Problems with EAP-TLS

Christian Scheid cxscheid
Fri Nov 20 16:51:56 PST 2009

Hi Jouni, thanks for your email.

The authentication method used is EAP-TLS. The Authentication Server is AAA.
I'm pretty sure that the server works correctly because I have the EAP-TLS
process working with an earlier version of the wpa_supplicant.

Attached please find a more detailed trace with hex dumps of the
received/sent packets. It looks to me that the supplicant is responding to
id 4 but the server keeps resending the last id. Not sure why. Could it be a
timing issue?

Any assistance greatly appreciated.


On Tue, Nov 17, 2009 at 3:45 PM, Jouni Malinen <j at> wrote:

> On Mon, Nov 16, 2009 at 10:59:18AM -0500, Christian Scheid wrote:
> > I'm currently integrating the wpa supplicant with another software piece.
> > For some reason the process doesn't complete the final step. I think it
> has
> > to do with the fact that not all bytes from openssl are being processed.
> It
> > sends the first batch of 1398 bytes but not the rest. (see trace below)
> Could you please send a more verbose debug log and/or capture log
> showing the EAP frames exchanged here? It looks like the authentication
> server is either misbehaving or somehow dropping the last frame from the
> supplicant and retransmitting an earlier EAP request (id=4 was already
> used). Which authentication server is used here?
> --
> Jouni Malinen                                            PGP id EFC895FA
> _______________________________________________
> HostAP mailing list
> HostAP at
-------------- next part --------------
An HTML attachment was scrubbed...
-------------- next part --------------
A non-text attachment was scrubbed...
Type: application/zip
Size: 7301 bytes
Desc: not available
Url : 

More information about the Hostap mailing list