Here's the WPA-supplicant patch I'm using, based on Jouni's upstream suggestion, which solves the issue for me here:
diff -ru a/src/crypto/tls_openssl.c b/src/crypto/tls_openssl.c --- a/src/crypto/tls_openssl.c 2012-06-06 18:11:00.976524984 -0600 +++ b/src/crypto/tls_openssl.c 2012-06-06 18:10:58.240540303 -0600 @@ -917,6 +917,7 @@ #ifdef SSL_OP_NO_COMPRESSION options |= SSL_OP_NO_COMPRESSION; #endif /* SSL_OP_NO_COMPRESSION */ + options |= SSL_OP_NO_TICKET; SSL_set_options(conn->ssl, options);
conn->ssl_in = BIO_new(BIO_s_mem());
Here's the WPA-supplicant patch I'm using, based on Jouni's upstream suggestion, which solves the issue for me here:
diff -ru a/src/crypto/ tls_openssl. c b/src/crypto/ tls_openssl. c tls_openssl. c 2012-06-06 18:11:00.976524984 -0600 tls_openssl. c 2012-06-06 18:10:58.240540303 -0600 NO_COMPRESSION NO_COMPRESSION; NO_COMPRESSION */ options( conn->ssl, options);
--- a/src/crypto/
+++ b/src/crypto/
@@ -917,6 +917,7 @@
#ifdef SSL_OP_
options |= SSL_OP_
#endif /* SSL_OP_
+ options |= SSL_OP_NO_TICKET;
SSL_set_
conn->ssl_in = BIO_new( BIO_s_mem( ));