Network Manager, OpenConnect, and vpnc-scripts

[cornfeedhobo]

Hello, I need some help debugging.

Overall goal:  I'm on ubuntu 20.04 and trying to get NetworkManager-
openconnect to work the same as when I invoke openconnect manually.

What works:  If I run openconnect with `sudo` then it all works as expected, 
meaning vpnc-script is executed and the returned routes are added to the 
system properly.

What does not work:  If I use network manager to start openconnect, only the 
default route is set and it appears that the helper binary is not invoking 
vpnc-scripts at all.

Current thinking:  Assuming I can get the helper script to invoke vpnc-script 
like it's supposed to (!!), the vpnc-script still does not have the necessary 
permissions to modify the system routing and requires privilege escalation 
that can't be done from a subprocess that is run as the nm-openconnect user. 
However, since NetworkManager is successfully setting the default route, I 
assume there is a NetworkManager API to add routes and that isn't being 
utilized.

Could someone help me debug this?

I'm also on OFTC IRC if someone wants to reach out for rapid iteration.