Regression with radius server + FILS

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi,

I have 2 tests which each use a FILS APs (one is SHA256, the other
SHA384). The two tests both use the same hostapd instance, and the only
difference between the hostapd config files (besides SHA size) is that
one is configured to use a radius server. The radius server is shared
between the two APs.

Whichever config file I put the radius config in, that test fails. E.g.

radius_server_clients=/tmp/certs/radius-clients.text
radius_server_auth_port=1812

But the other test passes fine. They both use the same user for each
test. The initial EAP connection succeeds (EAP-PWD in this case), but
the FILS connection fails (only for the one test) because it cannot
find the Re-auth identity (e.g. c785ec7b0b8808e9@xxxxxxxxxxx) in the
radius server:

hostapd_radius_get_eap_user: Failed to find user
RADIUS SRV: User-Name not found from user database
RADIUS SRV: Could not create a new session
RADIUS SRV: Reject invalid request from 127.0.0.1:35888

I know these tests used to work, and confirmed with a git bisect that
this is the offending commit:

fa1f0751cc259dd76325556b8460864aa408cad9

This is a refactor and replaces a lot of code. I am digging through
this but its a bit out of my knowledge of hostapd. I am happy to
explain in greater detail the exact test scenario if required.

Thanks,
James



_______________________________________________
Hostap mailing list
Hostap@xxxxxxxxxxxxxxxxxxx
http://lists.infradead.org/mailman/listinfo/hostap



[Index of Archives]     [Linux Wireless]     [Linux Kernel]     [ATH6KL]     [Linux Bluetooth]     [Linux Netdev]     [Kernel Newbies]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Samba]     [Device Mapper]

  Powered by Linux