[Bug 1960268] Re: SSL handshake failed - VPN SSL broken in 22.04

suoko 1960268 at bugs.launchpad.net
Thu Apr 21 15:31:17 UTC 2022 

I find this solution:

0) sudo apt install python3-gi gir1.2-gtk-3.0 gir1.2-webkit2-4.0 && 
pip3 install https://github.com/dlenski/gp-saml-gui/archive/master.zip 

1) Create ~/ssl.conf

openssl_conf = openssl_init  
[openssl_init]  
ssl_conf = ssl_sect  
[ssl_sect]  
system_default = system_default_sect  
[system_default_sect]  
Options = UnsafeLegacyRenegotiation 

2) Create and run GlobalProtectPortal.sh

eval $(OPENSSL_CONF=~/ssl.conf gp-saml-gui --portal --clientos=Windows
YOUR_PORTAL_URL)

3) Search the results of above command for one gateway

4) Create and run /usr/local/bin/GlobalProtectGateway.sh

eval $(OPENSSL_CONF=~/ssl.conf gp-saml-gui --gateway --clientos=Windows
ONE_OF_THE_GATEWAYS_YOU_FOUND_ABOVE)

5) Search the results of above command for:

SAML response converted to OpenConnect command line invocation:

   echo SOME_COOKIE_TOKEN |  
       sudo openconnect --protocol=gp --user=YOUR_USERNAME --os=win --usergroup=gateway:prelogin-cookie --passwd-on-stdin ONE_OF_THE_GATEWAYS 


6) Run the above command line invocation

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1960268

Title:
  SSL handshake failed - VPN SSL broken in 22.04

Status in openssl package in Ubuntu:
  Incomplete

Bug description:
  I'm trying to connect with global protect VPN but fails at login with:

  SSL handshake failed
  Failed to load URL https://...
  QtNetwork Error 6

  Another VPN client does work but the rdp connection to a remote server fails with:
    
  transport_connect_tls:freerdp_set_last_error_ex ERRCONNECT_TLS_CONNECT_FAILED
  --- 
  ProblemType: Bug
  ApportVersion: 2.20.11-0ubuntu76
  Architecture: amd64
  CasperMD5CheckResult: unknown
  CurrentDesktop: KDE
  DistroRelease: Ubuntu 21.10
  InstallationDate: Installed on 2021-03-19 (325 days ago)
  InstallationMedia: Kubuntu 20.10 "Groovy Gorilla" - Release amd64 (20201022)
  Package: openssl 3.0.1-0ubuntu1
  PackageArchitecture: amd64
  ProcVersionSignature: Ubuntu 5.15.0-18.18-generic 5.15.12
  Tags:  wayland-session impish
  Uname: Linux 5.15.0-18-generic x86_64
  UpgradeStatus: Upgraded to impish on 2022-02-04 (3 days ago)
  UserGroups: adm cdrom dialout dip docker input lpadmin lxd plugdev sambashare sudo uinput
  _MarkForUpload: True
  --- 
  ProblemType: Bug
  ApportVersion: 2.20.11-0ubuntu76
  Architecture: amd64
  CasperMD5CheckResult: unknown
  CurrentDesktop: KDE
  DistroRelease: Ubuntu 22.04
  InstallationDate: Installed on 2021-03-19 (325 days ago)
  InstallationMedia: Kubuntu 20.10 "Groovy Gorilla" - Release amd64 (20201022)
  Package: openssl 3.0.1-0ubuntu1
  PackageArchitecture: amd64
  ProcVersionSignature: Ubuntu 5.15.0-18.18-generic 5.15.12
  Tags:  wayland-session jammy
  Uname: Linux 5.15.0-18-generic x86_64
  UpgradeStatus: Upgraded to jammy on 2022-02-04 (3 days ago)
  UserGroups: adm cdrom dialout dip docker input lpadmin lxd plugdev sambashare sudo uinput
  _MarkForUpload: True

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1960268/+subscriptions

More information about the foundations-bugs mailing list