Internal crypto implementation - need help

Bar, Eitan eitanb
Tue Jan 9 06:27:41 PST 2007


Hi,

After successfully testing EAP-TLS with wpa_supplicant and OpenSSL, I went on to testing EAP-TLS with the internal crypto implementation of wpa_supplicant.

I encountered some errors in parsing the certificates, and I wonder if I can get some tips here.

Is the only thing wrong here the private key file?

 Thanks, 
   Eitan

Log:
----

EAP: Received EAP-Request id=2 method=13 vendor=0 vendorMethod=0
EAP: EAP entering state GET_METHOD
EAP: Initialize selected EAP method: vendor 0 method 13 (TLS)
TLSv1: Converting PEM format certificate into DER format
X509: Version X.509v3
X509: serialNumber 1646918304
X509: Unrecognized OID - hexdump(len=28): 00 00 00 00 09 00 00 00 26 09 00 00 2c f9 24 01 64 00 00 00 01 00 00 00 19 00 00 00
X509: Attribute Data - hexdump_ascii(len=3):
     63 6f 6d                                          com
X509: Unrecognized OID - hexdump(len=28): 00 00 00 00 09 00 00 00 26 09 00 00 2c f9 24 01 64 00 00 00 01 00 00 00 19 00 00 00
X509: Attribute Data - hexdump_ascii(len=3):
     6c 61 62                                          lab
X509: issuer CN=CA wireless access,
X509: Validity: notBefore: 1152545441 notAfter: 1310312407
X509: Unrecognized OID - hexdump(len=28): 00 00 00 00 09 00 00 00 26 09 00 00 2c f9 24 01 64 00 00 00 01 00 00 00 19 00 00 00
X509: Attribute Data - hexdump_ascii(len=3):
     63 6f 6d                                          com
X509: Unrecognized OID - hexdump(len=28): 00 00 00 00 09 00 00 00 26 09 00 00 2c f9 24 01 64 00 00 00 01 00 00 00 19 00 00 00
X509: Attribute Data - hexdump_ascii(len=3):
     6c 61 62                                          lab
X509: subject CN=CA wireless access,
X509: subjectPublicKey - hexdump(len=270): 30 82 01 0a 02 82 01 01 00 a7 17 79 07 cd e4 10 4d 5f 4d fe c0 cc 6f b9 98 a0 ce a3 92 1b 44 0
6 b2 16 93 47 b0 1b 02 f1 d7 ce 23 fa 79 c2 dc 12 f8 a6 ad 7e d9 a9 35 f3 c4 4b 9c d7 d8 d9 c5 87 ad 9c 7e a8 70 74 da 25 e4 91 83 13 d4
f6 f3 4f 6d 45 b6 d9 8a fc dc b7 c1 ad b4 d4 b8 59 37 0f 1f a1 9f 24 c1 ca ac 1c a1 2f af 63 2b 6b 34 a4 8e 5f 3f ec c8 3b b1 5c 77 79 2b
 9d 50 a8 ca b9 fb bd 4c e1 bf c5 74 69 36 eb 4b 2d b6 e0 df b2 c1 dc 55 cc 8d 3d 2e 0a 5c 53 a1 b0 6a ed 5a 2c 50 8e 1a 2b 83 42 9b 7c 1
b 64 3d 3b e3 de ba bc 5d 93 fa 37 fe c3 b4 6d 31 66 06 39 b1 21 5b fc 73 20 40 42 15 15 c8 63 91 56 70 7e 9c 06 81 a4 cd ea 05 dd f3 72
da 93 7d 56 58 5c 2c b2 c1 26 0d 9f 19 72 9b ea 73 19 dd da 15 9e 33 b4 7f af 2c ea cf 52 8a d4 c5 c6 b5 3b de ca a5 81 f1 b9 45 93 b5 1a
 71 70 6f d4 9b 02 03 01 00 01
X509: Extension: extnID=1.3.6.1.4.1.311.20.2 critical=0
X509: extnValue - hexdump(len=6): 1e 04 00 43 00 41
X509: Extension: extnID=2.5.29.15 critical=0
X509: extnValue - hexdump(len=4): 03 02 01 86
X509: KeyUsage 0x61
ASN.1: Extended tag data: 0x04
X509: Extension: extnID=2.5.29.19 critical=255
X509: extnValue - hexdump(len=5): 30 03 01 01 ff
X509: BasicConstraints - cA=255
X509: Extension: extnID=2.5.29.14 critical=0
X509: extnValue - hexdump(len=22): 04 14 c4 0a 15 5e c1 60 9c d4 f2 ca f0 c8 6a ea 19 88 37 4f 94 fc
X509: Extension: extnID=2.5.29.31 critical=0
X509: extnValue - hexdump(len=274): 30 82 01 0e 30 82 01 0a a0 82 01 06 a0 82 01 02 86 81 bd 6c 64 61 70 3a 2f 2f 2f 43 4e 3d 43 41 25 32
 30 77 69 72 65 6c 65 73 73 25 32 30 61 63 63 65 73 73 28 31 29 2c 43 4e 3d 77 69 72 65 6c 65 73 73 2c 43 4e 3d 43 44 50 2c 43 4e 3d 50 7
5 62 6c 69 63 25 32 30 4b 65 79 25 32 30 53 65 72 76 69 63 65 73 2c 43 4e 3d 53 65 72 76 69 63 65 73 2c 43 4e 3d 43 6f 6e 66 69 67 75 72
61 74 69 6f 6e 2c 44 43 3d 6c 61 62 2c 44 43 3d 63 6f 6d 3f 63 65 72 74 69 66 69 63 61 74 65 52 65 76 6f 63 61 74 69 6f 6e 4c 69 73 74 3f
 62 61 73 65 3f 6f 62 6a 65 63 74 43 6c 61 73 73 3d 63 52 4c 44 69 73 74 72 69 62 75 74 69 6f 6e 50 6f 69 6e 74 86 40 68 74 74 70 3a 2f 2
f 77 69 72 65 6c 65 73 73 2e 6c 61 62 2e 63 6f 6d 2f 43 65 72 74 45 6e 72 6f 6c 6c 2f 43 41 25 32 30 77 69 72 65 6c 65 73 73 25 32 30 61
63 63 65 73 73 28 31 29 2e 63 72 6c
X509: Extension: extnID=1.3.6.1.4.1.311.21.1 critical=0
X509: extnValue - hexdump(len=5): 02 03 01 00 01
X509: Extension: extnID=1.3.6.1.4.1.311.21.2 critical=0
X509: extnValue - hexdump(len=22): 04 14 f4 56 bf 0d e0 ac d1 58 da 85 e8 5b ab 31 2f 74 13 c7 90 cc
X509: signature - hexdump(len=256): 52 d4 a8 6c d3 62 d3 be 90 07 86 f1 3b f9 55 e6 cb 1b 48 ad a0 7b d0 8d 54 0c 5b 70 72 75 e0 5b b8 c9
 7b d4 8e 1d 1c 5e 6c 11 2f 4f 24 3b 8a 6b 71 54 10 48 47 b1 92 b4 8e 0c 23 02 97 fe f1 4d a4 27 40 a4 1f 1a 10 fe 00 4e e3 ab c5 cc e9 5
a 98 3e 95 c9 87 65 7a 73 51 9f 86 26 cf f1 e5 5e 5a df c9 f6 2d 4c 33 cd ea e5 51 34 56 b1 05 e5 81 6c b3 f8 2b 02 64 7f 6a 90 4f e6 e6
88 c3 e7 74 91 48 fb db 59 8d 7d da 18 e9 d8 a2 1c d5 15 69 82 c0 e2 65 31 8a c8 32 d1 c3 f3 78 83 ea d2 f9 4f 02 e7 9f 90 c0 b6 ea e5 e3
 e8 ed 97 1a 0e 72 50 8e bb ec d4 13 23 15 8f e5 46 eb de c9 13 10 a5 09 83 22 47 ca 16 1f b8 c1 ce ef 98 9a 7d 56 fd 69 48 29 21 87 43 d
1 05 5a a9 98 d7 b5 e2 d5 41 b0 73 78 6f 10 35 f7 c5 0e ab 2e 10 49 90 83 f2 64 f8 e2 a4 c3 9b 50 7e 41 5b b9 20 7f f6
TLSv1: Added certificate: CN=CA wireless access,
TLSv1: No PEM certificate tag found - assume DER format
X509: Version X.509v3
X509: serialNumber 52
X509: Unrecognized OID - hexdump(len=28): 00 00 00 00 09 00 00 00 26 09 00 00 2c f9 24 01 64 00 00 00 01 00 00 00 19 00 00 00
X509: Attribute Data - hexdump_ascii(len=3):
     63 6f 6d                                          com
X509: Unrecognized OID - hexdump(len=28): 00 00 00 00 09 00 00 00 26 09 00 00 2c f9 24 01 64 00 00 00 01 00 00 00 19 00 00 00
X509: Attribute Data - hexdump_ascii(len=3):
     6c 61 62                                          lab
X509: issuer CN=CA wireless access,
X509: Validity: notBefore: 1167918112 notAfter: 1199454112
X509: Unrecognized OID - hexdump(len=28): 00 00 00 00 09 00 00 00 26 09 00 00 2c f9 24 01 64 00 00 00 01 00 00 00 19 00 00 00
X509: Attribute Data - hexdump_ascii(len=3):
     63 6f 6d                                          com
X509: Unrecognized OID - hexdump(len=28): 00 00 00 00 09 00 00 00 26 09 00 00 2c f9 24 01 64 00 00 00 01 00 00 00 19 00 00 00
X509: Attribute Data - hexdump_ascii(len=3):
     6c 61 62                                          lab
X509: subject CN=wireless,
X509: subjectPublicKey - hexdump(len=140): 30 81 89 02 81 81 00 bb ce c1 f9 69 06 6c 59 43 23 8e d4 77 eb d2 3c a6 a5 e5 a1 f7 28 af 60 1
4 ac b7 5d 94 d0 19 36 48 cc 9d 47 13 d8 36 35 2b 8a 36 77 cd b9 52 2c 81 43 89 02 44 20 04 45 d1 9f 8e 0f ef 44 9c 57 42 80 3c 41 d7 39
0e 37 59 6d 07 ee dd 60 c4 8e 6c f1 dc 33 44 9c dc da ae 05 c4 ca b3 d0 99 52 ef 1a 41 04 5e 2a f4 60 60 cd 73 54 e7 9f ed 3d 75 70 50 1c
 1c 5d 44 77 39 e8 12 44 16 9c 09 0d 02 03 01 00 01
X509: Extension: extnID=2.5.29.15 critical=0
X509: extnValue - hexdump(len=4): 03 02 05 a0
X509: KeyUsage 0x5
X509: Extension: extnID=1.2.840.113549.1.9.15 critical=0
X509: extnValue - hexdump(len=55): 30 35 30 0e 06 08 2a 86 48 86 f7 0d 03 02 02 02 00 80 30 0e 06 08 2a 86 48 86 f7 0d 03 04 02 02 00 80
30 07 06 05 2b 0e 03 02 07 30 0a 06 08 2a 86 48 86 f7 0d 03 07
X509: Extension: extnID=2.5.29.14 critical=0
X509: extnValue - hexdump(len=22): 04 14 e4 b0 06 07 61 87 f4 64 9b e4 20 03 68 3b 13 3d 9c df 6b 87
X509: Extension: extnID=1.3.6.1.4.1.311.21.7 critical=0
X509: extnValue - hexdump(len=48): 30 2e 06 26 2b 06 01 04 01 82 37 15 08 86 ff ba 0e 81 81 e4 44 86 91 8f 15 86 b3 82 60 81 f9 af 39 57
86 a6 ed 31 82 91 a1 46 02 01 66 02 01 00
X509: Extension: extnID=2.5.29.35 critical=0
X509: extnValue - hexdump(len=24): 30 16 80 14 c4 0a 15 5e c1 60 9c d4 f2 ca f0 c8 6a ea 19 88 37 4f 94 fc
X509: Extension: extnID=2.5.29.31 critical=0
X509: extnValue - hexdump(len=274): 30 82 01 0e 30 82 01 0a a0 82 01 06 a0 82 01 02 86 81 bd 6c 64 61 70 3a 2f 2f 2f 43 4e 3d 43 41 25 32
 30 77 69 72 65 6c 65 73 73 25 32 30 61 63 63 65 73 73 28 31 29 2c 43 4e 3d 77 69 72 65 6c 65 73 73 2c 43 4e 3d 43 44 50 2c 43 4e 3d 50 7
5 62 6c 69 63 25 32 30 4b 65 79 25 32 30 53 65 72 76 69 63 65 73 2c 43 4e 3d 53 65 72 76 69 63 65 73 2c 43 4e 3d 43 6f 6e 66 69 67 75 72
61 74 69 6f 6e 2c 44 43 3d 6c 61 62 2c 44 43 3d 63 6f 6d 3f 63 65 72 74 69 66 69 63 61 74 65 52 65 76 6f 63 61 74 69 6f 6e 4c 69 73 74 3f
 62 61 73 65 3f 6f 62 6a 65 63 74 43 6c 61 73 73 3d 63 52 4c 44 69 73 74 72 69 62 75 74 69 6f 6e 50 6f 69 6e 74 86 40 68 74 74 70 3a 2f 2
f 77 69 72 65 6c 65 73 73 2e 6c 61 62 2e 63 6f 6d 2f 43 65 72 74 45 6e 72 6f 6c 6c 2f 43 41 25 32 30 77 69 72 65 6c 65 73 73 25 32 30 61
63 63 65 73 73 28 31 29 2e 63 72 6c
X509: Extension: extnID=1.3.6.1.5.5.7.1.1 critical=0
X509: extnValue - hexdump(len=279): 30 82 01 13 30 81 b1 06 08 2b 06 01 05 05 07 30 02 86 81 a4 6c 64 61 70 3a 2f 2f 2f 43 4e 3d 43 41 25
 32 30 77 69 72 65 6c 65 73 73 25 32 30 61 63 63 65 73 73 2c 43 4e 3d 41 49 41 2c 43 4e 3d 50 75 62 6c 69 63 25 32 30 4b 65 79 25 32 30 5
3 65 72 76 69 63 65 73 2c 43 4e 3d 53 65 72 76 69 63 65 73 2c 43 4e 3d 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 44 43 3d 6c 61 62 2c 44
43 3d 63 6f 6d 3f 63 41 43 65 72 74 69 66 69 63 61 74 65 3f 62 61 73 65 3f 6f 62 6a 65 63 74 43 6c 61 73 73 3d 63 65 72 74 69 66 69 63 61
 74 69 6f 6e 41 75 74 68 6f 72 69 74 79 30 5d 06 08 2b 06 01 05 05 07 30 02 86 51 68 74 74 70 3a 2f 2f 77 69 72 65 6c 65 73 73 2e 6c 61 6
2 2e 63 6f 6d 2f 43 65 72 74 45 6e 72 6f 6c 6c 2f 77 69 72 65 6c 65 73 73 2e 6c 61 62 2e 63 6f 6d 5f 43 41 25 32 30 77 69 72 65 6c 65 73
73 25 32 30 61 63 63 65 73 73 28 31 29 2e 63 72 74
X509: Extension: extnID=2.5.29.37 critical=0
X509: extnValue - hexdump(len=34): 30 20 06 08 2b 06 01 05 05 07 03 02 06 08 2b 06 01 05 05 07 03 04 06 0a 2b 06 01 04 01 82 37 0a 03 04
X509: Extension: extnID=1.3.6.1.4.1.311.21.10 critical=0
X509: extnValue - hexdump(len=40): 30 26 30 0a 06 08 2b 06 01 05 05 07 03 02 30 0a 06 08 2b 06 01 05 05 07 03 04 30 0c 06 0a 2b 06 01 04
01 82 37 0a 03 04
X509: Extension: extnID=2.5.29.17 critical=0
X509: extnValue - hexdump(len=36): 30 22 a0 20 06 0a 2b 06 01 04 01 82 37 14 02 03 a0 12 0c 10 77 69 72 65 6c 65 73 73 40 6c 61 62 2e 63
6f 6d
X509: signature - hexdump(len=256): 69 84 c7 13 6f 96 d0 d8 31 7c ff 29 d4 82 df 0c 5c fb 15 34 81 81 6c 9f c4 ad 06 58 79 1a ff a2 39 16
 62 1a 09 8b 54 5c 57 2e 4e 5a 3f 35 1b 29 58 ad 42 64 7b 2e 5f 8d 1f 90 cc 2f d1 88 f9 a6 f6 0f 9b a6 0b 73 20 0f 16 8d 55 b5 00 a8 a3 a
6 d1 c9 bb 23 47 8a 6a ee 50 b6 40 93 f5 e0 74 0b 27 1d 49 5c 95 ff bf de bc ee 1f 4c f8 f1 04 23 52 60 01 17 b4 a9 a4 46 52 32 0b 7f 65
c3 02 8a 2c 77 ff 27 22 a5 43 8c 1e 4d 03 50 78 9c ff 54 f6 dd 01 e0 8e 15 22 20 b6 57 00 8c 9b 96 98 d6 ea 2f d3 5e f0 39 b3 7e c3 85 58
 24 7e d0 48 7d fb 8b bf 30 c9 24 46 27 76 24 9b 8b b5 ce be 55 64 c4 c1 14 ba a7 5c d1 96 b2 ec b7 d1 2d 25 27 3b c2 2f 15 fd df 00 28 b
6 e3 d6 87 4c 2f 47 76 de ae d9 90 6a d2 ca f3 c7 e1 57 81 53 38 40 03 94 0e 88 9b 60 df 3b c9 4e c1 f1 ab 06 4b c0 62
TLSv1: Added certificate: CN=wireless,
RSA: Expected SEQUENCE (public key) - found class 1 tag 0x2
TLSv1: Failed to parse private key
TLS: Failed to load private key
TLS: Failed to set TLS connection parameters
EAP-TLS: Failed to initialize SSL.
TLSv1: Selected cipher suite: 0x0000



More information about the Hostap mailing list