Hello
I'm trying to set up a Wireless connection that requires using a
CA-certificate, but I've ran into a strange problem that has once before
been reported here on openssl-users
[http://marc.info/?l=openssl-users&m=125071369907246
<http://marc.info/?l=openssl-users&m=125071369907246>] but no reply was
found / given.
So basically I have the certificate saved and OpenSSL seems pretty
capable of understanding it ("openssl x509 -in tut-ca.cer -noout -text"
outputs http://pastebin.com/p0NCTNdk) but when I try to connect to the
WLAN in question it fails to connect (I'm using KNetworkManager).
wpa_supplicant -dd output [http://pastebin.com/YJkcFSHE], take note of
lines 222-226:
1.
OpenSSL: tls_connection_ca_cert - Failed to parse ca_cert_blob
error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
2.
OpenSSL: pending error: error:0D07803A:asn1 encoding
routines:ASN1_ITEM_EX_D2I:nested asn1 error
3.
TLS: Failed to set TLS connection parameters
4.
ENGINE: engine deinit
5.
EAP-TTLS: Failed to initialize SSL.
Basically it seems like SSL doesn't know what format the certificate is.
Maybe...? I'm not too informed of OpenSSL's behaviour, but judging on
extensive Googling and some similar problems, the solution usually lies
in the format of the certificate.
I tried to determine the format using a guide
[http://www.networkstuff.eu/index.php/Confirm_Key_File_Formats,_Using_OpenSSL],
althought now that I think about it, key =/= certificate, I guess.
Anyhow, none of the tests outputted an OK.
So, all in all, I'm at a dead end. I don't know enough to continue
debugging on my own and thus I need some help.
What could be the cause of this?
(FYI: I am using ArchLinux 32bit.)
-Aapo Alasuutari
