EAP-TLS connection problem

Dmitry Shmidt dimitrysh at google.com
Tue Jul 8 11:32:09 EDT 2008


>
> Hi,
>
> I have ported wpa_supplicant 0.5.10 and I am trying to associate with
> WPA-EAP-TLS.
> And I am receiving next error. (full log is attached).
> ---------------------------------------------------------------------------
> SSL: SSL_connect:SSLv3 read server hello A
> TLS: tls_verify_cb - preverify_ok=1 err=0 (ok) depth=1
> buf='/DC=tw/DC=com/DC=sitdc1/CN=WLAN01'
> TLS: Certificate verification failed, error 7 (certificate signature
> failure) depth 0 for '/CN=wlan01.sitdc1.com.tw'
> SSL: (where=0x4008 ret=0x233)
> SSL: SSL3 alert: write (local SSL3 detected an error):fatal:decrypt error
> SSL: (where=0x1002 ret=0xffffffff)
> SSL: SSL_connect:error in SSLv3 read server certificate B
> OpenSSL: tls_connection_handshake - SSL_connect error:0407006A:rsa
> routines:RSA_padding_check_PKCS1_type_1:block type is not 01
> OpenSSL: pending error: error:04067072:rsa
> routines:RSA_EAY_PUBLIC_DECRYPT:padding check failed
> OpenSSL: pending error: error:0D0C5006:asn1 encoding
> routines:ASN1_item_verify:EVP lib
> OpenSSL: pending error: error:14090086:SSL
> routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
> SSL: 7 bytes pending from ssl_out
> SSL: Failed - tls_out available to report error
> SSL: 7 bytes left to be sent out (of total 7 bytes)
> EAP-TLS: TLS processing failed
> ---------------------------------------------------------------------------
> What is the most possible issue ?
>
> Thanks,
>
> Dmitry
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.shmoo.com/pipermail/hostap/attachments/20080708/35a32ea4/attachment.htm 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: eaptlsfail_log.zip
Type: application/zip
Size: 4778 bytes
Desc: not available
Url : http://lists.shmoo.com/pipermail/hostap/attachments/20080708/35a32ea4/attachment.zip 


More information about the HostAP mailing list