Unable to Connect to Eduroam network with Solus

FAb7D

....A window will pop up asking for your password again. ...

This window pop up on the browser? If yes there some noscript add on or anything that block it?

What is the output of
$ nmcli device wifi rescan && nmcli device wifi list ?

Matt_Nico

FAb7D No the window which pops up is a system window, which asks me to re input the username and password for the network.

I ran that command, here is the output that I received, not sure what significance it has

FAb7D

Matt_Nico Can you post also a photo of the right side of that output? and also the WiFi on Editin eduroam

Matt_Nico

FAb7D
Sorry I didn't realize there was another portion to the output, here it is!

As for the wifi screen in the edit section, here you go!

Thank you for helping me out

FAb7D

Matt_Nico
I don't know what it is, but maybe you need to disconect from that "UniversityOfWaterloo" first.
Anyway try with that pyton script but with:
python3 eduroam-linux-UoW.py

Matt_Nico

FAb7D Hi again,
When I have been trying to connect I have disconnected from the other network before, but I'll double check next time I am on campus. I tried to run that python script again using python3 and I think it ran?

It did seem to come back with some error, but I do not know if that actually meant anything or if it is because I ran the script while at home. I will try the network again tomorrow with the settings that the configuration tool created, although weirdly in my network connections tab it did not create a new entry for eduroam (I had deleted the old version to ensure clean creation).

Miko

I've never had luck with eduroam and linux, but in a month I'll see if Solus is anything better than other distros

My university says that you can modify the wpa_supplicant configuration file like that:

network={

ssid="eduroam"
key_mgmt=WPA-EAP
eap=TLS
ca_cert="/path/to/main/certificate"
identity="XXXXXXX@eduroam.your.uni.adress"
private_key="/path/to/generated/certificate"
private_key_passwd="passwordForGeneratedCertificate"

}

XXX is your indenty. I tried this with Ubuntu once after GUI didn't work but this method didn't either but who knows, maybe it will do for you

FAb7D

okay, let's see what happens tomorrow

Matt_Nico

FAb7D Hey again,

I tried to connect when I was on campus again but unfortunately things did not work, I ran the python script again after trying to connect in case it needed to "see" the network but the same thing came back in the terminal. I might just do a fresh install to clean things up on my laptop before continuing, I am not sure.

ReillyBrogan

https://bbs.archlinux.org/viewtopic.php?id=286417&p=2

It looks like this might be an incompatibility with OpenSSL 3.1. There are several solutions listed on that thread.

Matt_Nico

ReillyBrogan I will have to take a look at that thread, just glancing at it I am a bit concerned that it is over my head. Would it possibly be worth it to wait for an updated package?

also elusian I ran that command but unfortunately couldn't make sense of the output. Should I run it after attempting to connect to the network, or will running it at any time yield the same result?

I will be back on campus again tomorrow, so then I can try to follow the arch forum and do other troubleshooting

elusian

I was having issues too, and I followed the arch forum link.
However, following the instructions for the log showed that in my case it was an issue with a self signed certificate from my institution.

OpenSSL 3.1 had no issues in my case, so I'd start from
sudo journalctl -b0
to understand whether the issue is OpenSSL based

elusian

Matt_Nico
Apologies, I should have explained better. That command shows the system log, and should be ran after you try and fail to connect. An OpenSSL error should show in the log, near the end.

To check, you can search (search is done by typing a /) for the string "OpenSSL".
In case of an OpenSSL error, that line should provide more info, so please paste it here.

I hope this helps!

pomon

Before you install the system again maybe check the connection on Solus Live.

Matt_Nico

pomon I did end up checking it on a live instance as well as on an instance I have on a portable hard drive, neither worked. I was going to try MX or another OS to see if that works, but I haven't gotten around to it.

elusian I ran the command you mentioned after trying to connect to the network using @ReillyBrogan 's updated packages.
Unfortunately things did not connect, perhaps you can make some sense of the output?

For now I have talked to my school's IT and they have connected me through a MAC address whitelist (this however doesn't let me access school resources like eduroam can). Good enough temporarily I suppose

Thank you again to everyone who is helping me out!

FAb7D

I don't think reinstalling serves anything, follow Reill's suggestion.
Maybe in some time they will make a patch, but who knows when.
If you want to try something at your own peril that I have no idea if it can break everything or anything (so use it just like last ratio before reinstall and after a backup) I would try a downgrade of this openssl (40 or 41):

Mod edit: do not downgrade openssl, you will brick your system

NB I do not know if it is something that can work (because this package could be essential for so many other things that I don't know), but what seems ascertained is that with the previous version it worked.
Who knows maybe someone in the forum knows and can tell us if it is something that can really be done without irreparable damage...

ReillyBrogan

FAb7D I can confirm with 100% certainty that if you run that command to reinstall the older openssl that it will render your system unbootable. Please do not do that. I'm going to import some upstream patches into our wpa_supplicant in the hopes that it improves the situation, hang tight

ReillyBrogan

I added a few more patches to wpa_supplicant which might help: sudo eopkg it https://cdn.getsol.us/repo/unstable/w/wpa_supplicant/wpa_supplicant-2.10-25-1-x86_64.eopkg

Matt_Nico

Sorry all, I haven't had a chance to continue my troubleshooting. I will be back on Friday and hopefully I can implement some of these changes then.

ReillyBrogan initially trying with this I didn't get it to work but I also only had time to try it once before I needed to get going on schoolwork. I'll do a full reboot and try again on Friday when I am back. Thank you so much for taking the time to help me!