Your message dated Sat, 29 Dec 2018 14:55:51 +0000
with message-id <[email protected]>
and subject line Bug#907518: fixed in wpa 2:2.7-2
has caused the Debian Bug report #907518,
regarding openssl 1.1.1~~pre9-1 breaks connection to some wifi networks, such
as eduroam
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
907518: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907518
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: wpasupplicant
Version: 2:2.6-18
Severity: important
With libssl1.1 1.1.1~~pre9-1, which more aggressively deprecates smaller
key sizes by default, I can no longer connect to my office wifi network:
wpa_supplicant[523]: OpenSSL: pending error: error:0D07803A:asn1 encoding
routines:asn1_item_embed_d2i:nested asn1 error
wpa_supplicant[523]: OpenSSL: pending error: error:140C800D:SSL
routines:SSL_use_certificate_file:ASN1 lib
wpa_supplicant[523]: OpenSSL: pending error: error:140C618E:SSL
routines:SSL_use_certificate:ca md too weak
wpa_supplicant[523]: TLS: Failed to set TLS connection parameters
wpa_supplicant[523]: EAP-TLS: Failed to initialize SSL.
wpa_supplicant[523]: wlp4s0: EAP: Failed to initialize EAP method: vendor 0
method 13 (TLS)
Downgrading libssl1.1 to 1.1.0h-4 allows me to connect again. Please
adjust the defaults that wpasupplicant initializes OpenSSL with to
continue to allow connecting to such networks.
-- System Information:
Debian Release: buster/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.17.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C.UTF-8
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages wpasupplicant depends on:
ii adduser 3.117
ii libc6 2.27-5
ii libdbus-1-3 1.12.10-1
ii libnl-3-200 3.4.0-1
ii libnl-genl-3-200 3.4.0-1
ii libpcsclite1 1.8.23-3
ii libreadline7 7.0-5
ii libssl1.1 1.1.1~~pre9-1
ii lsb-base 9.20170808
wpasupplicant recommends no packages.
Versions of packages wpasupplicant suggests:
pn libengine-pkcs11-openssl <none>
pn wpagui <none>
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: wpa
Source-Version: 2:2.7-2
We believe that the bug you reported is fixed in the latest version of
wpa, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andrej Shadura <[email protected]> (supplier of updated wpa package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sat, 15 Dec 2018 15:31:57 +0100
Source: wpa
Binary: hostapd wpagui wpasupplicant wpasupplicant-udeb
Architecture: source
Version: 2:2.7-2
Distribution: experimental
Urgency: medium
Maintainer: Debian wpasupplicant Maintainers <[email protected]>
Changed-By: Andrej Shadura <[email protected]>
Description:
hostapd - IEEE 802.11 AP and IEEE 802.1X/WPA/WPA2/EAP Authenticator
wpagui - graphical user interface for wpa_supplicant
wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i)
wpasupplicant-udeb - Client support for WPA and WPA2 (IEEE 802.11i) (udeb)
Closes: 907518 911297
Changes:
wpa (2:2.7-2) experimental; urgency=medium
.
* Re-enable TLSv1.0 and security level 1 for wpasupplicant
(Closes: #907518, #911297).
* Enable more build-time options.
* Flip CONFIG_DRIVER_MACSEC_QCA on Linux and kFreeBSD
* Add DPP README.
* Make wpa_supplicant reproducible.
Checksums-Sha1:
d51c9602bec6796f553cb8229f7742e72f0f6889 2131 wpa_2.7-2.dsc
f7d934a776ad328e7368e4d90b1b13d4604223f9 85200 wpa_2.7-2.debian.tar.xz
Checksums-Sha256:
3fa1039063c52bdf41d66eb47bfcf9906610cf8e6dde763fcfc824d25f5ab559 2131
wpa_2.7-2.dsc
8cc3f2848dfa80c666b8f08582a422325e3509e866cb133ae36d8221792f44b2 85200
wpa_2.7-2.debian.tar.xz
Files:
a4c31469221b0dfcdcfb88bac97be05c 2131 net optional wpa_2.7-2.dsc
04e871df6e573bcb6c336c14baf3e4fd 85200 net optional wpa_2.7-2.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCAAdFiEEeuS9ZL8A0js0NGiOXkCM2RzYOdIFAlwnhx8ACgkQXkCM2RzY
OdLQVQf/TpKJfahONWLZ7Bqn6GS5oK5DqwpCMCFfvnvddI+oyp+GXzMq+3CmWCP2
gxEAsJqDTFYCLKmLCthR13LJq75MvTA9oz09w0TRhL5hOzqNFCu9jgm5Tc6zMyrl
blx+UqaNuqguvU/kzGoQ6P8reb9Qkw83iBDwXXN1LrcB/WNif/xNjT7eYzqTBSv7
cQCHv8rJ/C+Zkhdb76M7aT9ik6oheWYJkLqCbmEQ1Z3Rg1HaGPXLFYcnDlaX3upL
rSIufL/BMXSv4+9CaSrLH28fAhuyMT4puMw1F3eQLSUnwr5T7wdYPrPf/ygskr2O
dapwLqTS2+qXuoOrdKJOh7SWEV5jng==
=93Y3
-----END PGP SIGNATURE-----
--- End Message ---
