Using OpenSSL 0.9.8k peap-tls fails with session resumption

Jouni Malinen j at w1.fi
Sat Sep 12 12:50:02 EDT 2009


On Fri, Sep 11, 2009 at 09:38:57PM +0000, vani y wrote:

> I have been using wpa_supplicant with OpenSSL lib 0.9.8k. I am testing PEAP-TLS with session resumption and 'fast reconnect' disabled on the server. This would force the client to do a full reauthentication.

Which authentication server are you using?

> I am seeing the client failing the session resumption with the OpenSSL lib 0.9.8k. With the older version of OpenSSL this issue did not happen.
>  
> The failure happens when the client send Client certificate after a server hello validation. The server sends access denied failure.

Could you please send wpa_supplicant debug log (-dd on command line)
from both the successful and failed run?

-- 
Jouni Malinen                                            PGP id EFC895FA


More information about the HostAP mailing list