EAP-TLS - Authentication succeeds with in-correct "private_key_passwd"

Jouni Malinen j
Wed Oct 13 11:26:45 PDT 2010


On Wed, Oct 13, 2010 at 08:27:33PM +0530, saurav barik wrote:
> I ran wpa_supplicant with -dd option and attached is the log.
> logoff/logon is trying to reauth, but couple of places I see it uses
> old-successful-config-data if fast_reauth is enabled. I disabled
> fast_reauth in my config but it did not help(new credentials such as
> "private_key_passwd" are not validated again, as part of reauth).

The fast_reauth=1 case is expected behavior. fast_reauth=0 should use
new credentials, but it looks like you did not actually ask
wpa_supplicant to read the new configuration.. Just modifying
wpa_supplicant.conf is not going to change anything in the running
process without explicit request to re-read the configuration.

-- 
Jouni Malinen                                            PGP id EFC895FA



More information about the Hostap mailing list