[Bug 275608] [NEW] nm-openvpn swaps ca and cert in openvpn commandline

Launchpad Bug Tracker 275608 at bugs.launchpad.net
Sun Sep 28 23:47:05 BST 2008

You have been subscribed to a public bug:

I use a VPN to the office using the "Passwords with Certificate (TLS)"
option in openvpn, I configured the following values:

CA: /etc/openvpn/ca.crt
Cert: /etc/openvpn/crispin-00.crt
Key: /etc/openvpn/crispin-00.key

This all used to work fine (in hardy), but in the latest version in
intrepid (0.7~~svn20080908t183521a-0ubuntu2) NM fails with:

Cannot load private key file /etc/openvpn/crispin-00.key:
error:0B080074:x509 certificate routines:X509_check_private_key:key
values mismatch

I did some digging, and found that the openvpn commandline is:

openvpn .... --ca /etc/openvpn/crispin-00.crt --cert /etc/openvpn/ca.crt
--key  /etc/openvpn/crispin-00.key ...

note that the CA on the commandline is NOT what I configured above.

If I swap the CA and cert over in the configuration then all works fine
- but I shouldn't need to do that, something is swapping over the CA and
Cert between the UI and the openvpn commandline.

** Affects: openvpn (Ubuntu)
     Importance: Undecided
         Status: New

nm-openvpn swaps ca and cert in openvpn commandline
You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openvpn in ubuntu.

More information about the Ubuntu-server-bugs mailing list