Unable to complete TLS handshake with iwd client
Pat Pat
pat97040 at gmail.com
Sun Mar 23 19:15:49 UTC 2025
> > I am trying to use freeradius with WPA2-EAP. I have android clients
> > working but using IWD it seems to fail with a TLS handshake error.
>
> Which version of FreeRADIUS are you using?
I am using 3.2.6 with openssl 3.4.1
> If one supplicant works, and another one fails, the issue is likely the supplicant.
Hence my quick email to the list. Ell (the library used by IWD) only
supports RSA
certificates for the client, which is most annoying the only place it
is documented is
in the source.
Thanks for the reply.
Cheers
Pat
On Mon, Mar 24, 2025 at 12:06 AM Alan DeKok <aland at deployingradius.com> wrote:
>
>
> On Mar 23, 2025, at 5:37 AM, Pat Pat <pat97040 at gmail.com> wrote:
> > I am trying to use freeradius with WPA2-EAP. I have android clients
> > working but using IWD it seems to fail with a TLS handshake error.
>
> Which version of FreeRADIUS are you using?
> >
> > (TLS) Ignoring cbtls_msg call with pseudo content type 256, version 00000303
> > (TLS) Received 2 bytes of TLS data
> > (TLS) 02 28
> > (1) eap_tls: (TLS) TLS - send TLS 1.2 Alert, fatal handshake_failure
> > ERROR: (1) eap_tls: (TLS) TLS - Alert write:fatal:handshake failure
> > ERROR: (1) eap_tls: (TLS) TLS - Server : Error in error
>
> Something is going wrong in the TLS negotiation. There isn't much to debug here.
>
> If one supplicant works, and another one fails, the issue is likely the supplicant.
>
> Alan DeKok.
>
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list