EAP-TLS - Authentication succeeds with in-correct "private_key_passwd"

Jouni Malinen j at w1.fi
Wed Oct 13 14:26:45 EDT 2010


On Wed, Oct 13, 2010 at 08:27:33PM +0530, saurav barik wrote:
> I ran wpa_supplicant with -dd option and attached is the log.
> logoff/logon is trying to reauth, but couple of places I see it uses
> old-successful-config-data if fast_reauth is enabled. I disabled
> fast_reauth in my config but it did not help(new credentials such as
> "private_key_passwd" are not validated again, as part of reauth).

The fast_reauth=1 case is expected behavior. fast_reauth=0 should use
new credentials, but it looks like you did not actually ask
wpa_supplicant to read the new configuration.. Just modifying
wpa_supplicant.conf is not going to change anything in the running
process without explicit request to re-read the configuration.

-- 
Jouni Malinen                                            PGP id EFC895FA


More information about the HostAP mailing list