Error in the pull function/Linux 4.15
Michael Thayer
michael.thayer at oracle.com
Fri Mar 16 06:20:20 PDT 2018
Hello,
This is shadowing Ubuntu launchpad bug 1754601[1]. When I boot my
64-bit Ubuntu 18.04 system with the default 4.15 kernel, openconnect
connections to our company VPN quickly fail with the following in the
output:
SSL read error: Error in the pull function.; reconnecting.
SSL negotiation with <server>
SSL connection failure: The operation timed out
sleep 10s, remaining timeout 300s
SSL negotiation with <server>
SSL connection failure: The operation timed out
sleep 20s, remaining timeout 290
...
I have seen the connection recover once that I can remember after this
failure. I can still connect when I boot into the 4.13 kernel from
Ubuntu 17.10. The Cisco VPN client was also unable to connect under the
4.15 kernel, but I have not/never tried it with 4.13.
[1] https://bugs.launchpad.net/ubuntu/+source/openconnect/+bug/1754601
I have GNUTLS_DEBUG_LEVEL=99 logs for both successful (4.13) and
unsuccessful (4.15) connections. What can/should I censor from the logs
before providing them? URLs and IPs I assume; there do not seem to be
any "webvpn" lines in either file, nor user name or password. Is there
anything else I can do to debug this, or is it obvious to someone? I
also tried a rebuild with "--without-gnutls --with-openssl=yes" which
did not seem to get be anywhere either.
Many thanks.
Regards
Michael
--
Michael Thayer | VirtualBox engineer
ORACLE Deutschland B.V. & Co. KG | Werkstr. 24 | D-71384 Weinstadt
ORACLE Deutschland B.V. & Co. KG
Hauptverwaltung: Riesstraße 25, D-80992 München
Registergericht: Amtsgericht München, HRA 95603
Komplementärin: ORACLE Deutschland Verwaltung B.V.
Hertogswetering 163/167, 3543 AS Utrecht, Niederlande Handelsregister
der Handelskammer Midden-Nederland, Nr. 30143697
Geschäftsführer: Alexander van der Ven, Jan Schultheiss, Val Maher
More information about the openconnect-devel
mailing list