OpenSSL Permission issues since F36 / Gnome 42
I have no idea what happened from F35 to F36, but Gnome and VPN is not completely useless / unusable . OpenConnect stopped working and same for OpenVPN...
the whole NM VPN applets seem to be broken...
I guess here the issue is with some persmissions but I am part of the openvpn group of course.
here also
Aug 09 09:57:26 a10sbraun.local.com NetworkManager[1590]: <info> [1660031846.1011] vpn[0x5593f3fae460,52987779-32b7-4ee0-a817-8ea1c40a2964,"Home"]: starting openvpn
Aug 09 09:57:26 a10sbraun.local.com NetworkManager[1590]: <info> [1660031846.1018] audit: op="connection-activate" uuid="52987779-32b7-4ee0-a817-8ea1c40a2964" name="Home" pid=14569 uid=1000 result="success"
Aug 09 09:57:26 a10sbraun.local.com nm-openvpn[15245]: --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC'>
Aug 09 09:57:26 a10sbraun.local.com nm-openvpn[15245]: OpenVPN 2.5.7 x86_64-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 31 2022
Aug 09 09:57:26 a10sbraun.local.com nm-openvpn[15245]: library versions: OpenSSL 3.0.5 5 Jul 2022, LZO 2.10
Aug 09 09:57:26 a10sbraun.local.com nm-openvpn[15245]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Aug 09 09:57:26 a10sbraun.local.com nm-openvpn[15245]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Aug 09 09:57:26 a10sbraun.local.com audit[15245]: AVC avc: denied { open } for pid=15245 comm="openvpn" path="/home/sbraun/Downloads/ca.crt" dev="nvme1n1p3" ino=2057916 scontext=system_u:system_r:openvpn_t:s0 tcontext=unconfined_u:object_r:user>
Aug 09 09:57:26 a10sbraun.local.com nm-openvpn[15245]: OpenSSL: error:8000000D:system library::Permission denied
Aug 09 09:57:26 a10sbraun.local.com nm-openvpn[15245]: OpenSSL: error:10080002:BIO routines::system lib
Aug 09 09:57:26 a10sbraun.local.com nm-openvpn[15245]: Cannot load CA certificate file /home/sbraun/Downloads/ca.crt (no entries were read)
Aug 09 09:57:26 a10sbraun.local.com nm-openvpn[15245]: Exiting due to fatal error
Aug 09 09:57:26 a10sbraun.local.com NetworkManager[1590]: <warn> [1660031846.3549] vpn[0x5593f3fae460,52987779-32b7-4ee0-a817-8ea1c40a2964,"Home"]: dbus: failure: connect-failed (1)
Aug 09 09:57:26 a10sbraun.local.com NetworkManager[1590]: <warn> [1660031846.3551] vpn[0x5593f3fae460,52987779-32b7-4ee0-a817-8ea1c40a2964,"Home"]: dbus: failure: connect-failed (1)