GNOME Bugzilla – Bug 777999
NetworkManager requires auth parameter to be set when tls-auth is used
Last modified: 2020-11-12 14:27:47 UTC
NetworkManager requires the "auth" parameter to be set when using the "tls-auth" parameter. When providing a tls-auth secret using the applet, but leaving the auth parameter blank, an error message is produced: ERROR: tls-auth enabled, but no valid --auth algorithm specified ('none') This probably made sense with older OpenVPN versions, but starting with OpenVPN 2.4 GCM ciphers can be used, which will not only encrypt, but also authenticate packages, making the auth parameter obsolote in cases it is used. I.e. it is perfectly fine to "tls-auth", but no "auth" in combination with an AES-XXX-GCM cipher. Therefore NetworkManager should not quit with an error message, but allow for such a configuration. It works perfectly with with OpenVPN itself, so NetworkManager should not try to be outsmart OpenVPN at this point, since it renders it useless.
bugzilla.gnome.org is being shut down in favor of a GitLab instance. We are closing all old bug reports and feature requests in GNOME Bugzilla which have not seen updates for a long time. If you still use NetworkManager and if you still see this bug / want this feature in a recent and supported version of NetworkManager, then please feel free to report it at https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/issues/ Thank you for creating this report and we are sorry it could not be implemented (workforce and time is unfortunately limited).