From: Jouni Malinen (jkmaline_at_cc.hut.fi)
Date: 2002-08-12 16:45:41 UTC
On Mon, Jul 29, 2002 at 09:46:27AM +0200, Marian Danisek wrote:
> and I would like to know if somebody succesfully use hostap driver with
> 802.1x authenticator.
I know that there has been some attempts to do this, but I haven't heard about complete success yet. I have only checked that frames like the ones used with 802.1x get passed through correctly, but I haven't yet built a full 802.1x setup for testing.
802.1x might work with current driver release to some degree, but you would need to limit data frame sending with an external method (like iptables) for stations that have not yet completed 802.1x authentication. In addition, WEP does not probably work fully with 802.1x without some modifications to the driver.
I have couple of 802.1x related items in my todo list. However, since I'm still trying to get the next release of the driver out, these are waiting until this happens.. One change is a new station flag for allowing only 802.1x frames for associated stations and the data frames would be allowed only after external program (802.1x authenticator) indicates that the station has been authenticated successfully. Another is to make sure that WEP re-keying works with 802.1x.
-- Jouni Malinen PGP id EFC895FA