HS 2.0: Skip credential without EAP method for roaming consortium match

EAP method is required for a credential that matches configured
roaming_consortium with an Interworking AP. Hence skip credentials which
do not have EAP method specified for this match. This fixes an issue
where a credential that cannot work without EAP method from NAI Realms
information is selected first based on roaming consortium.

Signed-off-by: Jouni Malinen <jouni@codeaurora.org>

diff --git a/wpa_supplicant/interworking.c b/wpa_supplicant/interworking.c
index dfab9f569c1238a7db5ea6a08b79545aa3d66399..dd35571d914b4c799e799716a89095738af13c58 100644 (file)
--- a/wpa_supplicant/interworking.c
+++ b/wpa_supplicant/interworking.c
@@ -1388,6 +1388,9 @@ static struct wpa_cred * interworking_credentials_available_roaming_consortium(
                    cred->num_roaming_consortiums == 0)
                        continue;
 
+               if (!cred->eap_method)
+                       continue;
+
                if ((cred->roaming_consortium_len == 0 ||
                     !roaming_consortium_match(ie, anqp,
                                               cred->roaming_consortium,