Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Fix TNC with EAP-TTLS

This was broken by 510c02d4a362cd572303fa845b139eacb2dab387 which added
validation of eap_ttls_phase2_eap_init() return value. The main problem
in the code trying to initialize a new phase 2 EAP method
unconditionally; this should only happen if there is a new method in the
inner method sequence.
Jouni Malinen 16 years ago
parent
99bff8430f
commit
51853c899b
2 changed files with 6 additions and 6 deletions
Split View Show Diff Stats
  1. 1 0
      hostapd/ChangeLog
  2. 5 6
      src/eap_server/eap_ttls.c

+ 1 - 0
hostapd/ChangeLog
View File 

@@ -12,6 +12,7 @@ ChangeLog for hostapd
 
 	  Drives (UFD) (CONFIG_WPS_UFD=y)
 
 	* fixed EAPOL/EAP reauthentication when using an external RADIUS
 
 	  authentication server
 
+	* fixed TNC with EAP-TTLS
 
 
 2009-01-06 - v0.6.7
 
 	* added support for Wi-Fi Protected Setup (WPS)

+ 5 - 6
src/eap_server/eap_ttls.c
View File 

@@ -1045,6 +1045,11 @@ static void eap_ttls_process_phase2_eap_response(struct eap_sm *sm,
 
 		next_type = sm->user->methods[0].method;
 
 		sm->user_eap_method_index = 1;
 
 		wpa_printf(MSG_DEBUG, "EAP-TTLS: try EAP type %d", next_type);
 
+		if (eap_ttls_phase2_eap_init(sm, data, next_type)) {
 
+			wpa_printf(MSG_DEBUG, "EAP-TTLS: Failed to initialize "
 
+				   "EAP type %d", next_type);
 
+			eap_ttls_state(data, FAILURE);
 
+		}
 
 		break;
 
 	case PHASE2_METHOD:
 
 		if (data->ttls_version > 0) {
 
@@ -1066,12 +1071,6 @@ static void eap_ttls_process_phase2_eap_response(struct eap_sm *sm,
 
 			   __func__, data->state);
 
 		break;
 
 	}
 
-
 
-	if (eap_ttls_phase2_eap_init(sm, data, next_type)) {
 
-		wpa_printf(MSG_DEBUG, "EAP-TTLS: Failed to initialize EAP "
 
-			   "type %d", next_type);
 
-		eap_ttls_state(data, FAILURE);
 
-	}
 
 }