Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 671006

Summary: net-wireless/wpa_supplicant-2.6-r8 compiled with dev-libs/openssl-1.1.1-r1 fails to authenticate EAP-TLS authentications
Product: Gentoo Linux Reporter: Mike Auty (RETIRED) <ikelos>
Component: Current packagesAssignee: Rick Farina (Zero_Chaos) <zerochaos>
Status: RESOLVED FIXED    
Severity: normal CC: dschridde+gentoobugs
Priority: Normal Keywords: PATCH, PullRequest
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://github.com/openssl/openssl/issues/3594
See Also: https://github.com/gentoo/gentoo/pull/10555
Whiteboard:
Package list:
Runtime testing required: ---
Bug Depends on:    
Bug Blocks: 592438    

Description Mike Auty (RETIRED) gentoo-dev 2018-11-12 14:37:18 UTC 
Hiya,

I've just been trying out openssl-1.1.1 and found an issue that was identified previously by arch linux:

https://github.com/openssl/openssl/issues/3594

They determined that the SSL instance was constructed before the callback on the context was set, and therefore it was never able to unlock the private keys.  I've verified that applying the following patch:

https://w1.fi/cgit/hostap/commit/?id=f665c93e1d28fbab3d9127a8c3985cc32940824f

resolves the issue.
Comment 1 Dennis Schridde 2018-11-30 07:39:19 UTC 
Keywords+=PATCH?
Comment 2 Larry the Git Cow gentoo-dev 2018-12-04 01:40:09 UTC 
The bug has been closed via the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=696f3772a422e25bd62e69d497717985d1fe295d

commit 696f3772a422e25bd62e69d497717985d1fe295d
Author:     Craig Andrews <candrews@gentoo.org>
AuthorDate: 2018-12-03 20:21:11 +0000
Commit:     Rick Farina <zerochaos@gentoo.org>
CommitDate: 2018-12-04 01:39:10 +0000

    net-wireless/wpa_supplicant: Fix EAP-TLS with OpenSSL 1.1
    
    Closes: https://bugs.gentoo.org/671006
    Package-Manager: Portage-2.3.52, Repoman-2.3.12
    Signed-off-by: Craig Andrews <candrews@gentoo.org>
    Signed-off-by: Rick Farina <zerochaos@gentoo.org>

 .../files/wpa_supplicant-2.6-openssl-1.1.patch     |  48 +++
 .../wpa_supplicant/wpa_supplicant-2.6-r9.ebuild    | 460 +++++++++++++++++++++
 2 files changed, 508 insertions(+)