wpa_supplicant不连接,因为SSL3不受支持
wpa_supplicant不连接,因为SSL3不受支持
提问于 2018-10-30 13:49:42
我有一台笔记本电脑运行Debian /Linux不稳定的网络管理器。由于OpenSSL的更新(我认为是1.1.1),我无法使用WPA2 Enterprise (MSCHAPv2)连接with网络。在/var/log/syslog中,它说不支持SSL3:
Oct 30 10:52:18 wb9688-b50 wpa_supplicant[502]: wlp4s0: SME: Trying to authenticate with [REDACTED] (SSID='Hotspot' freq=2412 MHz)
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.195724] wlp4s0: authenticate with [REDACTED]
Oct 30 10:52:18 wb9688-b50 NetworkManager[505]: <info> [1540893138.8304] device (wlp4s0): supplicant interface state: scanning -> authenticating
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.216389] wlp4s0: send auth to [REDACTED] (try 1/3)
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.218779] wlp4s0: authenticated
Oct 30 10:52:18 wb9688-b50 wpa_supplicant[502]: wlp4s0: Trying to associate with [REDACTED] (SSID='Hotspot' freq=2412 MHz)
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.228045] wlp4s0: associate with [REDACTED] (try 1/3)
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.233930] wlp4s0: RX AssocResp from [REDACTED] (capab=0x431 status=0 aid=4)
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.234023] wlp4s0: associated
Oct 30 10:52:18 wb9688-b50 wpa_supplicant[502]: wlp4s0: Associated with [REDACTED]
Oct 30 10:52:18 wb9688-b50 wpa_supplicant[502]: wlp4s0: CTRL-EVENT-SUBNET-STATUS-UPDATE status=0
Oct 30 10:52:18 wb9688-b50 wpa_supplicant[502]: wlp4s0: CTRL-EVENT-EAP-STARTED EAP authentication started
Oct 30 10:52:18 wb9688-b50 NetworkManager[505]: <info> [1540893138.8600] device (wlp4s0): supplicant interface state: authenticating -> associating
Oct 30 10:52:18 wb9688-b50 NetworkManager[505]: <info> [1540893138.8605] device (wlp4s0): supplicant interface state: associating -> associated
Oct 30 10:52:18 wb9688-b50 wpa_supplicant[502]: wlp4s0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25
Oct 30 10:52:18 wb9688-b50 wpa_supplicant[502]: wlp4s0: CTRL-EVENT-EAP-METHOD EAP vendor 0 method 25 (PEAP) selected
Oct 30 10:52:18 wb9688-b50 wpa_supplicant[502]: wlp4s0: CTRL-EVENT-REGDOM-CHANGE init=COUNTRY_IE type=COUNTRY alpha2=NL
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.259127] ath: EEPROM regdomain: 0x8210
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.259130] ath: EEPROM indicates we should expect a country code
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.259131] ath: doing EEPROM country->regdmn map search
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.259132] ath: country maps to regdmn code: 0x37
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.259133] ath: Country alpha2 being used: NL
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.259134] ath: Regpair used: 0x37
Oct 30 10:52:18 wb9688-b50 kernel: [ 9.259136] ath: regdomain 0x8210 dynamically updated by country element
Oct 30 10:52:18 wb9688-b50 wpa_supplicant[502]: SSL: SSL3 alert: write (local SSL3 detected an error):fatal:protocol version
Oct 30 10:52:18 wb9688-b50 wpa_supplicant[502]: OpenSSL: openssl_handshake - SSL_connect error:1425F102:SSL routines:ssl_choose_client_version:unsupported protocol
Oct 30 10:52:18 wb9688-b50 wpa_supplicant[502]: wlp4s0: CTRL-EVENT-EAP-FAILURE EAP authentication failed
Oct 30 10:52:20 wb9688-b50 kernel: [ 11.335881] wlp4s0: deauthenticating from [REDACTED] by local choice (Reason: 3=DEAUTH_LEAVING)
Oct 30 10:52:20 wb9688-b50 wpa_supplicant[502]: wlp4s0: Authentication with [REDACTED] timed out.
Oct 30 10:52:21 wb9688-b50 wpa_supplicant[502]: wlp4s0: CTRL-EVENT-DISCONNECTED bssid=[REDACTED] reason=3 locally_generated=1
Oct 30 10:52:21 wb9688-b50 wpa_supplicant[502]: wlp4s0: CTRL-EVENT-SSID-TEMP-DISABLED id=0 ssid="Hotspot" auth_failures=1 duration=10 reason=AUTH_FAILED
Oct 30 10:52:21 wb9688-b50 NetworkManager[505]: <warn> [1540893141.3677] sup-iface[0x5617eb7458b0,wlp4s0]: connection disconnected (reason -3)
Oct 30 10:52:21 wb9688-b50 NetworkManager[505]: <info> [1540893141.3704] device (wlp4s0): supplicant interface state: associated -> disconnected降低OpenSSL的级别当然会修复它,但是我不能使用编译成更新版本的OpenSSL的东西。有没有办法连接到Wi网络?
回答 3
Unix & Linux用户
回答已采纳
发布于 2018-10-31 18:28:49
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911389似乎是相关的。它建议编辑/etc/ssl/openssl.conf中的最后两行。请务必使用TLSv1.0,这就是在我可怕的MS安装中起作用的地方。
显然,应该要求友好的SysAdmin停止使用专有软件,或者至少接受更新的协议版本。
Unix & Linux用户
发布于 2022-02-12 15:05:15
为了扩展其他Linux发行版用户的答案,以下内容可以帮助解决Fedora 33中的这个问题:
sudo dnf install crypto-policies-scripts
update-crypto-policies --set LEGACY更改后需要重新启动wpa_supplicant守护进程:
systemctl restart wpa_supplicant若要还原默认配置,请使用
update-crypto-policies --set DEFAULTUnix & Linux用户
发布于 2022-04-25 01:51:12
在我的ubuntu 22.04上
Apr 23 10:41:31 thomas-laptop wpa_supplicant[3116]: SSL: SSL3 alert: write (local SSL3 detected an error):fatal:internal error
Apr 23 10:41:31 thomas-laptop wpa_supplicant[3116]: OpenSSL: openssl_handshake - SSL_connect error:0A0C0103:SSL routines::internal error
Apr 23 10:41:32 thomas-laptop wpa_supplicant[3116]: wlp0s20f3: CTRL-EVENT-EAP-FAILURE EAP authentication failedcat ~/temp/wpa_supplicant.conf
ctrl_interface=DIR=/run/wpa_supplicant GROUP=root
ap_scan=0
network={
key_mgmt=IEEE8021X
eap=PEAP
phase1="peaplabel=auto tls_disable_tlsv1_0=0 tls_disable_tlsv1_1=0 tls_disable_tlsv1_2=0 tls_ext_cert_check=0"
phase2="auth=MSCHAPV2"
identity="yourusername"
password="yourpassword"
eapol_flags=0
}
sudo wpa_supplicant -f ~/temp/wpa.log -dd -c wpa_supplicant.conf -Dwired -ieth0
sudo dhclient eth0https://wiki.archlinux.org/title/wpa_乞求者
archlinux是一个伟大的linux。
页面原文内容由Unix & Linux提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://unix.stackexchange.com/questions/478668
复制相关文章
相似问题
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号