aboutsummaryrefslogtreecommitdiffstats
path: root/wpa_supplicant/ChangeLog
diff options
context:
space:
mode:
authorJouni Malinen <j@w1.fi>2008-04-15 14:24:06 (GMT)
committerJouni Malinen <j@w1.fi>2008-04-15 14:24:06 (GMT)
commitfe2b7dda0265d81412292cda9d31edb2252482d9 (patch)
tree2adac8e8901bc2d1a5a6ebbc5c162aec7d311554 /wpa_supplicant/ChangeLog
parentd4092763cf386a3590d13240b4dad2162c7a0c2f (diff)
downloadhostap-06-fe2b7dda0265d81412292cda9d31edb2252482d9.zip
hostap-06-fe2b7dda0265d81412292cda9d31edb2252482d9.tar.gz
hostap-06-fe2b7dda0265d81412292cda9d31edb2252482d9.tar.bz2
Fixed fallback to full handshake when server rejects PAC-Opaque
The TLS client changes in ssl3_get_server_hello() were based on the pre-RFC 5077 version of OpenSSL and they hardcoded s->hit to 1 in case PAC-Opaque was used. This prevented fallback to full TLS handshake in case the server rejected PAC-Opaque in ClientHello. The fixed version simplifies ssl3_get_server_hello() and uses the new RFC 5077 functionality in OpenSSL (ssl3_check_finished) to allow the state machine handle start of abbreviated handshake based on the used ticket.
Diffstat (limited to 'wpa_supplicant/ChangeLog')
-rw-r--r--wpa_supplicant/ChangeLog2
1 files changed, 2 insertions, 0 deletions
diff --git a/wpa_supplicant/ChangeLog b/wpa_supplicant/ChangeLog
index 852a087..e8cb9e9 100644
--- a/wpa_supplicant/ChangeLog
+++ b/wpa_supplicant/ChangeLog
@@ -5,6 +5,8 @@ ChangeLog for wpa_supplicant
* added support for using TNC with EAP-FAST
* added driver_ps3 for the PS3 Linux wireless driver
* added support for optional cryptobinding with PEAPv0
+ * fixed the OpenSSL patches (0.9.8g and 0.9.9) for EAP-FAST to
+ allow fallback to full handshake if server rejects PAC-Opaque
2008-02-22 - v0.6.3
* removed 'nai' and 'eappsk' network configuration variables that were