[Pkg-utopia-maintainers] Bug#1012664: Rudamentary patch
Gard Spreemann
gspr at nonempty.org
Tue Jun 21 11:42:48 BST 2022
Hello,
I'm also affected by this bug. Inspection of the upstream code shows
that the NetworkManager OpenVPN plugin has no notion of the
--data-ciphers flag of OpenVPN. The previously used --cipher flag, which
NM does know about, used to imply appending the cipher to the
--data-ciphers list, but that is no longer the case as of OpenVPN 2.6 [1].
I've attached a very rudamentary patch that adds support for
--data-ciphers to network-manager-openvpn, and passes the corresponding
string on as an OpenVPN argument. The patch is a bit crude, and treats
--data-ciphers _exactly_ like --ciphers was already treated. That might
not be appropriate, as the former has the structure of a colon-separated
list, and any GUI/TUI interface might want to reflect that
visually/functionally. My patch treats it as an opaque string.
With the patch, one can in a network-manager-openvpn VPN connection add
an entry of the form
data-ciphers = WHATEVER
to the .data field of the VPN connection, and WHATEVER will be passed on
to OpenVPN's --data-ciphers argument.
I'll try to have this patch upstreamed, but in the meantime it might be
appropriate for inclusion into Debian so as not to break people's
NM-managed VPN connections upon upgrading OpenVPN.
PS: Simon, you incidate that you are having trouble due to being
unfamiliar with Debian packaging. Do let me know if you'd like me to
provide a precompiled package with the patch included.
[1] https://github.com/OpenVPN/openvpn/blob/0dbcaba4f301c21e68a5cd032a4b56eb75c17c37/Changes.rst
Best,
Gard
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Add-support-for-OpenVPN-s-data-ciphers.patch
Type: text/x-diff
Size: 9466 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-utopia-maintainers/attachments/20220621/89849251/attachment.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 857 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-utopia-maintainers/attachments/20220621/89849251/attachment.sig>
More information about the Pkg-utopia-maintainers
mailing list