Stefan Vater changed bug 1207913
What Removed Added
CC   st.vater@web.de

Comment # 11 on bug 1207913 from
I have the same or at least a similar problem not getting into a previously
working WPA2 Enterprise PEAP MSCHAPv2 (no certificate) connection does anymore.
However, I think the problem is the recent switch form openssl 1.1 to version
3.0.

In my wpa_supplicant I get the messages: 

1677056426.698527: SSL: SSL3 alert: write (local SSL3 detected an
error):fatal:internal error
1677056426.698692: OpenSSL: openssl_handshake - SSL_connect error:0A00014D:SSL
routines::legacy sigalg disallowed or unsupported

Here, I have already set 

update-crypto-policies --set LEGACY

and in openssl.conf I set

[...]
[provider_sect]
default = default_sect
legacy = legacy_sect

[default_sect]
activate = 1

[legacy_sect]
activate = 1

If I can give you more information, please let me know.


You are receiving this mail because: