peap: Adjust V0 not to close tunnel on Success of Phase2
Despite that PEAPv0 spec indicates that TLS tunnel needs to be torn down after the transmission of a secure Result response, some servers treat this TLS close alert as a failure. This patch changes the above behavior to explicitly torn the tunnel only in the case of authentication failure and leave it open after the success.
This commit is contained in:
Tim Kourt
Denis Kenzior
parent
bc17925f3a
commit
96a97dc959
|
|
@ -182,14 +182,14 @@ static void eap_extensions_handle_request(struct eap_state *eap,
|
|||
|
||||
eap_peap_phase2_send_response(response, sizeof(response), eap);
|
||||
|
||||
eap_tls_common_tunnel_close(eap);
|
||||
|
||||
eap_discard_success_and_failure(eap, false);
|
||||
eap_tls_common_set_completed(eap);
|
||||
|
||||
if (r != EAP_EXTENSIONS_RESULT_SUCCCESS) {
|
||||
eap_tls_common_set_phase2_failed(eap);
|
||||
|
||||
eap_tls_common_tunnel_close(eap);
|
||||
|
||||
return;
|
||||
}
|
||||
|
||||
|
|
|
|||
Loading…
Reference in New Issue