search

taikoo / tunnelblick

Automatically exported from code.google.com/p/tunnelblick
0 stars 0 forks source link

Will not connect - continues to go between "Making TCP connection" and "Authorizing" #259

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
NOTE: We suggest that you post on the Tunnelblick Discussion Group before
submitting an "Issue". (http://groups.google.com/group/tunnelblick-discuss)

What steps will reproduce the problem?
Whenever I click "connect" to connect to my server it bounces between TCP 
connection and authorizting. 

What is the expected output?
I'd expect it to connect.

What do you see instead?
See above.

What version of Tunnelblick are you using? 3.3 beta 21a (build 3114.1) On what 
version of OS X? OS X Yosemite 10.10.1

Please provide any additional information below. Please include your
configuration file and the contents of the OpenVPN Log window (including
the first few lines with version information), but remember to remove any
sensitive information such as IP addresses.

2015-03-17 08:48:55 OpenVPN 2.3-alpha1 i386-apple-darwin10.8.0 [SSL (OpenSSL)] 
[LZO2] [eurephia] [MH] [PF_INET6] [IPv6 payload 20110522-1 (2.2.0)] built on 
Sep 12 2012
2015-03-17 08:48:55 WARNING: No server certificate verification method has been 
enabled.  See http://openvpn.net/howto.html#mitm for more info.
2015-03-17 08:48:55 NOTE: the current --script-security setting may allow this 
configuration to call user-defined scripts
2015-03-17 08:48:55 *Tunnelblick: openvpnstart starting OpenVPN:
                    *                    /Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.3-alpha1/openvpn --cd /Users/karay/Library/Application Support/Tunnelblick/Configurations --daemon -- --config /Users/karay/Library/Application Support/Tunnelblick/Configurations/walthers-karab.ovpn --log /Library/Application Support/Tunnelblick/Logs/-SUsers-Skaray-SLibrary-SApplication Support-STunnelblick-SConfigurations-Swalthers--karab.ovpn.5_0_0_0_49.1338.openvpn.log --management-query-passwords --management-hold --script-security 2 --up /Applications/Tunnelblick.app/Contents/Resources/client.1.up.tunnelblick.sh -m -w -d -atADGNWradsgnw --down /Applications/Tunnelblick.app/Contents/Resources/client.1.down.tunnelblick.sh -m -w -d -atADGNWradsgnw --up-restart
2015-03-17 08:48:55 *Tunnelblick: Established communication with OpenVPN
2015-03-17 08:48:55 WARNING: file 'karab.key' is group or others accessible
2015-03-17 08:48:55 WARNING: file 'ta.key' is group or others accessible
2015-03-17 08:48:55 Control Channel Authentication: using 'ta.key' as a OpenVPN 
static key file
2015-03-17 08:48:55 Outgoing Control Channel Authentication: Using 160 bit 
message hash 'SHA1' for HMAC authentication
2015-03-17 08:48:55 Incoming Control Channel Authentication: Using 160 bit 
message hash 'SHA1' for HMAC authentication
2015-03-17 08:48:55 Attempting to establish TCP connection with 
[AF_INET]66.195.130.118:1194 [nonblock]
2015-03-17 08:48:56 TCP connection established with [AF_INET]66.195.130.118:1194
2015-03-17 08:48:56 TCPv4_CLIENT link local: [undef]
2015-03-17 08:48:56 TCPv4_CLIENT link remote: [AF_INET]66.195.130.118:1194
2015-03-17 08:48:57 VERIFY ERROR: depth=1, error=certificate has expired: C=US, 
ST=Wisconsin, L=Milwaukee, O=Wm. K. Walthers, Inc., CN=Walthers-CA, 
emailAddress=webmaster@walthers.com
2015-03-17 08:48:57 TLS_ERROR: BIO read tls_read_plaintext error: 
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify 
failed
2015-03-17 08:48:57 TLS Error: TLS object -> incoming plaintext read error
2015-03-17 08:48:57 TLS Error: TLS handshake failed
2015-03-17 08:48:57 Fatal TLS error (check_tls_errors_co), restarting
2015-03-17 08:48:57 SIGUSR1[soft,tls-error] received, process restarting
2015-03-17 08:48:57 WARNING: No server certificate verification method has been 
enabled.  See http://openvpn.net/howto.html#mitm for more info.
2015-03-17 08:48:57 NOTE: the current --script-security setting may allow this 
configuration to call user-defined scripts
2015-03-17 08:48:57 Attempting to establish TCP connection with 
[AF_INET][nonblock]
2015-03-17 08:48:58 TCP connection established with [AF_INET]
2015-03-17 08:48:58 TCPv4_CLIENT link local: [undef]
2015-03-17 08:48:58 TCPv4_CLIENT link remote: [AF_INET]
2015-03-17 08:48:58 VERIFY ERROR: depth=1, error=certificate has expired: C=US, 
ST=Wisconsin, L=Milwaukee, O=Wm. K. Walthers, Inc., CN=Walthers-CA, 
emailAddress=webmaster@walthers.com
2015-03-17 08:48:58 TLS_ERROR: BIO read tls_read_plaintext error: 
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify 
failed
2015-03-17 08:48:58 TLS Error: TLS object -> incoming plaintext read error
2015-03-17 08:48:58 TLS Error: TLS handshake failed
2015-03-17 08:48:58 Fatal TLS error (check_tls_errors_co), restarting
2015-03-17 08:48:58 SIGUSR1[soft,tls-error] received, process restarting
2015-03-17 08:48:58 WARNING: No server certificate verification method has been 
enabled.  See http://openvpn.net/howto.html#mitm for more info.
2015-03-17 08:48:58 NOTE: the current --script-security setting may allow this 
configuration to call user-defined scripts
2015-03-17 08:48:58 Attempting to establish TCP connection with 
[AF_INET][nonblock]
2015-03-17 08:48:59 TCP connection established with [AF_INET]
2015-03-17 08:48:59 TCPv4_CLIENT link local: [undef]
2015-03-17 08:48:59 TCPv4_CLIENT link remote: [AF_INET]
2015-03-17 08:49:00 VERIFY ERROR: depth=1, error=certificate has expired: C=US, 
ST=Wisconsin, L=Milwaukee, O=Wm. K. Walthers, Inc., CN=Walthers-CA, 
emailAddress=webmaster@walthers.com
2015-03-17 08:49:00 TLS_ERROR: BIO read tls_read_plaintext error: 
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify 
failed
2015-03-17 08:49:00 TLS Error: TLS object -> incoming plaintext read error
2015-03-17 08:49:00 TLS Error: TLS handshake failed
2015-03-17 08:49:00 Fatal TLS error (check_tls_errors_co), restarting
2015-03-17 08:49:00 SIGUSR1[soft,tls-error] received, process restarting
2015-03-17 08:49:00 WARNING: No server certificate verification method has been 
enabled.  See http://openvpn.net/howto.html#mitm for more info.
2015-03-17 08:49:00 NOTE: the current --script-security setting may allow this 
configuration to call user-defined scripts
2015-03-17 08:49:00 Attempting to establish TCP connection with 
[AF_INET][nonblock]
2015-03-17 08:49:01 TCP connection established with [AF_INET]
2015-03-17 08:49:01 TCPv4_CLIENT link local: [undef]
2015-03-17 08:49:01 TCPv4_CLIENT link remote: [AF_INET]
2015-03-17 08:49:01 VERIFY ERROR: depth=1, error=certificate has expired: C=US, 
ST=Wisconsin, L=Milwaukee, O=Wm. K. Walthers, Inc., CN=Walthers-CA, 
emailAddress=webmaster@walthers.com
2015-03-17 08:49:01 TLS_ERROR: BIO read tls_read_plaintext error: 
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify 
failed
2015-03-17 08:49:01 TLS Error: TLS object -> incoming plaintext read error
2015-03-17 08:49:01 TLS Error: TLS handshake failed
2015-03-17 08:49:01 Fatal TLS error (check_tls_errors_co), restarting
2015-03-17 08:49:01 SIGUSR1[soft,tls-error] received, process restarting
2015-03-17 08:49:01 WARNING: No server certificate verification method has been 
enabled.  See http://openvpn.net/howto.html#mitm for more info.
2015-03-17 08:49:01 NOTE: the current --script-security setting may allow this 
configuration to call user-defined scripts
2015-03-17 08:49:01 Attempting to establish TCP connection with 
[AF_INET][nonblock]
2015-03-17 08:49:02 TCP connection established with [AF_INET]
2015-03-17 08:49:02 TCPv4_CLIENT link local: [undef]
2015-03-17 08:49:02 TCPv4_CLIENT link remote: [AF_INET]66.195.130.118:1194
2015-03-17 08:49:03 VERIFY ERROR: depth=1, error=certificate has expired: C=US, 
ST=Wisconsin, L=Milwaukee, O=Wm. K. Walthers, Inc., CN=Walthers-CA, 
emailAddress=webmaster@walthers.com
2015-03-17 08:49:03 TLS_ERROR: BIO read tls_read_plaintext error: 
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify 
failed
2015-03-17 08:49:03 TLS Error: TLS object -> incoming plaintext read error
2015-03-17 08:49:03 TLS Error: TLS handshake failed
2015-03-17 08:49:03 Fatal TLS error (check_tls_errors_co), restarting
2015-03-17 08:49:03 SIGUSR1[soft,tls-error] received, process restarting
2015-03-17 08:49:03 WARNING: No server certificate verification method has been 
enabled.  See http://openvpn.net/howto.html#mitm for more info.
2015-03-17 08:49:03 NOTE: the current --script-security setting may allow this 
configuration to call user-defined scripts
2015-03-17 08:49:03 Attempting to establish TCP connection with 
[AF_INET]66.195.130.118:1194 [nonblock]
2015-03-17 08:49:04 TCP connection established with [AF_INET]66.195.130.118:1194
2015-03-17 08:49:04 TCPv4_CLIENT link local: [undef]
2015-03-17 08:49:04 TCPv4_CLIENT link remote: [AF_INET]66.195.130.118:1194
2015-03-17 08:49:05 VERIFY ERROR: depth=1, error=certificate has expired: C=US, 
ST=Wisconsin, L=Milwaukee, O=Wm. K. Walthers, Inc., CN=Walthers-CA, 
emailAddress=webmaster@walthers.com
2015-03-17 08:49:05 TLS_ERROR: BIO read tls_read_plaintext error: 
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify 
failed
2015-03-17 08:49:05 TLS Error: TLS object -> incoming plaintext read error
2015-03-17 08:49:05 TLS Error: TLS handshake failed
2015-03-17 08:49:05 Fatal TLS error (check_tls_errors_co), restarting
2015-03-17 08:49:05 SIGUSR1[soft,tls-error] received, process restarting
2015-03-17 08:49:05 WARNING: No server certificate verification method has been 
enabled.  See http://openvpn.net/howto.html#mitm for more info.
2015-03-17 08:49:05 NOTE: the current --script-security setting may allow this 
configuration to call user-defined scripts
2015-03-17 08:49:05 Attempting to establish TCP connection with [AF_INET]
2015-03-17 08:49:06 TCP connection established with [AF_INET]
2015-03-17 08:49:06 TCPv4_CLIENT link local: [undef]
2015-03-17 08:49:06 TCPv4_CLIENT link remote: [AF_INET]
2015-03-17 08:49:06 VERIFY ERROR: depth=1, error=certificate has expired: C=US, 
ST=Wisconsin, L=Milwaukee, O=Wm. K. Walthers, Inc., CN=Walthers-CA, 
emailAddress=webmaster@walthers.com
2015-03-17 08:49:06 TLS_ERROR: BIO read tls_read_plaintext error: 
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify 
failed
2015-03-17 08:49:06 TLS Error: TLS object -> incoming plaintext read error
2015-03-17 08:49:06 TLS Error: TLS handshake failed
2015-03-17 08:49:06 Fatal TLS error (check_tls_errors_co), restarting
2015-03-17 08:49:06 SIGUSR1[soft,tls-error] received, process restarting
2015-03-17 08:49:06 WARNING: No server certificate verification method has been 
enabled.  See http://openvpn.net/howto.html#mitm for more info.
2015-03-17 08:49:06 NOTE: the current --script-security setting may allow this 
configuration to call user-defined scripts
2015-03-17 08:49:06 Attempting to establish TCP connection with 
[AF_INET]66.195.130.118:1194 [nonblock]
2015-03-17 08:49:07 TCP connection established with [AF_INET]66.195.130.118:1194
2015-03-17 08:49:07 TCPv4_CLIENT link local: [undef]
2015-03-17 08:49:07 TCPv4_CLIENT link remote: [AF_INET]
2015-03-17 08:49:08 VERIFY ERROR: depth=1, error=certificate has expired: C=US, 
ST=Wisconsin, L=Milwaukee, O=Wm. K. Walthers, Inc., CN=Walthers-CA, 
emailAddress=webmaster@walthers.com
2015-03-17 08:49:08 TLS_ERROR: BIO read tls_read_plaintext error: 
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify 
failed
2015-03-17 08:49:08 TLS Error: TLS object -> incoming plaintext read error
2015-03-17 08:49:08 TLS Error: TLS handshake failed
2015-03-17 08:49:08 Fatal TLS error (check_tls_errors_co), restarting
2015-03-17 08:49:08 SIGUSR1[soft,tls-error] received, process restarting
2015-03-17 08:49:08 WARNING: No server certificate verification method has been 
enabled.  See http://openvpn.net/howto.html#mitm for more info.
2015-03-17 08:49:08 NOTE: the current --script-security setting may allow this 
configuration to call user-defined scripts
2015-03-17 08:49:08 Attempting to establish TCP connection with 
[AF_INET]66.195.130.118:1194 [nonblock]
2015-03-17 08:49:09 TCP connection established with [AF_INET]66.195.130.118:1194
2015-03-17 08:49:09 TCPv4_CLIENT link local: [undef]
2015-03-17 08:49:09 TCPv4_CLIENT link remote: [AF_INET]
2015-03-17 08:49:09 VERIFY ERROR: depth=1, error=certificate has expired: C=US, 
ST=Wisconsin, L=Milwaukee, O=Wm. K. Walthers, Inc., CN=Walthers-CA, 
emailAddress=webmaster@walthers.com
2015-03-17 08:49:09 TLS_ERROR: BIO read tls_read_plaintext error: 
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify 
failed

Original issue reported on code.google.com by karabens...@gmail.com on 17 Mar 2015 at 1:57

GoogleCodeExporter commented 9 years ago 
There is a problem with your certificate:

2015-03-17 08:49:01 TLS_ERROR: BIO read tls_read_plaintext error: 
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify 
failed

Original comment by jkbull...@gmail.com on 17 Mar 2015 at 2:30

GoogleCodeExporter commented 9 years ago 
Do you know why this would happen?  It was working fine all day.  I
automatically connect, never putting in a password.  Then all of a sudden
in the afternoon, it started doing this.

Thanks!
Kara

Original comment by karabens...@gmail.com on 17 Mar 2015 at 2:49