<div><span class="gmail_quote">On 11/08/06, <b class="gmail_sendername">Jouni Malinen</b> <<a href="mailto:jkmaline@cc.hut.fi">jkmaline@cc.hut.fi</a>> wrote:</span>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">On Fri, Aug 11, 2006 at 10:40:54AM +0200, Paul-Henri Gauzence de Lastours wrote:<br><br>> - in the *eap_tls_common* file, in the function *eap_tls_process_helper*,
<br>> the function *tls_connection_handshake *is never called, because *<br>> eap_tls_data_reassemble* returns a NULL, and so, we quit *<br>> eap_tls_process_helper*. I tried to force the call of *eap_tls_handshake* by
<br>> commenting out the test on msg value. Then, the *client hello* message was<br>> correctly sent, but then, there were lots and lots of strange characters on<br>> debug output, and the authentication failed. But the *Client_hello* and *
<br>> Response_EAP-TTLS* packets were correctly sent.<br>><br>> So it seems that OpenSSL is correctly working, and that the problem comes<br>> from *eap_tls_data_reassemble*. I'm continuing to work on that, but would
<br>> you have any idea of what could provok getting a NULL from this function ?<br><br>I would suggest testing with the current 0.5.x development tree. My<br>first guess would be that uclibc is returning NULL from malloc(0) call
<br>on your target system. 0.4.8 has "data->tls_in = malloc(in_len)" in this<br>function whereas this has been changed to "data->tls_in = malloc(in_len<br>? in_len : 1)" in 0.5.x branch.</blockquote>
<div> </div>
<div>You're right about that, and I reached the same conclusion. I changed it my 0-4-8 version (it is not changed yet in the 0-5-4 I downloaded), and everything went fine, at least at the beginning... Then it seems I've got some problems with certifcate checking, but I'm gonna work on it.
</div>
<div> </div>
<div>Many thanks for your help.</div><br> </div>