https://bugzilla.novell.com/show_bug.cgi?id=798793 https://bugzilla.novell.com/show_bug.cgi?id=798793#c15 Michael Catanzaro <mike.catanzaro@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED InfoProvider|mike.catanzaro@gmail.com | --- Comment #15 from Michael Catanzaro <mike.catanzaro@gmail.com> 2013-04-12 13:28:43 UTC --- Yeah that gets a lot farther; the certificate validation is indeed failing. I need to look into why; I can't view a lot of school websites in Epiphany or Rekonq because that InCommon certificate isn't trusted (but it is by Firefox on openSUSE, and it is by both Epiphany and Rekonq on Fedora.) - I don't know enough about where these certificates are stored to know why it works in Firefox but not the other browsers or apparently wpa_supplicant. But the school instructs us to not validate the certificate at all when connecting via WPA Enterprise -- I know that means there is zero security and I use their Wi-Fi accordingly -- so I would expect an option to not validate, or ignore the error if it fails, like there is when manually selecting a certificate to use. michael@linux-87mu:/var/log> sudo /usr/sbin/wpa_supplicant -c /etc/wpa_supplicant/wpa_supplicant.conf -Dnl80211 -iwlan0 wlan0: SME: Trying to authenticate with 00:1b:8f:8b:eb:d0 (SSID='MST-WPA' freq=2462 MHz) wlan0: Trying to associate with 00:1b:8f:8b:eb:d0 (SSID='MST-WPA' freq=2462 MHz) wlan0: Associated with 00:1b:8f:8b:eb:d0 wlan0: CTRL-EVENT-EAP-STARTED EAP authentication started wlan0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25 wlan0: CTRL-EVENT-EAP-METHOD EAP vendor 0 method 25 (PEAP) selected wlan0: CTRL-EVENT-EAP-PEER-CERT depth=1 subject='/C=US/O=Internet2/OU=InCommon/CN=InCommon Server CA' hash=623727ec472644a6bb70d240565c24223fdb0f2f5ac698027e3012489c70e817 wlan0: CTRL-EVENT-EAP-PEER-CERT depth=1 subject='/C=US/O=Internet2/OU=InCommon/CN=InCommon Server CA' hash=623727ec472644a6bb70d240565c24223fdb0f2f5ac698027e3012489c70e817 wlan0: CTRL-EVENT-EAP-PEER-CERT depth=0 subject='/C=US/postalCode=65401/ST=Missouri/L=Rolla/street=104CS Building/street=Information Technology/O=University of Missouri/OU=MST/CN=radius-p02.srv.mst.edu' hash=5f5287300d118543df9128a3fdf750e4e29f17a16e36324b69e6631f7a904512 wlan0: CTRL-EVENT-EAP-TLS-CERT-ERROR reason=8 depth=0 subject='/C=US/postalCode=65401/ST=Missouri/L=Rolla/street=104CS Building/street=Information Technology/O=University of Missouri/OU=MST/CN=radius-p02.srv.mst.edu' err='Server certificate chain probe' SSL: SSL3 alert: write (local SSL3 detected an error):fatal:bad certificate OpenSSL: openssl_handshake - SSL_connect error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed wlan0: CTRL-EVENT-EAP-FAILURE EAP authentication failed wlan0: Authentication with 00:1b:8f:8b:eb:d0 timed out. wlan0: CTRL-EVENT-DISCONNECTED bssid=00:00:00:00:00:00 reason=3 wlan0: CTRL-EVENT-DISCONNECTED bssid=00:00:00:00:00:00 reason=3 wlan0: SME: Trying to authenticate with 00:1d:71:e1:ba:c0 (SSID='MST-WPA' freq=2437 MHz) wlan0: Trying to associate with 00:1d:71:e1:ba:c0 (SSID='MST-WPA' freq=2437 MHz) wlan0: Associated with 00:1d:71:e1:ba:c0 wlan0: CTRL-EVENT-EAP-STARTED EAP authentication started wlan0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25 wlan0: CTRL-EVENT-EAP-METHOD EAP vendor 0 method 25 (PEAP) selected wlan0: CTRL-EVENT-DISCONNECTED bssid=00:1d:71:e1:ba:c0 reason=4 wlan0: SME: Trying to authenticate with 00:1d:71:e1:c7:60 (SSID='MST-WPA' freq=2437 MHz) wlan0: Trying to associate with 00:1d:71:e1:c7:60 (SSID='MST-WPA' freq=2437 MHz) wlan0: CTRL-EVENT-ASSOC-REJECT bssid=00:1d:71:e1:c7:60 status_code=17 wlan0: CTRL-EVENT-DISCONNECTED bssid=00:00:00:00:00:00 reason=3 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.