Modify

Opened 7 years ago

Closed 6 years ago

Last modified 4 years ago

#8876 closed defect (fixed)

add client_cert to wireless uci parser

Reported by: chunkeey@… Owned by: developers
Priority: normal Milestone: Chaos Calmer 15.05
Component: packages Version: Trunk
Keywords: wpa_supplicant EAP TLS Cc:

Description

quote from wpa_supplicant code (eap_config.h):

"When PKCS12/PFX file (.p12/.pfx) is used, client_cert should be
commented out. Both the private key and certificate will be read from the PKCS12 file in this case."

According to the quote above, the client_cert paramter can only be omitted from the config if the user packs his key+certificates into a PKCS12/PFX file. What the documentation does not say is that the the internal crypto code can't cope with PKCS2/PFX and the OpenSSL crypto backend is needed.

Attachments (1)

client_cert.patch (782 bytes) - added by chunkeey@… 7 years ago.
[package] hostapd: add 'client_cert' config option when eap_type is 'tls' on wpa_supplicant (

Download all attachments as: .zip

Change History (3)

Changed 7 years ago by chunkeey@…

[package] hostapd: add 'client_cert' config option when eap_type is 'tls' on wpa_supplicant (

comment:1 Changed 6 years ago by jow

  • Resolution set to fixed
  • Status changed from new to closed

Committed in r29901 and r29902 - thanks!

comment:2 Changed 4 years ago by jow

  • Milestone changed from Backfire 10.03.2 to Chaos Calmer (trunk)

Milestone Backfire 10.03.2 deleted

Add Comment

Modify Ticket

Action
as closed .
The resolution will be deleted. Next status will be 'reopened'.
Author


E-mail address and user name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.