Your message dated Fri, 11 Jan 2019 00:09:38 +0000
with message-id <[email protected]>
and subject line Bug#907518: fixed in wpa 2:2.7-3
has caused the Debian Bug report #907518,
regarding openssl 1.1.1~~pre9-1 breaks connection to some wifi networks, such
as eduroam
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
907518: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907518
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: wpasupplicant
Version: 2:2.6-18
Severity: important
With libssl1.1 1.1.1~~pre9-1, which more aggressively deprecates smaller
key sizes by default, I can no longer connect to my office wifi network:
wpa_supplicant[523]: OpenSSL: pending error: error:0D07803A:asn1 encoding
routines:asn1_item_embed_d2i:nested asn1 error
wpa_supplicant[523]: OpenSSL: pending error: error:140C800D:SSL
routines:SSL_use_certificate_file:ASN1 lib
wpa_supplicant[523]: OpenSSL: pending error: error:140C618E:SSL
routines:SSL_use_certificate:ca md too weak
wpa_supplicant[523]: TLS: Failed to set TLS connection parameters
wpa_supplicant[523]: EAP-TLS: Failed to initialize SSL.
wpa_supplicant[523]: wlp4s0: EAP: Failed to initialize EAP method: vendor 0
method 13 (TLS)
Downgrading libssl1.1 to 1.1.0h-4 allows me to connect again. Please
adjust the defaults that wpasupplicant initializes OpenSSL with to
continue to allow connecting to such networks.
-- System Information:
Debian Release: buster/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.17.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C.UTF-8
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages wpasupplicant depends on:
ii adduser 3.117
ii libc6 2.27-5
ii libdbus-1-3 1.12.10-1
ii libnl-3-200 3.4.0-1
ii libnl-genl-3-200 3.4.0-1
ii libpcsclite1 1.8.23-3
ii libreadline7 7.0-5
ii libssl1.1 1.1.1~~pre9-1
ii lsb-base 9.20170808
wpasupplicant recommends no packages.
Versions of packages wpasupplicant suggests:
pn libengine-pkcs11-openssl <none>
pn wpagui <none>
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: wpa
Source-Version: 2:2.7-3
We believe that the bug you reported is fixed in the latest version of
wpa, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andrej Shadura <[email protected]> (supplier of updated wpa package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Fri, 11 Jan 2019 00:17:14 +0100
Source: wpa
Binary: hostapd wpagui wpasupplicant wpasupplicant-udeb
Architecture: source
Version: 2:2.7-3
Distribution: unstable
Urgency: medium
Maintainer: Debian wpasupplicant Maintainers <[email protected]>
Changed-By: Andrej Shadura <[email protected]>
Description:
hostapd - IEEE 802.11 AP and IEEE 802.1X/WPA/WPA2/EAP Authenticator
wpagui - graphical user interface for wpa_supplicant
wpasupplicant - client support for WPA and WPA2 (IEEE 802.11i)
wpasupplicant-udeb - Client support for WPA and WPA2 (IEEE 802.11i) (udeb)
Closes: 885957 907518 911297 918861
Changes:
wpa (2:2.7-3) unstable; urgency=medium
.
* Upload to unstable.
* Refresh dbus-available-sta.patch from the upstream.
* Since we use Type=forking, pass -B to hostapd (Closes: #918861).
* Apply upstream fixes for 802.1X 4-way handshake offload.
* Bump Standards-Version to 4.3.0.
* Use debhelper-compat (= 12).
* Drop dh_systemd_enable calls and overrides.
* Move manual installs into .install as much as possible.
* Drop ancient preinst scripts.
* Add Pre-Depends to hostapd.
* Display a warning if DAEMON_CONF is not /etc/hostapd/hostapd.conf.
* Default to /etc/hostapd/hostapd.conf.
* Update README.Debian in hostapd.
.
wpa (2:2.7-2) experimental; urgency=medium
.
* Re-enable TLSv1.0 and security level 1 for wpasupplicant
(Closes: #907518, #911297).
* Enable more build-time options.
* Flip CONFIG_DRIVER_MACSEC_QCA on Linux and kFreeBSD
* Add DPP README.
* Make wpa_supplicant reproducible.
.
wpa (2:2.7-1) experimental; urgency=medium
.
* New upstream version 2.7.
* Enable FILS.
* Add debian/upstream/signing-key.asc, update debian/watch to
verify PGP signatures on tarballs.
.
wpa (2:2.7~git20181004+1dd66fc-1) experimental; urgency=medium
.
* New upstream snapshot 2.7~git20181004+1dd66fc.
.
wpa (2:2.7~git20180706+420b5dd-1) experimental; urgency=medium
.
* New upstream snapshot 2.7~git20180706+420b5dd.
* Disable dbus-available-sta.patch since it is not ready for use yet.
* Enable OWE, DPP and SAE
.
wpa (2:2.7~git20180606+b915f2c-1) experimental; urgency=medium
.
* New upstream snapshot 2.7~git20180606+b915f2c.
* Remove dbus changes to StaAuthorized/StaDeauthorized after discussions
with the upstream.
.
wpa (2:2.7~git20180504+60a5737-1) experimental; urgency=medium
.
* New upstream snapshot 2.7~git20180504+60a5737.
* Synchronise configs from the upstream.
* Drop patches previously cherry-picked from the upstream.
* Support ACS (Closes: #885957).
Checksums-Sha1:
41009e604bddf218d207001a4986f49c8aa94582 2137 wpa_2.7-3.dsc
a37163b6223b36620a6414c3df97d440fe9a2792 88172 wpa_2.7-3.debian.tar.xz
Checksums-Sha256:
3d81922671e40983203e0ac5d6dcedf895762880b70f5bfee80f0e4afeaa2911 2137
wpa_2.7-3.dsc
32cde73244e2827d033357883806605bfab762839edae789c67c16f65477e404 88172
wpa_2.7-3.debian.tar.xz
Files:
6593fe0dfbbdeac82602e4794f933c97 2137 net optional wpa_2.7-3.dsc
5ae8a2b393f06313e938e43dd74cf982 88172 net optional wpa_2.7-3.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCAAdFiEEeuS9ZL8A0js0NGiOXkCM2RzYOdIFAlw30zYACgkQXkCM2RzY
OdKAtAgAkDUBTXxJ7h9VukImIevYzs8wmPDVWaSVdDcpRYcrtIiAWKCO31DUWp4Q
QHUE350WWEG6eZw8Kfw/pSF/1EulC8WPHiLCoIlHe3zSTompzD/a/wQnNtSVBFhm
16GBWi1tKhd2o9fBxnp1jzS7CFqhNdDRPiKjaI+uUtrIaQ+q8d8b81ylXmMfiVL1
WPnh4i2dFrJcoZu6d5X7rFqjLq1J6hPzju8OsfJy64wKUTrcbgCzaiMn4JbREWi8
MwbpEZdhkIMw9NhYt6NYmiThAkUc8SLG2sdJ5BVDhNujgv6UcPyepX5Di75genmD
ApWCCHTZBs2Wc9F1ORYwVt5bEY4XWw==
=VN72
-----END PGP SIGNATURE-----
--- End Message ---
