From patchwork Wed Jan 6 14:43:13 2021 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Michael Tremer X-Patchwork-Id: 3794 Return-Path: Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature RSA-PSS (4096 bits)) (Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK)) by web04.haj.ipfire.org (Postfix) with ESMTPS id 4D9sYP72rDz3wgX for ; Wed, 6 Jan 2021 14:43:21 +0000 (UTC) Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [172.28.1.201]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail02.haj.ipfire.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mail01.ipfire.org (Postfix) with ESMTPS id 4D9sYN367Nz1nW; Wed, 6 Jan 2021 14:43:20 +0000 (UTC) Received: from mail02.haj.ipfire.org (localhost [127.0.0.1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 4D9sYN1Fh9z302c; Wed, 6 Jan 2021 14:43:20 +0000 (UTC) Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature RSA-PSS (4096 bits)) (Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4D9sYM1JjKz2xmM for ; Wed, 6 Jan 2021 14:43:19 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) server-digest SHA384) (No client certificate requested) by mail01.ipfire.org (Postfix) with ESMTPSA id 4D9sYM08GXz141; Wed, 6 Jan 2021 14:43:19 +0000 (UTC) DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003ed25519; t=1609944199; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=asN3yQzs3EqO8WubcCGLDJvmyt9ISIiSaoPw4yWazzM=; b=Z7L95yzf/djcDH9LGqbsC3rHgDA3pFlgpxsJiIZ7LSqe7hYeqCPHSbaiEnIhB3GXqISglZ 5Y33BvQ94hNZDHAw== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003rsa; t=1609944199; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=asN3yQzs3EqO8WubcCGLDJvmyt9ISIiSaoPw4yWazzM=; b=ok1RmeAepF92DBmKjWLircas5bBy2IuSM+3QOhAvOAUMK3xceOnPIv7lLekV+mZKAF/lLX JrgOJl1VbSvninyfJ7UWptbzqg4N+C3RjUpb0SJTp1OgiAkdmNKprQYzY+OdY1lcwJjvl4 inOdqlvvPCHS4X/X7ejpXzmvZgaQDJKTW01DrZGPwclM93r+gQCq1l10iWSCPAsdzPIWhs VkgZYsuxMYWk3nCVMwPzJW3oKg6ixF5XqNdj4HP4OkHWreunZHM3cUjiN0nVufxbGdGvfa vthBStgv1wPiJSUc/n/Ah8Rj1WRltDohLf6AksEi2CwGH8KCqR84qp7G/7IJSw== From: Michael Tremer To: development@lists.ipfire.org Subject: [PATCH 2/3] wireless client: Try using SHA256 over SHA1 when possible Date: Wed, 6 Jan 2021 14:43:13 +0000 Message-Id: <20210106144314.2732-2-michael.tremer@ipfire.org> In-Reply-To: <20210106144314.2732-1-michael.tremer@ipfire.org> References: <20210106144314.2732-1-michael.tremer@ipfire.org> MIME-Version: 1.0 X-BeenThere: development@lists.ipfire.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: IPFire development talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Michael Tremer Errors-To: development-bounces@lists.ipfire.org Sender: "Development" Signed-off-by: Michael Tremer --- src/initscripts/system/wlanclient | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/src/initscripts/system/wlanclient b/src/initscripts/system/wlanclient index 27a144f72..4b3938b46 100644 --- a/src/initscripts/system/wlanclient +++ b/src/initscripts/system/wlanclient @@ -143,7 +143,7 @@ function wpa_supplicant_config_line() { case "${mode}" in EAP) - key_mgmt="WPA-EAP" + key_mgmt="WPA-EAP-SHA256 WPA-EAP" ;; WPA3) key_mgmt="SAE" @@ -153,12 +153,12 @@ function wpa_supplicant_config_line() { WPA2) auth_alg="OPEN" proto="RSN" - key_mgmt="WPA-PSK" + key_mgmt="WPA-PSK-SHA256 WPA-PSK" ;; WPA) auth_alg="OPEN" proto="WPA" - key_mgmt="WPA-PSK" + key_mgmt="WPA-PSK-SHA256 WPA-PSK" ;; WEP) auth_alg="SHARED"