Network Manager, OpenConnect, and vpnc-scripts
cornfeedhobo
cornfeedhobo at fuzzlabs.org
Sun Aug 29 09:27:11 PDT 2021
Hello, I need some help debugging.
Overall goal: I'm on ubuntu 20.04 and trying to get NetworkManager-
openconnect to work the same as when I invoke openconnect manually.
What works: If I run openconnect with `sudo` then it all works as expected,
meaning vpnc-script is executed and the returned routes are added to the
system properly.
What does not work: If I use network manager to start openconnect, only the
default route is set and it appears that the helper binary is not invoking
vpnc-scripts at all.
Current thinking: Assuming I can get the helper script to invoke vpnc-script
like it's supposed to (!!), the vpnc-script still does not have the necessary
permissions to modify the system routing and requires privilege escalation
that can't be done from a subprocess that is run as the nm-openconnect user.
However, since NetworkManager is successfully setting the default route, I
assume there is a NetworkManager API to add routes and that isn't being
utilized.
Could someone help me debug this?
I'm also on OFTC IRC if someone wants to reach out for rapid iteration.
More information about the openconnect-devel
mailing list