Error in the pull function/Linux 4.15

Michael Thayer michael.thayer at oracle.com
Fri Mar 16 06:20:20 PDT 2018


Hello,

This is shadowing Ubuntu launchpad bug 1754601[1].  When I boot my
64-bit Ubuntu 18.04 system with the default 4.15 kernel, openconnect
connections to our company VPN quickly fail with the following in the
output:

SSL read error: Error in the pull function.; reconnecting.
SSL negotiation with <server>
SSL connection failure: The operation timed out
sleep 10s, remaining timeout 300s
SSL negotiation with <server>
SSL connection failure: The operation timed out
sleep 20s, remaining timeout 290
...

I have seen the connection recover once that I can remember after this
failure.  I can still connect when I boot into the 4.13 kernel from
Ubuntu 17.10.  The Cisco VPN client was also unable to connect under the
4.15 kernel, but I have not/never tried it with 4.13.

[1] https://bugs.launchpad.net/ubuntu/+source/openconnect/+bug/1754601

I have GNUTLS_DEBUG_LEVEL=99 logs for both successful (4.13) and
unsuccessful (4.15) connections.  What can/should I censor from the logs
before providing them?  URLs and IPs I assume; there do not seem to be
any "webvpn" lines in either file, nor user name or password.  Is there
anything else I can do to debug this, or is it obvious to someone?  I
also tried a rebuild with "--without-gnutls --with-openssl=yes" which
did not seem to get be anywhere either.

Many thanks.
Regards
Michael
-- 
Michael Thayer | VirtualBox engineer
ORACLE Deutschland B.V. & Co. KG | Werkstr. 24 | D-71384 Weinstadt

ORACLE Deutschland B.V. & Co. KG
Hauptverwaltung: Riesstraße 25, D-80992 München
Registergericht: Amtsgericht München, HRA 95603

Komplementärin: ORACLE Deutschland Verwaltung B.V.
Hertogswetering 163/167, 3543 AS Utrecht, Niederlande Handelsregister
der Handelskammer Midden-Nederland, Nr. 30143697
Geschäftsführer: Alexander van der Ven, Jan Schultheiss, Val Maher



More information about the openconnect-devel mailing list