Hi Fabien,
On Wed, Sep 15, 2010 at 09:14:42AM +0100, Marotte, FabienX wrote:
> > > + else
> > > + connman_info("No client certificate has been provided "
> > > + "to do the PEAP/TTLS authentication\n");
> >
> > so far so good, but it is } else on the same line.
>
> Correct, I'll fix it
>
> > Also why print a connman_info statement here. It is not an error?
>
> wpa_supplicant doesn't impose a CA certificate even if it is strongly
> recommended for security reasons.
> In connman, we don't return error if the CA certificate is not provided.
> That's why I added only a connman_info() and not a connman_error().
>
That makes sense to me, yes.
> To verify, I tested to not provide the CA certificate in the connman config
> file and the authentication succeed.
>
> May be the question is: Do we want connman to accept doing authentication
> without the CA certificate ?
>
We do. We want to follow wpa_supplicant, not trying to be smarter.
Cheers,
Samuel.
--
Intel Open Source Technology Centre
http://oss.intel.com/
_______________________________________________
connman mailing list
[email protected]
http://lists.connman.net/listinfo/connman
