wrong time?

Jouni Malinen j at w1.fi
Fri May 9 08:45:03 EDT 2008


On Wed, May 07, 2008 at 05:57:44PM -0600, Jeff Sadowski wrote:

> In the process of finding this I found my certificate expired in 2007
> I'll have to fix that but none of the other machines had a problem
> connecting
> I find it weird that my embedded device with less complete stuff
> (uclibc instead of glibc) has a wpa_supplicant that checks where as my
> ubuntu laptop had no issues connecting.

I would assume that the wpa_supplicant build in Ubuntu is using OpenSSL
while the debug logs from the embedded device were using the internal
TLS implementation in wpa_supplicant. Have you left out ca_cert
configuration in the network block? If yes, that disables at least parts
of the server certificate validation. In case of OpenSSL, it is possible
that this has even disabled the validity period verification.

-- 
Jouni Malinen                                            PGP id EFC895FA


More information about the HostAP mailing list