Having problem on wpa_supplicant with EAP-TTLS

Paul-Henri Gauzence de Lastours gauzence at gmail.com
Wed Jul 26 10:48:41 EDT 2006 

Hi Jouni,

I'm using wpa_supplicant-0.4.8.
On the bridge on which I'm working, there are two ethernet interfaces. I
think the problem doesn't come from the bridge, because as I said in a
previous post, everything is working fine with an MD5 authentication.
The version of OpenSSL is 0.9.7j, the latest for branch 0-9-7 (4th may
2006), and I'm working on ARM9 with a 2.6.10 kernel.
According to what you say, the problem should come from OpenSSL, so I'm
gonna have a look on it.


Here's the content of .config file (only the uncommented lines, all others
are set to default):

# Driver interface for wired Ethernet drivers
CONFIG_DRIVER_WIRED=y

# Enable IEEE 802.1X Supplicant (automatically included if any EAP method is
# included)
CONFIG_IEEE8021X_EAPOL=y

# EAP-MD5 (automatically included if EAP-TTLS is enabled)
CONFIG_EAP_MD5=y

# EAP-MSCHAPv2 (automatically included if EAP-PEAP is enabled)
CONFIG_EAP_MSCHAPV2=y

# EAP-TTLS
CONFIG_EAP_TTLS=y

# Include control interface for external programs, e.g, wpa_cli
CONFIG_CTRL_IFACE=y

# Select configuration backend:
# file = text file (e.g., wpa_supplicant.conf)
CONFIG_BACKEND=file





On 26/07/06, Jouni Malinen <jkmaline at cc.hut.fi> wrote:
>
> On Mon, Jul 24, 2006 at 04:05:13PM +0200, Paul-Henri Gauzence de Lastours
> wrote:
>
> > Here is the complete debug output for wpa-suplicant:
>
> Which version of wpa_supplicant are you using?
>
> > $ wpa_supplicant -ibr0 -cconf -dd
> > Initializing interface 'br0' conf 'conf' driver 'default' ctrl_interface
> > 'N/A'
>
> Which interfaces are on that bridge interface? Which kernel version and
> CPU are you using? Can you please send .config file used to build
> wpa_supplicant?
>
> > CTRL-EVENT-EAP-METHOD EAP method 21 (TTLS) selected
> > EAP: EAP entering state METHOD
> > SSL: Received packet(len=6) - Flags 0x20
> > EAP-TTLS: Start
>
> This line should be followed by OpenSSL generating ClientHello message..
> Which version of OpenSSL are you using?
>
> > EAP: method process -> ignore=FALSE methodState=MAY_CONT decision=FAIL
> > EAP: EAP entering state SEND_RESPONSE
> > EAP: EAP entering state IDLE
>
> And this should be followed by EAPOL SUPP_BE state machine entering
> RESPONSE state where the EAP-Response would be sent out.
>
> --
> Jouni Malinen                                            PGP id EFC895FA
> _______________________________________________
> HostAP mailing list
> HostAP at shmoo.com
> http://lists.shmoo.com/mailman/listinfo/hostap
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.shmoo.com/pipermail/hostap/attachments/20060726/94d01fb1/attachment.htm

More information about the HostAP mailing list