View Issue Details

IDProjectCategoryView StatusLast Update
0015796CentOS-7NetworkManagerpublic2019-02-16 01:46
Reportervessokolev 
PrioritynormalSeverityfeatureReproducibilityalways
Status newResolutionopen 
Product Version7.6.1810 
Target VersionFixed in Version 
Summary0015796: NetworkManager cannot create EAP-TLS 802.1x wifi profile with ECC keys (invalid private key)
Descriptionnmcli responds with the error:

Error: failed to modify 802-1x.private-key: 802-1x.private-key: invalid private key.

to any attempt made for creating EAP-TLS 802.1x WiFi profile, based on Elliptic Curves keys.
Steps To ReproduceThe error is clearly displayed when trying to create the profile by invoking nmcli:

$ sudo nmcli connection add type wifi con-name "eduroam" ifname wlan0 ssid "eduroam" -- wifi-sec.key-mgmt wpa-eap 802-1x.eap tls 802-1x.ca-cert /home/username/eduroam/ecc_ca.crt 802-1x.identity anonymous@example.com 802-1x.phase2-ca-path /home/username/eduroam/ecc_ca.crt 802-1x.client-cert /home/username/eduroam/ecc_user.crt 802-1x.private-key /home/username/eduroam/ecc_user.key 802-1x.phase2-private-key-password "some_password"

The GTK interface does not show any error, but keeps the "Connect" button inactive if ECC keys are loaded.

The key (/home/username/eduroam/ecc_user.key) is in PEM format (some lines are removed from the key block down bellow):

-----BEGIN EC PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: AES-256-CFB,FE84E6F4F667CECE9186E27185EF8961

CgzP83FFbCmTx0wcDC/vVo5PhMBWzmNg4LgwYhc2er8Gcgg8f7/MuWRmS0GXRmGF
...
...
XCsxdkIUY2UJ+irBkg/a4f/KGoB6bu4=
-----END EC PRIVATE KEY-----
Additional InformationThe same problem can be found in recent Ubuntu and Debian. It seems to be a problem of the upstream, but it is not easy to find anything on their web page.
Tags"Network", "wireless", centos 7, NetworkManager
abrt_hash
URL

Activities

vessokolev

vessokolev

2019-02-16 01:46

reporter   ~0033849

Duplicate to https://bugs.centos.org/view.php?id=15797

See the notes there for solution.

Issue History

Date Modified Username Field Change
2019-02-07 21:29 vessokolev New Issue
2019-02-07 21:29 vessokolev Tag Attached: "Network"
2019-02-07 21:29 vessokolev Tag Attached: "wireless"
2019-02-07 21:29 vessokolev Tag Attached: centos 7
2019-02-07 21:29 vessokolev Tag Attached: NetworkManager
2019-02-16 01:46 vessokolev Note Added: 0033849