hostapd + openssl issue

Enéas Ulir de Queiroz cotequeiroz at gmail.com
Wed Mar 8 12:25:03 PST 2023



> Em 8 de mar. de 2023, à(s) 16:44, e9hack <e9hack at gmail.com> escreveu:
> 
> Hi,
> 
> I'm using hostapd with the radius server compiled in for wpa enterprise. This does no longer work since the openssl upgrade to 3.0. When a wpa enterprise client (Windows 10) tries to connect, the following error messages are shown in the log file:
> 
> Wed Mar  8 00:15:05 2023 daemon.notice hostapd: phy0-ap0: CTRL-EVENT-EAP-STARTED xx:xx:xx:13:a3:xx
> Wed Mar  8 00:15:05 2023 daemon.notice hostapd: phy0-ap0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=1
> Wed Mar  8 00:15:05 2023 daemon.notice hostapd: OpenSSL: Flushing X509 store with ca_cert file
> Wed Mar  8 00:15:05 2023 daemon.notice hostapd: phy0-ap0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25
> Wed Mar  8 00:15:05 2023 daemon.err hostapd: OpenSSL: DES encrypt failed

Hi Hartmut

I’m guessing this is occurring because DES has been moved to the legacy provider, which we are not installing.  I’ll add a package for it shortly. /etc/ssl/openssl.cnf needs some attention as well.
Cheers,
Eneas 


More information about the openwrt-devel mailing list