Skip to content

nixos/wpa_supplicant: Broken EAP-TLS though wpa_supplicant #480355

Description

@GwendalBeaumont

Nixpkgs version

  • Unstable (26.05)

Describe the bug

I cannot connect to the eduroam Wi-Fi network of my university when attempting to use the CA Certificate. However, using GNOME's Settings Panel and turning on the No CA certificate is required checkbox, I am able to connect to the Wi-Fi.

Another experiment I did was switching from nixos-unstable to nixos-25.11 and I am able to connect to the eduroam network with CA Certificate enabled. So I'm guessing something must have broken in between 25.11 and unstable.

Steps to reproduce

  • Setup a Wi-Fi connection with a CA Certificate
  • Try to connect

Expected behaviour

NetworkManager connects to Wi-Fi.

Screenshots

No response

Relevant log output

12 Jan 08:38:25 wpa_supplicant: wlp0s20f3: EAP: Failed to initialize EAP method: vendor 0 method 25 (PEAP)
12 Jan 08:38:25 wpa_supplicant: wlp0s20f3: EAP: Failed to initialize EAP method: vendor 0 method 25 (PEAP)
12 Jan 08:38:25 wpa_supplicant: EAP-PEAP: Failed to initialize SSL.
12 Jan 08:38:25 wpa_supplicant: TLS: Failed to set TLS connection parameters
12 Jan 08:38:25 wpa_supplicant: OpenSSL: pending error: error:05880020:x509 certificate routines::BIO lib
12 Jan 08:38:25 wpa_supplicant: OpenSSL: pending error: error:10080002:BIO routines::system lib
12 Jan 08:38:25 wpa_supplicant: OpenSSL: tls_load_ca_der - Failed load CA in DER format error:80000002:system library::No such file or directory
12 Jan 08:38:25 wpa_supplicant: OpenSSL: pending error: error:05880020:x509 certificate routines::BIO lib
12 Jan 08:38:25 wpa_supplicant: OpenSSL: pending error: error:10000080:BIO routines::no such file
12 Jan 08:38:25 wpa_supplicant: OpenSSL: tls_connection_ca_cert - Failed to load root certificates error:80000002:system library::No such file or directory
12 Jan 08:38:25 wpa_supplicant: wlp0s20f3: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25
12 Jan 08:38:25 kernel: wlp0s20f3: Limiting TX power to 17 dBm as advertised by 48:8b:0a:ba:a3:4e
12 Jan 08:38:25 wpa_supplicant: wlp0s20f3: CTRL-EVENT-SUBNET-STATUS-UPDATE status=0
12 Jan 08:38:25 kernel: wlp0s20f3: associated
12 Jan 08:38:25 wpa_supplicant: wlp0s20f3: CTRL-EVENT-EAP-STARTED EAP authentication started
12 Jan 08:38:25 wpa_supplicant: wlp0s20f3: Associated with 48:8b:0a:ba:a3:4e
12 Jan 08:38:25 kernel: wlp0s20f3: RX AssocResp from 48:8b:0a:ba:a3:4e (capab=0x1111 status=0 aid=1)
12 Jan 08:38:25 kernel: wlp0s20f3: associate with 48:8b:0a:ba:a3:4e (try 1/3)
12 Jan 08:38:25 kernel: wlp0s20f3: authenticated
12 Jan 08:38:25 wpa_supplicant: wlp0s20f3: Trying to associate with 48:8b:0a:ba:a3:4e (SSID='eduroam' freq=5560 MHz)

Additional context

No response

System metadata

  • system: "x86_64-linux"
  • host os: Linux 6.18.5, NixOS, 26.05 (Yarara), 26.05.20260113.1412caf
  • multi-user?: yes
  • sandbox: yes
  • version: nix-env (Nix) 2.31.2+2
  • nixpkgs: /nix/store/xh9wfbn9d64hmavam66yhl5vmkp0wi87-source

Notify maintainers


Note for maintainers: Please tag this issue in your pull request description. (i.e. Resolves #ISSUE.)

I assert that this issue is relevant for Nixpkgs

Is this issue important to you?

Add a 👍 reaction to issues you find important.

Metadata

Metadata

Assignees

No one assigned

    Labels

    0.kind: bugSomething is broken6.topic: nixosIssues or PRs affecting NixOS modules, or package usability issues specific to NixOS

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions