FAST-EAP authentication is used by many enterprise wireless routers. wpa_supplicant has had the ability to provide fasteap authentication for quite some time, but the ebuild has not exposed the functionality. The only caveat is that if fasteap is used, wpa_supplicant must build using its internal TLS implementation, and not use openssl or gnutls. I have patched the ebuild to provide a fasteap use flag and enforce the TLS implementation restriction. Reproducible: Always Steps to Reproduce: 1. Attempt to connect to a wireless network that requires FAST-EAP authentication Actual Results: /var/log/messages shows an infinite loop of protocol failures Expected Results: successful wireless connection For reference, here is an example wpa_supplicant.conf block that uses FAST-EAP: network={ ssid="my_essid" priority=10 proto=WPA key_mgmt=WPA-EAP pairwise=TKIP group=TKIP identity="domain\username" password="secretpass" phase1="fast_provisioning=1" }
Created attachment 215703 [details] wpa_supplicant ebuild that supports fasteap
Created attachment 215705 [details] patched wpa_supplicant-0.6.9
Created attachment 215707 [details] patched wpa_supplicant-9999
I did not add a patched version of wpa_supplicant-0.6.4 as I could not get that (rather old) version to compile on my system. All uploaded ebuilds have been tested.
Created attachment 215708 [details, diff] patch of changes unified diff to highlight the few changes I made to the ebuilds
Created attachment 215710 [details] updated wpa_supplicant-9999 newest git broke the ebuild for an unrelated (to this bug) reason. The dbus path patch is no longer applicable and now causes errors. I removed the now-useless epatch line from the ebuild.
Fixed, should hit the tree within an hour or two.