Page MenuHomeVyOS Platform

SSTP doesn't work after rewriting to PKI
Closed, ResolvedPublicBUG

Description

Generate PKI ca and cert and use it for sstp

To reproduce:

set vpn sstp authentication local-users username foo password 'bar'
set vpn sstp authentication mode 'local'
set vpn sstp client-ipv6-pool prefix 2001:db8::/48
set vpn sstp gateway-address '192.168.122.14'
set vpn sstp ssl ca-certificate ca
set vpn sstp ssl certificate cert

Commit:

[email protected]# commit
[ vpn sstp ]
VyOS had an issue completing a command.

Report time:      2021-10-22 18:44:50
Image version:    VyOS 1.4-rolling-202110180513
Release train:    sagitta

Built by:         [email protected]
Built on:         Mon 18 Oct 2021 05:13 UTC
Build UUID:       3d685787-8b27-4d77-81e4-78a0350d0c05
Build commit ID:  35ca06d25b8b76

Architecture:     x86_64
Boot via:         installed image
System type:      KVM guest

Hardware vendor:  QEMU
Hardware model:   Standard PC (Q35 + ICH9, 2009)
Hardware S/N:     
Hardware UUID:    33b46f5d-be75-40e3-a07f-f5582af9d6a1

Traceback (most recent call last):
  File "/usr/libexec/vyos/conf_mode/vpn_sstp.py", line 148, in <module>
    generate(c)
  File "/usr/libexec/vyos/conf_mode/vpn_sstp.py", line 108, in generate
    with open(cert_file_path, 'w') as f:
FileNotFoundError: [Errno 2] No such file or directory: '/run/accel-pppd/sstp-cert.pem'

Details

Difficulty level
Unknown (require assessment)
Version
VyOS 1.4-rolling-202110180513
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)
Issue type
Bug (incorrect behavior)