wrong time?

Jeff Sadowski jeff.sadowski
Fri May 9 11:01:46 PDT 2008

On Fri, May 9, 2008 at 6:45 AM, Jouni Malinen <j at w1.fi> wrote:
> On Wed, May 07, 2008 at 05:57:44PM -0600, Jeff Sadowski wrote:
>> In the process of finding this I found my certificate expired in 2007
>> I'll have to fix that but none of the other machines had a problem
>> connecting
>> I find it weird that my embedded device with less complete stuff
>> (uclibc instead of glibc) has a wpa_supplicant that checks where as my
>> ubuntu laptop had no issues connecting.
> I would assume that the wpa_supplicant build in Ubuntu is using OpenSSL
> while the debug logs from the embedded device were using the internal
> TLS implementation in wpa_supplicant. Have you left out ca_cert
> configuration in the network block? If yes, that disables at least parts
> of the server certificate validation. In case of OpenSSL, it is possible
> that this has even disabled the validity period verification.
my wpa_supplican.conf looks the same on both machines(ubuntu and
gumstix) it looks as follows


In windows we are told to uncheck server validation. (I know this is
unsafe but the network admin did not know how to set it up properly on
our trapeze wireless system.) So it will never check the cert from any
of the windows machines.

The gumstix is using wpa_supplicant 0.5.8r1 I don't have it with me
today I do have all the source and its build scripts and can dig into

ubuntu shows
#wpa_supplicant --version
wpa_supplicant: invalid option -- -
wpa_supplicant v0.5.8
# ldd /sbin/wpa_supplicant
	linux-gate.so.1 =>  (0xb7fd2000)
	libssl.so.0.9.8 => /usr/lib/i686/cmov/libssl.so.0.9.8 (0xb7f76000)
	libcrypto.so.0.9.8 => /usr/lib/i686/cmov/libcrypto.so.0.9.8 (0xb7e34000)
	libdl.so.2 => /lib/tls/i686/cmov/libdl.so.2 (0xb7e2f000)
	libdbus-1.so.3 => /usr/lib/libdbus-1.so.3 (0xb7df9000)
	libc.so.6 => /lib/tls/i686/cmov/libc.so.6 (0xb7caa000)
	libz.so.1 => /usr/lib/libz.so.1 (0xb7c95000)
	/lib/ld-linux.so.2 (0xb7fd3000)

> --
> Jouni Malinen                                            PGP id EFC895FA
> _______________________________________________
> HostAP mailing list
> HostAP at lists.shmoo.com
> http://lists.shmoo.com/mailman/listinfo/hostap

More information about the Hostap mailing list