AUR (en) - cyberghostvpn

Search Criteria

Enter search criteria

Search by

Keywords

Out of Date

Sort by

Sort order

Per page

Package Details: cyberghostvpn 1.4.1-10

Package Actions

Git Clone URL:	https://aur.archlinux.org/cyberghostvpn.git (read-only, click to copy)
Package Base:	cyberghostvpn
Description:	CyberGhost VPN
Upstream URL:	https://www.cyberghostvpn.com
Licenses:	custom:cyberghostvpn
Submitter:	safeith
Maintainer:	moormaster
Last Packager:	moormaster
Votes:	9
Popularity:	0.089627
First Submitted:	2021-02-18 20:46 (UTC)
Last Updated:	2024-03-29 22:19 (UTC)

Dependencies (8)

bash (bash-devel-static-git^AUR, bash-git^AUR, bash-devel-git^AUR, busybox-coreutils^AUR)
curl (curl-quiche-git^AUR, curl-http3-ngtcp2^AUR, curl-c-ares^AUR, curl-git^AUR)
openvpn (openvpn-git^AUR, openvpn-mbedtls^AUR)
resolvconf (systemd-resolvconf-git^AUR, systemd-resolvconf-fml^AUR, systemd-chromiumos-resolvconf^AUR, systemd-resolvconf-selinux^AUR, openresolv, systemd-resolvconf)
wireguard-tools
ca-certificates (ca-certificates-utils) (make)
openssl (openssl-git^AUR, openssl-static^AUR) (make)
zip (zip-natspec^AUR) (make)

Required by (0)

Sources (4)

Latest Comments

« First ‹ Previous 1 2 3 4 5 6 Next › Last »

Bussiii commented on 2023-04-09 17:55 (UTC)

Hash of the zip is still incorrect

==> Validating source files with sha256sums...
    cyberghostvpn-ubuntu-20.04-1.4.1.zip ... FAILED

moormaster commented on 2023-04-04 10:33 (UTC)

openvpn >=2.6 refuses to connect when used with start parameter --ncp-disable. According to the documentation

https://community.openvpn.net/openvpn/wiki/DeprecatedOptions#Option:--ncp-disableStatus:RemovedinOpenVPNv2.6

this parameter is not necessary anymore and can be ommitted. Until cyberghost updates its utility this package now contains an openvpn wrapper as workaround which remove the "--ncp-disable" start parameter before calling the real openvpn command.

This should enable the cyberghostvpn cli utility to work with the most recent openvpn package.

keibak commented on 2023-03-26 12:53 (UTC) (edited on 2023-03-26 13:04 (UTC) by keibak)

Currently this package fails to install. Seems that hash of zip-file is wrong:

  -> Downloading cyberghostvpn-fedora-32-1.4.1.zip...
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100 5876k  100 5876k    0     0  6298k      0 --:--:-- --:--:-- --:--:-- 6298k
==> Validating source files with sha256sums...
    cyberghostvpn-fedora-32-1.4.1.zip ... FAILED
==> ERROR: One or more files did not pass the validity check!
 -> error downloading sources: cyberghostvpn

moormaster commented on 2023-03-19 02:49 (UTC) (edited on 2023-03-19 02:53 (UTC) by moormaster)

I got another finding about the question why openvpn could refuse to work with cyberghostvpn cli utility.

I followed the support instructions to manually estabilish an openvpn connection.

see i.e. https://support.cyberghostvpn.com/hc/en-us/articles/213811885-Router-How-to-Set-Up-OpenVPN-on-DD-WRT-Routers

If I download my personal openvpn configuration the openvpn.ovpn file contains a setting that is deprecated since openvpn 2.6: ncp-disable

$ sudo openvpn openvpn.ovpn 
Options error: Unrecognized option or missing or extra parameter(s) in openvpn.ovpn:12: ncp-disable (2.6.1)

see https://community.openvpn.net/openvpn/wiki/DeprecatedOptions#Option:--ncp-disableStatus:RemovedinOpenVPNv2.6

If I remove the ncp-disable line from the openvpn.ovpn configuration file I am able to manually fire up openvpn and successfully connect to a cyberghost vpn server.

moormaster commented on 2023-03-19 02:18 (UTC) (edited on 2023-03-19 02:20 (UTC) by moormaster)

To get rid of the invalid path error setting the REQEUSTS_CA_BUNDLE environment variable reveals a different error for me:

$ sudo REQUESTS_CA_BUNDLE=/etc/ssl/certs/ca-certificates.crt cyberghostvpn --country-code US --connect
Prepare OpenVPN connection ...
Select server ... sanfrancisco-s404-i02
Connecting ... 
The "CA" certificate is missing!
Downloading configuration ...

I checked the install.sh script supplied by with the original download from cyberghostvpn.com and found that they install everything to /usr/local/cyberghostvpn instead of /opt/cyberghostvpn.

If i change the PKGBUILD accordingly...

diff --git a/PKGBUILD b/PKGBUILD
index 42d300c..439c7d3 100644
--- a/PKGBUILD
+++ b/PKGBUILD
@@ -3,7 +3,7 @@

 pkgname=cyberghostvpn
 pkgver=1.4.1
-pkgrel=2
+pkgrel=3
 pkgdesc="CyberGhost VPN"
 url="https://www.cyberghostvpn.com"
 arch=(any)
@@ -24,14 +24,14 @@ _archive="${pkgname}-fedora-32-${pkgver}"
 package() {
   cd "$_archive"

-  install -Dm 755 cyberghost/cyberghostvpn "$pkgdir/opt/cyberghost/cyberghostvpn"
-  install -Dm 755 cyberghost/update-systemd-resolved "$pkgdir/opt/cyberghost/update-systemd-resolved"
+  install -Dm 755 cyberghost/cyberghostvpn "$pkgdir/usr/local/cyberghost/cyberghostvpn"
+  install -Dm 755 cyberghost/update-systemd-resolved "$pkgdir/usr/local/cyberghost/update-systemd-resolved"

-  install -Dm 644 cyberghost/certs/openvpn/ca.crt "$pkgdir/opt/cyberghost/certs/openvpn/ca.crt"
-  install -Dm 644 cyberghost/certs/openvpn/client.crt "$pkgdir/opt/cyberghost/certs/openvpn/client.crt"
-  install -Dm 644 cyberghost/certs/openvpn/client.key "$pkgdir/opt/cyberghost/certs/openvpn/client.key"
+  install -Dm 644 cyberghost/certs/openvpn/ca.crt "$pkgdir/usr/local/cyberghost/certs/openvpn/ca.crt"
+  install -Dm 644 cyberghost/certs/openvpn/client.crt "$pkgdir/usr/local/cyberghost/certs/openvpn/client.crt"
+  install -Dm 644 cyberghost/certs/openvpn/client.key "$pkgdir/usr/local/cyberghost/certs/openvpn/client.key"

   install -dm 755 $pkgdir/usr/bin
-  ln -s /opt/cyberghost/cyberghostvpn $pkgdir/usr/bin/cyberghostvpn
-  ln -s /opt/cyberghost/update-systemd-resolved $pkgdir/usr/bin/update-systemd-resolved
+  ln -s /usr/local/cyberghost/cyberghostvpn $pkgdir/usr/bin/cyberghostvpn
+  ln -s /usr/local/cyberghost/update-systemd-resolved $pkgdir/usr/bin/update-systemd-resolved
 }

... and do a makepkg si to install cyberghostvpn I still need to set the environment variable REQUESTS_CA_BUNDLE to make all the certificate error messages disappear.

But it still fails to estabilish a connection :(

$ sudo REQUESTS_CA_BUNDLE=/etc/ssl/certs/ca-certificates.crt cyberghostvpn --country-code US --connect
Prepare OpenVPN connection ...
Select server ... losangeles-s404-i19
Connecting ... 
An error occured! The VPN connection failed!

SR-G commented on 2023-03-13 21:31 (UTC) (edited on 2023-03-13 21:33 (UTC) by SR-G)

Tested and same behavior than what i reported below : with the fedora image, i also have the certificate issue.

root@moon /opt/cyberghost# cyberghostvpn --country-code FR --wireguard --connect
Perform authentication ...
Traceback (most recent call last):
  File "cyberghostvpn.py", line 762, in <module>
  File "cyberghostvpn.py", line 510, in main
  File "servers/traffic.py", line 13, in __init__
  File "libs/services.py", line 21, in __init__
  File "libs/locales.py", line 24, in __init__
  File "libs/user.py", line 37, in __init__
  File "libs/auth.py", line 61, in __init__
  File "libs/auth.py", line 80, in authenticate
  File "libs/api.py", line 212, in doPost
  File "libs/api.py", line 278, in __doRequest
  File "requests/api.py", line 116, in post
  File "requests/api.py", line 60, in request
  File "requests/sessions.py", line 533, in request
  File "requests/sessions.py", line 646, in send
  File "requests/adapters.py", line 416, in send
  File "requests/adapters.py", line 227, in cert_verify
OSError: Could not find a suitable TLS CA certificate bundle, invalid path: /etc/pki/tls/certs/ca-bundle.crt
[119258] Failed to execute script 'cyberghostvpn' due to unhandled exception!

root@moon /opt/cyberghost# cyberghostvpn --country-code DE --openvpn --connect  
Perform authentication ...
Traceback (most recent call last):
  File "cyberghostvpn.py", line 762, in <module>
  File "cyberghostvpn.py", line 510, in main
  File "servers/traffic.py", line 13, in __init__
  File "libs/services.py", line 21, in __init__
  File "libs/locales.py", line 24, in __init__
  File "libs/user.py", line 37, in __init__
  File "libs/auth.py", line 61, in __init__
  File "libs/auth.py", line 80, in authenticate
  File "libs/api.py", line 212, in doPost
  File "libs/api.py", line 278, in __doRequest
  File "requests/api.py", line 116, in post
  File "requests/api.py", line 60, in request
  File "requests/sessions.py", line 533, in request
  File "requests/sessions.py", line 646, in send
  File "requests/adapters.py", line 416, in send
  File "requests/adapters.py", line 227, in cert_verify
OSError: Could not find a suitable TLS CA certificate bundle, invalid path: /etc/pki/tls/certs/ca-bundle.crt
[119680] Failed to execute script 'cyberghostvpn' due to unhandled exception!

Version

cyberghostvpn 

cyberghost - 1.4.1

CKSUM

1861779412 6085064 cyberghostvpn       <-- the one from this AUR package
734640184 6085072 cyberghostvpn-fedora-1.4.1   <-- the one i extracted from the ZIP

I do have the /opt/cyberghost/certs/ folder...

root@moon /opt/cyberghost# tree
.
├── certs
│   └── openvpn
│       ├── ca.crt
│       ├── client.crt
│       └── client.key

I tried to manually copy them in /etc/pki/tls/certs but no success (not even when renaming ca.crt as ca-bundle.crt)

root@moon /opt/cyberghost# cyberghostvpn --country-code FR --wireguard --connect
Perform authentication ...
Traceback (most recent call last):
  File "urllib3/connectionpool.py", line 665, in urlopen
  File "urllib3/connectionpool.py", line 376, in _make_request
  File "urllib3/connectionpool.py", line 994, in _validate_conn
  File "urllib3/connection.py", line 386, in connect
  File "urllib3/util/ssl_.py", line 370, in ssl_wrap_socket
  File "ssl.py", line 500, in wrap_socket
  File "ssl.py", line 1040, in _create
  File "ssl.py", line 1309, in do_handshake
ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1108)

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "requests/adapters.py", line 439, in send
  File "urllib3/connectionpool.py", line 719, in urlopen
  File "urllib3/util/retry.py", line 436, in increment
urllib3.exceptions.MaxRetryError: HTTPSConnectionPool(host='v2-api.cyberghostvpn.com', port=443): Max retries exceeded with url: /v2/my/account/jwt?language=en (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1108)')))

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "cyberghostvpn.py", line 762, in <module>
  File "cyberghostvpn.py", line 510, in main
  File "servers/traffic.py", line 13, in __init__
  File "libs/services.py", line 21, in __init__
  File "libs/locales.py", line 24, in __init__
  File "libs/user.py", line 37, in __init__
  File "libs/auth.py", line 61, in __init__
  File "libs/auth.py", line 80, in authenticate
  File "libs/api.py", line 212, in doPost
  File "libs/api.py", line 278, in __doRequest
  File "requests/api.py", line 116, in post
  File "requests/api.py", line 60, in request
  File "requests/sessions.py", line 533, in request
  File "requests/sessions.py", line 646, in send
  File "requests/adapters.py", line 514, in send
requests.exceptions.SSLError: HTTPSConnectionPool(host='v2-api.cyberghostvpn.com', port=443): Max retries exceeded with url: /v2/my/account/jwt?language=en (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1108)')))
[119879] Failed to execute script 'cyberghostvpn' due to unhandled exception!

(and exact same stacktrace also here with --openvpn)

carsme commented on 2023-03-13 21:15 (UTC)

@SR-G I changed the source to the Fedora 32 one, which correctly reports version 1.4.1. Would you mind testing again? Both with --openvpn and --wireguard would be great.

SR-G commented on 2023-03-13 09:20 (UTC) (edited on 2023-03-13 09:22 (UTC) by SR-G)

Mhh i don't know, when i launch the ubuntu 18 or 20.04 (1.4.1 per the package), i have a reported 1.4.1 version (same with fedora) :

root@moon /opt/cyberghost# ./cyberghostvpn-ubuntu1804-1.4.1 
cyberghost - 1.4.1

root@moon /opt/cyberghost# ./cyberghostvpn-fedora-1.4.1 
cyberghost - 1.4.1

And when using the ubuntu1604 one, then it reports as 1.3.4 (this is why my mistake has been - there is probably no 1.4.1 for ubuntu1604), but at least that one is fully working on my system...

root@moon /opt/cyberghost# ./cyberghostvpn-ubuntu1604-1.4.1 # <-- i mistakenly renamed the binary as 1.4.1 here
cyberghost - 1.3.4

Proof of concept :

root@moon /opt/cyberghost# ./cyberghostvpn-ubuntu1604-1.4.1 --country-code DE --wireguard --connect 
Prepare Wireguard connection ...
Select server ... berlin-s458-i22
Connecting ... 
VPN connection established.

carsme commented on 2023-03-13 08:04 (UTC)

I think they have messed something up with the versioning, as all artifacts are named with version 1.4.1, but they report 1.3.5.

If someone could contact their support and mention this that would be very much appreciated.

SR-G commented on 2023-03-13 01:55 (UTC)

Yes, regarding URLs, i've been able to retrieve these ones BUT it seems i made a mistake about the versionning - the ubuntu 16.04 binary (the one working on my system - by the way, an up-to-date archlinux) is still 1.3.4 and not 1.4.1 :

So for people having the same issue, as a temporary behavior (probably not going to be working in the long run), that 1.3.4 "ubuntu 16.04" flavor should be working in the meanwhile.

But