EAP peer status notification for server not supporting RFC 5746

Add a notification message to indicate reason for TLS handshake failure due to the server not supporting safe renegotiation (RFC 5746). Signed-off-by: Jouni Malinen <quic_jouni@quicinc.com>
2022-05-04 23:55:38 +03:00 · 2022-05-04 23:55:38 +03:00 · a561d12d24
commit a561d12d24
parent 566ce69a8d
4 changed files with 23 additions and 3 deletions
--- a/src/ap/authsrv.c
+++ b/src/ap/authsrv.c
@ -169,6 +169,9 @@ static void authsrv_tls_event(void *ctx, enum tls_event ev,
 			wpa_printf(MSG_DEBUG, "authsrv: remote TLS alert: %s",
 				   data->alert.description);
 		break;
+	case TLS_UNSAFE_RENEGOTIATION_DISABLED:
+		/* Not applicable to TLS server */
+		break;
 	}
 }
 #endif /* EAP_TLS_FUNCS */