search

Aoshee / ics-openvpn

Automatically exported from code.google.com/p/ics-openvpn
0 stars 0 forks source link

Cannot create tun interface #126

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
What steps will reproduce the problem?
1.Connect to vpn server

What mobile phone are you using?

Sony Ericsson Xperia Neo V

Which Android Version and stock ROM or aftermarket like cyanogenmod?

Custom ROM Based on .587 Ice Cream Sandwich

Please provide any additional information below.

Here is my log. It cannot load the tap interface (it's already installed). And 
I cannot check the option load run module but my phone is rooted...

Thanks for your help!

Modell MT11i (unknown) SEMC, Android API 15
Generiere OpenVPN Konfiguration…
started Socket Thread
Netzwerkstatus: CONNECTED  to WIFI 
P:Initializing Google Breakpad!
P:Current Parameter Settings:
P:  config = '/data/data/de.blinkt.openvpn/cache/android.conf'
P:  mode = 0
P:  show_ciphers = DISABLED
P:  show_digests = DISABLED
P:  show_engines = DISABLED
P:  genkey = DISABLED
P:  key_pass_file = '[UNDEF]'
P:  show_tls_ciphers = DISABLED
P:  connect_retry_max = 5
P:Connection profiles [default]:
P:  proto = udp
P:  local = '[UNDEF]'
P:  local_port = '1194'
P:  remote = '[UNDEF]'
P:  remote_port = '1194'
P:  remote_float = DISABLED
P:  bind_defined = DISABLED
P:  bind_local = DISABLED
P:  connect_retry_seconds = 5
P:  connect_timeout = 10
P:  socks_proxy_server = '[UNDEF]'
P:  socks_proxy_port = '[UNDEF]'
P:  socks_proxy_retry = DISABLED
P:  tun_mtu = 1500
P:  tun_mtu_defined = DISABLED
P:  link_mtu = 1500
P:  link_mtu_defined = DISABLED
P:  tun_mtu_extra = 0
P:  tun_mtu_extra_defined = DISABLED
P:  mtu_discover_type = -1
P:  fragment = 0
P:  mssfix = 1450
P:  explicit_exit_notification = 0
P:Connection profiles [0]:
P:  proto = udp
P:  local = '[UNDEF]'
P:  local_port = '[UNDEF]'
P:  remote = '93.114.45.248'
P:  remote_port = '443'
P:  remote_float = DISABLED
P:  bind_defined = DISABLED
P:  bind_local = DISABLED
P:  connect_retry_seconds = 5
P:  connect_timeout = 10
P:  socks_proxy_server = '[UNDEF]'
P:  socks_proxy_port = '[UNDEF]'
P:  socks_proxy_retry = DISABLED
P:  tun_mtu = 1500
P:  tun_mtu_defined = ENABLED
P:  link_mtu = 1500
P:  link_mtu_defined = DISABLED
P:  tun_mtu_extra = 0
P:  tun_mtu_extra_defined = DISABLED
P:  mtu_discover_type = -1
P:  fragment = 0
P:  mssfix = 1450
P:  explicit_exit_notification = 0
P:Connection profiles END
P:  remote_random = DISABLED
P:  ipchange = '[UNDEF]'
P:  dev = 'tun'
P:  dev_type = '[UNDEF]'
P:  dev_node = '[UNDEF]'
P:  lladdr = '[UNDEF]'
P:  topology = 1
P:  tun_ipv6 = DISABLED
P:  ifconfig_local = '[UNDEF]'
P:  ifconfig_remote_netmask = '[UNDEF]'
P:  ifconfig_noexec = DISABLED
P:  ifconfig_nowarn = DISABLED
P:  ifconfig_ipv6_local = '[UNDEF]'
P:  ifconfig_ipv6_netbits = 0
P:  ifconfig_ipv6_remote = '[UNDEF]'
P:  shaper = 0
P:  mtu_test = 0
P:  mlock = DISABLED
P:  keepalive_ping = 0
P:  keepalive_timeout = 0
P:  inactivity_timeout = 0
P:  ping_send_timeout = 0
P:  ping_rec_timeout = 0
P:  ping_rec_timeout_action = 0
P:  ping_timer_remote = DISABLED
P:  remap_sigusr1 = 0
P:  persist_tun = ENABLED
P:  persist_local_ip = DISABLED
P:  persist_remote_ip = ENABLED
P:  persist_key = DISABLED
P:  resolve_retry_seconds = 60
P:  username = '[UNDEF]'
P:  groupname = '[UNDEF]'
P:  chroot_dir = '[UNDEF]'
P:  cd_dir = '[UNDEF]'
P:  writepid = '[UNDEF]'
P:  up_script = '[UNDEF]'
P:  down_script = '[UNDEF]'
P:  down_pre = DISABLED
P:  up_restart = DISABLED
P:  up_delay = DISABLED
P:  daemon = DISABLED
P:  inetd = 0
P:  log = DISABLED
P:  suppress_timestamps = ENABLED
P:  nice = 0
P:  verbosity = 5
P:  mute = 0
P:  gremlin = 0
P:  status_file = '[UNDEF]'
P:  status_file_version = 1
P:  status_file_update_freq = 60
P:  occ = ENABLED
P:  rcvbuf = 65536
P:  sndbuf = 65536
P:  sockflags = 0
P:  fast_io = DISABLED
P:  lzo = 7
P:  route_script = '[UNDEF]'
P:  route_default_gateway = '[UNDEF]'
P:  route_default_metric = 0
P:  route_noexec = DISABLED
P:  route_delay = 0
P:  route_delay_window = 30
P:  route_delay_defined = DISABLED
P:  route_nopull = DISABLED
P:  route_gateway_via_dhcp = DISABLED
P:  max_routes = 100
P:  allow_pull_fqdn = DISABLED
P:  management_addr = '/data/data/de.blinkt.openvpn/cache/mgmtsocket'
P:  management_port = 'unix'
P:  management_user_pass = '[UNDEF]'
P:  management_log_history_cache = 250
P:  management_echo_buffer_size = 100
P:  management_write_peer_info_file = '[UNDEF]'
P:  management_client_user = '[UNDEF]'
P:  management_client_group = '[UNDEF]'
P:  management_flags = 4390
P:  shared_secret_file = '[UNDEF]'
P:  key_direction = 2
P:  ciphername_defined = ENABLED
P:  ciphername = 'AES-256-CBC'
P:  authname_defined = ENABLED
P:  authname = 'SHA1'
P:  prng_hash = 'SHA1'
P:  prng_nonce_secret_len = 16
P:  keysize = 0
P:  engine = DISABLED
P:  replay = ENABLED
P:  mute_replay_warnings = DISABLED
P:  replay_window = 64
P:  replay_time = 15
P:  packet_id_file = '[UNDEF]'
P:  use_iv = ENABLED
P:  test_crypto = DISABLED
P:  tls_server = DISABLED
P:  tls_client = ENABLED
P:  key_method = 2
P:  ca_file = '/mnt/sdcard/ro3.ovpn.to/ca.crt'
P:  ca_path = '[UNDEF]'
P:  dh_file = '[UNDEF]'
P:  cert_file = '/mnt/sdcard/ro3.ovpn.to/client18911.crt'
P:  priv_key_file = '/mnt/sdcard/ro3.ovpn.to/client18911.key'
P:  pkcs12_file = '[UNDEF]'
P:  cipher_list = '[UNDEF]'
P:  tls_verify = '[UNDEF]'
P:  tls_export_cert = '[UNDEF]'
P:  tls_remote = '[UNDEF]'
P:  crl_file = '[UNDEF]'
P:  ns_cert_type = 1
P:  remote_cert_ku[i] = 160
P:  remote_cert_ku[i] = 136
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_ku[i] = 0
P:  remote_cert_eku = 'TLS Web Server Authentication'
P:  ssl_flags = 0
P:  tls_timeout = 2
P:  renegotiate_bytes = 0
P:  renegotiate_packets = 0
P:  renegotiate_seconds = 3600
P:  handshake_window = 60
P:  transition_window = 3600
P:  single_session = DISABLED
P:  push_peer_info = DISABLED
P:  tls_exit = DISABLED
P:  tls_auth_file = '/mnt/sdcard/ro3.ovpn.to/static.key'
P:  client = ENABLED
P:  pull = ENABLED
P:  auth_user_pass_file = '[UNDEF]'
P:OpenVPN 2.3_rc1+dspatch3 android-14-armeabi-v7a [SSL (OpenSSL)] [LZO] [EPOLL] 
[MH] [IPv6] built on Dec 25 2012
P:MANAGEMENT: Connected to management server at 
/data/data/de.blinkt.openvpn/cache/mgmtsocket
P:MANAGEMENT: CMD 'hold release'
P:MANAGEMENT: CMD 'bytecount 2'
P:MANAGEMENT: CMD 'state on'
P:MANAGEMENT: CMD 'proxy NONE'
P:WARNING: file '/mnt/sdcard/ro3.ovpn.to/client18911.key' is group or others 
accessible
P:WARNING: file '/mnt/sdcard/ro3.ovpn.to/static.key' is group or others 
accessible
P:Control Channel Authentication: using '/mnt/sdcard/ro3.ovpn.to/static.key' as 
a OpenVPN static key file
P:Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' 
for HMAC authentication
P:Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' 
for HMAC authentication
P:LZO compression initialized
P:Control Channel MTU parms [ L:1558 D:166 EF:66 EB:0 ET:0 EL:0 ]
P:Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:135 ET:0 EL:0 AF:3/1 ]
P:Local Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto 
UDPv4,comp-lzo,keydir 1,cipher AES-256-CBC,auth SHA1,keysize 
256,tls-auth,key-method 2,tls-client'
P:Expected Remote Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 
1500,proto UDPv4,comp-lzo,keydir 0,cipher AES-256-CBC,auth SHA1,keysize 
256,tls-auth,key-method 2,tls-server'
P:Local Options hash (VER=V4): '9e7066d2'
P:Expected Remote Options hash (VER=V4): '162b04de'
P:Socket Buffers: R=[112640->131072] S=[112640->131072]
P:Protecting socket fd 4
P:MANAGEMENT: CMD 'needok 'PROTECTFD' ok'
P:UDP link local: (not bound)
P:UDP link remote: [AF_INET]93.114.45.248:443
P:MANAGEMENT: >STATE:1356884743,WAIT,,,
P:WRMANAGEMENT: >STATE:1356884743,AUTH,,,
P:TLS: Initial packet from [AF_INET]93.114.45.248:443, sid=81350785 15a2d978
P:WWWRRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRVERIF
Y OK: depth=1, C=A0, ST=Earth, L=AnonymousEverywhere, O=oVPN.to, CN=oVPN.to CA, 
emailAddress=support@ovpn.to
P:VERIFY OK: nsCertType=SERVER
P:Validating certificate key usage
P:++ Certificate has key usage  00a0, expects 00a0
P:VERIFY KU OK
P:Validating certificate extended key usage
P:++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web 
Server Authentication
P:VERIFY EKU OK
P:VERIFY OK: depth=0, C=A0, ST=Earth, L=AnonymousEverywhere, O=oVPN.to, 
CN=ro3.ovpn.to, emailAddress=support@ovpn.to
P:WRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWWWWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRW
RWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRRRRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWR
WRWRWRWWWWRRRRWRWRData Channel Encrypt: Cipher 'AES-256-CBC' initialized with 
256 bit key
P:Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC 
authentication
P:Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
P:Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC 
authentication
P:WControl Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 4096 bit RSA
P:[ro3.ovpn.to] Peer Connection Initiated with [AF_INET]93.114.45.248:443
P:MANAGEMENT: >STATE:1356884749,GET_CONFIG,,,
P:SENT CONTROL [ro3.ovpn.to]: 'PUSH_REQUEST' (status=1)
P:WRRWRWRPUSH: Received control message: 'PUSH_REPLY,route-gateway 
172.16.32.1,redirect-gateway def1,ip-win32 dynamic,dhcp-option DNS 
172.16.32.1,ping 10,ping-restart 60,ifconfig 172.16.47.187 255.255.240.0'
P:Options error: Unrecognized option or missing parameter(s) in 
[PUSH-OPTIONS]:3: ip-win32 (2.3_beta1)
P:OPTIONS IMPORT: timers and/or timeouts modified
P:OPTIONS IMPORT: --ifconfig/up options modified
P:OPTIONS IMPORT: route options modified
P:OPTIONS IMPORT: route-related options modified
P:OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
P:WARNING: Since you are using --dev tun with a point-to-point topology, the 
second argument to --ifconfig must be an IP address.  You are using something 
(255.255.240.0) that looks more like a netmask. (silence this warning with 
--ifconfig-nowarn)
P:ROUTE_GATEWAY 192.168.0.1/255.255.255.0 IFACE=wlan0 HWADDR=84:00:d2:cb:fc:e9
P:do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
P:MANAGEMENT: >STATE:1356884750,ASSIGN_IP,,172.16.47.187,
P:MANAGEMENT: CMD 'needok 'IFCONFIG' ok'
P:MANAGEMENT: CMD 'needok 'ROUTE' ok'
P:MANAGEMENT: CMD 'needok 'ROUTE' ok'
P:MANAGEMENT: CMD 'needok 'ROUTE' ok'
P:MANAGEMENT: CMD 'needok 'DNSSERVER' ok'
Das Öffnen des tun Interfaces ist katastrophal gescheitert
Fehler: Cannot create interface
Auf manchen ROM Version sind eventuell die Zugriffsrechte von /dev/tun falsch 
oder das tun Kernel Modul fehlt. Für Cyanogenmod 9 ROMs mit root gibt einen 
provisorischen Fix in den generellen Einstellungen.
P:MANAGEMENT: CMD 'needok 'OPENTUN' cancel'
P:MANAGEMENT: Client disconnected
P:ERROR: Cannot open TUN
P:Exiting due to fatal error
Process exited with exit value 1
MGMT:Got unrecognized command>FATAL:ERROR: Cannot open TUN

Original issue reported on code.google.com by ddachil...@googlemail.com on 30 Dec 2012 at 4:45

GoogleCodeExporter commented 9 years ago 
Yes. In some earlier Sony Xperia ROM version the VPNService was/is broken. Try 
to see if there is an upate for your phone otherwise you are out of luck. You 
can try the CM9 fix option but no idea. I don't have acess to a Xperia Device 
which is broken.

Original comment by arne@rfc2549.org on 30 Dec 2012 at 6:55