary: OpenVPN connection status shows disconnected for connected client
Status: CLOSED FIXED
Alias: None
Product: IPFire
Classification: Unclassified
Component: --- (show other bugs)
Version: 2
Hardware: all All
: - Unknown - Minor Usability
Assignee: Adolf Belka
QA Contact:
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2023-07-26 07:57 UTC by Adolf Belka
Modified: 2023-09-28 10:47 UTC (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Adolf Belka 2023-07-26 07:57:18 UTC
A poster on the forum reported that some of his OpenVPN clients always showed DISCONNECTED even after several hours of actual connection of the client.

Forum thread
https://community.ipfire.org/t/wrong-openvpn-status/9651
Comment 1 Adolf Belka 2023-07-26 08:02:21 UTC
After some investigation in the forum thread iy was identified that the problem occurs when the certificate Common Name that has been used has underscores.

The certificate with underscores is accepted (and this is in line with RFC5280) so the connection is able to be made.

The code that checks for the status extracts the common name for the connection and then there is regex code that replaces all underscores in the common name by spaces. This means that the status for the certificate common name is never found as the status common name has been changed.

Reproduced the problem on my vm testbed system.

Will create a patch that corrects this.
Comment 2 Adolf Belka 2023-07-27 14:00:01 UTC
Patch tested out on vm test bed.

Patch submitted to dev mailing list and patchwork.

https://lists.ipfire.org/pipermail/development/2023-July/016192.html
https://patchwork.ipfire.org/project/ipfire/patch/20230727135725.7053-1-adolf.belka@ipfire.org/
Comment 3 Adolf Belka 2023-08-03 12:21:49 UTC
Patch has been merged into next (CU178)
Comment 5 Adolf Belka 2023-09-04 10:27:47 UTC
Bug verified to be fixed.