Connecting to a "WPA & WPA2 Enterprise" Wi-Fi which uses an old SSL protocol results in repeated password prompts
In our university we have a "WPA & WPA2 Enterprise" Wi-Fi. When trying to connect to it starting from Fedora 34, it just keeps asking username / password indefinitely, failing to connect. Upon inspecting journalctl
, I found out that apparently the Wi-Fi uses an outdated SSL algorithm:
дек 02 10:17:33 wpa_supplicant[1149]: wlp1s0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25
дек 02 10:17:33 wpa_supplicant[1149]: wlp1s0: CTRL-EVENT-EAP-METHOD EAP vendor 0 method 25 (PEAP) selected
дек 02 10:17:33 wpa_supplicant[1149]: SSL: SSL3 alert: write (local SSL3 detected an error):fatal:protocol version
дек 02 10:17:33 wpa_supplicant[1149]: OpenSSL: openssl_handshake - SSL_connect error:1425F102:SSL routines:ssl_choose_client_version:unsupported protocol
дек 02 10:17:33 wpa_supplicant[1149]: wlp1s0: CTRL-EVENT-EAP-FAILURE EAP authentication failed
дек 02 10:17:33 kernel: wlp1s0: deauthenticated from [redacted] (Reason: 23=IEEE8021X_FAILED)
дек 02 10:17:33 wpa_supplicant[1149]: wlp1s0: CTRL-EVENT-DISCONNECTED bssid=[redacted] reason=23
дек 02 10:17:33 wpa_supplicant[1149]: wlp1s0: CTRL-EVENT-SSID-TEMP-DISABLED id=0 ssid=[redacted] auth_failures=1 duration=10 reason=AUTH_FAILED
In this case it would be better to see an actual error instead of repeated username / password prompts.
Steps to reproduce:
- Try to connect to a "WPA & WPA2 Enterprise" Wi-Fi which uses an outdated SSL protocol.
I filed this issue to gnome-control-center and @benzea replied that there might be a behavior change required from NetworkManager. Particularly, NM seems to report this error the same way as a wrong password error, even though that UX is not desired for this case.
NetworkManager-1.32.12-2.fc35.x86_64